leafwiremedia.com/
35.172.94.1301 0 B IP 35.172.94.1:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: leafwiremedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301
Server: nginx
Date: Wed, 30 Nov 2022 12:34:10 GMT
Content-Length: 0
Connection: keep-alive
d-cache: from-cache
Cache-Control: no-cache, no-store, must-revalidate
Expires: Thu, 01 Jan 1970 00:00:00 GMT
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
Location: https://www.leafwiremedia.com/
D-Geo: US
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash a5daf4dc99951793ae2315d4795e8146
4427507ca4d3a5632cc8f598afbc85e2195d00bd
94fb64c1c826ed7099283c0bedb3cea7ac7e1d9526794cb9fad6e761f5989d32
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2318
Expires: Wed, 30 Nov 2022 13:12:48 GMT
Date: Wed, 30 Nov 2022 12:34:10 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f3cf023c797da81728c0ac84c8759331
fa07c5e39e4b0741ea484101cccb2202acea9d9c
5206a0bac8bf78d6b84322519271a1ece2c1039a0090e583de6d6192d88873d0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3148
Cache-Control: max-age=168576
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 12:34:11 GMT
Etag: "638730f7-1d7"
Expires: Fri, 02 Dec 2022 11:23:47 GMT
Last-Modified: Wed, 30 Nov 2022 10:31:19 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 30 Nov 2022 12:19:41 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 870
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 9fce5679881bf302a8978a0b462f01a9
b699fe030ea13ac73813e655c42ed9b531925e2b
a3ec545a8f9364ac9062eddb41279e1465687a1b60f9c1dec6b3a3df8b033eb3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A3EC545A8F9364AC9062EDDB41279E1465687A1B60F9C1DEC6B3A3DF8B033EB3"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16151
Expires: Wed, 30 Nov 2022 17:03:22 GMT
Date: Wed, 30 Nov 2022 12:34:11 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: IhJy2Cgs5mQh6WMJ2ftLWlOIha3DhUMmgZWT9GX8I+zAwWHnE4yUONtdBUBYdiy4m+vXCoP6/PE=
x-amz-request-id: KYJEGKQTNYJM54WY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 30 Nov 2022 11:45:51 GMT
age: 2900
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:34:11 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 4e5c465fe9c297207611979a8a84b2dd
c8de99d65a4c93debb3e0f438c5f393f085fb042
ffa5c7618bf66aa3f89830b191e2993c72570c0f5b8b0da2dde49dfa492d23ad
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FFA5C7618BF66AA3F89830B191E2993C72570C0F5B8B0DA2DDE49DFA492D23AD"
Last-Modified: Mon, 28 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21575
Expires: Wed, 30 Nov 2022 18:33:46 GMT
Date: Wed, 30 Nov 2022 12:34:11 GMT
Connection: keep-alive
www.leafwiremedia.com/
3.67.141.185200 OK 54 kB IP 3.67.141.185:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (55041)
Hash c4700cbf72e8859e8072ecff038ea92a
565bc927fc0c814435f142852784a7080846f31d
fc99cff8f490ce18b90017b2db3bd4d5e3b8d7db50457aa0c86f9445e4733be3
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.leafwiremedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:34:11 GMT
content-type: text/html;charset=utf-8
content-length: 54134
d-cache: from-cache
content-encoding: gzip
strict-transport-security: max-age=31536000; preload
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-content-type-options: nosniff
vary: user-agent,accept-encoding
d-geo: EU
X-Firefox-Spdy: h2
static.cdn-website.com/libs/jquery/jquery-3.6.0.min.js
143.204.55.115200 OK 28 kB URL HTTP/2 static.cdn-website.com/libs/jquery/jquery-3.6.0.min.js
IP 143.204.55.115:0
File type ASCII text, with very long lines (65447)
Hash e3b056b5f5833ed57baaeb7d1f759d66
aef9ffcd15bb3fd72f0846d557f46c1560cbb622
bdb487a7bf608abf88dc492b5c4d82253539a3e1a885055541391cab973b7748
GET /libs/jquery/jquery-3.6.0.min.js HTTP/1.1
Host: static.cdn-website.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leafwiremedia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
content-length: 27967
date: Thu, 10 Nov 2022 07:48:23 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
x-amz-replication-status: FAILED
last-modified: Sun, 20 Jun 2021 11:54:25 GMT
etag: "8fb8fee4fcc3cc86ff6c724154c49c42"
cache-control: max-age=31536000
x-amz-version-id: DnPaSD2ax.ofdsMomR96m6B51pMZfReJ
accept-ranges: bytes
server: AmazonS3
content-encoding: br
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: lF6_7Z0klPKxrwI3C2a9m9XqB61Z5EcxAHwCQI8c-hCXrcA6hhXAtw==
age: 1745148
X-Firefox-Spdy: h2
static.cdn-website.com/mnlt/production/3015/_dm/s/rt/dist/scripts/d-js-jquery-migrate.min.js
143.204.55.115200 OK 3.8 kB URL HTTP/2 static.cdn-website.com/mnlt/production/3015/_dm/s/rt/dist/scripts/d-js-jquery-migrate.min.js
IP 143.204.55.115:0
File type ASCII text, with very long lines (558)
Hash b13cd3038a1b55c2c2fae0b1638badf9
84d73a86a5dac83eac39566ffa09acb74932a231
85e9d3ece00c1bcdebc06e42ba3e6059b1588325cc3718c26d785bb6d6f427e5
GET /mnlt/production/3015/_dm/s/rt/dist/scripts/d-js-jquery-migrate.min.js HTTP/1.1
Host: static.cdn-website.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leafwiremedia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 3809
date: Thu, 24 Nov 2022 12:50:36 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
x-amz-replication-status: FAILED
last-modified: Thu, 24 Nov 2022 12:28:22 GMT
etag: "3b9b4be11c442558448e1bcb0e914c6c"
cache-control: max-age=31536000
x-amz-version-id: uty.ojSbHZ.j3aeiFO9nMF0olDTVIXv8
accept-ranges: bytes
server: AmazonS3
content-encoding: br
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: PrYUKCeZ6Ar7sJvn-s0GOz-v3kQBjJvShLVCWxIMN2DdK7Iq_szdgQ==
