r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 81713f952b51a865ad9764cde68e3fdb
278c3a9c4bb2a0ffb7375f90d89a1ba6e90a766a
c2eb0d8a24ecb51af28f1c71db4b9a95c568dcf6c94b41ee8c78787a4ebebcef
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C2EB0D8A24ECB51AF28F1C71DB4B9A95C568DCF6C94B41EE8C78787A4EBEBCEF"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5394
Expires: Fri, 03 Feb 2023 18:54:49 GMT
Date: Fri, 03 Feb 2023 17:24:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e935ea42be4feaed61a824b0b903913e
f966cfa80d65a805cb9d7c6a53b3340865d7c51a
eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14501
Expires: Fri, 03 Feb 2023 21:26:36 GMT
Date: Fri, 03 Feb 2023 17:24:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9a76feabb767086ae0fa54e0ffbf763f
3655d78994a1e9838340669462728b67c8c12e54
bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13688
Expires: Fri, 03 Feb 2023 21:13:03 GMT
Date: Fri, 03 Feb 2023 17:24:55 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 03 Feb 2023 16:43:35 GMT
content-type: application/json
age: 2480
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: nB7WoDn34wLM2/0eaLt1M1gux+FStgp932/FKuVQeEfIVOHn4He4YytMEWa+8dCgYHfsWdz4ECnoYrLVBEHeHw==
x-amz-request-id: 3M9E0PH5AB275ME3
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 03 Feb 2023 17:23:37 GMT
age: 78
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
packagesupportforusps.ddns.mobi/0876425240f433f56f3e7a9cf15aeff8/486d6119d027aba99dd3033e69967219/?token=e4b56b36fb7c1385873e401bdedc4a71dde21a83f9e6135dc80674a9687c767762ff7631e34a35c65eba3c118821a0bceb7522a826e546e2de6801944423bfb0
20.245.77.166302 Found 0 B URL HTTP/1.1 packagesupportforusps.ddns.mobi/0876425240f433f56f3e7a9cf15aeff8/486d6119d027aba99dd3033e69967219/?token=e4b56b36fb7c1385873e401bdedc4a71dde21a83f9e6135dc80674a9687c767762ff7631e34a35c65eba3c118821a0bceb7522a826e546e2de6801944423bfb0
IP 20.245.77.166:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery suspicious Suspicious - DynDNS domain
NIDS Severity Alert suricata medium ET INFO DYNAMIC_DNS HTTP Request to a *.ddns .mobi Domain
GET /0876425240f433f56f3e7a9cf15aeff8/486d6119d027aba99dd3033e69967219/?token=e4b56b36fb7c1385873e401bdedc4a71dde21a83f9e6135dc80674a9687c767762ff7631e34a35c65eba3c118821a0bceb7522a826e546e2de6801944423bfb0 HTTP/1.1
Host: packagesupportforusps.ddns.mobi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Fri, 03 Feb 2023 17:24:55 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Set-Cookie: PHPSESSID=3f566a5c0edfbd0c9d1460a170a96328; path=/
Location: ../index.php
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 17:24:55 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 03 Feb 2023 17:07:19 GMT
age: 1056
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5616
Expires: Fri, 03 Feb 2023 18:58:32 GMT
Date: Fri, 03 Feb 2023 17:24:56 GMT
Connection: keep-alive
push.services.mozilla.com/
44.226.39.149101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.226.39.149:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 2xUMDTLGoKr3IEAK2rw1Pg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: iuLArI4oA01sPr7685gqMEzDzn0=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19079
Expires: Fri, 03 Feb 2023 22:42:56 GMT
Date: Fri, 03 Feb 2023 17:24:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19079
Expires: Fri, 03 Feb 2023 22:42:56 GMT
Date: Fri, 03 Feb 2023 17:24:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19079
Expires: Fri, 03 Feb 2023 22:42:56 GMT
Date: Fri, 03 Feb 2023 17:24:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19079
Expires: Fri, 03 Feb 2023 22:42:56 GMT
Date: Fri, 03 Feb 2023 17:24:57 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d4041f3b5316bc84c9e6d88ddbc85b89
4978a4a20836b6f5d863d331bcedad782b7b4ac6
549b62d2c4ec965b8bec62010c0ce338dfea7992ee83eb7af61ff1a30d21f8b5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5641
x-amzn-requestid: b53b54b1-3b00-47cf-a25c-e93910c2ebfb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fuvzpHsXoAMFsuw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dc2ce3-0c4fc8154763febb44460ac2;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 21:36:36 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: x4-BZdG4JGRKCSdKynnuweZfo9l0XZtDB-MiANy7C2Yz1URYMHP4sQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 22:28:50 GMT
age: 68167
etag: "4978a4a20836b6f5d863d331bcedad782b7b4ac6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2a6aaf87a867f93dc9268a8b27973b97
f52ccbe6cbced1994acb13a00b05436553b6813e
3fbd7441712035f4d53c17eec93bc278e6c072043f3b5a721cac349fc0dabe77
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10166
x-amzn-requestid: 54fe0d12-360f-4d97-bcf3-b24747d956aa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fY_4zHEcoAMF1iA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d379d1-4ba89e44005f616a0ed3ed24;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 07:14:25 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: G0R-0w9HtLB5OXb-w-RyR9QCnrddkS29FqF_GeAQa1CRWkqaUJwQoA==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 22:27:53 GMT
age: 68224
etag: "f52ccbe6cbced1994acb13a00b05436553b6813e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F999ec9b9-96eb-4927-a0d5-3e4a89cca4ad.png
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F999ec9b9-96eb-4927-a0d5-3e4a89cca4ad.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 24261df857fd20898ed41615ff44efd2
5ebaae7786e95f6daf7e837ce741f96611a64335
b947696fced12e35736691fb27c5cc4ddb28e4b4781cfbb69b8b4011b84aca5b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F999ec9b9-96eb-4927-a0d5-3e4a89cca4ad.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10971
x-amzn-requestid: 87d6a618-4ddf-4e40-aaeb-f6e38c274c23
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: feH0jHisoAMFgpg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d58683-2de413f446505ec44ab2a390;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 20:33:07 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bSK5RmNEDZxTn_J6zk6eGwhUexiPYxHRnvs7h0DtRM-fXMJ1QsmtHw==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 09:43:13 GMT
age: 27704
etag: "5ebaae7786e95f6daf7e837ce741f96611a64335"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3490571dd2de0a747987b9a0e18cccc8
18e9f8f160d3515f1cb31fc7538ac762a6cab344
1c071d7f3b288b29254500f94f19c0db0633c6aa90812f2e92c4f64992f5221a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10796
x-amzn-requestid: 5c9b1a83-c99a-44b9-9a90-5edd7ef1e225
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fi0XKG93oAMFtsA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d76760-01bf754d6c725c3275c02a1b;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 06:44:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vUJO-Pt9Hi1ndrCQQT1nNCGT7oDOYBpA8-EawHanESoZAsZv32dQdg==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 00:25:04 GMT
age: 61193
etag: "18e9f8f160d3515f1cb31fc7538ac762a6cab344"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9ab97f766ee1ed6ebbb2b3889a9157b4
f87f165404dec4d65531e6e25146cb77601f3616
