r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d931e0142ef5ffe9cdb4c4c6bfcb9bc9
d9c4caf525e8926b042a14f38d374cc4033ed768
f610984fb0a75b3a31424faa860cbc8172c7f21804df1dc14fbb685b7c456f29
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F610984FB0A75B3A31424FAA860CBC8172C7F21804DF1DC14FBB685B7C456F29"
Last-Modified: Sat, 03 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9174
Expires: Tue, 06 Sep 2022 15:07:24 GMT
Date: Tue, 06 Sep 2022 12:34:30 GMT
Connection: keep-alive
robuxgratuito.goyoop.com/
142.250.74.179301 Moved Permanently 179 B URL HTTP/1.1 robuxgratuito.goyoop.com/
IP 142.250.74.179:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 6a6013ee514a58836ed236a43138f23e
eb127d8a57558ed489f8b78224eb92a781ee195f
b7894d12eb77e6eec8625459ebea71224f9c39601b3e01c3fc069fa049b65f79
GET / HTTP/1.1
Host: robuxgratuito.goyoop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://robuxgratuito.goyoop.com/
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Tue, 06 Sep 2022 12:34:30 GMT
Expires: Tue, 06 Sep 2022 12:34:30 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 179
Server: GSE
firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 06 Sep 2022 12:04:18 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: LsmueebmGU8g_bO7VVMK-5uggcOA4vL3Kq71di8VHTEBIYKci_od0A==
Age: 1812
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 06 Sep 2022 01:15:18 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 6rFAtla6od_khRkDrMoiXSJWwESRs167GWTEJrWDFnOvSBeICbu33Q==
age: 40753
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 12:34:30 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/na_LNr9p7jM
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/na_LNr9p7jM
IP 142.250.74.3:0
Hash 0ce5380d6a1f931fc0683cc657ed6911
fc4c0d470db08e6f69f0d400c938f68a2a6909c4
1f51667e6d371e95b3cee73c19cbbc3701f76e1db5e0280ad21677bb5ab4d9e0
POST /s/gts1d4/na_LNr9p7jM HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 12:34:30 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 06 Sep 2022 11:38:18 GMT
Cache-Control: max-age=3600
Expires: Tue, 06 Sep 2022 12:38:18 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 3_kS9T1PtBpY-rGYca0FvelYtc7wjKr6dkOapXkO85Cyn7sYe-GEBw==
Age: 3372
robuxgratuito.goyoop.com/
142.250.74.179200 OK 17 kB URL HTTP/2 robuxgratuito.goyoop.com/
IP 142.250.74.179:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2321)
Hash e1406d3d93d91fd14bf10f277a18316e
7cb1bd8f8af7cc54852033d860827dae017832bc
9eccd8aaa82155be43cae5ef7644c705667f22ba0a8dc8756b85af360b24f50a
GET / HTTP/1.1
Host: robuxgratuito.goyoop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
expires: Tue, 06 Sep 2022 12:34:30 GMT
date: Tue, 06 Sep 2022 12:34:30 GMT
cache-control: private, max-age=0
last-modified: Sat, 23 Apr 2022 06:36:53 GMT
etag: W/"c8f13f0087934a46385b5b9211d591380d4316ba73451ae5b1b07d3e2c43f932"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 16621
server: GSE
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e8952752ad4a452a575522a7eb737217
c5554fa2af05d7a7117032b0f99352de08988346
8c182bed7bbd843774a2136823b30a4cb707e2a5386f71d01640aa3558888bf7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 998
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 12:34:30 GMT
Last-Modified: Tue, 06 Sep 2022 12:17:52 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0b9528d0aa584b0e7b8b95f31ec1c4ed
79afabc0856f6fb3c3e5a9f5675cb0a40ee08e54
2604edd5743acd1487c25665444019555a972492010c10bf3bd6aefeab4661eb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 12:34:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
robuxgratuito.goyoop.com/js/cookienotice.js
142.250.74.179200 OK 2.0 kB URL HTTP/2 robuxgratuito.goyoop.com/js/cookienotice.js
IP 142.250.74.179:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
GET /js/cookienotice.js HTTP/1.1
Host: robuxgratuito.goyoop.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
date: Tue, 06 Sep 2022 12:34:31 GMT
expires: Tue, 13 Sep 2022 12:34:31 GMT
cache-control: public, max-age=604800
last-modified: Tue, 06 Sep 2022 09:50:28 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bcbb9bf29f1e0acaa7ac6d6566381370
dec1bea642dffbc11ebd6d65c94f87d6db95703a
b2bf22379151923244cbb9bd62499ded7b6f313a7db77914383bc1e704dd65de
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 12:34:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v15/RxZJdnzeo3R5zSexge8UUVtXRa8TVwTICgirnJhmVJw.woff2
142.250.74.163200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v15/RxZJdnzeo3R5zSexge8UUVtXRa8TVwTICgirnJhmVJw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 14596, version 2.0\012- data
Hash bb474f16c9f76f522d656d66aa4a220e
55161308d29d91ec21aadf6f63da390a902c053b
01a44f86a9b361ef0d3ad5e4f9f0f01d394ab53fc5b0e3dff92466fa411e706b
GET /s/roboto/v15/RxZJdnzeo3R5zSexge8UUVtXRa8TVwTICgirnJhmVJw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://robuxgratuito.goyoop.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14596
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Sep 2022 00:31:18 GMT
expires: Sat, 02 Sep 2023 00:31:18 GMT
cache-control: public, max-age=31536000
age: 388993
last-modified: Wed, 14 Jan 2015 22:47:38 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 6425ca79a6b35c174b398487116a75cb
9aea4145116e0be668e3edb52b503e1c6b2e5975
45493b683399f944354cfa69b27a63f9620142175a9efb71fb2282f13d47fd84
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 12:34:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=AW-1065449093
142.250.74.72200 OK 46 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=AW-1065449093
IP 142.250.74.72:0
File type ASCII text, with very long lines (1615)
Hash 4950732afc89ac86316efbfe323a62dd
6988cb990bfca2265bbff99fafc851036c5217e3
9dbb7296c10d006b780d0a1a0ce4fbb751a53a9ee4c6162551e34b51ff8d1f3c
GET /gtag/js?id=AW-1065449093 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 06 Sep 2022 12:34:31 GMT
expires: Tue, 06 Sep 2022 12:34:31 GMT
cache-control: private, max-age=900
last-modified: Tue, 06 Sep 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 46021
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
js.rbxcdn.com/73a89de8a6dbe8005fb3d6be12e361fddac57c13295171d3a8d5f397e761615d.js
205.185.216.10200 OK 7.5 kB URL HTTP/2 js.rbxcdn.com/73a89de8a6dbe8005fb3d6be12e361fddac57c13295171d3a8d5f397e761615d.js
IP 205.185.216.10:0
Hash c7bb5186fe92467097e0e1b5550e0c28
749ed32b2727f1dad15dbeea443481071664236c
066eda410421071d0de0285853de54997e17b64813149d5cc3edca9938d15b00
GET /73a89de8a6dbe8005fb3d6be12e361fddac57c13295171d3a8d5f397e761615d.js HTTP/1.1
Host: js.rbxcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 12:34:31 GMT
content-encoding: gzip
content-length: 7458
content-type: application/javascript
last-modified: Fri, 19 Jul 2019 20:29:09 GMT
accept-ranges: bytes
etag: "cee56fee0667754edc86059329adb14f"
cache-control: public, max-age=31536000
x-hw: 1662467671.dop221.sk1.t,1662467671.cds249.sk1.hn,1662467671.cds252.sk1.c
access-control-expose-headers: Rbx-Cdn-Provider
rbx-cdn-provider: hw
access-control-allow-origin: *
access-control-allow-methods: GET
X-Firefox-Spdy: h2
s7.addthis.com/js/300/addthis_widget.js
23.38.200.123200 OK 116 kB URL HTTP/2 s7.addthis.com/js/300/addthis_widget.js
IP 23.38.200.123:0
File type ASCII text, with very long lines (54602)
Size 116 kB (116421 bytes)
Hash 50b2be22436f28eeb626c063bd506eba
d4dafc6f2a3d10ac086ea07d19519df93fba8a8a
ddd6e4f7cbc0726429726c7a908ed33c3f94bb0cff47f87d3dcf71e37ea7ad4b
GET /js/300/addthis_widget.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.15.8
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: "5f971164-5834c"
cache-control: public, max-age=600
strict-transport-security: max-age=15724800; includeSubDomains
content-type: application/javascript
content-encoding: gzip
content-length: 116421
date: Tue, 06 Sep 2022 12:34:31 GMT
vary: Accept-Encoding
x-distribution: 99
x-host: s7.addthis.com
X-Firefox-Spdy: h2
d13nu0oomnx5ti.cloudfront.net/40e681d.js
54.230.245.92200 OK 23 kB URL HTTP/2 d13nu0oomnx5ti.cloudfront.net/40e681d.js
IP 54.230.245.92:0
File type C source, ASCII text, with very long lines (1637), with CRLF line terminators
Hash f35b39586568ca1063fc72edc92467c3
fffc5e112da84616def5a9ee558debd7743a8437
f0f2a573c8865ae8576b67d2a40ab1077a9e068c038447391d28db9ea98af931
Analyzer Verdict Alert fortinet Malware
GET /40e681d.js HTTP/1.1
Host: d13nu0oomnx5ti.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 23439
last-modified: Sat, 06 Aug 2022 10:17:17 GMT
server: AmazonS3
date: Tue, 06 Sep 2022 04:59:42 GMT
etag: "f35b39586568ca1063fc72edc92467c3"
x-cache: Error from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: EZFlN3hWMV_DeGjBESJMaRQ5pW19eDlRAhqu0TsTf3x9xpkAYuqQng==
age: 29696
X-Firefox-Spdy: h2
js.rbxcdn.com/696685bfb3ef15707c494828d9ffe1d607cb32746b9478dc4b165ff2c40b4e7f.js
205.185.216.10200 OK 38 kB URL HTTP/2 js.rbxcdn.com/696685bfb3ef15707c494828d9ffe1d607cb32746b9478dc4b165ff2c40b4e7f.js
IP 205.185.216.10:0
File type Unicode text, UTF-8 text, with very long lines (49722)
Hash d6f516c5e79a88f69dc09406b7adfebe
3dac44faa27da0196fd6161030ab68853519b49e
efab881d3c3f0466c4147382e408970855e6e9db8cbbc4a69c90acb35a0a0331
GET /696685bfb3ef15707c494828d9ffe1d607cb32746b9478dc4b165ff2c40b4e7f.js HTTP/1.1
Host: js.rbxcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 12:34:31 GMT
content-encoding: gzip
content-length: 37620
content-type: application/javascript
last-modified: Fri, 20 Mar 2020 00:18:42 GMT
accept-ranges: bytes
cache-control: public, max-age=31536000
etag: "aa546a91d255d5dc5f2f049edb45bb01"
x-hw: 1662467671.dop221.sk1.t,1662467671.cds249.sk1.hn,1662467671.cds207.sk1.c
access-control-expose-headers: Rbx-Cdn-Provider
rbx-cdn-provider: hw
access-control-allow-origin: *
access-control-allow-methods: GET
X-Firefox-Spdy: h2
js.rbxcdn.com/898cb6e9c467d15ad80a67d019f3815d35dbc6ff60c12ef7dd928e8fbaf02b0b.js
205.185.216.10200 OK 6.4 kB URL HTTP/2 js.rbxcdn.com/898cb6e9c467d15ad80a67d019f3815d35dbc6ff60c12ef7dd928e8fbaf02b0b.js
IP 205.185.216.10:0
File type ASCII text, with very long lines (8882), with CRLF, LF line terminators
Hash 40151b54d29926f1df3ee489f3b2a202
0737152c9dcf5a9dace9b0e455784fb87a4b969f
22fb167f2699c54c5b7c084247769a55227d767a3cd1e50c7b4419a05e5371a3
GET /898cb6e9c467d15ad80a67d019f3815d35dbc6ff60c12ef7dd928e8fbaf02b0b.js HTTP/1.1
Host: js.rbxcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 12:34:31 GMT
content-encoding: gzip
content-length: 6436
content-type: application/javascript
last-modified: Thu, 22 Aug 2019 01:52:21 GMT
accept-ranges: bytes
etag: "dfcd2651b50fd27611d992b2eb324227"
cache-control: public, max-age=31536000
x-hw: 1662467671.dop221.sk1.t,1662467671.cds249.sk1.hn,1662467671.cds228.sk1.c
access-control-expose-headers: Rbx-Cdn-Provider
rbx-cdn-provider: hw
access-control-allow-origin: *
access-control-allow-methods: GET
X-Firefox-Spdy: h2
js.rbxcdn.com/132449c053f66a1a82a3c7f99496355b024e449d688285dc66d92f7fd672fe25.js
205.185.216.10200 OK 58 kB URL HTTP/2 js.rbxcdn.com/132449c053f66a1a82a3c7f99496355b024e449d688285dc66d92f7fd672fe25.js
IP 205.185.216.10:0
File type Unicode text, UTF-8 text, with very long lines (64014)
Hash b40da5bbade46b11b699dd3cf85f63ed
2040e5073a0e1d5687d45b134d3cb37f6ad4c663
629aad9a035dd615ddc864866a1b7dba06e0f2796f50f82e5043508282c2709d