age: 517415
X-Firefox-Spdy: h2
static.cdn-website.com/mnlt/production/3015/_dm/s/rt/dist/css/d-css-runtime-desktop-one-package-new.min.css
143.204.55.115200 OK 25 kB URL HTTP/2 static.cdn-website.com/mnlt/production/3015/_dm/s/rt/dist/css/d-css-runtime-desktop-one-package-new.min.css
IP 143.204.55.115:0
File type ASCII text, with very long lines (35992)
Hash 7dffe0fbb5ea906f2ad094256c53315c
db48b3751a0bfa34dd1e712ad1638eeaf4286817
6c1eb1890e5319e45e18edea0dd717ea8ce305e3cc3828301a6767d04b363e47
GET /mnlt/production/3015/_dm/s/rt/dist/css/d-css-runtime-desktop-one-package-new.min.css HTTP/1.1
Host: static.cdn-website.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leafwiremedia.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
content-length: 25264
date: Thu, 24 Nov 2022 12:50:34 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
x-amz-replication-status: PENDING
last-modified: Thu, 24 Nov 2022 12:28:21 GMT
etag: "3be5aba0c4a986de4b085cf7c44e58b6"
cache-control: max-age=31536000
x-amz-version-id: w0F.P26PXPkDI_LP8GsRC6d_1HSo_ceQ
accept-ranges: bytes
server: AmazonS3
content-encoding: br
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: vkijaP4qut1O5mTPWYkaz_R0b486nCIsHa2LX1FeHKvZ-TDgAtL2cQ==
age: 517417
X-Firefox-Spdy: h2
static.cdn-website.com/mnlt/production/3015/_dm/s/rt/dist/scripts/d-js-one-runtime-unified-desktop.min.js
143.204.55.115200 OK 100 kB URL HTTP/2 static.cdn-website.com/mnlt/production/3015/_dm/s/rt/dist/scripts/d-js-one-runtime-unified-desktop.min.js
IP 143.204.55.115:0
File type ASCII text, with very long lines (1040)
Size 100 kB (100366 bytes)
Hash 3b3d46c49e5a7280696c3542708844ef
32b550fa5bbe65b2c8b1fb5b3e005c2b7fdfd5ad
6be0e9e87c3e3a9e92f2e02506a01059003865e22b11ec53d5f0dbb0c0d06c16
GET /mnlt/production/3015/_dm/s/rt/dist/scripts/d-js-one-runtime-unified-desktop.min.js HTTP/1.1
Host: static.cdn-website.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leafwiremedia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 100366
date: Thu, 24 Nov 2022 12:50:35 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
x-amz-replication-status: FAILED
last-modified: Thu, 24 Nov 2022 12:28:22 GMT
etag: "6022a5f43ee0cdf1f392d3ba3a8b7557"
cache-control: max-age=31536000
x-amz-version-id: qO7U.Mh_Y_0d_TOziIcZqs6XxofpIxGk
accept-ranges: bytes
server: AmazonS3
content-encoding: br
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: LK7sklwQnmZFLXb3VfLTuTbcXlNBBLSLAprkf1PDDkOnM6Qx2C2Gzw==
age: 517415
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 33f732b4dfbd5fb3ed7345eba2896fe6
2652f214cf7127302cc65b1d4e42f48a80907d5d
904ce722469d356f8ec20c14bd51ca3ce459012ea0869f7d14821a963310a494
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 12:34:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 501dab974d3de2e8f0ceefff2de2da25
c82f47639328aaca3b4e64411e5ac9601d5c1111
5c8b30b5d6914390afe3b6af10cb027ce0dfeca6b42a3fa0fcc6c0b7fc69cea3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5C8B30B5D6914390AFE3B6AF10CB027CE0DFECA6B42A3FA0FCC6C0B7FC69CEA3"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2649
Expires: Wed, 30 Nov 2022 13:18:20 GMT
Date: Wed, 30 Nov 2022 12:34:11 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 501dab974d3de2e8f0ceefff2de2da25
c82f47639328aaca3b4e64411e5ac9601d5c1111
5c8b30b5d6914390afe3b6af10cb027ce0dfeca6b42a3fa0fcc6c0b7fc69cea3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5C8B30B5D6914390AFE3B6AF10CB027CE0DFECA6B42A3FA0FCC6C0B7FC69CEA3"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2649
Expires: Wed, 30 Nov 2022 13:18:20 GMT
Date: Wed, 30 Nov 2022 12:34:11 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cfdd00e67ee6ca21712b867eb5288ab6
b61d5d6ec3b7ad71619e13e32c87f2d01871b88a
f740cac6dfedc1bf0f82efb10dac4f6ffb22f9bb5d4a9b68a4cd971dd2f65793
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3131
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 12:34:11 GMT
Last-Modified: Wed, 30 Nov 2022 11:42:00 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 30 Nov 2022 12:11:14 GMT
cache-control: public,max-age=3600
age: 1377
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-199533092-1
142.250.74.40200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-199533092-1
IP 142.250.74.40:0
File type ASCII text, with very long lines (1921)
Hash e46b88393c96b575f2b94cddbec2aaa9
3cb4f2ad3eac0bb9845252f70c16016350caa88b
5b4280767aaf0e0237501746f39acb227d9f2a4005200993f7880b0018aa4019
GET /gtag/js?id=UA-199533092-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leafwiremedia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:34:11 GMT
expires: Wed, 30 Nov 2022 12:34:11 GMT
cache-control: private, max-age=900
last-modified: Wed, 30 Nov 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43582
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-TCM72Z3
142.250.74.40200 OK 38 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-TCM72Z3
IP 142.250.74.40:0
File type ASCII text, with very long lines (1921)
Hash 77deb1884a75185ac0447af95fa58a81
afc5d379f0f044f7e2afdbcc3769e6308f1abdcf
1ff60bf84ca0d308db32c2697999041e08e3b8705793aa9c07397563eff3b937
GET /gtm.js?id=GTM-TCM72Z3 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leafwiremedia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:34:11 GMT
expires: Wed, 30 Nov 2022 12:34:11 GMT
cache-control: private, max-age=900
last-modified: Wed, 30 Nov 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 37724
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 33f732b4dfbd5fb3ed7345eba2896fe6