f3d0f76f956371b1733a526f10a8253fc3396a459d7af59380d8e8db7dee8ec2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5300360-6063-4d18-8dd2-28dbcf47d371.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14071
x-amzn-requestid: 40cb363f-2c4d-4361-9fe1-10e4c8b2fe29
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fiTo4Ek2oAMFs6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d73305-6cb63d3c49f9f84e639467f6;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 03:01:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aTs6L8dJENFRdtBn7ggAbY5yaYRAzSY2B0bmElV4YNPrJg-KRDAyNA==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:46:56 GMT
age: 70681
etag: "f87f165404dec4d65531e6e25146cb77601f3616"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e366b32074025aaf60bbae8bdb08d330
a52c2883bad98fa20333aa639a5dd3a5bf544c8e
9d661c26effaec9efee16833f6459d6ecbe4f77b822c9c46e2a6433bda816e5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11565
x-amzn-requestid: 87a84ffd-1176-4656-aac4-e98f38ec2cd9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboIrFGboAMFyyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d48704-162ed8114aa1809204500548;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:23:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: w0Zm5V0TQxsQ7917U3fdhS_n7qKE143PuhI2JmNCDM_Pf0yPLyW6yA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 04:53:21 GMT
age: 45096
etag: "a52c2883bad98fa20333aa639a5dd3a5bf544c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
packagesupportforusps.ddns.mobi/0876425240f433f56f3e7a9cf15aeff8/index.php
20.245.77.166302 Found 0 B URL HTTP/1.1 packagesupportforusps.ddns.mobi/0876425240f433f56f3e7a9cf15aeff8/index.php
IP 20.245.77.166:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery suspicious Suspicious - DynDNS domain
fortinet Phishing
NIDS Severity Alert suricata medium ET INFO DYNAMIC_DNS HTTP Request to a *.ddns .mobi Domain
GET /0876425240f433f56f3e7a9cf15aeff8/index.php HTTP/1.1
Host: packagesupportforusps.ddns.mobi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: PHPSESSID=3f566a5c0edfbd0c9d1460a170a96328
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Fri, 03 Feb 2023 17:24:55 GMT
Server: Apache
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Location: https://www.siteground.com
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
ocsp2.globalsign.com/gsalphasha2g2
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.20.226:0
Hash 387ca932f156dd079b94a5f49b0fd707
28c43292816b29dea81f39cb6f00df831a55399e
11d202863702eab1fc57924dd7b75f4480726e2a10552e8f0207ef23c133c85f
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 17:24:59 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Tue, 07 Feb 2023 15:00:49 GMT
ETag: "28c43292816b29dea81f39cb6f00df831a55399e"
Last-Modified: Fri, 03 Feb 2023 15:00:50 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 805
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793cdcfde913b512-OSL
www.siteground.com/
34.149.235.244302 Found 0 B IP 34.149.235.244:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: www.siteground.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
server: nginx
date: Fri, 03 Feb 2023 17:24:59 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://eu.siteground.com
set-cookie: PHPSESSID=4e2f53e1de149d49a2cd0b94e1a5d962; path=/; domain=.siteground.com; secure; HttpOnly
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-httpd-modphp: 1
age: 0
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000; preload
x-frame-options: DENY
x-server: 0
host-header: 192fc2e7e50945beb8231a492d6a8024
x-proxy-cache: MISS
x-proxy-cache-info: d302 NC:000000 UP:SKIP_CACHE_NO_CACHE
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsalphasha2g2
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.20.226:0
Hash 387ca932f156dd079b94a5f49b0fd707
28c43292816b29dea81f39cb6f00df831a55399e
11d202863702eab1fc57924dd7b75f4480726e2a10552e8f0207ef23c133c85f
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 17:24:59 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Tue, 07 Feb 2023 15:00:49 GMT
ETag: "28c43292816b29dea81f39cb6f00df831a55399e"
Last-Modified: Fri, 03 Feb 2023 15:00:50 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 805
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 793cdcff1a92b512-OSL
cdnjs.cloudflare.com/ajax/libs/globalize/1.4.0/globalize/currency.min.js
104.17.24.14200 OK 2.1 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/globalize/1.4.0/globalize/currency.min.js
IP 104.17.24.14:0
File type C source, Unicode text, UTF-8 text, with very long lines (5972), with no line terminators
Hash f36c43c33fc691c2711073a291c2b2f9
74bf77cfd9cf98e44b56aa770ef7ba379931fd29
d32ff71f06d8786ab3b22d61217ee90d2d550ae9ae352f678b55931a6e48c5ef
GET /ajax/libs/globalize/1.4.0/globalize/currency.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:24:59 GMT
content-type: application/javascript; charset=utf-8
content-length: 2073
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e6d-1755"
last-modified: Mon, 04 May 2020 16:10:21 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1335971
expires: Wed, 24 Jan 2024 17:24:59 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CchlWy7unLjSRtlG5IYAlv0FHwJR9%2BudXGsgscilMqlGPh7DFAIRzmGICa7H23bU9URucVrtKAMgkNLPYLTEQZvLPGlnoiKEi07ik4w1gLdy8cHdqIVoeFiS9fKirVBd0mXomCJj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 793cdd00daccb521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/cldrjs/0.5.1/cldr/supplemental.min.js
104.17.24.14200 OK 323 B URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/cldrjs/0.5.1/cldr/supplemental.min.js
IP 104.17.24.14:0
File type ASCII text, with very long lines (1063), with no line terminators
Hash f8a46239f8cea9d633e9d032d1727929
0e7b26ec2f9b302d704ce074eb03ff833d8b4667
9f16bf20389d1db1dcd57933459cb9288cb1280bee3742d2245ca093acefed78
GET /ajax/libs/cldrjs/0.5.1/cldr/supplemental.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:24:59 GMT
content-type: application/javascript; charset=utf-8
content-length: 323
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e28-427"
last-modified: Mon, 04 May 2020 16:09:12 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 20892935
expires: Wed, 24 Jan 2024 17:24:59 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=St95a4Ni3oeSmqrE6lhZtN0SXKYxv5Otq632HqMJ8m6beyZMYWNf%2Fu85CTQ0nIlBNb4au5dmq0uxhwctSJrCV1RWlvwBBPKrY6o8njNGR50q5cdixz%2Fz9A1Wxjly3m%2BUEjRj%2BLit"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 793cdd00dacab521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/cldrjs/0.5.1/cldr.min.js
104.17.24.14200 OK 1.8 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/cldrjs/0.5.1/cldr.min.js
IP 104.17.24.14:0
File type ASCII text, with very long lines (4463), with no line terminators
Hash 6b4e5aaab6596a759a4b6791e0310c80
1b2c8ca41e79345bd3ce4c5ea86f37d70dac35d3
0675fdd2dac9703d45f18666a99af6f27f4555184a3b77c50d3a230758b9f3e2
GET /ajax/libs/cldrjs/0.5.1/cldr.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:24:59 GMT
content-type: application/javascript; charset=utf-8