GET /132449c053f66a1a82a3c7f99496355b024e449d688285dc66d92f7fd672fe25.js HTTP/1.1
Host: js.rbxcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 12:34:31 GMT
content-encoding: gzip
content-length: 57496
content-type: application/javascript
last-modified: Wed, 06 May 2020 16:52:31 GMT
accept-ranges: bytes
etag: "b1bf8758eeb3eb7a02a30112b4853419"
cache-control: public, max-age=31536000
x-hw: 1662467671.dop221.sk1.t,1662467671.cds249.sk1.hn,1662467671.cds255.sk1.c
access-control-expose-headers: Rbx-Cdn-Provider
rbx-cdn-provider: hw
access-control-allow-origin: *
access-control-allow-methods: GET
X-Firefox-Spdy: h2
js.rbxcdn.com/95f7afb5fcb3c8ae379d51661e32c54ea8d8b823ace7574bd0b7fab9275cba6b.js
205.185.216.10200 OK 1.9 kB URL HTTP/2 js.rbxcdn.com/95f7afb5fcb3c8ae379d51661e32c54ea8d8b823ace7574bd0b7fab9275cba6b.js
IP 205.185.216.10:0
File type ASCII text, with very long lines (4736), with CRLF, LF line terminators
Hash cb9077fe4666be903397a033e5e203c8
6fbca9ff71578e3b4fe1cb2f8fcba3fc6ca37643
c9dc7db80839ff2f224739ef99d95199492af5c03092f40b681e5e20774623cd
GET /95f7afb5fcb3c8ae379d51661e32c54ea8d8b823ace7574bd0b7fab9275cba6b.js HTTP/1.1
Host: js.rbxcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 12:34:31 GMT
content-encoding: gzip
content-length: 1865
content-type: application/javascript
last-modified: Thu, 17 Oct 2019 17:50:35 GMT
accept-ranges: bytes
etag: "f87f9f0c21b670ca63b45a7d273261ce"
cache-control: public, max-age=31536000
x-hw: 1662467671.dop221.sk1.t,1662467671.cds249.sk1.hn,1662467671.cds249.sk1.c
access-control-expose-headers: Rbx-Cdn-Provider
rbx-cdn-provider: hw
access-control-allow-origin: *
access-control-allow-methods: GET
X-Firefox-Spdy: h2
js.rbxcdn.com/ffcc04436179c6b2a6668fdfcfbf62b1.js
205.185.216.10200 OK 584 B URL HTTP/2 js.rbxcdn.com/ffcc04436179c6b2a6668fdfcfbf62b1.js
IP 205.185.216.10:0
File type ASCII text, with very long lines (1722), with no line terminators
Hash 79b6f7d44a7b5bc8edca64422edefe4f
1b572a6deab382cea4965c9547954fc48a7c5ba6
bf4296e521001a70be9485f0b90c63ca984cb1cbc9910ed91ab4076c38bb0343
GET /ffcc04436179c6b2a6668fdfcfbf62b1.js HTTP/1.1
Host: js.rbxcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 12:34:31 GMT
content-encoding: gzip
content-length: 584
content-type: application/javascript
last-modified: Sat, 11 Apr 2020 00:08:03 GMT
accept-ranges: bytes
etag: "ffcc04436179c6b2a6668fdfcfbf62b1"
cache-control: public, max-age=31536000
x-hw: 1662467671.dop221.sk1.t,1662467671.cds249.sk1.hn,1662467671.cds219.sk1.c
access-control-expose-headers: Rbx-Cdn-Provider
rbx-cdn-provider: hw
access-control-allow-origin: *
access-control-allow-methods: GET
X-Firefox-Spdy: h2
js.rbxcdn.com/f95ce5eaf14ed24abcf0291464ea2cf0.js
205.185.216.10200 OK 412 B URL HTTP/2 js.rbxcdn.com/f95ce5eaf14ed24abcf0291464ea2cf0.js
IP 205.185.216.10:0
File type ASCII text, with very long lines (942), with no line terminators
Hash 95f90befc06e44d854fb64af73b2ce9a
046258c1acca75857524daf1f3e8567af47ed290
4aa73ef615660215b29a2d62b2348b5f79ea1ee159e1bbd8448ab9a123ed63b8
GET /f95ce5eaf14ed24abcf0291464ea2cf0.js HTTP/1.1
Host: js.rbxcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 12:34:31 GMT
content-encoding: gzip
content-length: 412
content-type: application/javascript
last-modified: Tue, 03 Mar 2020 22:24:20 GMT
accept-ranges: bytes
etag: "f95ce5eaf14ed24abcf0291464ea2cf0"
cache-control: public, max-age=31536000
x-hw: 1662467671.dop221.sk1.t,1662467671.cds249.sk1.hn,1662467671.cds023.sk1.c
access-control-expose-headers: Rbx-Cdn-Provider
rbx-cdn-provider: hw
access-control-allow-origin: *
access-control-allow-methods: GET
X-Firefox-Spdy: h2
js.rbxcdn.com/0e6d0c239b3da1c0408920b3dea6d2e0f7a56b1fc7967d4b1d2f59635b3a2c5b.js
205.185.216.10200 OK 2.8 kB URL HTTP/2 js.rbxcdn.com/0e6d0c239b3da1c0408920b3dea6d2e0f7a56b1fc7967d4b1d2f59635b3a2c5b.js
IP 205.185.216.10:0
File type Unicode text, UTF-8 text, with very long lines (8177), with CRLF, LF line terminators
Hash 68ecb63fd22550fe0594eae9339bf466
7593c02553d6ab512f56bbf6dd8de736ccec61b3
301c5e13ac6f4725572ff7604fae2ea595687569e5262dc2db2a83f0b0ae76cd
GET /0e6d0c239b3da1c0408920b3dea6d2e0f7a56b1fc7967d4b1d2f59635b3a2c5b.js HTTP/1.1
Host: js.rbxcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 12:34:31 GMT
content-encoding: gzip
content-length: 2791
content-type: application/javascript
last-modified: Thu, 02 Apr 2020 01:33:43 GMT
accept-ranges: bytes
cache-control: public, max-age=31536000
etag: "987eae243b517eba3503e23292ae77fe"
x-hw: 1662467671.dop221.sk1.t,1662467671.cds249.sk1.hn,1662467671.cds068.sk1.c
access-control-expose-headers: Rbx-Cdn-Provider
rbx-cdn-provider: hw
access-control-allow-origin: *
access-control-allow-methods: GET
X-Firefox-Spdy: h2
js.rbxcdn.com/18bacc6af9c2d138889720464760d97f7535b7c8beb298379e65834559b03d01.js
205.185.216.10200 OK 5.8 kB URL HTTP/2 js.rbxcdn.com/18bacc6af9c2d138889720464760d97f7535b7c8beb298379e65834559b03d01.js
IP 205.185.216.10:0
File type ASCII text, with very long lines (11207), with CRLF, LF line terminators
Hash 9c2ccf673813dedfe8d1ac15e5209880
f42a92ea4642bb33f10d63a6ac9e46906e02dc99
eb9b0651ca196104a9211081840826c28474323292a5b54246ad811dbf4c8632
GET /18bacc6af9c2d138889720464760d97f7535b7c8beb298379e65834559b03d01.js HTTP/1.1
Host: js.rbxcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 12:34:31 GMT
content-encoding: gzip
content-length: 5818
content-type: application/javascript
last-modified: Fri, 24 Apr 2020 23:23:00 GMT
accept-ranges: bytes
etag: "842b10c34559d1dc6207d340b00860bb"
cache-control: public, max-age=31536000
x-hw: 1662467671.dop221.sk1.t,1662467671.cds249.sk1.hn,1662467671.cds241.sk1.c
access-control-expose-headers: Rbx-Cdn-Provider
rbx-cdn-provider: hw
access-control-allow-origin: *
access-control-allow-methods: GET
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 8b3fc7b78a1c498440023dbb6004e984
688d8686e183a4e84577e0f70550350622796e2e
ac1f7b3d1c5bfc1888f50aa3a8e0498c11f7cce672e6de5c048bf31d4d3370c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 12:34:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
js.rbxcdn.com/0997b4b967345e5a2c5fc01dd196a4866a5bf415b0650a6382630d397dd5fefe.js
205.185.216.10200 OK 13 kB URL HTTP/2 js.rbxcdn.com/0997b4b967345e5a2c5fc01dd196a4866a5bf415b0650a6382630d397dd5fefe.js
IP 205.185.216.10:0
File type ASCII text, with very long lines (44317), with CRLF, LF line terminators
Hash 1a70e82d6f3ccf25a61ee576c40ef9f2
f4aa3532937a0bb02acf0120f7cbe23a681f80fd
c2af06e044bd5ef27715c8b481cfd24c9fdf9be87b4ee3bf3a616124f468d83d
GET /0997b4b967345e5a2c5fc01dd196a4866a5bf415b0650a6382630d397dd5fefe.js HTTP/1.1
Host: js.rbxcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 12:34:31 GMT
content-encoding: gzip
content-length: 12634
content-type: application/javascript
last-modified: Thu, 02 Apr 2020 21:44:21 GMT
accept-ranges: bytes
etag: "307f2d87e7afc9065337e43c9cb0a24b"
cache-control: public, max-age=31536000
x-hw: 1662467671.dop221.sk1.t,1662467671.cds249.sk1.hn,1662467671.cds219.sk1.c
access-control-expose-headers: Rbx-Cdn-Provider
rbx-cdn-provider: hw
access-control-allow-origin: *
access-control-allow-methods: GET
X-Firefox-Spdy: h2
js.rbxcdn.com/a04e739a72565e4e9e62b9ff16ebfb62.js
205.185.216.10200 OK 27 kB URL HTTP/2 js.rbxcdn.com/a04e739a72565e4e9e62b9ff16ebfb62.js
IP 205.185.216.10:0
File type ASCII text, with very long lines (32003), with CRLF, LF line terminators
Hash c7a99a2188c22a7614a1ff0f996d15af
3bd7a5bd5264b8adebac7306db0973d39646c18d
6791c0e16f14da91eced4b33f1db6c2cf75df0f9f0ac3186b6405d2cc62bd55a
GET /a04e739a72565e4e9e62b9ff16ebfb62.js HTTP/1.1
Host: js.rbxcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 12:34:31 GMT
content-encoding: gzip
content-length: 27131
content-type: application/javascript
last-modified: Tue, 28 Jan 2020 00:27:11 GMT
accept-ranges: bytes
etag: "a04e739a72565e4e9e62b9ff16ebfb62"
cache-control: public, max-age=31536000
x-hw: 1662467671.dop221.sk1.t,1662467671.cds249.sk1.hn,1662467671.cds071.sk1.c
access-control-expose-headers: Rbx-Cdn-Provider
rbx-cdn-provider: hw
access-control-allow-origin: *
access-control-allow-methods: GET
X-Firefox-Spdy: h2
js.rbxcdn.com/aac542106f7f77697cbc3b36ab3cf0619bf9b69a1af0983e59dfeb6c36652d3b.js
205.185.216.10200 OK 2.1 kB URL HTTP/2 js.rbxcdn.com/aac542106f7f77697cbc3b36ab3cf0619bf9b69a1af0983e59dfeb6c36652d3b.js
IP 205.185.216.10:0
File type ASCII text, with very long lines (5844), with CRLF, LF line terminators
Hash d56ca768496caf750acf07a8fb67363f
b82463ec549692b8bd2aec20f82f5dfc663c091d
0f3b0e63254203f56582af08dbd8b3605e5508686a6d788b9a78984c1ca5b1ac
GET /aac542106f7f77697cbc3b36ab3cf0619bf9b69a1af0983e59dfeb6c36652d3b.js HTTP/1.1
Host: js.rbxcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 12:34:31 GMT
content-encoding: gzip
content-length: 2116
content-type: application/javascript
last-modified: Fri, 22 Nov 2019 06:07:26 GMT
accept-ranges: bytes
cache-control: public, max-age=31536000
etag: "412cb4ed0f38462ac1269717a19f0f75"
x-hw: 1662467671.dop221.sk1.t,1662467671.cds249.sk1.hn,1662467671.cds069.sk1.c
access-control-expose-headers: Rbx-Cdn-Provider
rbx-cdn-provider: hw
access-control-allow-origin: *
access-control-allow-methods: GET
X-Firefox-Spdy: h2
js.rbxcdn.com/ee062fc723e5339797b723822692537de5ea093289178a923fc3bbf5775a7ff3.js
205.185.216.10200 OK 9.1 kB URL HTTP/2 js.rbxcdn.com/ee062fc723e5339797b723822692537de5ea093289178a923fc3bbf5775a7ff3.js
IP 205.185.216.10:0
File type ASCII text, with very long lines (30308), with CRLF, LF line terminators
Hash 9964e0256a553248c5ed7fee04a21838
254077975be0efd1c3c4d9b165b230e8383df1b1
5acbec80b03a0f0e7214421ac0ded2bac1e43c98cef4cc80f4fd19e37d518fb2
GET /ee062fc723e5339797b723822692537de5ea093289178a923fc3bbf5775a7ff3.js HTTP/1.1
Host: js.rbxcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 12:34:31 GMT
content-encoding: gzip
content-length: 9103
content-type: application/javascript
last-modified: Tue, 28 Jan 2020 21:19:46 GMT
accept-ranges: bytes
etag: "f5396cef43ef0906958b6134ff2bfb11"
cache-control: public, max-age=31536000
x-hw: 1662467671.dop221.sk1.t,1662467671.cds249.sk1.hn,1662467671.cds260.sk1.c
access-control-expose-headers: Rbx-Cdn-Provider
rbx-cdn-provider: hw
access-control-allow-origin: *
access-control-allow-methods: GET
X-Firefox-Spdy: h2
js.rbxcdn.com/ae8d0d21c550c324dc661544fec136da.js
205.185.216.10200 OK 38 kB URL HTTP/2 js.rbxcdn.com/ae8d0d21c550c324dc661544fec136da.js
IP 205.185.216.10:0
File type ASCII text, with very long lines (32004), with CRLF line terminators
Hash 56b0d7ca73d06f2f6bd35e4111c1a462
cec935bca89ebb33a45e8bb8da7553d336f88675
eb242f94f24193b2e34b92fd103ace3e62f53b3bdb93cc059ab1631dae6d0cdf
GET /ae8d0d21c550c324dc661544fec136da.js HTTP/1.1
Host: js.rbxcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 12:34:31 GMT
content-encoding: gzip
content-length: 38377
content-type: application/javascript
last-modified: Mon, 30 Mar 2020 19:26:29 GMT
accept-ranges: bytes
etag: "ae8d0d21c550c324dc661544fec136da"
cache-control: public, max-age=31536000
x-hw: 1662467671.dop221.sk1.t,1662467671.cds249.sk1.hn,1662467671.cds227.sk1.c
access-control-expose-headers: Rbx-Cdn-Provider
rbx-cdn-provider: hw
access-control-allow-origin: *
access-control-allow-methods: GET
X-Firefox-Spdy: h2
js.rbxcdn.com/ff3308aa2e909de0f9fcd5da7b529db247f69fe9b4072cbbc267749800a4d9e6.js