2652f214cf7127302cc65b1d4e42f48a80907d5d
904ce722469d356f8ec20c14bd51ca3ce459012ea0869f7d14821a963310a494
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 12:34:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lirp.cdn-website.com/a3810b48/dms3rep/multi/opt/lw-logo-white-424w.png
143.204.55.102200 OK 6.5 kB URL HTTP/2 lirp.cdn-website.com/a3810b48/dms3rep/multi/opt/lw-logo-white-424w.png
IP 143.204.55.102:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 08be53c6e017041414b627e77af1eb5e
b9f54406913328802620e241c72bb8457b19dc4b
c64b371df0478fec18b678a45bedb79901f82b54b273721478d71c5f8cdc30ce
GET /a3810b48/dms3rep/multi/opt/lw-logo-white-424w.png HTTP/1.1
Host: lirp.cdn-website.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leafwiremedia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 6538
date: Wed, 30 Nov 2022 12:34:12 GMT
last-modified: Mon, 13 Jun 2022 04:53:57 GMT
x-amz-expiration: expiry-date="Sun, 11 Dec 2022 00:00:00 GMT", rule-id="delete images after 6 months"
etag: "08be53c6e017041414b627e77af1eb5e"
cache-control: public, max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: _0DKoJUk4a89DJUtY4hQd4OffjKHWLIbIZOAOGzDSgLTI26Ffl5pRQ==
X-Firefox-Spdy: h2
lirp.cdn-website.com/a3810b48/dms3rep/multi/opt/b8adb43e8076d81815230183540c864d25a1af5b92e6638cd047ea1733be1b3744d1117a212d7170eb29a59f1eca6ebae6eda083a5150ffe561388f614e138bc-144w.png
143.204.55.102200 OK 3.2 kB URL HTTP/2 lirp.cdn-website.com/a3810b48/dms3rep/multi/opt/b8adb43e8076d81815230183540c864d25a1af5b92e6638cd047ea1733be1b3744d1117a212d7170eb29a59f1eca6ebae6eda083a5150ffe561388f614e138bc-144w.png
IP 143.204.55.102:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 75ab52366c474383c9fb3c3cdfbf9f8b
6c22c9a9ee28feaa061c4632004b1408f8bea9b7
5db4f98cb39025b2885e515f251b8821b111d0a7c74d4af84e89683f0f047808
GET /a3810b48/dms3rep/multi/opt/b8adb43e8076d81815230183540c864d25a1af5b92e6638cd047ea1733be1b3744d1117a212d7170eb29a59f1eca6ebae6eda083a5150ffe561388f614e138bc-144w.png HTTP/1.1
Host: lirp.cdn-website.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leafwiremedia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 3240
date: Wed, 30 Nov 2022 12:34:12 GMT
last-modified: Mon, 13 Jun 2022 04:53:56 GMT
x-amz-expiration: expiry-date="Sun, 11 Dec 2022 00:00:00 GMT", rule-id="delete images after 6 months"
etag: "75ab52366c474383c9fb3c3cdfbf9f8b"
cache-control: public, max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: EwGrXUEHlQbrmcE_hqWTkrH811aBTREjcf1EOWAalSNgwNyVKKA7hA==
X-Firefox-Spdy: h2
lirp.cdn-website.com/a3810b48/dms3rep/multi/opt/5eecfb622376cc7105043ae211d24956f9566dd5764a00b0480b7db43fa94aa4b5c46f0c09c81a207ffe038bbf269d68a4332cd802538405ff3090af4a1b7e61-144w.png
143.204.55.102200 OK 3.9 kB URL HTTP/2 lirp.cdn-website.com/a3810b48/dms3rep/multi/opt/5eecfb622376cc7105043ae211d24956f9566dd5764a00b0480b7db43fa94aa4b5c46f0c09c81a207ffe038bbf269d68a4332cd802538405ff3090af4a1b7e61-144w.png
IP 143.204.55.102:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash ceb69947fb7fb681c8e2171e0f979061
6cac22f379be1c79180f827055bc4559dd6d3656
1338b62428cd7e225d853bc1d4947ccddf23724f70309fce52ab32c296165e1e
GET /a3810b48/dms3rep/multi/opt/5eecfb622376cc7105043ae211d24956f9566dd5764a00b0480b7db43fa94aa4b5c46f0c09c81a207ffe038bbf269d68a4332cd802538405ff3090af4a1b7e61-144w.png HTTP/1.1
Host: lirp.cdn-website.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leafwiremedia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/webp
content-length: 3898
date: Wed, 30 Nov 2022 12:34:12 GMT
last-modified: Mon, 13 Jun 2022 04:53:57 GMT
x-amz-expiration: expiry-date="Sun, 11 Dec 2022 00:00:00 GMT", rule-id="delete images after 6 months"
etag: "ceb69947fb7fb681c8e2171e0f979061"
cache-control: public, max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: vD8N50NG5UNUQQfB9CiA6eZZiyhnZDXZUO2owV9KyUSBa86IHslV1w==
X-Firefox-Spdy: h2
lirp.cdn-website.com/a3810b48/dms3rep/multi/opt/8587fcec21126d1b8bf3eed50cd5644bba046b5b13bd886d5ba59990c5c3a21a88a3488ca22db48b6c3d6f15f0fdd97137b63bea918a1e30b5cd3ecfebec17c6-144w.png
143.204.55.102200 OK 6.5 kB URL HTTP/2 lirp.cdn-website.com/a3810b48/dms3rep/multi/opt/8587fcec21126d1b8bf3eed50cd5644bba046b5b13bd886d5ba59990c5c3a21a88a3488ca22db48b6c3d6f15f0fdd97137b63bea918a1e30b5cd3ecfebec17c6-144w.png
IP 143.204.55.102:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 75886e97ad68d58bf19eb753c8d9c89f
f56e3f1694982fbb76c77d2ea9ea4718ff4c5377
ca09c8d93d9348209fec4d19b9225a83752a42e01a2f33b3dbd603f0f529e085
GET /a3810b48/dms3rep/multi/opt/8587fcec21126d1b8bf3eed50cd5644bba046b5b13bd886d5ba59990c5c3a21a88a3488ca22db48b6c3d6f15f0fdd97137b63bea918a1e30b5cd3ecfebec17c6-144w.png HTTP/1.1
Host: lirp.cdn-website.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leafwiremedia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 6458
date: Wed, 30 Nov 2022 12:34:12 GMT
last-modified: Mon, 13 Jun 2022 04:53:57 GMT
x-amz-expiration: expiry-date="Sun, 11 Dec 2022 00:00:00 GMT", rule-id="delete images after 6 months"
etag: "75886e97ad68d58bf19eb753c8d9c89f"
cache-control: public, max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: J59uYsKTtdt77p-BEuvwsWebl218nC8jSF7fA3kauuNSwgNp4q9siw==
X-Firefox-Spdy: h2
lirp.cdn-website.com/a3810b48/dms3rep/multi/opt/lw-logo-white-232w.png
143.204.55.102200 OK 3.2 kB URL HTTP/2 lirp.cdn-website.com/a3810b48/dms3rep/multi/opt/lw-logo-white-232w.png
IP 143.204.55.102:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 89c3e748899bf81e4de9c26da48927ec