content-length: 1823
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e28-116f"
last-modified: Mon, 04 May 2020 16:09:12 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 24476040
expires: Wed, 24 Jan 2024 17:24:59 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ic7yhG0GflQOWazL2DonkIonYO5GTxZ%2FizntobGFtl2pXwFX6xhNpaGygYFuNC6Y4B5gSYa9ZB2kzDVFJJcBZ%2FhWceUfRou3J%2Fd%2FTyQ93maNNxvgzto%2Bv80wvRp4XMeeWrXh0ng9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 793cdd00dad2b521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/cldrjs/0.5.1/cldr/event.min.js
104.17.24.14200 OK 1.1 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/cldrjs/0.5.1/cldr/event.min.js
IP 104.17.24.14:0
File type ASCII text, with very long lines (3679), with no line terminators
Hash 85cd5c0b453c25b3d5614e3695cdf156
5fe70de528664abcb2c1c00a4c9ed6b925798d9a
f0f84ab862c1a0a19f1ad28188f7d7c37ab2e0176c303cb7e175252dd109d75e
GET /ajax/libs/cldrjs/0.5.1/cldr/event.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:24:59 GMT
content-type: application/javascript; charset=utf-8
content-length: 1122
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e28-e5f"
last-modified: Mon, 04 May 2020 16:09:12 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 20723136
expires: Wed, 24 Jan 2024 17:24:59 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8POipLxd15BuOUHbwgVewKTVGvhmG5rsIeC2BiFWvSnXSU27zIKTIbe0nnLq8GrTJqbwd7mzkF38rzvKKc6a5HT6NYPQshWKuuGY%2FI%2B%2Fgt9mHbd5%2F7b1ZQ1KRPEpk8TX1fKnwe8C"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 793cdd00ead9b521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
eu.siteground.com/
34.149.235.244200 OK 13 kB IP 34.149.235.244:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (7311), with CRLF, LF line terminators
Hash 427e7e60e2027a6f0b343c0aacaf79c7
bf13195bdd30d97069346bf7dac6e96ce5b8a7e0
705c16c74c83fcd363d747e648d9561bc65dfe843679e96f48f988c48d352980
GET / HTTP/1.1
Host: eu.siteground.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: PHPSESSID=4e2f53e1de149d49a2cd0b94e1a5d962
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 17:24:59 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
expires: Sat, 04 Feb 2023 17:01:08 GMT
cache-control: public, maxage=86400
pragma: public
x-frame-options: DENY, DENY
x-httpd-modphp: 1
age: 1431
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000; preload
x-server: 0
host-header: 192fc2e7e50945beb8231a492d6a8024
x-proxy-cache: MISS
x-proxy-cache-info: d NC:000000 UP:
content-encoding: br
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/globalize/1.4.0/globalize/plural.min.js
104.17.24.14200 OK 2.0 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/globalize/1.4.0/globalize/plural.min.js
IP 104.17.24.14:0
File type ASCII text, with very long lines (5302), with no line terminators
Hash a880a2defa266baff0e383370b503d93
163950a55ea45bda719a0c7de48cee0c20388f86
b895279fed07636a16564c7e66f76690c090e6a9758410ef8e126a4aba50842c
GET /ajax/libs/globalize/1.4.0/globalize/plural.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:24:59 GMT
content-type: application/javascript; charset=utf-8
content-length: 2014
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e6d-14b6"
last-modified: Mon, 04 May 2020 16:10:21 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 673188
expires: Wed, 24 Jan 2024 17:24:59 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4W7N2t8DOWwoCLup6xOpBObEQvqx3lmhZBbgRyYuxocq0gcSH0patSinemeDyvxm1XMCCh8XADItAy3ad4yXikSSwLoqJPogdowaBHT0lgz1Yskj5xAiq2eI5qcKkJKjDZylXbMx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 793cdd00eb04b521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/globalize/1.4.0/globalize/number.min.js
104.17.24.14200 OK 3.5 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/globalize/1.4.0/globalize/number.min.js
IP 104.17.24.14:0
File type C source, Unicode text, UTF-8 text, with very long lines (9554), with no line terminators
Hash f2aa037d1ea8a71d07c1625be42c16e1
f6def71f8a58a0060d9b616cafa9206a588b7746
982dc25991253b726a68a9b6a297f66e4f4fa56f2914f7a44c6c082f93726876
GET /ajax/libs/globalize/1.4.0/globalize/number.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:24:59 GMT
content-type: application/javascript; charset=utf-8
content-length: 3546
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e6d-2558"
last-modified: Mon, 04 May 2020 16:10:21 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 24476040
expires: Wed, 24 Jan 2024 17:24:59 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oN%2BgNod00b4slOtbZiNNp4nv3v%2BmfcxVNoRvLu3nFfFq%2BQjTjvMAyQaLny9E2aG10BwS5IXFKw7sPWZXu1USAPL9e2jsZc8jIg%2BbL81eEyXyyux1AV2i3cYNulJSueLLxbL%2F%2BK4d"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 793cdd00eaeeb521-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9c45ea25709afbea416f215ee34611b0
117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed
7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:24:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-NV7S9DK
142.250.74.168200 OK 109 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-NV7S9DK
IP 142.250.74.168:0
File type ASCII text, with very long lines (50527)
Size 109 kB (109313 bytes)
Hash 434c4ed6e5d9be5d090295b897f09ac2
4455310561ea65822def0d29df96f7c11aaa3dd2
ae0ad0672f816e6d91d0663d71ea8783a7b157bcda74f6b221233005b24f54c7
GET /gtm.js?id=GTM-NV7S9DK HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 03 Feb 2023 17:24:59 GMT
expires: Fri, 03 Feb 2023 17:24:59 GMT
cache-control: private, max-age=900
last-modified: Fri, 03 Feb 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 109313
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9c45ea25709afbea416f215ee34611b0
117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed
7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:24:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
du3vkre908mr5.cloudfront.net/fonts/roboto-v30-latin-ext_latin-700.woff2
143.204.42.163200 OK 23 kB URL HTTP/2 du3vkre908mr5.cloudfront.net/fonts/roboto-v30-latin-ext_latin-700.woff2
IP 143.204.42.163:0
File type Web Open Font Format (Version 2), TrueType, length 22580, version 1.0\012- data
Hash 1c44e440b54050bdb9c8f4cf048163bc
285209cc8e5df99937d360909021a7501269f6ac
59fb185692872a1d0060ebdb9d6f8664b499b8812e80dc59755ec2f68887450f
GET /fonts/roboto-v30-latin-ext_latin-700.woff2 HTTP/1.1
Host: du3vkre908mr5.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://eu.siteground.com
Connection: keep-alive
Referer: https://d3fjrnfgbgznt3.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: font/woff2
content-length: 22580
server: nginx
date: Fri, 03 Feb 2023 07:19:17 GMT
last-modified: Fri, 03 Feb 2023 04:33:49 GMT
etag: "63dc8ead-5834"
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000; preload
x-frame-options: DENY
x-server: 0
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
via: 1.1 google, 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
access-control-allow-origin: https://eu.siteground.com
vary: Origin
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: LKUzfr2gjzRmXygFDK8_I3_NwaixI-i4Olb3qnjrHATuHBUfSbRr7A==