205.185.216.10200 OK 7.0 kB URL HTTP/2 js.rbxcdn.com/ff3308aa2e909de0f9fcd5da7b529db247f69fe9b4072cbbc267749800a4d9e6.js
IP 205.185.216.10:0
Hash 8786778da0c655344e9d4bfece052339
53a8b975786a690752429cf6b9d2bbfc6745cf4d
2bc71ee7163d681f056d0e000b7df60ccf151f3bddd951003cb8071728ca7574
GET /ff3308aa2e909de0f9fcd5da7b529db247f69fe9b4072cbbc267749800a4d9e6.js HTTP/1.1
Host: js.rbxcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 12:34:31 GMT
content-encoding: gzip
content-length: 7021
content-type: application/javascript
last-modified: Sat, 21 Dec 2019 00:20:23 GMT
accept-ranges: bytes
etag: "21f393350b805615af001ef6f0da400f"
cache-control: public, max-age=31536000
x-hw: 1662467671.dop221.sk1.t,1662467671.cds249.sk1.hn,1662467671.cds211.sk1.c
access-control-expose-headers: Rbx-Cdn-Provider
rbx-cdn-provider: hw
access-control-allow-origin: *
access-control-allow-methods: GET
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0b9528d0aa584b0e7b8b95f31ec1c4ed
79afabc0856f6fb3c3e5a9f5675cb0a40ee08e54
2604edd5743acd1487c25665444019555a972492010c10bf3bd6aefeab4661eb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 12:34:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
34.214.236.46101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.214.236.46:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: /x/WMQwh2q/lzHA9jBeh0g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: +6I9OFTz1a2WrXM5hnQVJXu3Obg=
googleads.g.doubleclick.net/pagead/viewthroughconversion/1065449093/?random=1641256994566&cv=9&fst=1641256994566&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1080&u_w=1920&u_ah=1050&u_aw=1920&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=5&u_nmime=2>m=2oac10&sendb=1&ig=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Frobux.is%2F&tiba=Roblox%20Admin%20R%24%20Group&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4
172.217.21.162200 OK 1.0 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/1065449093/?random=1641256994566&cv=9&fst=1641256994566&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1080&u_w=1920&u_ah=1050&u_aw=1920&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=5&u_nmime=2>m=2oac10&sendb=1&ig=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Frobux.is%2F&tiba=Roblox%20Admin%20R%24%20Group&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4
IP 172.217.21.162:0
File type ASCII text, with very long lines (2242), with no line terminators
Hash 971dbf931bdadd6857d3c3ddc1af765e
be4be157cfd00fcba5a279ba070f47d61ba10656
7d047750675b41da312746f3823605804110e46535bda4b64b1b354418cb72de
GET /pagead/viewthroughconversion/1065449093/?random=1641256994566&cv=9&fst=1641256994566&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1080&u_w=1920&u_ah=1050&u_aw=1920&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=5&u_nmime=2>m=2oac10&sendb=1&ig=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Frobux.is%2F&tiba=Roblox%20Admin%20R%24%20Group&hn=www.googleadservices.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 06 Sep 2022 12:34:31 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1035
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 06-Sep-2022 12:49:31 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/2.2.4/bf4d16e.min.js
142.250.74.138404 Not Found 1.6 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/2.2.4/bf4d16e.min.js
IP 142.250.74.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1136)
Hash 3ea9dd530e1fc57a7f092ed73387ee94
903dc725e7a94ee037edc560460edb6fa034222f
dcd222f76804a85961c92c8b545a5b88d076ef588a3e313809baa3a84316e42d
GET /ajax/libs/jquery/2.2.4/bf4d16e.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
access-control-allow-origin: *
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
date: Tue, 06 Sep 2022 12:34:31 GMT
content-type: text/html; charset=UTF-8
server: sffe
content-length: 1598
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
css.rbxcdn.com/7e4ee4f2bf98b3716c4e33a03505aadc7f2179b191b8ed35816e2ed09a2771c6.css
184.31.15.32200 OK 803 B URL HTTP/2 css.rbxcdn.com/7e4ee4f2bf98b3716c4e33a03505aadc7f2179b191b8ed35816e2ed09a2771c6.css
IP 184.31.15.32:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (3148), with no line terminators
Hash f3aa1202dd08bd53332a7d97f9ca5361
e457fd8fe130a4d2aa3ca29563509c342b76c728
8533e7684e801ae04adbbbdb84c170254cdde3e2bd3596269d6bc1b6ba44f5c2
GET /7e4ee4f2bf98b3716c4e33a03505aadc7f2179b191b8ed35816e2ed09a2771c6.css HTTP/1.1
Host: css.rbxcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: nY7cmF45V29V/sqJOkjTsehE+dHNXwRB8+QuRCfptRxQlgEJD+SEZRZ0avvl6hUBwqHy/JecEZU=
x-amz-request-id: 0978B5815060A034
last-modified: Wed, 26 Feb 2020 20:40:13 GMT
etag: "2d9424ee6bd3935b39fbf23b45eb1cc2"
x-amz-version-id: RhAqaWHMIyPDy5WXIRdWOGSDrEkIeAx8
accept-ranges: bytes
content-type: text/css
server: AmazonS3
unused62: 8096267
vary: Accept-Encoding
content-encoding: gzip
cache-control: public, max-age=26857201
date: Tue, 06 Sep 2022 12:34:31 GMT
content-length: 803
rbx-cdn-provider: ak
access-control-expose-headers: Rbx-Cdn-Provider,Akamai-Request-BC
access-control-allow-origin: *
X-Firefox-Spdy: h2
dgu9g3a2kzqx2.cloudfront.net/public/external/css_front.css
143.204.42.146200 OK 6.6 kB URL HTTP/2 dgu9g3a2kzqx2.cloudfront.net/public/external/css_front.css
IP 143.204.42.146:0
File type ASCII text, with CRLF line terminators
Hash 2649f9832b1ede1bca6b60a16e50a676
c96e86a59be0ab5f2a1c86558205193597822742
a7bd79b6fba60944ee3a9c153108ff0819d2db57850116ac7065a86db08af4ec
GET /public/external/css_front.css HTTP/1.1
Host: dgu9g3a2kzqx2.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
content-length: 6596
date: Tue, 06 Sep 2022 12:34:31 GMT
server: Apache/2.4.51 () OpenSSL/1.0.2k-fips PHP/7.4.11
last-modified: Tue, 23 Jun 2020 20:06:47 GMT
etag: "19c4-5a8c5e62e9d0a"
accept-ranges: bytes
x-cache: Miss from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ocbOXuqbxWj4ZKLdzxPaxHInlxQX5ToHi6ZInWHVtMlVO1a0bq7LQw==
X-Firefox-Spdy: h2
js.rbxcdn.com/d44520f7da5ec476cfb1704d91bab327.js
205.185.216.10200 OK 30 kB URL HTTP/2 js.rbxcdn.com/d44520f7da5ec476cfb1704d91bab327.js
IP 205.185.216.10:0
File type Unicode text, UTF-8 text, with very long lines (32009), with CRLF line terminators
Hash e6070ece0004b10989633e646587724a
f8eb56d4899192a5a3b74f0323b951e8df6883d3
3e53304c5e2c25018d292fb64ec68a5fd1885a54b9f06ec02f0c5344ba0d5042
GET /d44520f7da5ec476cfb1704d91bab327.js HTTP/1.1
Host: js.rbxcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 12:34:31 GMT
content-encoding: gzip
content-length: 30393
content-type: application/javascript
last-modified: Tue, 11 Jun 2019 18:24:51 GMT
accept-ranges: bytes
etag: "d44520f7da5ec476cfb1704d91bab327"
cache-control: public, max-age=31536000
x-hw: 1662467671.dop221.sk1.t,1662467671.cds249.sk1.hn,1662467671.cds223.sk1.c
access-control-expose-headers: Rbx-Cdn-Provider
rbx-cdn-provider: hw
access-control-allow-origin: *
access-control-allow-methods: GET
X-Firefox-Spdy: h2
css.rbxcdn.com/55b250e8473888792f885d898973a13692fb22157baf61aaffa62ce4545f3408.css
184.31.15.32200 OK 742 B URL HTTP/2 css.rbxcdn.com/55b250e8473888792f885d898973a13692fb22157baf61aaffa62ce4545f3408.css
IP 184.31.15.32:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (3312), with no line terminators
Hash be732578b514f12b6cf36b6b4f84cbcd
074b380e242aa60750c4f16b7cb433762b93b676
80e37d6dbc84c281570c360a45be238d8dbd3183815d910090c9e363ca4fc452
GET /55b250e8473888792f885d898973a13692fb22157baf61aaffa62ce4545f3408.css HTTP/1.1
Host: css.rbxcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: kV1cpPewY5WdOyGkmlQfzqX17W/q7SgU/3ib8HcUxBVMw1zEQVCLQXryqZYemXJQ8mESBQcLONA=
x-amz-request-id: AT57Y0JY2HZXV70T
last-modified: Thu, 29 Aug 2019 02:34:22 GMT
etag: "177a2166b8f2c4550c177c9600a2a4c3"
x-amz-version-id: EonStlTqfxBcV5yOU49PEYnBaHFEKBGW
accept-ranges: bytes
content-type: text/css
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: public, max-age=25722038
date: Tue, 06 Sep 2022 12:34:31 GMT
content-length: 742
rbx-cdn-provider: ak
access-control-expose-headers: Rbx-Cdn-Provider,Akamai-Request-BC
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bcbb9bf29f1e0acaa7ac6d6566381370
dec1bea642dffbc11ebd6d65c94f87d6db95703a
b2bf22379151923244cbb9bd62499ded7b6f313a7db77914383bc1e704dd65de
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 12:34:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dgu9g3a2kzqx2.cloudfront.net/public/guid?cpguid=gvobmg26n&e=ll&t=1641256994400
143.204.42.146200 OK 0 B URL HTTP/2 dgu9g3a2kzqx2.cloudfront.net/public/guid?cpguid=gvobmg26n&e=ll&t=1641256994400
IP 143.204.42.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /public/guid?cpguid=gvobmg26n&e=ll&t=1641256994400 HTTP/1.1
Host: dgu9g3a2kzqx2.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 0
date: Tue, 06 Sep 2022 12:34:31 GMT
server: Apache/2.4.51 () OpenSSL/1.0.2k-fips PHP/7.4.11
x-powered-by: PHP/7.4.11
x-cache: Miss from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: XGgyygTXBtNxMPoIpmUpBfNKMt1KzLeIfv1DBBIaOFpK7ISXBMxWAQ==
X-Firefox-Spdy: h2
js.rbxcdn.com/db5218c3fbccfaa300942c9c11f581d29079dcf3d27e2b69c410f10ba3aff8d4.js
205.185.216.10200 OK 1.1 kB URL HTTP/2 js.rbxcdn.com/db5218c3fbccfaa300942c9c11f581d29079dcf3d27e2b69c410f10ba3aff8d4.js
IP 205.185.216.10:0
File type ASCII text, with very long lines (2227), with CRLF, LF line terminators
Hash 146af23fb8f9b84bda30175ca1327da5
560987e6b1c3856942f6c863bf98ed656d60e238
f279af96cae255c83250cfc3e571c4f00cbd1d695be974286fe923aa397442df
GET /db5218c3fbccfaa300942c9c11f581d29079dcf3d27e2b69c410f10ba3aff8d4.js HTTP/1.1
Host: js.rbxcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 12:34:31 GMT
content-encoding: gzip
content-length: 1110
content-type: application/javascript
last-modified: Wed, 06 May 2020 00:29:49 GMT
accept-ranges: bytes
etag: "2e8f029b98affe1f842ae4aafdcc33a9"
cache-control: public, max-age=31536000
x-hw: 1662467671.dop221.sk1.t,1662467671.cds249.sk1.hn,1662467671.cds250.sk1.c
access-control-expose-headers: Rbx-Cdn-Provider
rbx-cdn-provider: hw
access-control-allow-origin: *
access-control-allow-methods: GET
X-Firefox-Spdy: h2
css.rbxcdn.com/8d58c6cc2c654dbcb6b880e41955f95de3bd6a68315348c536e54f3a7e7ab6eb.css
184.31.15.32200 OK 6.8 kB URL HTTP/2 css.rbxcdn.com/8d58c6cc2c654dbcb6b880e41955f95de3bd6a68315348c536e54f3a7e7ab6eb.css
IP 184.31.15.32:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (36964)
Hash eb0dc81e958e9d7c9a070b16f4dc813e
a2d87a1285ae395dc9568fa345d3dfe4651b277e
da00e2885d03b53463327350c29e2c9d2d72f63d6edf105fc145f39c8eb94dfa
GET /8d58c6cc2c654dbcb6b880e41955f95de3bd6a68315348c536e54f3a7e7ab6eb.css HTTP/1.1
Host: css.rbxcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Pq062sbxHLRTpFq2C7W6izrRhI518t/24hNTWvd7HvCN/jZJAfjOlEZQVVuJgEIv3f78FELYMOQ=
x-amz-request-id: 80MNHSCQKW97MAK0
last-modified: Fri, 04 Oct 2019 07:19:05 GMT
etag: "eb4c66dcfcbbd0ed6ff056e9d0e7a88c"
x-amz-version-id: IlqwtZoz0.JmI9XWvc4GNjguiOyCV.ru
accept-ranges: bytes
content-type: text/css
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: public, max-age=30785034
date: Tue, 06 Sep 2022 12:34:31 GMT
content-length: 6814
rbx-cdn-provider: ak
access-control-expose-headers: Rbx-Cdn-Provider,Akamai-Request-BC
access-control-allow-origin: *
X-Firefox-Spdy: h2
dgu9g3a2kzqx2.cloudfront.net/public/clockers/PrimeApps/css.css
143.204.42.146200 OK 1.0 kB URL HTTP/2 dgu9g3a2kzqx2.cloudfront.net/public/clockers/PrimeApps/css.css