954e76a706e29458af832df1f28ec1988b888bed
60cff77a5251c0c9c7b11ebeb1beb4f20191afb4a9bb44b1f07e7361145dcfdc
GET /a3810b48/dms3rep/multi/opt/lw-logo-white-232w.png HTTP/1.1
Host: lirp.cdn-website.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leafwiremedia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 3178
date: Wed, 30 Nov 2022 12:34:12 GMT
last-modified: Mon, 13 Jun 2022 04:53:57 GMT
x-amz-expiration: expiry-date="Sun, 11 Dec 2022 00:00:00 GMT", rule-id="delete images after 6 months"
etag: "89c3e748899bf81e4de9c26da48927ec"
cache-control: public, max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: BaehFutSRhmKQ9JzOsOqcBeAddG-d3r7TKtyHMINDqrF5UGPslDXjQ==
X-Firefox-Spdy: h2
lirp.cdn-website.com/a3810b48/dms3rep/multi/opt/ea641be1afbe1645fe5157bd681da74188e9565999ee4a484592b39ebf4eb19b8666cff8ebcd04abfb4c2aa5ba174547433bcd4981b301db9309e6ce3f769ac4-144w.png
143.204.55.102200 OK 3.6 kB URL HTTP/2 lirp.cdn-website.com/a3810b48/dms3rep/multi/opt/ea641be1afbe1645fe5157bd681da74188e9565999ee4a484592b39ebf4eb19b8666cff8ebcd04abfb4c2aa5ba174547433bcd4981b301db9309e6ce3f769ac4-144w.png
IP 143.204.55.102:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash e5fb1e606949647c6717b69cc3a97446
f2979deacf3ea87217b025bdd9c4924615d749c8
2921addf62b6af4bbf3b02149e351015b84c76477dd4ceed496da8ffe79dcfc8
GET /a3810b48/dms3rep/multi/opt/ea641be1afbe1645fe5157bd681da74188e9565999ee4a484592b39ebf4eb19b8666cff8ebcd04abfb4c2aa5ba174547433bcd4981b301db9309e6ce3f769ac4-144w.png HTTP/1.1
Host: lirp.cdn-website.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leafwiremedia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/webp
content-length: 3600
date: Wed, 30 Nov 2022 12:34:12 GMT
last-modified: Mon, 13 Jun 2022 04:53:57 GMT
x-amz-expiration: expiry-date="Sun, 11 Dec 2022 00:00:00 GMT", rule-id="delete images after 6 months"
etag: "e5fb1e606949647c6717b69cc3a97446"
cache-control: public, max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: Q6uz61XcZUEEDXQK_K_BpVgEmW8S8LLTNZYexCC2yqcTOairUVCE5g==
X-Firefox-Spdy: h2
lirp.cdn-website.com/a3810b48/dms3rep/multi/opt/3a6b1f03b1065697edf86c15be20155388c5fe936e614d936944cb4b4466dfe889b9098c1f33e129e61829525f9687e6fd6bc162b1de91d9d22c7d7a716699d1-144w.png
143.204.55.102200 OK 4.6 kB URL HTTP/2 lirp.cdn-website.com/a3810b48/dms3rep/multi/opt/3a6b1f03b1065697edf86c15be20155388c5fe936e614d936944cb4b4466dfe889b9098c1f33e129e61829525f9687e6fd6bc162b1de91d9d22c7d7a716699d1-144w.png
IP 143.204.55.102:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 36ad2d9b6852b29e8cad8905d8f59d9d
ccb9eee834baea904420295d3b6a2880fb616fe4
b7fd0af9c64505b9a88a7c1f452fd05b7f888e067440cb67ee686fcf336d2fd5
GET /a3810b48/dms3rep/multi/opt/3a6b1f03b1065697edf86c15be20155388c5fe936e614d936944cb4b4466dfe889b9098c1f33e129e61829525f9687e6fd6bc162b1de91d9d22c7d7a716699d1-144w.png HTTP/1.1
Host: lirp.cdn-website.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leafwiremedia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 4608
date: Wed, 30 Nov 2022 12:34:12 GMT
last-modified: Mon, 13 Jun 2022 18:41:44 GMT
x-amz-expiration: expiry-date="Sun, 11 Dec 2022 00:00:00 GMT", rule-id="delete images after 6 months"
etag: "36ad2d9b6852b29e8cad8905d8f59d9d"
cache-control: public, max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: JIXFUOVkoucMAcLd3ulk_rViVL9wmaUdtTUiMBHovyIwoqQ8qKmNCw==
X-Firefox-Spdy: h2
lirp.cdn-website.com/a3810b48/dms3rep/multi/opt/a0cf3f8d83d1692a6999e9c3ae02607685a9cf1435c25e10cc795a843e37547c0a1bc3eb3899e652a80d6379ab3d436daa8188b296d84e8122a3060a284bc2ea-144w.png
143.204.55.102200 OK 2.6 kB URL HTTP/2 lirp.cdn-website.com/a3810b48/dms3rep/multi/opt/a0cf3f8d83d1692a6999e9c3ae02607685a9cf1435c25e10cc795a843e37547c0a1bc3eb3899e652a80d6379ab3d436daa8188b296d84e8122a3060a284bc2ea-144w.png
IP 143.204.55.102:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 1b427ed0e4e58ba46cea30a44d2f1c14
c1743b43cdb29a5d576d39a9e01a50c7db7edee3
376a9adb9f1bc8a615e76b17521dbb3100fa16aba43b44ae868836f8c64a2034
GET /a3810b48/dms3rep/multi/opt/a0cf3f8d83d1692a6999e9c3ae02607685a9cf1435c25e10cc795a843e37547c0a1bc3eb3899e652a80d6379ab3d436daa8188b296d84e8122a3060a284bc2ea-144w.png HTTP/1.1
Host: lirp.cdn-website.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leafwiremedia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 2586
date: Wed, 30 Nov 2022 12:34:12 GMT
last-modified: Mon, 13 Jun 2022 04:53:57 GMT
x-amz-expiration: expiry-date="Sun, 11 Dec 2022 00:00:00 GMT", rule-id="delete images after 6 months"
etag: "1b427ed0e4e58ba46cea30a44d2f1c14"
cache-control: public, max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: VnOyKlTrD7xd0vka6U57486AZZKHcUgmBGEhRW_V2hE1DBeQqvS1hQ==
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.37.79.227101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.37.79.227:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Ec4KXQ7NILRxqsOUeFZCQw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: +Y3Aq+SLRiHddY734SjyBOjV8O8=
lirp.cdn-website.com/a3810b48/dms3rep/multi/opt/Asset+1-4x-1920w.png
143.204.55.102200 OK 22 kB URL HTTP/2 lirp.cdn-website.com/a3810b48/dms3rep/multi/opt/Asset+1-4x-1920w.png
IP 143.204.55.102:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1920x1097, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ba2c6840d82fadf65e0049290f33cb61
641d9c205bec1de4b470d792e7fb1e2d02817670
d5903120fe6b4870fe5849513a8b3826b0b247579491cb957c710387c450e407
GET /a3810b48/dms3rep/multi/opt/Asset+1-4x-1920w.png HTTP/1.1