age: 36342
X-Firefox-Spdy: h2
du3vkre908mr5.cloudfront.net/fonts/poppins-v20-latin-ext_latin-500.woff2
143.204.42.163200 OK 11 kB URL HTTP/2 du3vkre908mr5.cloudfront.net/fonts/poppins-v20-latin-ext_latin-500.woff2
IP 143.204.42.163:0
File type Web Open Font Format (Version 2), TrueType, length 10636, version 1.0\012- data
Hash 7a2c461f7cc8871fe7a741eb10e18e8b
b0faf95d217f102320175e4900aa3250dafe4674
47f3eaee9be967b079c84b584bdc161bb26a49a6f081f60813e1b3dc83ecf4f3
GET /fonts/poppins-v20-latin-ext_latin-500.woff2 HTTP/1.1
Host: du3vkre908mr5.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://eu.siteground.com
Connection: keep-alive
Referer: https://d3fjrnfgbgznt3.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: font/woff2
content-length: 10636
server: nginx
date: Fri, 03 Feb 2023 06:41:52 GMT
last-modified: Fri, 03 Feb 2023 06:24:45 GMT
etag: "63dca8ad-298c"
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000; preload
x-frame-options: DENY
x-server: 0
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
via: 1.1 google, 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
access-control-allow-origin: https://eu.siteground.com
vary: Origin
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: DWtU2RtYrlum7lBbsn3fjQBJvLKXW3RjyuGx_22Yx-bbCe15Ht_Ftw==
age: 38587
X-Firefox-Spdy: h2
du3vkre908mr5.cloudfront.net/fonts/poppins-v20-latin-ext_latin-regular.woff2
143.204.42.163200 OK 11 kB URL HTTP/2 du3vkre908mr5.cloudfront.net/fonts/poppins-v20-latin-ext_latin-regular.woff2
IP 143.204.42.163:0
File type Web Open Font Format (Version 2), TrueType, length 10832, version 1.0\012- data
Hash 27624b02dbe8caa6cffa01dc7eaad077
c8795e9910438315a39451dbd2d7d947445c0579
2517fd308838eec084af7bb64660c3f6b675684f3518980f121a3a568e9ad933
GET /fonts/poppins-v20-latin-ext_latin-regular.woff2 HTTP/1.1
Host: du3vkre908mr5.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://eu.siteground.com
Connection: keep-alive
Referer: https://d3fjrnfgbgznt3.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: font/woff2
content-length: 10832
server: nginx
date: Fri, 03 Feb 2023 04:23:50 GMT
last-modified: Fri, 03 Feb 2023 02:56:37 GMT
etag: "63dc77e5-2a50"
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000; preload
x-frame-options: DENY
x-server: 0
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
via: 1.1 google, 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
access-control-allow-origin: https://eu.siteground.com
vary: Origin
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: tJY7T1c5Io9Nd6OuFnmVRtLc33eOLuLxOKpZ2k-UdWnK6Bm3z5juUQ==
age: 46869
X-Firefox-Spdy: h2
du3vkre908mr5.cloudfront.net/fonts/roboto-v30-latin-ext_latin-regular.woff2
143.204.42.163200 OK 23 kB URL HTTP/2 du3vkre908mr5.cloudfront.net/fonts/roboto-v30-latin-ext_latin-regular.woff2
IP 143.204.42.163:0
File type Web Open Font Format (Version 2), TrueType, length 22560, version 1.0\012- data
Hash 1dfb815c0e707ba03fb3486d94881ca4
26c19605a4ebf47cc1bbfa8223cc1d598a401f3c
8c445c283da9a171eb4841f32cb343627ef480ed8c80c6dca83ef8287687e62f
GET /fonts/roboto-v30-latin-ext_latin-regular.woff2 HTTP/1.1
Host: du3vkre908mr5.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://eu.siteground.com
Connection: keep-alive
Referer: https://d3fjrnfgbgznt3.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: font/woff2
content-length: 22560
server: nginx
date: Fri, 03 Feb 2023 05:50:16 GMT
last-modified: Fri, 03 Feb 2023 03:32:00 GMT
etag: "63dc8030-5820"
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000; preload
x-frame-options: DENY
x-server: 0
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
via: 1.1 google, 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
access-control-allow-origin: https://eu.siteground.com
vary: Origin
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 40iVvrEFbYdOXZyCjUiKZZuRFFYg_VKCa7vnaLVZYcOqkIqYj8Il4Q==
age: 41683
X-Firefox-Spdy: h2
du3vkre908mr5.cloudfront.net/fonts/poppins-v20-latin-ext_latin-700.woff2
143.204.42.163200 OK 11 kB URL HTTP/2 du3vkre908mr5.cloudfront.net/fonts/poppins-v20-latin-ext_latin-700.woff2
IP 143.204.42.163:0
File type Web Open Font Format (Version 2), TrueType, length 10736, version 1.0\012- data
Hash 1914bb2cffe458fd423d47e66c583875
e1d2d8054950b5b5b66662c7325a6c441f8cb38a
131db8ab0af3c8f3d79c4bc290f3ad6d86d06a3b1b2be51299c6207717fcb6ad
GET /fonts/poppins-v20-latin-ext_latin-700.woff2 HTTP/1.1
Host: du3vkre908mr5.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://eu.siteground.com
Connection: keep-alive
Referer: https://d3fjrnfgbgznt3.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: font/woff2
content-length: 10736
server: nginx
date: Fri, 03 Feb 2023 05:50:16 GMT
last-modified: Fri, 03 Feb 2023 04:30:52 GMT
etag: "63dc8dfc-29f0"
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000; preload
x-frame-options: DENY
x-server: 0
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
via: 1.1 google, 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
access-control-allow-origin: https://eu.siteground.com
vary: Origin
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: RSnsZcysXzl6qJmNug9iBioDUObx827NqO7dQKYpcipNwKqzhc58qg==
age: 41682
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 1.9 kB IP 142.250.74.131:0
Hash e575bc4e405fccc4bf25bf4ad79378e9
c621f07194c6a26c530a7eaa11e0e13e8b0d1278
97d7c65cc4f80d06f9a62177abd7332d58234c7fd2c4f798c3a95ac9e4ce1fa4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:25:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 3ed38454db4ae5c4884006ba06b0f2b6
b5a94b859f49f9ab05634275f23d077de5c02cd4
296ce4ac6f888f753b8487df0824c2d593635557ad42c6d4eeefe1bcdb112182
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3534
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:25:00 GMT
Last-Modified: Fri, 03 Feb 2023 16:26:06 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 279
cdn.cookielaw.org/scripttemplates/otSDKStub.js
104.16.149.64200 OK 8.4 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/otSDKStub.js
IP 104.16.149.64:0
File type ASCII text, with very long lines (25592)
Hash e248bb3ed9070ee48f0b5bc674e6a49d
46a6ac373399405df390e910c580cf850dce9886
74fd866eaf62b63cec2b85eadf2245e9302107f4c8fabc25f9c3e5cd49f40a6b
GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:25:00 GMT
content-type: application/javascript
content-length: 8384
content-encoding: gzip
content-md5: 4ki7PtkHDuSPC1vGdOaknQ==
last-modified: Wed, 01 Feb 2023 17:51:43 GMT
etag: 0x8DB047CFAAF4F1C
x-ms-request-id: 7cf48f33-d01e-007d-359b-36442e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 81990
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 793cdd03bfe5b518-OSL
X-Firefox-Spdy: h2
www.youtube.com/s/player/97ea7458/www-widgetapi.vflset/www-widgetapi.js
216.58.207.206200 OK 63 kB URL HTTP/2 www.youtube.com/s/player/97ea7458/www-widgetapi.vflset/www-widgetapi.js
IP 216.58.207.206:0
File type ASCII text, with very long lines (817)
Hash 78748c4f481beda5b12e818b10602600
2d48f9c9a7744d36f0a1f7879f93cb393d2397cb
a56ccfcbcc7af2613644eac2c6569e6784d09ab3a29017d765b41c378b933ee4