IP 143.204.42.146:0
File type ASCII text, with CRLF line terminators
Hash 683a185465436634825046815ac5a2d2
dd9a216245afb09ebc5098aa44374ee8ef51d3dd
a7081a117335212b9e7f2e348f7369a64423d51db1666310b3451e7375f0b7de
GET /public/clockers/PrimeApps/css.css HTTP/1.1
Host: dgu9g3a2kzqx2.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 1010
date: Tue, 06 Sep 2022 12:34:31 GMT
server: Apache/2.4.46 () OpenSSL/1.0.2k-fips PHP/7.4.11
last-modified: Fri, 10 Apr 2020 22:29:00 GMT
etag: "3f2-5a2f7428ae907"
accept-ranges: bytes
x-cache: Miss from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: YeDmEZLlYFGygHMqkP_Eohn37QH8GKKmrniHa5Ag315Iaov6j19gLA==
X-Firefox-Spdy: h2
d13nu0oomnx5ti.cloudfront.net/5d0742c.js
54.230.245.92200 OK 23 kB URL HTTP/2 d13nu0oomnx5ti.cloudfront.net/5d0742c.js
IP 54.230.245.92:0
File type C source, ASCII text, with very long lines (1637), with CRLF line terminators
Hash f35b39586568ca1063fc72edc92467c3
fffc5e112da84616def5a9ee558debd7743a8437
f0f2a573c8865ae8576b67d2a40ab1077a9e068c038447391d28db9ea98af931
Analyzer Verdict Alert fortinet Malware
GET /5d0742c.js HTTP/1.1
Host: d13nu0oomnx5ti.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 23439
last-modified: Sat, 06 Aug 2022 10:17:17 GMT
server: AmazonS3
date: Tue, 06 Sep 2022 04:59:42 GMT
etag: "f35b39586568ca1063fc72edc92467c3"
x-cache: Error from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: MlZvKtKhm1NyFtd8DA_hIszl4668l--OFFCf1BAXlfs844iLa-mv4w==
age: 29696
X-Firefox-Spdy: h2
dgu9g3a2kzqx2.cloudfront.net/public/external/check.php?it=884333&time=1641257028706
143.204.42.146200 OK 78 B URL HTTP/2 dgu9g3a2kzqx2.cloudfront.net/public/external/check.php?it=884333&time=1641257028706
IP 143.204.42.146:0
Hash 37ebc78db9bc22d4c972c5961163070c
865e3671f7e86b52d2f7b006b95ec7799a187572
9ef4a63fc5e0a14a7301d693d65d6acfc44cdf14853c4a20890198f2d5e52e3b
GET /public/external/check.php?it=884333&time=1641257028706 HTTP/1.1
Host: dgu9g3a2kzqx2.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 78
date: Tue, 06 Sep 2022 12:34:31 GMT
server: Apache/2.4.48 () OpenSSL/1.0.2k-fips PHP/7.4.11
x-powered-by: PHP/7.4.11
x-cache: Miss from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: KJQfnZxXeX0RRCbXshrK7547raDL9aFzBnknsRpJrntTqDe6VBvLOA==
X-Firefox-Spdy: h2
js.rbxcdn.com/938431571ac213ef2c1933845edcb0b044e7bdf95340cf45f8ab84580aeb1e12.js
205.185.216.10200 OK 4.3 kB URL HTTP/2 js.rbxcdn.com/938431571ac213ef2c1933845edcb0b044e7bdf95340cf45f8ab84580aeb1e12.js
IP 205.185.216.10:0
File type ASCII text, with very long lines (11728), with CRLF, LF line terminators
Hash 2935f0cd889b95bfa838f3c154c9b38a
cd888c97918f4481c6bf99159d6a0ce7c72acceb
3e90baddb16e239fab9b574c7129b76575e21f191013a2a891f7579d8d3a4de9
GET /938431571ac213ef2c1933845edcb0b044e7bdf95340cf45f8ab84580aeb1e12.js HTTP/1.1
Host: js.rbxcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 12:34:31 GMT
content-encoding: gzip
content-length: 4278
content-type: application/javascript
last-modified: Thu, 05 Dec 2019 01:57:15 GMT
accept-ranges: bytes
cache-control: public, max-age=31536000
etag: "ffedcf4d4a8c362284468def331d9713"
x-hw: 1662467671.dop221.sk1.t,1662467671.cds249.sk1.hn,1662467671.cds222.sk1.sr,1662467671.dop079.dc2.t,1662467671.cds164.dc2.c,1662467671.cds222.sk1.pr
access-control-expose-headers: Rbx-Cdn-Provider
rbx-cdn-provider: hw
access-control-allow-origin: *
access-control-allow-methods: GET
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 8b3fc7b78a1c498440023dbb6004e984
688d8686e183a4e84577e0f70550350622796e2e
ac1f7b3d1c5bfc1888f50aa3a8e0498c11f7cce672e6de5c048bf31d4d3370c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 12:34:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 6425ca79a6b35c174b398487116a75cb
9aea4145116e0be668e3edb52b503e1c6b2e5975
45493b683399f944354cfa69b27a63f9620142175a9efb71fb2282f13d47fd84
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 12:34:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.rbxcdn.com/css/page___80400f5d6146e08bcf1e66a17ee0554e_m.css/fetch
184.31.15.130200 OK 1.8 kB URL HTTP/2 static.rbxcdn.com/css/page___80400f5d6146e08bcf1e66a17ee0554e_m.css/fetch
IP 184.31.15.130:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (12506), with CRLF line terminators
Hash b9d8df6fc6ee89ad60cd89d3893dc945
ce4e8e7f81436e73eeb1b9476960048fad408e89
3115376094f8da2a19cb925a7ddbd3275e79e039d8a4cfa967b13b4c8a0baf61
GET /css/page___80400f5d6146e08bcf1e66a17ee0554e_m.css/fetch HTTP/1.1
Host: static.rbxcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
content-encoding: gzip
last-modified: Sun, 01 Jan 2006 06:00:00 GMT
strict-transport-security: max-age=31536000
content-security-policy: report-uri https://metrics.roblox.com/v1/csp/report?type=enforce; upgrade-insecure-requests; script-src 'self' 'unsafe-inline' *.evidon.com *.gigya.com *.google-analytics.com *.ns1p.net adservice.google.com cdn.arkoselabs.com connect.facebook.net funcaptcha.com js.rbxcdn.com long.open.weixin.qq.com midas.gtimg.cn radar.cedexis.com res.wx.qq.com roblox-api.arkoselabs.com roblox-load-generator-configuration.s3.us-east-2.amazonaws.com s.ytimg.com sb.scorecardresearch.com static.rbxcdn.com www.google.com www.gstatic.com www.youtube.com h.online-metrix.net request.eprotect.vantivcnp.com request.eprotect.vantivpostlive.com *.googletagmanager.com *.googleadservices.com googleads.g.doubleclick.net cdn.veriff.me *.lightstep.com ; img-src 'self' data: *.cloudfront.net *.google-analytics.com *.kaptcha.com *.rbxcdn.com *.roblox.com *.robloxlabs.com googleads.g.doubleclick.net i.ytimg.com www.googletagmanager.com
cross-origin-opener-policy: same-origin-allow-popups
x-frame-options: SAMEORIGIN
p3p: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
content-length: 1751
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://ncs.roblox.com/upload"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1}
cache-control: public, must-revalidate, max-age=31536000
expires: Wed, 06 Sep 2023 12:34:31 GMT
date: Tue, 06 Sep 2022 12:34:31 GMT
vary: Accept-Encoding
rbx-cdn-provider: ak
access-control-expose-headers: Rbx-Cdn-Provider
access-control-allow-origin: *
X-Firefox-Spdy: h2
css.rbxcdn.com/38e00f7de6f417aa3a458560a15e2b8a-GothamSSm-Light.woff2
184.31.15.32200 OK 43 kB URL HTTP/2 css.rbxcdn.com/38e00f7de6f417aa3a458560a15e2b8a-GothamSSm-Light.woff2
IP 184.31.15.32:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), TrueType, length 42964, version 1.19726\012- data
Hash 38e00f7de6f417aa3a458560a15e2b8a
b451a3a2ab0b04170804d6cf823c6465f33f6f44
cafe3fe334035fb21ebef6484cfbe1efa85c46f02113c57f8047c875fb9928c5
GET /38e00f7de6f417aa3a458560a15e2b8a-GothamSSm-Light.woff2 HTTP/1.1
Host: css.rbxcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://robuxgratuito.goyoop.com
Connection: keep-alive
Referer: https://css.rbxcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: TFk+5oKR3tCWuwPkaG1VhPo4sZfrLAXutMG457S17yI6JaTVnsbTYLnFF9zCP0fTDuQFVJzkxfY=
x-amz-request-id: EC234026F0942DEA
last-modified: Fri, 07 Feb 2020 16:12:09 GMT
etag: "38e00f7de6f417aa3a458560a15e2b8a"
x-amz-version-id: x.faB3n4zz8gmssvtzZNidda0P6qZzdp
accept-ranges: bytes
content-type: font/woff2
content-length: 42964
server: AmazonS3
unused62: 8096267
cache-control: public, max-age=16408326
date: Tue, 06 Sep 2022 12:34:31 GMT
rbx-cdn-provider: ak
access-control-expose-headers: Rbx-Cdn-Provider,Akamai-Request-BC
access-control-allow-origin: *
X-Firefox-Spdy: h2
css.rbxcdn.com/6eafc48312528e2515d622428b6b95cc-GothamSSm-Book.woff2
184.31.15.32200 OK 44 kB URL HTTP/2 css.rbxcdn.com/6eafc48312528e2515d622428b6b95cc-GothamSSm-Book.woff2
IP 184.31.15.32:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), TrueType, length 43612, version 1.19726\012- data
Hash 6eafc48312528e2515d622428b6b95cc
8c21c748004366757a93c587668ab55cb6a4bdf0
dee6942321440ad24c989d45fd96bf0c0c11e63e04357af2128118eb75eb887b
GET /6eafc48312528e2515d622428b6b95cc-GothamSSm-Book.woff2 HTTP/1.1
Host: css.rbxcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://robuxgratuito.goyoop.com
Connection: keep-alive
Referer: https://css.rbxcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: iS+HvEf0KXtQgZBd4td4+aOPITB6FgxuyeMIc92+D0GWGz2+CZjokb7KDzdWA/alhd3WbQ/L3QI=
x-amz-request-id: E705F51482F58251
last-modified: Fri, 07 Feb 2020 16:12:10 GMT
etag: "6eafc48312528e2515d622428b6b95cc"
x-amz-version-id: GOxM9ZMupyRaz7HJaEvW636_0TzsWSwf
accept-ranges: bytes
content-type: font/woff2
content-length: 43612
server: AmazonS3
unused62: 8096267
cache-control: public, max-age=7207833
date: Tue, 06 Sep 2022 12:34:31 GMT
rbx-cdn-provider: ak
access-control-expose-headers: Rbx-Cdn-Provider,Akamai-Request-BC
access-control-allow-origin: *
X-Firefox-Spdy: h2
css.rbxcdn.com/0acd8ff34f3a5c177d02e9011ee74eb3-GothamSSm-Black.woff2
184.31.15.32200 OK 44 kB URL HTTP/2 css.rbxcdn.com/0acd8ff34f3a5c177d02e9011ee74eb3-GothamSSm-Black.woff2
IP 184.31.15.32:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), TrueType, length 44408, version 1.19726\012- data
Hash 0acd8ff34f3a5c177d02e9011ee74eb3
7985774d3676c27586c71bbf28b1f53598951a05
ecc55e4682a2b83956e183e86dc4d475e91bf192ea71faab52a8ed8cde83a3a3
GET /0acd8ff34f3a5c177d02e9011ee74eb3-GothamSSm-Black.woff2 HTTP/1.1
Host: css.rbxcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://robuxgratuito.goyoop.com
Connection: keep-alive
Referer: https://css.rbxcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: ShpgwotzBVDTEKrio0uLjHIvboGpoP0i2ZX0CuITPxGyatmUlNEHHQh/gTMDzPgpS3xJOC1Amxc=
x-amz-request-id: DA4D6B550DC34FDD
last-modified: Fri, 07 Feb 2020 16:12:08 GMT
etag: "0acd8ff34f3a5c177d02e9011ee74eb3"
x-amz-version-id: dtXTNIC3Hf6Ocu3lsnp3JHQ7KfxLosVd
accept-ranges: bytes
content-type: font/woff2
content-length: 44408
server: AmazonS3
unused62: 8096267
cache-control: public, max-age=16462661
date: Tue, 06 Sep 2022 12:34:31 GMT
rbx-cdn-provider: ak
access-control-expose-headers: Rbx-Cdn-Provider,Akamai-Request-BC
access-control-allow-origin: *
X-Firefox-Spdy: h2
css.rbxcdn.com/3c102ace52ea35b16da4383819acfa38-GothamSSm-Bold.woff2
184.31.15.32200 OK 44 kB URL HTTP/2 css.rbxcdn.com/3c102ace52ea35b16da4383819acfa38-GothamSSm-Bold.woff2
IP 184.31.15.32:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), TrueType, length 43756, version 1.19726\012- data
Hash 3c102ace52ea35b16da4383819acfa38
91a9953eeaf4ed11a424ea57bd3c2dfaa686c948
eb447eecadbf640fa5e062754192cd7c2b60b4d37c621320ca3eb7ab25b0c3ca
GET /3c102ace52ea35b16da4383819acfa38-GothamSSm-Bold.woff2 HTTP/1.1
Host: css.rbxcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://robuxgratuito.goyoop.com
Connection: keep-alive
Referer: https://css.rbxcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 61EET5B6sasjXTPtF8zqIuZFqsSWPKu4ZIDTCap77G5mDZlqPkDY5X/K5eUHIr8KOXa1T9WJq8M=
x-amz-request-id: 9B57E147D164861A
last-modified: Fri, 07 Feb 2020 16:12:10 GMT
etag: "3c102ace52ea35b16da4383819acfa38"
x-amz-version-id: XBMiglLKvk.F_R9FXxeV9VjsaDprWHJ0
accept-ranges: bytes
content-type: font/woff2
content-length: 43756
server: AmazonS3
unused62: 8096267
cache-control: public, max-age=29572949
date: Tue, 06 Sep 2022 12:34:31 GMT
rbx-cdn-provider: ak
access-control-expose-headers: Rbx-Cdn-Provider,Akamai-Request-BC
access-control-allow-origin: *
X-Firefox-Spdy: h2
css.rbxcdn.com/66d562e3299ee732a53db150038c026e-GothamSSm-Medium.woff2