Host: lirp.cdn-website.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leafwiremedia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 22532
date: Wed, 30 Nov 2022 12:34:12 GMT
last-modified: Mon, 13 Jun 2022 04:53:58 GMT
x-amz-expiration: expiry-date="Sun, 11 Dec 2022 00:00:00 GMT", rule-id="delete images after 6 months"
etag: "ba2c6840d82fadf65e0049290f33cb61"
cache-control: public, max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: NKDogrNq9yIzf1uF4fAnQCeI0yMv7CiCtiRVHYZ8DFdShRg2-otOmw==
X-Firefox-Spdy: h2
lirp.cdn-website.com/a3810b48/dms3rep/multi/opt/9-2304w.png
143.204.55.102200 OK 52 kB URL HTTP/2 lirp.cdn-website.com/a3810b48/dms3rep/multi/opt/9-2304w.png
IP 143.204.55.102:0
File type PNG image data, 1024 x 768, 8-bit colormap, non-interlaced\012- data
Hash 8a55a09a85c32e388a0ea1bbbee441fe
2cdd2469c73e0c46c597311cbe2313095d6c075d
cf7d356698eec0988b86358944704b00f5e6e95d8a09e73c1a81829a9d30199a
GET /a3810b48/dms3rep/multi/opt/9-2304w.png HTTP/1.1
Host: lirp.cdn-website.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leafwiremedia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 51775
date: Wed, 30 Nov 2022 12:34:12 GMT
last-modified: Wed, 16 Nov 2022 19:41:04 GMT
x-amz-expiration: expiry-date="Tue, 16 May 2023 00:00:00 GMT", rule-id="delete images after 6 months"
etag: "8a55a09a85c32e388a0ea1bbbee441fe"
cache-control: public, max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: RuWczBwTChvLN_gCdqnYRcx2F9vpobzEVB0Yfa3rMu8z_A5U24dwPg==
X-Firefox-Spdy: h2
lirp.cdn-website.com/a3810b48/dms3rep/multi/opt/3-747958d0-2304w.png
143.204.55.102200 OK 20 kB URL HTTP/2 lirp.cdn-website.com/a3810b48/dms3rep/multi/opt/3-747958d0-2304w.png
IP 143.204.55.102:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1022x497, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 77baee8642d37fcc1bfa6748580a1327
7ee42403bf30a38d5f961448dc99c07029edeba8
896cf5da4f0e2ee9363b3b14a0abe4d5f0933020e57045ade5c56f0bd4d2e95c
GET /a3810b48/dms3rep/multi/opt/3-747958d0-2304w.png HTTP/1.1
Host: lirp.cdn-website.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leafwiremedia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 20126
date: Wed, 30 Nov 2022 12:34:13 GMT
last-modified: Wed, 16 Nov 2022 19:41:04 GMT
x-amz-expiration: expiry-date="Tue, 16 May 2023 00:00:00 GMT", rule-id="delete images after 6 months"
etag: "77baee8642d37fcc1bfa6748580a1327"
cache-control: public, max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: y5uNKqoQdruAhEp1WgwMMfS_A2wGvjsVHonxGPvb44PuMAwf30bnfQ==
X-Firefox-Spdy: h2
static-cdn.multiscreensite.com/fonts/fontawesome-webfont.woff?v=6
143.204.55.75200 OK 98 kB URL HTTP/2 static-cdn.multiscreensite.com/fonts/fontawesome-webfont.woff?v=6
IP 143.204.55.75:0
File type Web Open Font Format, TrueType, length 98024, version 4.7\012- data
Hash fee66e712a8a08eef5805a46892932ad
28b782240b3e76db824e12c02754a9731a167527
ba0c59deb5450f5cb41b3f93609ee2d0d995415877ddfa223e8a8a7533474f07
GET /fonts/fontawesome-webfont.woff?v=6 HTTP/1.1
Host: static-cdn.multiscreensite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.leafwiremedia.com
Connection: keep-alive
Referer: https://www.leafwiremedia.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/font-woff
content-length: 98024
date: Thu, 15 Sep 2022 20:58:27 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
x-amz-replication-status: FAILED
last-modified: Wed, 05 Jun 2019 08:06:55 GMT
etag: "fee66e712a8a08eef5805a46892932ad"
cache-control: max-age=31536000
x-amz-version-id: bR46Z9gnVogjFEVmln4nlzTlCUFntZSU
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: uOJld8Cr0ye4WNusdUMGOXXoCWGhwuddpiULD7VxbtsuZt_wOfy-Bw==
age: 6536146
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.46200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.46:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leafwiremedia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Wed, 30 Nov 2022 10:46:55 GMT
expires: Wed, 30 Nov 2022 12:46:55 GMT
cache-control: public, max-age=7200
age: 6437
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
d32hwlnfiv2gyn.cloudfront.net/sp-2.0.0-dm-0.1.min.js
54.230.245.70200 OK 18 kB URL HTTP/2 d32hwlnfiv2gyn.cloudfront.net/sp-2.0.0-dm-0.1.min.js
IP 54.230.245.70:0
Hash c186b2732103f50c3a4535bf7241b416
cbd67e57301614331b5d7223edf03f5a45b8bb25
3417e95204e22024d7bbe11446f10668a9d5617cf54a33fdb4c5201ef8d9f9d9
GET /sp-2.0.0-dm-0.1.min.js HTTP/1.1
Host: d32hwlnfiv2gyn.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leafwiremedia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 09 Nov 2022 01:34:32 GMT
x-amz-replication-status: FAILED
last-modified: Sun, 20 Mar 2022 08:45:42 GMT
etag: W/"81ff203c31c9a3e5c15c5a790eebb460"
cache-control: max-age=6048000
x-amz-version-id: IZwYrapPL5STtMyaSYUvOnEvHgmJogqU
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: yncFAjOuv_4pQ572VoX2XiRMg_7wcyHPljQdBLY6UAzVbEZ6HIEJQg==
age: 1853980
X-Firefox-Spdy: h2
d32hwlnfiv2gyn.cloudfront.net/i?e=pv&page=Leafwire%20Media%20%7C%20Advertising%20Solutions%20for%20Cannabis%20Brands&dtm=1669811651435&tid=724419&vp=1152x836&ds=1140x4783&vid=1&duid=0115e940331d063a&p=web&tv=js-2.0.0&fp=3963981668&aid=a3810b48&lang=en-US&cs=UTF-8&tz=UTC&tna=cf&res=1280x1024&cd=24&cookie=1&url=https%3A%2F%2Fwww.leafwiremedia.com%2F
54.230.245.70200 OK 37 B URL HTTP/2 d32hwlnfiv2gyn.cloudfront.net/i?e=pv&page=Leafwire%20Media%20%7C%20Advertising%20Solutions%20for%20Cannabis%20Brands&dtm=1669811651435&tid=724419&vp=1152x836&ds=1140x4783&vid=1&duid=0115e940331d063a&p=web&tv=js-2.0.0&fp=3963981668&aid=a3810b48&lang=en-US&cs=UTF-8&tz=UTC&tna=cf&res=1280x1024&cd=24&cookie=1&url=https%3A%2F%2Fwww.leafwiremedia.com%2F