GET /s/player/97ea7458/www-widgetapi.vflset/www-widgetapi.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 63074
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 15:53:08 GMT
expires: Thu, 01 Feb 2024 15:53:08 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 01 Feb 2023 01:21:00 GMT
content-type: text/javascript
age: 178312
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0c15fd84f4711d994724c35236542194
c47d77fe5b373a86bd9a116bd8baac07ec746add
a210a4599baaa980674b456f020282cd470559b319be263fdcf9eaec7cff0d3b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:25:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.cookielaw.org/consent/c3aa05b7-a913-4455-9576-b855be1c75dd/c3aa05b7-a913-4455-9576-b855be1c75dd.json
104.16.149.64200 OK 1.4 kB URL HTTP/2 cdn.cookielaw.org/consent/c3aa05b7-a913-4455-9576-b855be1c75dd/c3aa05b7-a913-4455-9576-b855be1c75dd.json
IP 104.16.149.64:0
File type JSON data\012- , ASCII text, with very long lines (3298), with no line terminators
Hash 6adaff19bbfe8a6b5debf4c26cad8ec0
c0accc8ab098cdaf1ff8b0f29670065413417710
d9592b6cbebf2b993572f5f921c0a1b38f438304e5575454dfd0d2969d79be97
GET /consent/c3aa05b7-a913-4455-9576-b855be1c75dd/c3aa05b7-a913-4455-9576-b855be1c75dd.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eu.siteground.com
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:25:00 GMT
content-type: application/x-javascript
content-length: 1418
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: atr/Gbv+imtd6/TCbK2OwA==
last-modified: Wed, 26 Oct 2022 13:29:41 GMT
etag: 0x8DAB7562357B52C
x-ms-request-id: a8c64a3d-b01e-0022-710f-36b6d0000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 31966
expires: Sat, 04 Feb 2023 17:25:00 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 793cdd0429c7b505-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/202209.2.0/otBannerSdk.js
104.16.149.64200 OK 93 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/202209.2.0/otBannerSdk.js
IP 104.16.149.64:0
File type ASCII text, with very long lines (65451)
Hash 7be7ba0243e5f7818be2e19c1174b4d3
fbb43338b41583afb15f81dee96bf13301ff9567
7d93c38edae18778f128014cfc38df424ce1ab4cf1567685c00996ca3d5b7d83
GET /scripttemplates/202209.2.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:25:00 GMT
content-type: application/javascript
content-length: 92877
content-encoding: gzip
content-md5: e+e6AkPl94GL4uGcEXS00w==
last-modified: Thu, 03 Nov 2022 15:58:07 GMT
etag: 0x8DABDB4331C221B
x-ms-request-id: b2cb511a-301e-00d6-27a4-ef933c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 47888
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 793cdd04895eb518-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/c3aa05b7-a913-4455-9576-b855be1c75dd/b85a1668-2617-4ae2-9588-1bc48cc7f3a1/en.json
104.16.149.64200 OK 19 kB URL HTTP/2 cdn.cookielaw.org/consent/c3aa05b7-a913-4455-9576-b855be1c75dd/b85a1668-2617-4ae2-9588-1bc48cc7f3a1/en.json
IP 104.16.149.64:0
File type JSON data\012- HTML document, Unicode text, UTF-8 text, with very long lines (65498), with no line terminators
Hash e9ad851f4511a7172005c4058f16ae74
4f3bd9ed4201521135d2f7b302e9e0b02d52be68
afe15df70e88b05f2dca1e322259a4c4d03dc691357feed1f61faee6ebcd656d
GET /consent/c3aa05b7-a913-4455-9576-b855be1c75dd/b85a1668-2617-4ae2-9588-1bc48cc7f3a1/en.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eu.siteground.com/
Origin: https://eu.siteground.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:25:00 GMT
content-type: application/x-javascript
content-length: 18662
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: 6a2FH0URpxcgBcQFjxaudA==
last-modified: Wed, 26 Oct 2022 13:29:45 GMT
etag: 0x8DAB7562590174A
x-ms-request-id: e946b818-501e-0105-3b0f-366acc000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 31966
expires: Sat, 04 Feb 2023 17:25:00 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 793cdd053b60b505-OSL
X-Firefox-Spdy: h2
d3fjrnfgbgznt3.cloudfront.net/img/sprites/flags-footer_ee9a939-829c5c2.png
143.204.55.71200 OK 3.9 kB URL HTTP/2 d3fjrnfgbgznt3.cloudfront.net/img/sprites/flags-footer_ee9a939-829c5c2.png
IP 143.204.55.71:0
File type PNG image data, 16 x 310, 8-bit/color RGBA, non-interlaced\012- data
Hash a7eb1fe895e270fe74cb731b16e4f5ba
7a6dacdff32354867bd6d7fe800f83aef0356a9a
0578d2b815c0d5ed7833174b8b6515e0878310f60285456f5f4fdf0fe691aadc
GET /img/sprites/flags-footer_ee9a939-829c5c2.png HTTP/1.1
Host: d3fjrnfgbgznt3.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://d3fjrnfgbgznt3.cloudfront.net/css/ceecbb6-01f55dd.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 3881
server: nginx
date: Mon, 23 Jan 2023 00:45:59 GMT
last-modified: Fri, 20 Jan 2023 08:42:05 GMT
etag: "63ca53dd-f29"
expires: Tue, 23 Jan 2024 00:45:59 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000; preload
x-frame-options: DENY
x-server: 0
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
via: 1.1 google, 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 1XNoBwFEpTvTWDXFqVRRgVE_O0Nq_cdVgTsZiQ17QPa8_RAOy7x7Cw==
age: 1010341
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/202209.2.0/assets/otFlat.json
104.16.149.64200 OK 3.0 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/202209.2.0/assets/otFlat.json
IP 104.16.149.64:0
File type JSON data\012- , ASCII text, with very long lines (11118)
Hash 11e79326c794e6d0e4a3bfea69e563c3
195179c1bc5fbd7487eafb189247df8fa2777fd7
28d53bf651fcc609ad3083dd2cf8ae6937d4d2efe74aa258cc06325ccbb57405
GET /scripttemplates/202209.2.0/assets/otFlat.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eu.siteground.com/
Origin: https://eu.siteground.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:25:00 GMT
content-type: application/json
content-length: 3007
content-encoding: gzip
content-md5: EeeTJseU5tDko7/qaeVjww==
last-modified: Thu, 03 Nov 2022 15:57:58 GMT
etag: 0x8DABDB42D6FB08E
x-ms-request-id: b62d1408-901e-013a-5d0f-36dd10000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 31966
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 793cdd057bb2b505-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/202209.2.0/assets/v2/otPcTab.json
104.16.149.64200 OK 13 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/202209.2.0/assets/v2/otPcTab.json
IP 104.16.149.64:0
File type JSON data\012- , ASCII text, with very long lines (50637)
Hash 2db9ca23a2955cb652d31b823d6aa58a
68383fe7041eac71d25473a7b2407e2fe0147419
3302de5e87187089bd58bd8e764178bc8d2ec2c6c52b751e78607de8e196232e
GET /scripttemplates/202209.2.0/assets/v2/otPcTab.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eu.siteground.com/
Origin: https://eu.siteground.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:25:00 GMT
content-type: application/json
content-length: 13271
content-encoding: gzip
content-md5: LbnKI6KVXLZS0xuCPWqlig==
last-modified: Thu, 03 Nov 2022 15:58:00 GMT
etag: 0x8DABDB42F05595F
x-ms-request-id: 96eac392-c01e-00ea-7a0f-3627e7000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 31966