184.31.15.32200 OK 44 kB URL HTTP/2 css.rbxcdn.com/66d562e3299ee732a53db150038c026e-GothamSSm-Medium.woff2
IP 184.31.15.32:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), TrueType, length 44264, version 1.19726\012- data
Hash 66d562e3299ee732a53db150038c026e
f514a9e346cd443d196c1bc401f078a9fa147323
252d971616775193836fe6c0c057edc13c511ed2bdbdb61fbe3c4567a3a8e530
GET /66d562e3299ee732a53db150038c026e-GothamSSm-Medium.woff2 HTTP/1.1
Host: css.rbxcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://robuxgratuito.goyoop.com
Connection: keep-alive
Referer: https://css.rbxcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: zh/bfpMQQn1Ebc58GNaWMqGEQPJwguqR07nV6YpxfMuAIyLReLme+6y3Ki69DjmzcDdFA5VecC8=
x-amz-request-id: 828386683BA7F675
last-modified: Fri, 07 Feb 2020 16:12:10 GMT
etag: "66d562e3299ee732a53db150038c026e"
x-amz-version-id: ztm1GRobVghqnFfLQU6bx4suno1xui5W
accept-ranges: bytes
content-type: font/woff2
content-length: 44264
server: AmazonS3
unused62: 8096267
cache-control: public, max-age=16438043
date: Tue, 06 Sep 2022 12:34:31 GMT
rbx-cdn-provider: ak
access-control-expose-headers: Rbx-Cdn-Provider,Akamai-Request-BC
access-control-allow-origin: *
X-Firefox-Spdy: h2
tr.rbxcdn.com/78409bba70e934f7d6549e44f7de9e2a/150/150/AvatarHeadshot/Png
23.36.76.193200 OK 31 kB URL HTTP/2 tr.rbxcdn.com/78409bba70e934f7d6549e44f7de9e2a/150/150/AvatarHeadshot/Png
IP 23.36.76.193:0
ASN #20940 Akamai International B.V.
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 8cfc17d30cdf673bfafca58771eee26d
b9e13cbeec0e3f1f73542da01d57fd357ec1972f
003c4c141d834afa978cc4cf7e74dc035683243e5a8cf2ab1b1165401c7ed865
GET /78409bba70e934f7d6549e44f7de9e2a/150/150/AvatarHeadshot/Png HTTP/1.1
Host: tr.rbxcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
pragma: no-cache
content-length: 30620
content-type: image/Png
x-frame-options: SAMEORIGIN
roblox-machine-id: CHI1-WEB2581
p3p: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://ncs.roblox.com/upload"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.0001,"failure_fraction":1}
cache-control: max-age=31536000
expires: Wed, 06 Sep 2023 12:34:31 GMT
date: Tue, 06 Sep 2022 12:34:31 GMT
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
tr.rbxcdn.com/9041e913381166626a534ba33e5f3bbf/150/150/AvatarHeadshot/Png
23.36.76.193200 OK 16 kB URL HTTP/2 tr.rbxcdn.com/9041e913381166626a534ba33e5f3bbf/150/150/AvatarHeadshot/Png
IP 23.36.76.193:0
ASN #20940 Akamai International B.V.
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 0a372a186a4651aa16e04d953955d567
c8bef7a5d068dd87da9f1e9ed0a0c4ebc29aba44
471c19589117d58307ac4ce7e755b907aa2bfa0be39fdf4b8c5ca0b78449609a
GET /9041e913381166626a534ba33e5f3bbf/150/150/AvatarHeadshot/Png HTTP/1.1
Host: tr.rbxcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
pragma: no-cache
content-length: 16247
content-type: image/Png
x-frame-options: SAMEORIGIN
roblox-machine-id: CHI1-WEB2581
p3p: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://ncs.roblox.com/upload"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.0001,"failure_fraction":1}
cache-control: max-age=31536000
expires: Wed, 06 Sep 2023 12:34:31 GMT
date: Tue, 06 Sep 2022 12:34:31 GMT
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
tr.rbxcdn.com/00b80194e06e1d4b53251ba5914f45d9/150/150/AvatarHeadshot/Png
23.36.76.193200 OK 20 kB URL HTTP/2 tr.rbxcdn.com/00b80194e06e1d4b53251ba5914f45d9/150/150/AvatarHeadshot/Png
IP 23.36.76.193:0
ASN #20940 Akamai International B.V.
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash cea77e64537dbf6b8071d442267796ae
c924c1bfa8dd0e3ed0453ff098f0e2a3e2619720
7c85ba115a32245a06891529d2682877274b8e3ba7728b718bfe973269b66b45
GET /00b80194e06e1d4b53251ba5914f45d9/150/150/AvatarHeadshot/Png HTTP/1.1
Host: tr.rbxcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
pragma: no-cache
content-length: 20316
content-type: image/Png
x-frame-options: SAMEORIGIN
roblox-machine-id: CHI1-WEB4403
p3p: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://ncs.roblox.com/upload"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.0001,"failure_fraction":1}
cache-control: max-age=31536000
expires: Wed, 06 Sep 2023 12:34:31 GMT
date: Tue, 06 Sep 2022 12:34:31 GMT
access-control-allow-methods: GET
access-control-allow-origin: *
X-Firefox-Spdy: h2
images.rbxcdn.com/0825a5ee0156a0c2a2becccd5d563a01-friendsstatus.svg
184.31.15.67200 OK 2.4 kB URL HTTP/2 images.rbxcdn.com/0825a5ee0156a0c2a2becccd5d563a01-friendsstatus.svg
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 0825a5ee0156a0c2a2becccd5d563a01
9efbfbe36b8203ca9f5ffaa398629ef204812ab4
50bbe065c21f9b4d93292ad88589ebfa3868cb7f4793d7ed5801f05af044bc37
GET /0825a5ee0156a0c2a2becccd5d563a01-friendsstatus.svg HTTP/1.1
Host: images.rbxcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://css.rbxcdn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: FeubC2WnJKbhmJMmsU1H3CWrBov9iuKgu4hGuq8TfcIWWPv6JavcGY+OGTZ+KayaRYjR8sJF0Ss=
x-amz-request-id: C97CF684520A5AB0
last-modified: Fri, 15 Mar 2019 20:24:35 GMT
etag: "0825a5ee0156a0c2a2becccd5d563a01"
x-amz-version-id: JH9k1NJlH.W8otYYKJT06guUBmLEVDdl
accept-ranges: bytes
content-type: image/svg+xml
content-length: 2445
server: AmazonS3
unused62: 8096267
cache-control: public, max-age=26026753
date: Tue, 06 Sep 2022 12:34:31 GMT
X-Firefox-Spdy: h2
images.rbxcdn.com/c37a5314ba360c995451518527cf293c-generic_light.svg
184.31.15.67200 OK 58 kB URL HTTP/2 images.rbxcdn.com/c37a5314ba360c995451518527cf293c-generic_light.svg
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash c37a5314ba360c995451518527cf293c
22d1c9ce7d909b3ff70f6ec0c8bcbf999015ba11
65beb8051538d1938ec9af6e82affd097e681aca80afcc3893fc7d1081fa23b3
GET /c37a5314ba360c995451518527cf293c-generic_light.svg HTTP/1.1
Host: images.rbxcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://css.rbxcdn.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: gHWCSu9xsvDVnYsROtFEunJTXpJ/HEMV2MBd4csJ746Ji/7O7srNPMQxBNHoDjgjKINoxWLsYRs=
x-amz-request-id: B072546B4E019796
last-modified: Fri, 19 Jul 2019 17:53:57 GMT
etag: "c37a5314ba360c995451518527cf293c"
x-amz-version-id: t80WY3vfFZbzVmxJcBjTCIlAQGf7aXCZ
accept-ranges: bytes
content-type: image/svg+xml
content-length: 58392
server: AmazonS3
unused62: 8096267
cache-control: public, max-age=26026525
date: Tue, 06 Sep 2022 12:34:31 GMT
X-Firefox-Spdy: h2
images.rbxcdn.com/e0288afab1fcc7fba487b28a6f2bb606-premium_header_bg.png
184.31.15.67200 OK 277 kB URL HTTP/2 images.rbxcdn.com/e0288afab1fcc7fba487b28a6f2bb606-premium_header_bg.png
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type PNG image data, 1024 x 236, 8-bit/color RGBA, non-interlaced\012- data
Size 277 kB (276919 bytes)
Hash e0288afab1fcc7fba487b28a6f2bb606
08166690bd5290c008992dccb878f0d714e008ed
a996e4198461711d3641d40ccc48ab582ad184648843e49c69ccf1c76feddbae
GET /e0288afab1fcc7fba487b28a6f2bb606-premium_header_bg.png HTTP/1.1
Host: images.rbxcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: /WTNWDnPi6yecnOG6JGzD6Kq4LroJVOi5v9et1nnzIb0A9l330+taRtfk4KfuH1rBOrUvz8HzTo=
x-amz-request-id: 937FB03BF54D5145
last-modified: Tue, 11 Feb 2020 19:19:07 GMT
etag: "e0288afab1fcc7fba487b28a6f2bb606"
x-amz-version-id: _XJix0YCi5f619it964LeqqPG5V9JfjQ
accept-ranges: bytes
content-type: image/png
content-length: 276919
server: AmazonS3
unused62: 8096267
cache-control: public, max-age=26026590
date: Tue, 06 Sep 2022 12:34:31 GMT
X-Firefox-Spdy: h2
economy.roblox.com/v1/groups/4028385/currency
128.116.119.3403 Forbidden 104 B URL HTTP/2 economy.roblox.com/v1/groups/4028385/currency
IP 128.116.119.3:0
ASN #22697 ROBLOX-PRODUCTION
File type JSON data\012- , ASCII text, with no line terminators
Hash 92fc0d9dac6fd3d79b8ee946ae26e5cc
1465d2baf39b260cf172462e0dafdef4082700af
9f6d2c43ef12a9d352c39c8ae7f8d7357c5ea0d501042f8aa968d0eea4ba33e7
GET /v1/groups/4028385/currency HTTP/1.1
Host: economy.roblox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://robuxgratuito.goyoop.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
cache-control: no-cache
pragma: no-cache
content-length: 104
content-type: application/json
expires: -1
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=3600
roblox-machine-id: CHI1-WEB9363
p3p: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
date: Tue, 06 Sep 2022 12:34:31 GMT
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://ncs.roblox.com/upload"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1}
X-Firefox-Spdy: h2
d35kbxc0t24sp8.cloudfront.net/public/external/css_front.css
54.230.245.37200 OK 6.6 kB URL HTTP/2 d35kbxc0t24sp8.cloudfront.net/public/external/css_front.css
IP 54.230.245.37:0
File type ASCII text, with CRLF line terminators
Hash 2649f9832b1ede1bca6b60a16e50a676
c96e86a59be0ab5f2a1c86558205193597822742
a7bd79b6fba60944ee3a9c153108ff0819d2db57850116ac7065a86db08af4ec
GET /public/external/css_front.css HTTP/1.1
Host: d35kbxc0t24sp8.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
content-length: 6596
date: Tue, 06 Sep 2022 12:34:31 GMT
server: Apache/2.4.51 () OpenSSL/1.0.2k-fips PHP/7.4.11
last-modified: Tue, 23 Jun 2020 20:06:47 GMT
etag: "19c4-5a8c5e62e9d0a"
accept-ranges: bytes
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3rvjZ3IWbi0CLWei2AIS7MzXgeq5iZH-WW73OoM_op0fj-WWWP3QMA==
X-Firefox-Spdy: h2
d35kbxc0t24sp8.cloudfront.net/public/clockers/PrimeApps/css.css
54.230.245.37200 OK 1.0 kB URL HTTP/2 d35kbxc0t24sp8.cloudfront.net/public/clockers/PrimeApps/css.css
IP 54.230.245.37:0
File type ASCII text, with CRLF line terminators
Hash 683a185465436634825046815ac5a2d2
dd9a216245afb09ebc5098aa44374ee8ef51d3dd
a7081a117335212b9e7f2e348f7369a64423d51db1666310b3451e7375f0b7de
GET /public/clockers/PrimeApps/css.css HTTP/1.1
Host: d35kbxc0t24sp8.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
content-length: 1010
date: Tue, 06 Sep 2022 12:34:31 GMT
server: Apache/2.4.51 () OpenSSL/1.0.2k-fips PHP/7.4.11
last-modified: Fri, 10 Apr 2020 22:29:00 GMT
etag: "3f2-5a2f7428ae907"
accept-ranges: bytes
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZYFuBVcJRRhPJo7EO3Kam0vzUfmYdQAI4lW43rPKB6BU1WljaWda1g==
X-Firefox-Spdy: h2
metrics.roblox.com/v1/thumbnails/metadata
128.116.119.3200 OK 55 B URL HTTP/2 metrics.roblox.com/v1/thumbnails/metadata
IP 128.116.119.3:0
ASN #22697 ROBLOX-PRODUCTION
File type JSON data\012- , ASCII text, with no line terminators
Hash ecd43e0e65991e49cb0fc43f662b2e56
e194769a8011505725d5b1ff5193e80f847a9c9a
e621639ed4aeaeb040fc996ed3a6343f788a25eae323c21a61beb8d4e5311879
GET /v1/thumbnails/metadata HTTP/1.1
Host: metrics.roblox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://robuxgratuito.goyoop.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache
pragma: no-cache
content-type: application/json; charset=utf-8
content-encoding: gzip
expires: -1
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=3600
roblox-machine-id: CHI1-WEB7361
p3p: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
date: Tue, 06 Sep 2022 12:34:32 GMT
content-length: 55
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://ncs.roblox.com/upload"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1}
X-Firefox-Spdy: h2
images.rbxcdn.com/23421382939a9f4ae8bbe60dbe2a3e7e.ico.gzip
184.31.15.67200 OK 999 B URL HTTP/2 images.rbxcdn.com/23421382939a9f4ae8bbe60dbe2a3e7e.ico.gzip
IP 184.31.15.67:0
ASN #20940 Akamai International B.V.