IP 54.230.245.70:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
GET /i?e=pv&page=Leafwire%20Media%20%7C%20Advertising%20Solutions%20for%20Cannabis%20Brands&dtm=1669811651435&tid=724419&vp=1152x836&ds=1140x4783&vid=1&duid=0115e940331d063a&p=web&tv=js-2.0.0&fp=3963981668&aid=a3810b48&lang=en-US&cs=UTF-8&tz=UTC&tna=cf&res=1280x1024&cd=24&cookie=1&url=https%3A%2F%2Fwww.leafwiremedia.com%2F HTTP/1.1
Host: d32hwlnfiv2gyn.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leafwiremedia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 37
date: Wed, 30 Nov 2022 12:34:13 GMT
last-modified: Thu, 03 Jul 2014 09:50:57 GMT
etag: "3eacd0132310ea44cad756b378a3bc07"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jFpeDficGKqKG3bDJ4hCTyxus9T6zKc6bdtnp-L-srkhsaJZ7J33qg==
X-Firefox-Spdy: h2
www.leafwiremedia.com/runtime-service-worker.js?v=3
3.67.141.185200 OK 4.6 kB URL HTTP/2 www.leafwiremedia.com/runtime-service-worker.js?v=3
IP 3.67.141.185:0
Hash 1a5ff557334a986dac565ac35f39f99b
284706878a7ecea414354935476efaca81e1572d
b3f1a0fccbbfe43e5b3ca32afb4d8c69247178e4dd400fe5ca3b55578b4c772f
GET /runtime-service-worker.js?v=3 HTTP/1.1
Host: www.leafwiremedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: dm_timezone_offset=0; dm_last_page_view=1669811650671; dm_this_page_view=1669811650671; dm_last_visit=1669811650671; dm_total_visits=1; _sp_id.10a7=0115e940331d063a.1669811651.1.1669811651.1669811651; _sp_ses.10a7=1669813451435; _ga=GA1.2.1952547385.1669811651; _gid=GA1.2.801807230.1669811651; _gat_gtag_UA_199533092_1=1
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:34:13 GMT
content-type: text/javascript
content-length: 4569
d-cache: from-cache
content-encoding: gzip
content-disposition: inline;filename=f.txt
d-geo: EU
X-Firefox-Spdy: h2
irp-cdn.multiscreensite.com/md/dmtmpl/baad28f3-6a28-49e8-9058-6fb1260e9e1c/dms3rep/multi/desktop/logo-header.svg
143.204.55.97200 OK 1.8 kB URL HTTP/2 irp-cdn.multiscreensite.com/md/dmtmpl/baad28f3-6a28-49e8-9058-6fb1260e9e1c/dms3rep/multi/desktop/logo-header.svg
IP 143.204.55.97:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8bcfb3d1f49539c5a69c45ca355c0acc
b435aa14c26781f40e5b5a6654bd79d9595d6681
01ef3ee36b53e636fd1320021523aa1d46e65301aedc67f78685542b3dad049c
GET /md/dmtmpl/baad28f3-6a28-49e8-9058-6fb1260e9e1c/dms3rep/multi/desktop/logo-header.svg HTTP/1.1
Host: irp-cdn.multiscreensite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leafwiremedia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
date: Wed, 30 Nov 2022 12:34:13 GMT
last-modified: Tue, 09 Feb 2021 14:37:28 GMT
etag: W/"0bed02449502bbff951771b2230e3f40"
cache-control: max-age=31536000
x-amz-version-id: ycOsSdQAF4DcekzRXVyo_JRQCprVVUgp
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: B-up1Vlqgqp3xj_Tx-qJqegPkZURaE8zxyVlscq7qEjRi20KPCe_Zg==
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8642
Expires: Wed, 30 Nov 2022 14:58:15 GMT
Date: Wed, 30 Nov 2022 12:34:13 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8642
Expires: Wed, 30 Nov 2022 14:58:15 GMT
Date: Wed, 30 Nov 2022 12:34:13 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8642
Expires: Wed, 30 Nov 2022 14:58:15 GMT
Date: Wed, 30 Nov 2022 12:34:13 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F250668cd-c9db-4014-b576-3aaad4eb9150.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F250668cd-c9db-4014-b576-3aaad4eb9150.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 59baec8db5ced0210ab766ea5636a5fd
f7cf3a0f89751a02fbcf8d21f505f24a74e8b30b
33ff55891f18c22970804f1b8b2ba6821ddfd7426b01486410bd43f2b4295a8d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F250668cd-c9db-4014-b576-3aaad4eb9150.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5785
x-amzn-requestid: ee77265b-8e90-4035-8ef1-92a2d26aaefa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgDaHdWoAMFqmw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a15-0d10d74030e7aee74804b654;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QhUrNKIJUxXTYFTgfCwizAd9L4PdLMVLbqv1sHmmnrWya0xz1MTSiw==
via: 1.1 38eecd3ca21bf068d69a2f9cfe668d14.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 22:08:46 GMT
etag: "f7cf3a0f89751a02fbcf8d21f505f24a74e8b30b"
content-type: image/jpeg
age: 51927
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd170538c-f8cf-4acb-ba33-2ead00b9db73.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd170538c-f8cf-4acb-ba33-2ead00b9db73.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 777ce44582c70bf01a31da4cab366f36
57e1d34f146d5ccd9943aa97bcc3158f7103bb07
fbdc8f65ae74dc13b7aafec464f08fdc9902af519946200ec52432ac3ca55982
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd170538c-f8cf-4acb-ba33-2ead00b9db73.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10958
x-amzn-requestid: abfea5b0-58f5-49e1-b78e-7cf456d03cb3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgFHF9oIAMF5lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a20-5ab719292d440d083b07a478;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: gCt9oHpZ68tLCYHIYpI1XLtADkScxwf12kDFnU0o5WoQIVSzWlqozw==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 22:16:52 GMT
etag: "57e1d34f146d5ccd9943aa97bcc3158f7103bb07"
content-type: image/jpeg
age: 51441
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13e1db4e-7108-464a-85b6-24ac0c4609f9.webp
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13e1db4e-7108-464a-85b6-24ac0c4609f9.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bbe350ea797a0fec5a19a450fc5de4b4