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 793cdd057bb3b505-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/logos/b6ce9dc3-9adc-4344-a91a-aadef745c8e5/b2ac05c0-b00a-4aad-8339-0bc717fa9d25/9d14c58c-3dcc-47c2-9177-a1c95349302c/siteground-logo-black-transparent-400x81_(2).png
104.16.149.64200 OK 8.2 kB URL HTTP/2 cdn.cookielaw.org/logos/b6ce9dc3-9adc-4344-a91a-aadef745c8e5/b2ac05c0-b00a-4aad-8339-0bc717fa9d25/9d14c58c-3dcc-47c2-9177-a1c95349302c/siteground-logo-black-transparent-400x81_(2).png
IP 104.16.149.64:0
File type PNG image data, 400 x 81, 8-bit/color RGBA, non-interlaced\012- data
Hash 3a86937da13789e9ea69697275cef987
ac977217f2df6a7aa444e4e3bcfaffafec41a580
ea83c43865ad9f9cce2f783332c4cfc481c81f717003b09246f3b9ddc765e80a
GET /logos/b6ce9dc3-9adc-4344-a91a-aadef745c8e5/b2ac05c0-b00a-4aad-8339-0bc717fa9d25/9d14c58c-3dcc-47c2-9177-a1c95349302c/siteground-logo-black-transparent-400x81_(2).png HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:25:00 GMT
content-type: image/png
content-length: 8171
content-md5: OoaTfaE3ienqaWlydc75hw==
last-modified: Thu, 29 Apr 2021 06:39:26 GMT
etag: 0x8D90AD988D2C314
x-ms-request-id: 82698ffa-d01e-0150-193f-5581bb000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 6757
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 793cdd05cb76b518-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 54fb4e41ffaf928b8a93ff7479881522
2f852999d5594cc2039dcecfe36217d85cdd5747
bd86f88501af77f8a73cdf2c3e76599975491c35f18e14a0514ce5e65df23ecd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:25:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.recaptcha.net/recaptcha/api.js?hl=en&render=6LfEBLMUAAAAAAK5H_zU2bd42u4Y1wNBgsUJ8pE9
142.250.74.35200 OK 587 B URL HTTP/2 www.recaptcha.net/recaptcha/api.js?hl=en&render=6LfEBLMUAAAAAAK5H_zU2bd42u4Y1wNBgsUJ8pE9
IP 142.250.74.35:0
File type ASCII text, with very long lines (887), with no line terminators
Hash e0a1ab38c8717e43c476fae89787833f
f2e57bbca0dd17a9704b747814f9c48db27ce73c
5d4261c9b41372579ef62a6df31b8ed92b458623986fc64c56aec4c8b82bc9f3
GET /recaptcha/api.js?hl=en&render=6LfEBLMUAAAAAAK5H_zU2bd42u4Y1wNBgsUJ8pE9 HTTP/1.1
Host: www.recaptcha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Fri, 03 Feb 2023 17:25:03 GMT
date: Fri, 03 Feb 2023 17:25:03 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 587
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/202209.2.0/assets/otCommonStyles.css
104.16.149.64200 OK 4.0 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/202209.2.0/assets/otCommonStyles.css
IP 104.16.149.64:0
Hash 3b8c73e6d3fbfe846ff04409c0574051
7dae8d920e3c70597ac2243aa954bf8272b78876
11f2859ad54adca882fc4f2b14e0e46f9870f4f63b313f0e487cff97d2640115
GET /scripttemplates/202209.2.0/assets/otCommonStyles.css HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eu.siteground.com/
Origin: https://eu.siteground.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:25:00 GMT
content-type: text/css
content-md5: oQsmwuIlJWH4cKDxpI1ltA==
last-modified: Thu, 03 Nov 2022 15:58:11 GMT
x-ms-request-id: af3bb6d4-901e-00d0-3c0f-366444000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 31966
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 793cdd057bb8b505-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:25:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js
216.58.211.3200 OK 164 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js
IP 216.58.211.3:0
File type ASCII text, with very long lines (633)
Size 164 kB (163841 bytes)
Hash fe98364486b3206867b17008f995646f
35a5e9aa210970f7abd718d99e629c6982a3cc02
1fd703cb16e3f6f3f7192109d19c69d6e5ac1cfa0feb5b105a86564b7970d28a
GET /recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eu.siteground.com
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 163841
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 08:53:11 GMT
expires: Wed, 31 Jan 2024 08:53:11 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 31 Jan 2023 02:51:47 GMT
content-type: text/javascript
age: 289913
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 23287a0337047631e479bb3cbe8b0fcd
15ec24f5ee1990ee456a6fd3bbcbdbe27bf62c99
da05b381eec3589d2689bc5fab2b89eb5d65f9a5652f9254f3353e30a4540034
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 17:25:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
damt7w3yoa0t2.cloudfront.net/assets/img/svg/icons/grey/icon_product_sitebuilder.svg
54.230.245.231200 OK 165 kB URL HTTP/2 damt7w3yoa0t2.cloudfront.net/assets/img/svg/icons/grey/icon_product_sitebuilder.svg
IP 54.230.245.231:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1595)
Size 165 kB (164670 bytes)
Hash 5db73d13ea6707177cda6a2eac25dd9d
b6a9412c9da2e3d4b2e512f1fbb5a5fa1625d9e4
1ff63610ce64fac3cb2a2adbd6b0a541254175578402784ed0b837ea9df37bdf
GET /assets/img/svg/icons/grey/icon_product_sitebuilder.svg HTTP/1.1
Host: damt7w3yoa0t2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eu.siteground.com
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Fri, 13 Jan 2023 01:05:02 GMT
last-modified: Thu, 12 Jan 2023 12:01:50 GMT
etag: W/"63bff6ae-62d"
expires: Sat, 13 Jan 2024 01:05:02 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000; preload
x-frame-options: DENY
x-server: 0
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: gzip
via: 1.1 google, 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
vary: Origin
access-control-allow-origin: https://eu.siteground.com
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: M8dSDekLxkego4Io3RaNvdcwcMyF1KHlHRw8RT041khLx_r9Co0M4g==
age: 1873198
X-Firefox-Spdy: h2
damt7w3yoa0t2.cloudfront.net/assets/img/svg/icons/grey/icon_product_wordpress.svg
54.230.245.231200 OK 0 B URL HTTP/2 damt7w3yoa0t2.cloudfront.net/assets/img/svg/icons/grey/icon_product_wordpress.svg
IP 54.230.245.231:0
GET /assets/img/svg/icons/grey/icon_product_wordpress.svg HTTP/1.1
Host: damt7w3yoa0t2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eu.siteground.com
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Mon, 16 Jan 2023 01:01:38 GMT
last-modified: Thu, 12 Jan 2023 12:01:50 GMT
etag: W/"63bff6ae-999"
expires: Tue, 16 Jan 2024 01:01:38 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000; preload
x-frame-options: DENY
x-server: 0
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: gzip
via: 1.1 google, 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
vary: Origin
access-control-allow-origin: https://eu.siteground.com
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: OvZxqRXcY16ynaE-AYfw_WEBzWt5SZJ3UtG9jTYe76Q_XITPltxDaQ==
age: 1614202
X-Firefox-Spdy: h2
damt7w3yoa0t2.cloudfront.net/assets/img/svg/icons/grey/icon_product_multiple_sites_management.svg
54.230.245.231200 OK 0 B URL HTTP/2 damt7w3yoa0t2.cloudfront.net/assets/img/svg/icons/grey/icon_product_multiple_sites_management.svg
IP 54.230.245.231:0
GET /assets/img/svg/icons/grey/icon_product_multiple_sites_management.svg HTTP/1.1
Host: damt7w3yoa0t2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eu.siteground.com
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Thu, 05 Jan 2023 03:12:50 GMT
last-modified: Wed, 04 Jan 2023 18:05:41 GMT
etag: W/"63b5bff5-2fb"
expires: Fri, 05 Jan 2024 03:12:50 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000; preload