File type MS Windows icon resource - 1 icon, 48x48, 32 bits/pixel\012- data
Hash 23421382939a9f4ae8bbe60dbe2a3e7e
064f44bcfc3f411606243d23cfbe640711a82a2d
0deade0f9602f06283078c8041962a1d3dd09db32a43b8670e29084fdfcb76c8
GET /23421382939a9f4ae8bbe60dbe2a3e7e.ico.gzip HTTP/1.1
Host: images.rbxcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 2krAJ1CX9m6W3JP78Z/0+8+u6lDXhOvkRgR/7Dg4bAMCaelwXlVqDiz/gHAp31zdTHYeDKVXLiQ=
x-amz-request-id: 881BFB05258A3502
last-modified: Fri, 08 Feb 2019 22:09:15 GMT
etag: "23421382939a9f4ae8bbe60dbe2a3e7e"
content-encoding: gzip
x-amz-version-id: m9qK7ikpcOfjpHy1tdv7b_fYRAr9X7v5
accept-ranges: bytes
content-type: image/x-icon
content-length: 999
server: AmazonS3
unused62: 8096267
cache-control: public, max-age=26030173
date: Tue, 06 Sep 2022 12:34:32 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d28bb5d0be8857daed831d3703e096f9
c2bc9861883cbb5c71a62477337d2c256fbe94cf
b394a9566cbf406ee14c36b12a18934a36260cb894a777183e068c716d6ec8ac
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 12:34:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
z.moatads.com/addthismoatframe568911941483/moatframe.js
23.38.201.146200 OK 948 B URL HTTP/2 z.moatads.com/addthismoatframe568911941483/moatframe.js
IP 23.38.201.146:0
File type ASCII text, with very long lines (523)
Hash f14b4e1f799b14f798a195f43cf58376
b6fd3b3d407fb4c0a00fb8a31862235e2a6e0a86
92ed3e9fda5fa4d738ff4d9023846b56633617363dda6a750cacb4fba53241ac
GET /addthismoatframe568911941483/moatframe.js HTTP/1.1
Host: z.moatads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: e0HboiVQpjIDEK8WTxqU5+8G8wOtu9bNCFY72alTHLP0/Yb+qoiTOxu6fad89ebRofzHxENxOOg=
x-amz-request-id: 61EC92F13BB22DD4
last-modified: Fri, 08 Nov 2019 20:13:52 GMT
etag: "f14b4e1f799b14f798a195f43cf58376"
content-encoding: gzip
accept-ranges: bytes
content-type: application/x-javascript
content-length: 948
server: AmazonS3
vary: Accept-Encoding
cache-control: max-age=40037
date: Tue, 06 Sep 2022 12:34:32 GMT
X-Firefox-Spdy: h2
ssl.google-analytics.com/ga.js
142.250.74.168200 OK 17 kB URL HTTP/2 ssl.google-analytics.com/ga.js
IP 142.250.74.168:0
File type ASCII text, with very long lines (1305)
Hash 01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /ga.js HTTP/1.1
Host: ssl.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 17168
date: Tue, 06 Sep 2022 12:17:11 GMT
expires: Tue, 06 Sep 2022 14:17:11 GMT
cache-control: public, max-age=7200
age: 1041
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 3df811ac19fde08f49ef246c29cef161
e1c8d54b357adaf32e80427028cc884fa35959e0
e2749178e0bf0c4045a96388a58029ddd92d13a866021737864cd68e11317292
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 12:34:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e1336388cf579034dbc18680696da587
6d633baf8cf123d56a6da8bba402659ad4cb7c08
7d44c52a9037bd2cf2069acccacc49bf38f4c392fd92a6d4f1bfd4623cdcc49e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 12:34:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html
23.38.200.123200 OK 26 kB URL HTTP/2 s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html
IP 23.38.200.123:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (63757)
Hash 707317ccaabe08d32d1bd781754e6871
bb82dcd3e044c960e0861c2ce878f5504e628f78
d0a164ece41c61aec26517fb645646f5ba91f72ea5448eff1ee6c393b7c53051
GET /static/sh.f48a1a04fe8dbf021b4cda1d.html HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: text/html
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-11adc"
timing-allow-origin: *
cache-control: public, max-age=86313600
p3p: CP="NON ADM OUR DEV IND COM STA"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 26421
date: Tue, 06 Sep 2022 12:34:32 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
www.googleadservices.com/pagead/conversion_async.js
142.250.74.130200 OK 16 kB URL HTTP/2 www.googleadservices.com/pagead/conversion_async.js
IP 142.250.74.130:0
File type ASCII text, with very long lines (1623)
Hash 829e282923aa2cb30b0c1e31e2e01b16
a3ada4758442e99c7f64bb1dbbab7a5912bdba54
e82c9c9caf6d1eedfa809c7ef3440c39a0c56c141cdba84481eb26c67baf87f6
GET /pagead/conversion_async.js HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Tue, 06 Sep 2022 12:34:32 GMT
expires: Tue, 06 Sep 2022 12:34:32 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 13194339052015637803
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 15690
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 3df811ac19fde08f49ef246c29cef161
e1c8d54b357adaf32e80427028cc884fa35959e0
e2749178e0bf0c4045a96388a58029ddd92d13a866021737864cd68e11317292
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 12:34:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sb.scorecardresearch.com/b?c1=2&c2=6035605&c3=&c4=&c15=&cs_it=b3&cv=3.8.0.210223&ns__t=1662467666832&ns_c=UTF-8&c7=https%3A%2F%2Frobuxgratuito.goyoop.com%2F&c8=Roblox%20Guadagna%20R%24%20velocemente&c9=
143.204.55.25204 No Content 0 B URL HTTP/2 sb.scorecardresearch.com/b?c1=2&c2=6035605&c3=&c4=&c15=&cs_it=b3&cv=3.8.0.210223&ns__t=1662467666832&ns_c=UTF-8&c7=https%3A%2F%2Frobuxgratuito.goyoop.com%2F&c8=Roblox%20Guadagna%20R%24%20velocemente&c9=
IP 143.204.55.25:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b?c1=2&c2=6035605&c3=&c4=&c15=&cs_it=b3&cv=3.8.0.210223&ns__t=1662467666832&ns_c=UTF-8&c7=https%3A%2F%2Frobuxgratuito.goyoop.com%2F&c8=Roblox%20Guadagna%20R%24%20velocemente&c9= HTTP/1.1
Host: sb.scorecardresearch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Tue, 06 Sep 2022 12:34:32 GMT
set-cookie: UID=17B4f819fd5fa837ea5bf371662467672; domain=.scorecardresearch.com; path=/; max-age=62208000
x-cache: Miss from cloudfront
via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 4F-1PVThfa8J7qmhBF3joK1nEZ4yY_FFJ6nmLHP_ODFEd0ZxpCcb8A==
X-Firefox-Spdy: h2
www.google.com/pagead/conversion_async.js
142.250.74.164200 OK 16 kB URL HTTP/2 www.google.com/pagead/conversion_async.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (1623)
Hash 4738d969770682feba80f04bf171d65b
be0e0ceb91bf5ed0c64b0f3f2cc2c99c6d4cd6b7
1daca97cf9e8078299f94c50346e45fead45bf908ca97ded912f26986c1c4e9a
GET /pagead/conversion_async.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Tue, 06 Sep 2022 12:34:32 GMT
expires: Tue, 06 Sep 2022 12:34:32 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 15579141248118922429
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 15687
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/1065449093/?random=1641256994566&cv=9&fst=1641254400000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1050&u_aw=1920&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=5&u_nmime=2>m=2oac10&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Frobux.is%2F&tiba=Roblox%20Admin%20R%24%20Group&async=1&fmt=3&is_vtc=1&random=1118364941&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/1065449093/?random=1641256994566&cv=9&fst=1641254400000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1050&u_aw=1920&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=5&u_nmime=2>m=2oac10&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Frobux.is%2F&tiba=Roblox%20Admin%20R%24%20Group&async=1&fmt=3&is_vtc=1&random=1118364941&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/1065449093/?random=1641256994566&cv=9&fst=1641254400000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1050&u_aw=1920&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=5&u_nmime=2>m=2oac10&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Frobux.is%2F&tiba=Roblox%20Admin%20R%24%20Group&async=1&fmt=3&is_vtc=1&random=1118364941&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 06 Sep 2022 12:34:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/1065449093/?random=1641256994566&cv=9&fst=1641254400000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1050&u_aw=1920&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=5&u_nmime=2>m=2oac10&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Frobux.is%2F&tiba=Roblox%20Admin%20R%24%20Group&async=1&fmt=3&is_vtc=1&random=1118364941&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/1065449093/?random=1641256994566&cv=9&fst=1641254400000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1050&u_aw=1920&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=5&u_nmime=2>m=2oac10&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Frobux.is%2F&tiba=Roblox%20Admin%20R%24%20Group&async=1&fmt=3&is_vtc=1&random=1118364941&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/1065449093/?random=1641256994566&cv=9&fst=1641254400000&num=1&bg=ffffff&guid=ON&u_h=1080&u_w=1920&u_ah=1050&u_aw=1920&u_cd=24&u_his=2&u_tz=0&u_java=false&u_nplug=5&u_nmime=2>m=2oac10&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Frobux.is%2F&tiba=Roblox%20Admin%20R%24%20Group&async=1&fmt=3&is_vtc=1&random=1118364941&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 06 Sep 2022 12:34:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 2daf90ca7ff3170c8ff9c94a049c8428
e98f05039236ff1602325ce7f5fbbcdc847eb474
1fc019e794628a930a136b133e637cc0b2ddb560a969159e5029ea396535f297
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 12:34:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e1336388cf579034dbc18680696da587
6d633baf8cf123d56a6da8bba402659ad4cb7c08
7d44c52a9037bd2cf2069acccacc49bf38f4c392fd92a6d4f1bfd4623cdcc49e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 12:34:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 80f29cbbe260408ee1418a6fbce5a537
96cfe52bcf90cfdba5cba7907d49a91f44adc032
de264b42b7c59bdadf606387adaca04af680705a947096d048f288c3e5be8517
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 12:34:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
js.rbxcdn.com/8d28bd28c1eb78b98b3edfa661ff8dd4.js
205.185.216.10200 OK 1.0 kB URL HTTP/2 js.rbxcdn.com/8d28bd28c1eb78b98b3edfa661ff8dd4.js
IP 205.185.216.10:0
File type ASCII text, with very long lines (2292), with no line terminators
Hash 03b7618183bf30b59698de6a9e7b5b03
ab7d4b76de27a8ff266bfbd21589729334a6493c
2a2e5688796edc3ad5ad1cce8f841e5e7382b439c158154c7bce7ec21b86804f
GET /8d28bd28c1eb78b98b3edfa661ff8dd4.js HTTP/1.1
Host: js.rbxcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 12:34:31 GMT
content-encoding: gzip
content-length: 4020
content-type: application/javascript
last-modified: Thu, 16 Apr 2020 23:43:48 GMT
accept-ranges: bytes
etag: "8d28bd28c1eb78b98b3edfa661ff8dd4"
cache-control: public, max-age=31536000
x-hw: 1662467671.dop221.sk1.t,1662467671.cds249.sk1.hn,1662467671.cds252.sk1.c
access-control-expose-headers: Rbx-Cdn-Provider
rbx-cdn-provider: hw
access-control-allow-origin: *
access-control-allow-methods: GET
X-Firefox-Spdy: h2
m.addthis.com/live/red_lojson/300lo.json?si=63173e52053fc3b9&bkl=0&bl=1&pdt=874&sid=63173e52053fc3b9&pub=ra-6210adac27346248&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=www.roblox.com&fp=reference%2Fstyleguide&fr=&of=0&pd=0&irt=0&vcl=0&md=2&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&mk=free%20games%2Conline%20games%2Cbuilding%20games%2Cvirtual%20worlds%2Cfree%20mmo%2Cgaming%20cloud%2Cphysics%20engine&colc=1662467666791&jsl=33&uvs=63173e52d9a0f0ae000&skipb=1&callback=addthis.cbs.jsonp__48297803892301140