2f3a39a528d3b759060203931de33c12303592e1
4d661dac2e19e07ae15d0f8cf00bd268c6c2defb2f5e4de38fcb6e7031dfd605
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13e1db4e-7108-464a-85b6-24ac0c4609f9.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9330
x-amzn-requestid: 3fad352d-7664-43e0-9395-e840f671ca61
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgFQFIdoAMFSmw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a21-5e9847852f8435231d401fe6;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: mCEtSOenWKxay4vNy5mN9cexxXKXKt7TMuLaLw-M86tLKwQ2MwuxPg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 22:00:54 GMT
age: 52399
etag: "2f3a39a528d3b759060203931de33c12303592e1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb1888-5971-4b4a-923b-dc9d4050182b.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb1888-5971-4b4a-923b-dc9d4050182b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e00769bd1391b8f4f5b8ab128a825355
e4ddf955e8ac1986045ed55880c43c69e588a021
81ca4d20c28fed8fd3135515daadc1fdbfb4198535d7c46021b418b8b98e59a5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb1888-5971-4b4a-923b-dc9d4050182b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7298
x-amzn-requestid: 381e55bb-876b-46ad-84b6-1ddf9f876f56
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgDcE3poAMFaAA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a15-7c12394600900afc7281e858;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8heT2eN5oLbO14R9qLq78Vma_TkteufTyKM5i3K2XoJYXfWNwLMEwQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:56:25 GMT
age: 52668
etag: "e4ddf955e8ac1986045ed55880c43c69e588a021"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2730750-552d-4852-8ce1-503874565f75.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2730750-552d-4852-8ce1-503874565f75.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 05196ec43964cf559caa0c0279148d62
6170d6776615503e3e29f86783febc3e3e78ca66
47f3a5cde661987e3496ce110a0170b10087dd9ba8d4fd691c4830587ba3fa3f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2730750-552d-4852-8ce1-503874565f75.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9051
x-amzn-requestid: 1032dd9c-a15e-4e8a-9c81-07419e8caf67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYhGvEMNIAMFaKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867bc4-1005c20a33320dbf6567ca31;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:38:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: IMaVlQblNnh9mFKwb2LG7hw7h_f1_nVYqO4aEUqY01a2HofnnQqcFQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:49:31 GMT
age: 53082
etag: "6170d6776615503e3e29f86783febc3e3e78ca66"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87a30da8-85ab-41b8-bac9-b9c57f447d6a.webp
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87a30da8-85ab-41b8-bac9-b9c57f447d6a.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 33ee67e62c49fc8d51f18df313002aac
3d8c927b6945d880f92d4e7a686cad5a9985e8ad
ba6e66e07cd93219926927fd2b468a92b8d02cc9bf1da0b3b9a3c48da160bbdc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87a30da8-85ab-41b8-bac9-b9c57f447d6a.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9670
x-amzn-requestid: d9a529ac-9dc6-4e12-80c5-3250dc97e7bb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgDcFiAoAMF0nA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a15-116ddf09265d51523c3638b3;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5BnByLndiK0korBr44MDgK6sgRBPooy2LE_2NjVIQhiTfmAdLupnZw==
via: 1.1 b23fb37cd7fff033ab21e3284f558a28.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:49:34 GMT
age: 53079
etag: "3d8c927b6945d880f92d4e7a686cad5a9985e8ad"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1f4b4a5081bf26d78883f4dd38c4c81a
6139c5deb23ecf4c32904b44f1565bc0703dfc01
cf3665dca408aacb5d0d9d48e8b3102e4220f1d8c9fb1210cec83b8fadb9b0ba
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 12:34:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
storage.googleapis.com/workbox-cdn/releases/3.0.0-beta.0/workbox-sw.js
142.250.74.176200 OK 1.5 kB URL HTTP/2 storage.googleapis.com/workbox-cdn/releases/3.0.0-beta.0/workbox-sw.js
IP 142.250.74.176:0
File type ASCII text, with very long lines (1420)
Hash 5c061d8f7fda59b5a1a13cbad864e585
c4e9eb6328ca26c84392a658f5a2f1c8acace865
4cad7b04adc7c399e5c5afe20bde431706729aadefbd80bb78f5046d3181e73e
GET /workbox-cdn/releases/3.0.0-beta.0/workbox-sw.js HTTP/1.1
Host: storage.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leafwiremedia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-guploader-uploadid: ADPycduY7YjzPcBNKvi6aDpKuXxU-hLt508IOjlATsXVMjuG4SgqBFBTaoB6JCdKViwKyE580kuyjF66ot-JLvxEHBiJ6w
x-goog-generation: 1517526342705547
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 1461
x-goog-hash: crc32c=77cSoA==, md5=XAYdj3/aWbWhoTy62GTlhQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 1461
access-control-allow-origin: *
server: UploadServer
access-control-expose-headers: Content-Length, Content-Type, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
date: Wed, 30 Nov 2022 12:26:46 GMT
expires: Wed, 30 Nov 2022 13:26:46 GMT
cache-control: public, max-age=3600
age: 447
last-modified: Thu, 01 Feb 2018 23:05:42 GMT
etag: "5c061d8f7fda59b5a1a13cbad864e585"
content-type: application/javascript; charset=utf-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1f4b4a5081bf26d78883f4dd38c4c81a
6139c5deb23ecf4c32904b44f1565bc0703dfc01