x-frame-options: DENY
x-server: 0
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: gzip
via: 1.1 google, 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
vary: Origin
access-control-allow-origin: https://eu.siteground.com
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: mqIIPpyCDdi3Qqd1GWnoxP8hlRxcES9LgMaQxNnqJpAhSk0r0T-17w==
age: 2556730
X-Firefox-Spdy: h2
du3vkre908mr5.cloudfront.net/img/svg/blocks/services/ultrafast_server_setup.svg
143.204.42.163200 OK 0 B URL HTTP/2 du3vkre908mr5.cloudfront.net/img/svg/blocks/services/ultrafast_server_setup.svg
IP 143.204.42.163:0
GET /img/svg/blocks/services/ultrafast_server_setup.svg HTTP/1.1
Host: du3vkre908mr5.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Thu, 26 Jan 2023 07:50:32 GMT
last-modified: Wed, 25 Jan 2023 18:36:37 GMT
etag: W/"63d176b5-5651"
expires: Fri, 26 Jan 2024 07:50:32 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000; preload
x-frame-options: DENY
x-server: 0
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: gzip
via: 1.1 google, 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 0SnGHJ2h0_eBB68QQqIo62pb041aG1DVwxVLn5ZTii3boHQPwRb2gQ==
age: 725668
X-Firefox-Spdy: h2
d3fjrnfgbgznt3.cloudfront.net/css/ceecbb6-01f55dd.css
143.204.55.71200 OK 0 B URL HTTP/2 d3fjrnfgbgznt3.cloudfront.net/css/ceecbb6-01f55dd.css
IP 143.204.55.71:0
GET /css/ceecbb6-01f55dd.css HTTP/1.1
Host: d3fjrnfgbgznt3.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Fri, 03 Feb 2023 16:57:28 GMT
last-modified: Fri, 03 Feb 2023 15:42:46 GMT
etag: W/"63dd2b76-13436"
expires: Sat, 03 Feb 2024 16:57:28 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000; preload
x-frame-options: DENY
x-server: 0
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: gzip
via: 1.1 google, 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: HTYKAOK_lNwfR59-E8vPz9iT4Cl6T71yM2tDefko5vfm90SmUy7_qQ==
age: 1651
X-Firefox-Spdy: h2
damt7w3yoa0t2.cloudfront.net/assets/img/svg//blocks/chat/chat_icon.svg
54.230.245.231200 OK 0 B URL HTTP/2 damt7w3yoa0t2.cloudfront.net/assets/img/svg//blocks/chat/chat_icon.svg
IP 54.230.245.231:0
GET /assets/img/svg//blocks/chat/chat_icon.svg HTTP/1.1
Host: damt7w3yoa0t2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eu.siteground.com
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Wed, 11 Jan 2023 01:05:11 GMT
last-modified: Mon, 09 Jan 2023 08:37:27 GMT
etag: W/"63bbd247-286"
expires: Thu, 11 Jan 2024 01:05:11 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000; preload
x-frame-options: DENY
x-server: 0
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: gzip
via: 1.1 google, 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
vary: Origin
access-control-allow-origin: https://eu.siteground.com
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cfqlDZPJH192wZiftaPZPBW1E1dbexGn2qA5GK6iCVim7sOhw_3a9A==
age: 2045989
X-Firefox-Spdy: h2
damt7w3yoa0t2.cloudfront.net/assets/img/svg/icons/grey/icon_plus.svg
54.230.245.231200 OK 0 B URL HTTP/2 damt7w3yoa0t2.cloudfront.net/assets/img/svg/icons/grey/icon_plus.svg
IP 54.230.245.231:0
GET /assets/img/svg/icons/grey/icon_plus.svg HTTP/1.1
Host: damt7w3yoa0t2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eu.siteground.com
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Mon, 23 Jan 2023 00:46:06 GMT
last-modified: Sat, 21 Jan 2023 03:40:50 GMT
etag: W/"63cb5ec2-88"
expires: Tue, 23 Jan 2024 00:46:06 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000; preload
x-frame-options: DENY
x-server: 0
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: gzip
via: 1.1 google, 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
vary: Origin
access-control-allow-origin: https://eu.siteground.com
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CGuGP3M70FZpbla0aDR6mJgNzACyO4I4jp4Uh225jrdvngzGQxtUFw==
age: 1010334
X-Firefox-Spdy: h2
damt7w3yoa0t2.cloudfront.net/assets/img/svg/icons/grey/icon_plus.svg
54.230.245.231200 OK 0 B URL HTTP/2 damt7w3yoa0t2.cloudfront.net/assets/img/svg/icons/grey/icon_plus.svg
IP 54.230.245.231:0
GET /assets/img/svg/icons/grey/icon_plus.svg HTTP/1.1
Host: damt7w3yoa0t2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eu.siteground.com
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Mon, 23 Jan 2023 00:46:06 GMT
last-modified: Sat, 21 Jan 2023 03:40:50 GMT
etag: W/"63cb5ec2-88"
expires: Tue, 23 Jan 2024 00:46:06 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000; preload
x-frame-options: DENY
x-server: 0
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: gzip
via: 1.1 google, 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
vary: Origin
access-control-allow-origin: https://eu.siteground.com
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _vjobXNj4LPsY6W_7I5yVtP0x_fmKU7rXDCs3IPKbJQeiHbI30SD-Q==
age: 1010334
X-Firefox-Spdy: h2
damt7w3yoa0t2.cloudfront.net/assets/img/svg//icons/grey/icon_product_woo.svg
54.230.245.231200 OK 0 B URL HTTP/2 damt7w3yoa0t2.cloudfront.net/assets/img/svg//icons/grey/icon_product_woo.svg
IP 54.230.245.231:0
GET /assets/img/svg//icons/grey/icon_product_woo.svg HTTP/1.1
Host: damt7w3yoa0t2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eu.siteground.com
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Mon, 09 Jan 2023 01:04:59 GMT
last-modified: Sun, 08 Jan 2023 03:36:13 GMT
etag: W/"63ba3a2d-132e"
expires: Tue, 09 Jan 2024 01:04:59 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000; preload
x-frame-options: DENY
x-server: 0
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: gzip
via: 1.1 google, 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
vary: Origin
access-control-allow-origin: https://eu.siteground.com
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: t2bRQ7cUkYXgDrlxLsR6gworDkKVzBhadO76DrNH2t5IEVjVXovtDA==
age: 2218801
X-Firefox-Spdy: h2
du3vkre908mr5.cloudfront.net/js/5fa05d8-01f55dd.js
143.204.42.163200 OK 0 B URL HTTP/2 du3vkre908mr5.cloudfront.net/js/5fa05d8-01f55dd.js
IP 143.204.42.163:0
GET /js/5fa05d8-01f55dd.js HTTP/1.1
Host: du3vkre908mr5.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Fri, 03 Feb 2023 16:56:35 GMT
last-modified: Fri, 03 Feb 2023 15:44:00 GMT
etag: W/"63dd2bc0-20108"
expires: Sat, 03 Feb 2024 16:56:35 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000; preload
x-frame-options: DENY
x-server: 0
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: gzip
via: 1.1 google, 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: yGUsOJmV_TS1B6BvVShUsGhyoSU6Cquxr3XfLHdbQmbrDyc15lBFfA==
age: 1704
X-Firefox-Spdy: h2
damt7w3yoa0t2.cloudfront.net/assets/img/svg/icons/grey/icon_product_cloud.svg
54.230.245.231200 OK 0 B URL HTTP/2 damt7w3yoa0t2.cloudfront.net/assets/img/svg/icons/grey/icon_product_cloud.svg
IP 54.230.245.231:0
GET /assets/img/svg/icons/grey/icon_product_cloud.svg HTTP/1.1
Host: damt7w3yoa0t2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eu.siteground.com
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Thu, 12 Jan 2023 00:21:44 GMT
last-modified: Wed, 11 Jan 2023 13:48:22 GMT
etag: W/"63bebe26-548"