23.38.200.123200 OK 89 B URL HTTP/2 m.addthis.com/live/red_lojson/300lo.json?si=63173e52053fc3b9&bkl=0&bl=1&pdt=874&sid=63173e52053fc3b9&pub=ra-6210adac27346248&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=www.roblox.com&fp=reference%2Fstyleguide&fr=&of=0&pd=0&irt=0&vcl=0&md=2&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&mk=free%20games%2Conline%20games%2Cbuilding%20games%2Cvirtual%20worlds%2Cfree%20mmo%2Cgaming%20cloud%2Cphysics%20engine&colc=1662467666791&jsl=33&uvs=63173e52d9a0f0ae000&skipb=1&callback=addthis.cbs.jsonp__48297803892301140
IP 23.38.200.123:0
File type ASCII text, with no line terminators
Hash 1c4eed193dea8aea4af2dd6e70f65c13
874b78c3f5cc00d207a58f9cd6625b4ae27bd475
380d9a76afbebfd27632ebdd9645b5a8dc15f458f9177c798911eb882cad71eb
GET /live/red_lojson/300lo.json?si=63173e52053fc3b9&bkl=0&bl=1&pdt=874&sid=63173e52053fc3b9&pub=ra-6210adac27346248&rev=v8.28.8-wp&ln=en&pc=men&cb=0&ab=-&dp=www.roblox.com&fp=reference%2Fstyleguide&fr=&of=0&pd=0&irt=0&vcl=0&md=2&ct=1&tct=0&abt=0&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&mk=free%20games%2Conline%20games%2Cbuilding%20games%2Cvirtual%20worlds%2Cfree%20mmo%2Cgaming%20cloud%2Cphysics%20engine&colc=1662467666791&jsl=33&uvs=63173e52d9a0f0ae000&skipb=1&callback=addthis.cbs.jsonp__48297803892301140 HTTP/1.1
Host: m.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 89
cache-control: max-age=0, no-cache, no-store, no-transform
pragma: no-cache
content-disposition: attachment; filename=1.txt
date: Tue, 06 Sep 2022 12:34:32 GMT
X-Firefox-Spdy: h2
v1.addthisedge.com/live/boost/ra-6210adac27346248/_ate.track.config_resp
23.38.200.123200 OK 722 B URL HTTP/2 v1.addthisedge.com/live/boost/ra-6210adac27346248/_ate.track.config_resp
IP 23.38.200.123:0
File type ASCII text, with very long lines (1433), with no line terminators
Hash fd602f488c349a0e49fe0f5b205e1d9c
78b579b0eb20be3b200fffd7442c8c7bddca815f
07534bbf31447f9287fc03178bd3cef1a398ce5e855ea93c178446c91a2897ba
GET /live/boost/ra-6210adac27346248/_ate.track.config_resp HTTP/1.1
Host: v1.addthisedge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 722
etag: 1775535741--gzip
content-disposition: attachment; filename=1.txt
content-encoding: gzip
cache-control: public, max-age=60, s-maxage=86400
date: Tue, 06 Sep 2022 12:34:32 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
s7.addthis.com/static/custom-messages.5799ddf75a30812a3d49.js
23.38.200.123200 OK 29 kB URL HTTP/2 s7.addthis.com/static/custom-messages.5799ddf75a30812a3d49.js
IP 23.38.200.123:0
File type Unicode text, UTF-8 text, with very long lines (60526)
Hash f4a430f112d94f56cbeddcde217f69b6
01c1580d462c4977c7194746540f813e6b5675ce
f8999cbfee6629cf5f2f77d325a508f30a1adc6f1ab7506c462bf467930f36da
GET /static/custom-messages.5799ddf75a30812a3d49.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/javascript
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-1c9fc"
timing-allow-origin: *
cache-control: public, max-age=86313600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 28570
date: Tue, 06 Sep 2022 12:34:32 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4537
Expires: Tue, 06 Sep 2022 13:50:09 GMT
Date: Tue, 06 Sep 2022 12:34:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4537
Expires: Tue, 06 Sep 2022 13:50:09 GMT
Date: Tue, 06 Sep 2022 12:34:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4537
Expires: Tue, 06 Sep 2022 13:50:09 GMT
Date: Tue, 06 Sep 2022 12:34:32 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ad09c5e-a115-4ff7-9742-809e93046365.jpeg
34.120.237.76200 OK 4.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ad09c5e-a115-4ff7-9742-809e93046365.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c81f3df885bdee8cac46ea9495e6b63b
fc766bca874a352a4acb569577d4cf6527f4f074
e21473f88c613ca33ba6bbe1e0cab338274a06744cdcb088f14873c972445b36
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ad09c5e-a115-4ff7-9742-809e93046365.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4426
x-amzn-requestid: b5b68557-e46d-41cd-9b11-d996aabc0de7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzfYTHHFIAMFjFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631145ce-1d3504367cf6ef724a345564;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 23:52:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: GSRJIWisH465dPqbKyPj1iZk1jAu3RGrgwj1CX3X8A397zv9Nt0cHA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 08:35:06 GMT
age: 14366
etag: "fc766bca874a352a4acb569577d4cf6527f4f074"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106059e1-95ed-4ffb-b6d2-7b4f160333ed.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106059e1-95ed-4ffb-b6d2-7b4f160333ed.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ec466c0d472e43c11d36bf6fce068205
720d3624a76d060b8e2699e9aa7a320e3efd4878
5553fc24713aae808f5ab81671551b0ae719435f3ced9f25df97d8edf6bfe86f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106059e1-95ed-4ffb-b6d2-7b4f160333ed.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12683
x-amzn-requestid: 6127e5b6-72f6-40df-b400-41a1f147f6da
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xz8XmEe0IAMFQDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63117430-2b27a2683d2d320172cef32e;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 03:10:40 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Mj_IT5g7hGu2AunKK7mvierv5BQ8cAxhnbGaUNsL6hRNu6MRAzIBDw==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 04:31:02 GMT
age: 29010
etag: "720d3624a76d060b8e2699e9aa7a320e3efd4878"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1756524-f0d1-4149-aa44-603b827f87d4.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1756524-f0d1-4149-aa44-603b827f87d4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 983e705542fa78b4d5c876e0c1eada7e
5fc951e5236edd282d4975853ca35dab2e55fb17
fa6e478fc213f6cb6c9f33c96c51105262c857bfe313b3d310755be30b1feeb3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1756524-f0d1-4149-aa44-603b827f87d4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6656
x-amzn-requestid: 2703eaf4-1a5a-41a6-859b-47255865efb0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAX-3F2ZIAMFpLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166d2b-6df026de5a9230ed429d08c1;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: FIIvB2jeQ_PBDzi8XRN0jnNxze3OwDbz8TBaIcadRvmQd2EFhCwX7Q==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:44:33 GMT
age: 53399
etag: "5fc951e5236edd282d4975853ca35dab2e55fb17"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F326e03cd-e1aa-45a4-8a6b-bdd21f21012c.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F326e03cd-e1aa-45a4-8a6b-bdd21f21012c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c4b2d6a516e93799b54fe2bbd6630f86
b5a7380f294876dd308c7fde294f36a425c1be01
7463878d8967ff31d7ce20d5a4408c23ad59123032a990c21a47df0881edcb86
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F326e03cd-e1aa-45a4-8a6b-bdd21f21012c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5377
x-amzn-requestid: 2adc68e8-1889-4233-8ac4-e2a8d44ccbdd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X_4XzF1FoAMF3AA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63163a98-5918897d7de556f75bbfab34;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 18:06:16 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: DpNb6dBygeDbRbFWIkeXYVddcgxlSVuq4y73JvG315Xp-wkwiDhZyQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 18:06:16 GMT
age: 66496
etag: "b5a7380f294876dd308c7fde294f36a425c1be01"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa58df54c-7833-44ce-9519-a44b50319614.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa58df54c-7833-44ce-9519-a44b50319614.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1a87857b93f99eab3118aae97a1c9d22
3aea6a5aaf5ccda356d7e0941b33a7c2e2b13e80
97ce11c0e0efe83d6568f173f9235160157c52b4ab4299823d508c072f113ddc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa58df54c-7833-44ce-9519-a44b50319614.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5775
x-amzn-requestid: dc0a6d9c-5aec-44a3-be54-69cec17f9de1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAYfxE0noAMFz0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166dfe-6c8ec4b03fc761d81c988132;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:45:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: z3WamVQsZqAoYnfPZ0rgyYXGzs1jsv56D1oF4Wzva-H-T8a-xPU8mg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 22:00:00 GMT
age: 52472
etag: "3aea6a5aaf5ccda356d7e0941b33a7c2e2b13e80"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F228f042c-3a57-45c7-84c2-4aaaa1dd2f07.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F228f042c-3a57-45c7-84c2-4aaaa1dd2f07.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 19b452d6541a6028e7d3f90529477077
1c16eb50bc2490b4ebff6775ef611fdcb282f9f9
f4763a0f464067991c2c484c384df4fe791d7df6e3d6ad15650a954db537249f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F228f042c-3a57-45c7-84c2-4aaaa1dd2f07.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10694
x-amzn-requestid: c3d2f71c-927d-41f6-93ab-bf041374a9f1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAWsgHQOIAMFvSA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166b1c-5d2efd595cdf300972f4fb79;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:33:16 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: eikhT8BkN5e163S6QriQybdyPNTKDTf3BCsHifNwfBJfrWv7LqgL8Q==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 22:06:45 GMT
age: 52067
etag: "1c16eb50bc2490b4ebff6775ef611fdcb282f9f9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
m.addthis.com/live/red_lojson/300vi.png?cad=ecsl%3Dqb2a&positions=qb2a%3DbottomRight&goals=qb2a%3Demail&first=1&rv=0&uvs=63173e52d9a0f0ae&pub=ra-6210adac27346248&dp=robuxgratuito.goyoop.com&rev=v8.28.8-wp
23.38.200.123204 No Content 0 B URL HTTP/2 m.addthis.com/live/red_lojson/300vi.png?cad=ecsl%3Dqb2a&positions=qb2a%3DbottomRight&goals=qb2a%3Demail&first=1&rv=0&uvs=63173e52d9a0f0ae&pub=ra-6210adac27346248&dp=robuxgratuito.goyoop.com&rev=v8.28.8-wp
IP 23.38.200.123:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /live/red_lojson/300vi.png?cad=ecsl%3Dqb2a&positions=qb2a%3DbottomRight&goals=qb2a%3Demail&first=1&rv=0&uvs=63173e52d9a0f0ae&pub=ra-6210adac27346248&dp=robuxgratuito.goyoop.com&rev=v8.28.8-wp HTTP/1.1
Host: m.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
expires: Tue, 06 Sep 2022 12:34:32 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 06 Sep 2022 12:34:32 GMT
X-Firefox-Spdy: h2
d35kbxc0t24sp8.cloudfront.net/public/guid?cpguid=g0wm7kctl&e=ll&t=1662467667149
54.230.245.37200 OK 0 B URL HTTP/2 d35kbxc0t24sp8.cloudfront.net/public/guid?cpguid=g0wm7kctl&e=ll&t=1662467667149
IP 54.230.245.37:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /public/guid?cpguid=g0wm7kctl&e=ll&t=1662467667149 HTTP/1.1
Host: d35kbxc0t24sp8.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 0
date: Tue, 06 Sep 2022 12:34:32 GMT