cf3665dca408aacb5d0d9d48e8b3102e4220f1d8c9fb1210cec83b8fadb9b0ba
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 12:34:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.leafwiremedia.com/?utm_source=homescreen&TIMESTAMP=1669811653948
3.67.141.185200 OK 54 kB URL HTTP/2 www.leafwiremedia.com/?utm_source=homescreen&TIMESTAMP=1669811653948
IP 3.67.141.185:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (55041)
Hash c4700cbf72e8859e8072ecff038ea92a
565bc927fc0c814435f142852784a7080846f31d
fc99cff8f490ce18b90017b2db3bd4d5e3b8d7db50457aa0c86f9445e4733be3
GET /?utm_source=homescreen&TIMESTAMP=1669811653948 HTTP/1.1
Host: www.leafwiremedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.leafwiremedia.com/runtime-service-worker.js?v=3
Connection: keep-alive
Cookie: dm_timezone_offset=0; dm_last_page_view=1669811650671; dm_this_page_view=1669811650671; dm_last_visit=1669811650671; dm_total_visits=1; _sp_id.10a7=0115e940331d063a.1669811651.1.1669811651.1669811651; _sp_ses.10a7=1669813451435; _ga=GA1.2.1952547385.1669811651; _gid=GA1.2.801807230.1669811651; _gat_gtag_UA_199533092_1=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:34:15 GMT
content-type: text/html;charset=utf-8
content-length: 54134
d-cache: from-cache
content-encoding: gzip
strict-transport-security: max-age=31536000; preload
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-content-type-options: nosniff
vary: user-agent,accept-encoding
d-geo: EU
X-Firefox-Spdy: h2
irp.cdn-website.com/a3810b48/files/a3810b48_1.min.css?v=82
143.204.55.97200 OK 0 B URL HTTP/2 irp.cdn-website.com/a3810b48/files/a3810b48_1.min.css?v=82
IP 143.204.55.97:0
GET /a3810b48/files/a3810b48_1.min.css?v=82 HTTP/1.1
Host: irp.cdn-website.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leafwiremedia.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
date: Wed, 30 Nov 2022 12:34:13 GMT
last-modified: Thu, 03 Nov 2022 20:21:25 GMT
etag: W/"53495eb4dc0787203096477352d52311"
cache-control: max-age=31536000
x-amz-version-id: 4Ck0THzSkQqbOpVLUb5BvU5JgU_owrMk
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 3IHWeN6zO8UHoa89ZC6Uc33HErcegMSVvwtR4rg2_fhVXLiHgfy1wQ==
X-Firefox-Spdy: h2
irp.cdn-website.com/a3810b48/files/a3810b48_home_1.min.css?v=82
143.204.55.97200 OK 0 B URL HTTP/2 irp.cdn-website.com/a3810b48/files/a3810b48_home_1.min.css?v=82
IP 143.204.55.97:0
GET /a3810b48/files/a3810b48_home_1.min.css?v=82 HTTP/1.1
Host: irp.cdn-website.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leafwiremedia.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
date: Wed, 30 Nov 2022 12:34:12 GMT
last-modified: Thu, 03 Nov 2022 20:21:23 GMT
etag: W/"6bf375f52c2048a758758afc8c868275"
cache-control: max-age=31536000
x-amz-version-id: jtn8jpGv10fwMwflEJ5s7dCn8GhFK8cG
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 7Rh1pck7ygSsO3s1h79Qgv5eYylhFq813xgtBnxml501NU_WxdDJ4Q==
X-Firefox-Spdy: h2
irp.cdn-website.com/WIDGET_CSS/production_3015/b7335f05cb21992245d201920748f56d.css
143.204.55.97200 OK 0 B URL HTTP/2 irp.cdn-website.com/WIDGET_CSS/production_3015/b7335f05cb21992245d201920748f56d.css
IP 143.204.55.97:0
GET /WIDGET_CSS/production_3015/b7335f05cb21992245d201920748f56d.css HTTP/1.1
Host: irp.cdn-website.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leafwiremedia.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
date: Thu, 24 Nov 2022 12:50:36 GMT
last-modified: Thu, 24 Nov 2022 12:50:33 GMT
etag: W/"b71128d4680de6f44ba28b6dbbfad9b8"
cache-control: max-age=31536000
x-amz-version-id: 3yeCLR3tdQfaMTkO4UnbcrhDKZhuRlBS
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: _RMScOvMlVA2p4haVN556IUJrMAidTsz4qL2gzyetOPtpSqODXbRLQ==
age: 517416
X-Firefox-Spdy: h2
irp.cdn-website.com/fonts/css?family=Roboto:100,200,300,400,500,600,700,800,900,100italic,200italic,300italic,400italic,500italic,600italic,700italic,800italic,900italic|Montserrat:100,200,300,400,500,600,700,800,900,100italic,200italic,300italic,400italic,500italic,600italic,700italic,800italic,900italic|Poppins:100,200,300,400,500,600,700,800,900,100italic,200italic,300italic,400italic,500italic,600italic,700italic,800italic,900italic&subset=latin-ext&display=swap
143.204.55.97200 OK 0 B URL HTTP/2 irp.cdn-website.com/fonts/css?family=Roboto:100,200,300,400,500,600,700,800,900,100italic,200italic,300italic,400italic,500italic,600italic,700italic,800italic,900italic|Montserrat:100,200,300,400,500,600,700,800,900,100italic,200italic,300italic,400italic,500italic,600italic,700italic,800italic,900italic|Poppins:100,200,300,400,500,600,700,800,900,100italic,200italic,300italic,400italic,500italic,600italic,700italic,800italic,900italic&subset=latin-ext&display=swap
IP 143.204.55.97:0
GET /fonts/css?family=Roboto:100,200,300,400,500,600,700,800,900,100italic,200italic,300italic,400italic,500italic,600italic,700italic,800italic,900italic|Montserrat:100,200,300,400,500,600,700,800,900,100italic,200italic,300italic,400italic,500italic,600italic,700italic,800italic,900italic|Poppins:100,200,300,400,500,600,700,800,900,100italic,200italic,300italic,400italic,500italic,600italic,700italic,800italic,900italic&subset=latin-ext&display=swap HTTP/1.1
Host: irp.cdn-website.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.leafwiremedia.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
server: CloudFront
date: Wed, 30 Nov 2022 01:52:43 GMT
cache-control: max-age=2592000
access-control-allow-origin: *
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: FIRmQAK6fym9lYDU7psPy8oD2K0B1LR8VxyMUD09RL2j21JGAe7YHg==
age: 38488
X-Firefox-Spdy: h2