server: Apache/2.4.41 () OpenSSL/1.0.2k-fips PHP/7.4.11
x-powered-by: PHP/7.4.11
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fneycz9HXkVGDdDuljXNtSEZKW2uJqxX6abuzSjRat-ifBS2XGARlQ==
X-Firefox-Spdy: h2
d35kbxc0t24sp8.cloudfront.net/public/guid?cpguid=g0wm7kctl&e=ll&t=1662467667711
54.230.245.37200 OK 0 B URL HTTP/2 d35kbxc0t24sp8.cloudfront.net/public/guid?cpguid=g0wm7kctl&e=ll&t=1662467667711
IP 54.230.245.37:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /public/guid?cpguid=g0wm7kctl&e=ll&t=1662467667711 HTTP/1.1
Host: d35kbxc0t24sp8.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
content-length: 0
date: Tue, 06 Sep 2022 12:34:33 GMT
server: Apache/2.4.46 () OpenSSL/1.0.2k-fips PHP/7.4.11
x-powered-by: PHP/7.4.11
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cDoB_6LOYN80AfyUYsN2nOZuKQAJE3FJWtRWbDOdNTNUhWS4q1qofw==
X-Firefox-Spdy: h2
ecsv2.roblox.com/www/e.png?evt=pageHeartbeat&ctx=heartbeat1&url=https%3A%2F%2Frobuxgratuito.goyoop.com%2F<=2022-09-06T12%3A34%3A28.198Z
128.116.119.4200 OK 68 B URL HTTP/2 ecsv2.roblox.com/www/e.png?evt=pageHeartbeat&ctx=heartbeat1&url=https%3A%2F%2Frobuxgratuito.goyoop.com%2F<=2022-09-06T12%3A34%3A28.198Z
IP 128.116.119.4:0
ASN #22697 ROBLOX-PRODUCTION
File type PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Hash 2a637d3d825673c0e3462fa4ed9a1c5c
81668d396da22832d75a986407ff10035e0d5899
69539b5b3777cffda28a66d7f2aa9b17c91ee1ec8fd50c00c442af91753a60f7
GET /www/e.png?evt=pageHeartbeat&ctx=heartbeat1&url=https%3A%2F%2Frobuxgratuito.goyoop.com%2F<=2022-09-06T12%3A34%3A28.198Z HTTP/1.1
Host: ecsv2.roblox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 68
content-type: image/png
date: Tue, 06 Sep 2022 12:34:33 GMT
server: envoy
strict-transport-security: max-age=3600
x-envoy-upstream-service-time: 0
report-to: {"group":"network-errors","max_age":604800,"endpoints":[{"url":"https://ncs.roblox.com/upload"}]}
nel: {"report_to":"network-errors","max_age":604800,"success_fraction":0.001,"failure_fraction":1}
X-Firefox-Spdy: h2
d35kbxc0t24sp8.cloudfront.net/public/external/check.php?it=884333&time=1662467668135
54.230.245.37200 OK 78 B URL HTTP/2 d35kbxc0t24sp8.cloudfront.net/public/external/check.php?it=884333&time=1662467668135
IP 54.230.245.37:0
Hash 37ebc78db9bc22d4c972c5961163070c
865e3671f7e86b52d2f7b006b95ec7799a187572
9ef4a63fc5e0a14a7301d693d65d6acfc44cdf14853c4a20890198f2d5e52e3b
GET /public/external/check.php?it=884333&time=1662467668135 HTTP/1.1
Host: d35kbxc0t24sp8.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 78
date: Tue, 06 Sep 2022 12:34:33 GMT
server: Apache/2.4.51 () OpenSSL/1.0.2k-fips PHP/7.4.11
x-powered-by: PHP/7.4.11
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: O3To2QJsb1uHCXBnyFLjHDJjzBVy_PQ86TQm6LG4SZAllBbkEbuLIw==
X-Firefox-Spdy: h2
d35kbxc0t24sp8.cloudfront.net/public/external/check.php?it=2402399&time=1662467669113
54.230.245.37200 OK 78 B URL HTTP/2 d35kbxc0t24sp8.cloudfront.net/public/external/check.php?it=2402399&time=1662467669113
IP 54.230.245.37:0
Hash 37ebc78db9bc22d4c972c5961163070c
865e3671f7e86b52d2f7b006b95ec7799a187572
9ef4a63fc5e0a14a7301d693d65d6acfc44cdf14853c4a20890198f2d5e52e3b
GET /public/external/check.php?it=2402399&time=1662467669113 HTTP/1.1
Host: d35kbxc0t24sp8.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 78
date: Tue, 06 Sep 2022 12:34:34 GMT
server: Apache/2.4.51 () OpenSSL/1.0.2k-fips PHP/7.4.11
x-powered-by: PHP/7.4.11
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: QC5nVZUiNa4x836LyxRnLE7LXC3ZIFJjTbn1hi6v1enaYAlQTi9EsQ==
X-Firefox-Spdy: h2
d35kbxc0t24sp8.cloudfront.net/public/external/check.php?it=2402399&time=1662467668951
54.230.245.37200 OK 78 B URL HTTP/2 d35kbxc0t24sp8.cloudfront.net/public/external/check.php?it=2402399&time=1662467668951
IP 54.230.245.37:0
Hash 37ebc78db9bc22d4c972c5961163070c
865e3671f7e86b52d2f7b006b95ec7799a187572
9ef4a63fc5e0a14a7301d693d65d6acfc44cdf14853c4a20890198f2d5e52e3b
GET /public/external/check.php?it=2402399&time=1662467668951 HTTP/1.1
Host: d35kbxc0t24sp8.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 78
date: Tue, 06 Sep 2022 12:34:34 GMT
server: Apache/2.4.51 () OpenSSL/1.0.2k-fips PHP/7.4.11
x-powered-by: PHP/7.4.11
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lQlRSnwkOzY-1JapHAm6i1KlBVhCRlKL5trcs6ZbAUqA_sCCfV5sUA==
X-Firefox-Spdy: h2
d35kbxc0t24sp8.cloudfront.net/public/external/v2/html.884333.8c9d0.0.js
54.230.245.37200 OK 0 B URL HTTP/2 d35kbxc0t24sp8.cloudfront.net/public/external/v2/html.884333.8c9d0.0.js
IP 54.230.245.37:0
Analyzer Verdict Alert fortinet Phishing
GET /public/external/v2/html.884333.8c9d0.0.js HTTP/1.1
Host: d35kbxc0t24sp8.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 06 Sep 2022 12:34:32 GMT
server: Apache/2.4.51 () OpenSSL/1.0.2k-fips PHP/7.4.11
x-powered-by: PHP/7.4.11
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wl2swcbuaOtc8xEtk1et008hTb8zydGiHgFUBJPFzfN6SviLeP1b1w==
X-Firefox-Spdy: h2
js.rbxcdn.com/799efe9bfd5be7618e023fc94f1b1b84.js
205.185.216.10200 OK 0 B URL HTTP/2 js.rbxcdn.com/799efe9bfd5be7618e023fc94f1b1b84.js
IP 205.185.216.10:0
GET /799efe9bfd5be7618e023fc94f1b1b84.js HTTP/1.1
Host: js.rbxcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 12:34:31 GMT
content-encoding: gzip
content-length: 102315
content-type: application/javascript
last-modified: Thu, 12 Dec 2019 20:46:50 GMT
accept-ranges: bytes
etag: "799efe9bfd5be7618e023fc94f1b1b84"
cache-control: public, max-age=31536000
x-hw: 1662467671.dop221.sk1.t,1662467671.cds249.sk1.hn,1662467671.cds240.sk1.c
access-control-expose-headers: Rbx-Cdn-Provider
rbx-cdn-provider: hw
access-control-allow-origin: *
access-control-allow-methods: GET
X-Firefox-Spdy: h2
js.rbxcdn.com/ae3d621886e736e52c97008e085fa286.js
205.185.216.10200 OK 0 B URL HTTP/2 js.rbxcdn.com/ae3d621886e736e52c97008e085fa286.js
IP 205.185.216.10:0
GET /ae3d621886e736e52c97008e085fa286.js HTTP/1.1
Host: js.rbxcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 12:34:31 GMT
content-encoding: gzip
content-length: 87257
content-type: application/javascript
last-modified: Tue, 26 Nov 2019 00:54:58 GMT
accept-ranges: bytes
etag: "ae3d621886e736e52c97008e085fa286"
cache-control: public, max-age=31536000
x-hw: 1662467671.dop221.sk1.t,1662467671.cds249.sk1.hn,1662467671.cds247.sk1.c
access-control-expose-headers: Rbx-Cdn-Provider
rbx-cdn-provider: hw
access-control-allow-origin: *
access-control-allow-methods: GET
X-Firefox-Spdy: h2
js.rbxcdn.com/a3c4eda0d34c454749990f0587a5ecbaff70a560fabf7e57943b2184436da3ad.js
205.185.216.10200 OK 0 B URL HTTP/2 js.rbxcdn.com/a3c4eda0d34c454749990f0587a5ecbaff70a560fabf7e57943b2184436da3ad.js
IP 205.185.216.10:0
GET /a3c4eda0d34c454749990f0587a5ecbaff70a560fabf7e57943b2184436da3ad.js HTTP/1.1
Host: js.rbxcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 12:34:31 GMT
content-encoding: gzip
content-length: 11551
content-type: application/javascript
last-modified: Thu, 26 Mar 2020 22:44:38 GMT
accept-ranges: bytes
etag: "1224ce9575d500eca44bc25e5ff7db51"
cache-control: public, max-age=31536000
x-hw: 1662467671.dop221.sk1.t,1662467671.cds249.sk1.hn,1662467671.cds065.sk1.c
access-control-expose-headers: Rbx-Cdn-Provider
rbx-cdn-provider: hw
access-control-allow-origin: *
access-control-allow-methods: GET
X-Firefox-Spdy: h2
js.rbxcdn.com/9735308cd1d9b0dde36c61ac00873b6885e5fadb17869c79ca1846ed879910ab.js
205.185.216.10200 OK 0 B URL HTTP/2 js.rbxcdn.com/9735308cd1d9b0dde36c61ac00873b6885e5fadb17869c79ca1846ed879910ab.js
IP 205.185.216.10:0
GET /9735308cd1d9b0dde36c61ac00873b6885e5fadb17869c79ca1846ed879910ab.js HTTP/1.1
Host: js.rbxcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 12:34:31 GMT
content-encoding: gzip
content-length: 16233
content-type: application/javascript
last-modified: Wed, 06 May 2020 00:29:46 GMT
accept-ranges: bytes
etag: "d50326000452cc9404d574318f1ff8da"
cache-control: public, max-age=31536000
x-hw: 1662467671.dop221.sk1.t,1662467671.cds249.sk1.hn,1662467671.cds219.sk1.c
access-control-expose-headers: Rbx-Cdn-Provider
rbx-cdn-provider: hw
access-control-allow-origin: *
access-control-allow-methods: GET
X-Firefox-Spdy: h2
css.rbxcdn.com/39823e832391dcd9b5afa8f061de15365dd5391454e23931fd9acd626e34b019.css
184.31.15.32200 OK 0 B URL HTTP/2 css.rbxcdn.com/39823e832391dcd9b5afa8f061de15365dd5391454e23931fd9acd626e34b019.css
IP 184.31.15.32:0
ASN #20940 Akamai International B.V.
GET /39823e832391dcd9b5afa8f061de15365dd5391454e23931fd9acd626e34b019.css HTTP/1.1
Host: css.rbxcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: hEaRfyzo82Pu1+vag5MeIrwr8sRjrraapoNS0oRW3z1zvqiKirrILz5M6BqWxgCLrXqQNhqWz2nhJUaSJchGUA==
x-amz-request-id: 4E431M1QA73K6V4F
last-modified: Thu, 26 Mar 2020 22:44:38 GMT
etag: "07f947cdf41b9662ca608a7f55c93f0b"
x-amz-version-id: pdL3QzdbijVajfPd27xh9pJeasRf74Zd
accept-ranges: bytes
content-type: text/css
server: AmazonS3
vary: Accept-Encoding
content-encoding: gzip
cache-control: public, max-age=31016953
date: Tue, 06 Sep 2022 12:34:31 GMT
rbx-cdn-provider: ak
access-control-expose-headers: Rbx-Cdn-Provider,Akamai-Request-BC
access-control-allow-origin: *
X-Firefox-Spdy: h2
js.rbxcdn.com/45841f2140bdbf6302237530383db2c6bfd938c7138a085cea83fb5f4c03086c.js
205.185.216.10200 OK 0 B URL HTTP/2 js.rbxcdn.com/45841f2140bdbf6302237530383db2c6bfd938c7138a085cea83fb5f4c03086c.js
IP 205.185.216.10:0
GET /45841f2140bdbf6302237530383db2c6bfd938c7138a085cea83fb5f4c03086c.js HTTP/1.1
Host: js.rbxcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 12:34:31 GMT
content-encoding: gzip
content-length: 55229
content-type: application/javascript
last-modified: Mon, 21 Oct 2019 23:57:19 GMT
accept-ranges: bytes
etag: "0365b56f04e322d31c6e7a0f85ed8716"
cache-control: public, max-age=31536000
x-hw: 1662467671.dop221.sk1.t,1662467671.cds249.sk1.hn,1662467671.cds221.sk1.c
access-control-expose-headers: Rbx-Cdn-Provider
rbx-cdn-provider: hw
access-control-allow-origin: *
access-control-allow-methods: GET
X-Firefox-Spdy: h2
sb.scorecardresearch.com/beacon.js
143.204.55.25200 OK 0 B URL HTTP/2 sb.scorecardresearch.com/beacon.js
IP 143.204.55.25:0
GET /beacon.js HTTP/1.1
Host: sb.scorecardresearch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 28 Jun 2022 13:19:23 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Tue, 06 Sep 2022 03:16:32 GMT
cache-control: max-age=86400
etag: W/"eaf85c1c6758e84acfe134efd70e9373"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: iZ0_DAfy_EuyiMqjpNgKtjH93AYcyKd7jzK2Z2yKs9XlfkzKSJwS4w==
age: 40895
X-Firefox-Spdy: h2
d35kbxc0t24sp8.cloudfront.net/public/external/v2/html.2402399.c91f0.0.js
54.230.245.37200 OK 0 B URL HTTP/2 d35kbxc0t24sp8.cloudfront.net/public/external/v2/html.2402399.c91f0.0.js
IP 54.230.245.37:0
Analyzer Verdict Alert fortinet Phishing
GET /public/external/v2/html.2402399.c91f0.0.js HTTP/1.1
Host: d35kbxc0t24sp8.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 06 Sep 2022 12:34:32 GMT
server: Apache/2.4.51 () OpenSSL/1.0.2k-fips PHP/7.4.11
x-powered-by: PHP/7.4.11
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: c5B2ZGDpxLUI1VeUNsnhiLTX36GHl-noPX4YdDSHXoBKY1K6PKWqOA==
X-Firefox-Spdy: h2