expires: Fri, 12 Jan 2024 00:21:44 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000; preload
x-frame-options: DENY
x-server: 0
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: gzip
via: 1.1 google, 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
vary: Origin
access-control-allow-origin: https://eu.siteground.com
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -cHKm_hzM0CIVlXmCSHfYALEYOzxR8iOMYDZVcYKnputVJTX46jQdg==
age: 1962196
X-Firefox-Spdy: h2
damt7w3yoa0t2.cloudfront.net/assets/img/svg/icons/grey/icon_product_chat.svg
54.230.245.231200 OK 0 B URL HTTP/2 damt7w3yoa0t2.cloudfront.net/assets/img/svg/icons/grey/icon_product_chat.svg
IP 54.230.245.231:0
GET /assets/img/svg/icons/grey/icon_product_chat.svg HTTP/1.1
Host: damt7w3yoa0t2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eu.siteground.com
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Tue, 17 Jan 2023 00:43:10 GMT
last-modified: Mon, 16 Jan 2023 14:35:00 GMT
etag: W/"63c56094-254"
expires: Wed, 17 Jan 2024 00:43:10 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000; preload
x-frame-options: DENY
x-server: 0
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: gzip
via: 1.1 google, 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
vary: Origin
access-control-allow-origin: https://eu.siteground.com
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: pauigXHVecnxasUR4cianP_w0LEOfYLJe6DIl3zX1zTmckcO1aiTFA==
age: 1528910
X-Firefox-Spdy: h2
damt7w3yoa0t2.cloudfront.net/assets/img/svg/logo-mastercard.svg
54.230.245.231200 OK 0 B URL HTTP/2 damt7w3yoa0t2.cloudfront.net/assets/img/svg/logo-mastercard.svg
IP 54.230.245.231:0
GET /assets/img/svg/logo-mastercard.svg HTTP/1.1
Host: damt7w3yoa0t2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eu.siteground.com
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Fri, 13 Jan 2023 01:07:04 GMT
last-modified: Thu, 12 Jan 2023 12:01:50 GMT
etag: W/"63bff6ae-852"
expires: Sat, 13 Jan 2024 01:07:04 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000; preload
x-frame-options: DENY
x-server: 0
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: gzip
via: 1.1 google, 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
vary: Origin
access-control-allow-origin: https://eu.siteground.com
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ARV_mVAiztU2Ob6_7073UHd9SlMFYJus6VRDqNnxROJ43dFOb6Eu4w==
age: 1873076
X-Firefox-Spdy: h2
damt7w3yoa0t2.cloudfront.net/assets/img/svg/icons/icon_user_circle.svg
54.230.245.231200 OK 0 B URL HTTP/2 damt7w3yoa0t2.cloudfront.net/assets/img/svg/icons/icon_user_circle.svg
IP 54.230.245.231:0
GET /assets/img/svg/icons/icon_user_circle.svg HTTP/1.1
Host: damt7w3yoa0t2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eu.siteground.com
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Sun, 15 Jan 2023 01:12:23 GMT
last-modified: Thu, 12 Jan 2023 12:01:50 GMT
etag: W/"63bff6ae-3fd"
expires: Mon, 15 Jan 2024 01:12:23 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000; preload
x-frame-options: DENY
x-server: 0
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: gzip
via: 1.1 google, 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
vary: Origin
access-control-allow-origin: https://eu.siteground.com
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 15FU6Nk1oXKEvIHPHawWQI37Xa25REzx3xdZ5RwSOhJ9QUO-NeH6hQ==
age: 1699957
X-Firefox-Spdy: h2
www.youtube.com/iframe_api
216.58.207.206200 OK 0 B URL HTTP/2 www.youtube.com/iframe_api
IP 216.58.207.206:0
GET /iframe_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Fri, 03 Feb 2023 17:25:00 GMT
date: Fri, 03 Feb 2023 17:25:00 GMT
cache-control: private, max-age=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-resource-policy: cross-origin
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=GHi2Dh2XuzE; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=-sfuqN6Wvvc; Domain=.youtube.com; Expires=Wed, 02-Aug-2023 17:25:00 GMT; Path=/; Secure; HttpOnly; SameSite=none
DEVICE_INFO=ChxOekU1TlRrNE1Ua3hNVGswTkRjeE56YzJPQT09EOyG9Z4GGOyG9Z4G; Domain=.youtube.com; Expires=Wed, 02-Aug-2023 17:25:00 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+073; expires=Sun, 02-Feb-2025 17:25:00 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
damt7w3yoa0t2.cloudfront.net/assets/img/svg/icon-facebook.svg
54.230.245.231200 OK 0 B URL HTTP/2 damt7w3yoa0t2.cloudfront.net/assets/img/svg/icon-facebook.svg
IP 54.230.245.231:0
GET /assets/img/svg/icon-facebook.svg HTTP/1.1
Host: damt7w3yoa0t2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eu.siteground.com
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Tue, 24 Jan 2023 00:22:39 GMT
last-modified: Mon, 23 Jan 2023 12:23:22 GMT
etag: W/"63ce7c3a-10d"
expires: Wed, 24 Jan 2024 00:22:39 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000; preload
x-frame-options: DENY
x-server: 0
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: gzip
via: 1.1 google, 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
vary: Origin
access-control-allow-origin: https://eu.siteground.com
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GiliUWZfYJbaZxcYquh208brhQNF9cGhOrAyv_eCemjnlvuovtinfw==
age: 925341
X-Firefox-Spdy: h2
damt7w3yoa0t2.cloudfront.net/assets/img/svg/icons/icon_qna_support.svg
54.230.245.231200 OK 0 B URL HTTP/2 damt7w3yoa0t2.cloudfront.net/assets/img/svg/icons/icon_qna_support.svg
IP 54.230.245.231:0
GET /assets/img/svg/icons/icon_qna_support.svg HTTP/1.1
Host: damt7w3yoa0t2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eu.siteground.com
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Thu, 05 Jan 2023 03:11:21 GMT
last-modified: Tue, 03 Jan 2023 18:42:32 GMT
etag: W/"63b47718-34f"
expires: Fri, 05 Jan 2024 03:11:21 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000; preload
x-frame-options: DENY
x-server: 0
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: gzip
via: 1.1 google, 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
vary: Origin
access-control-allow-origin: https://eu.siteground.com
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: F7d53uscyHrcqduRjVi-TZnU07r7_NhIib0AjVaOdFPZnXf5pzLEGw==
age: 2556819
X-Firefox-Spdy: h2
damt7w3yoa0t2.cloudfront.net/assets/img/svg//icons/grey/icon_product_sitebuilder.svg
54.230.245.231200 OK 0 B URL HTTP/2 damt7w3yoa0t2.cloudfront.net/assets/img/svg//icons/grey/icon_product_sitebuilder.svg
IP 54.230.245.231:0
GET /assets/img/svg//icons/grey/icon_product_sitebuilder.svg HTTP/1.1
Host: damt7w3yoa0t2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eu.siteground.com
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Sun, 08 Jan 2023 00:26:51 GMT
last-modified: Sat, 07 Jan 2023 04:32:12 GMT
etag: W/"63b8f5cc-62d"
expires: Mon, 08 Jan 2024 00:26:51 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000; preload
x-frame-options: DENY
x-server: 0
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: gzip
via: 1.1 google, 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
vary: Origin
access-control-allow-origin: https://eu.siteground.com
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 71c65S255GkebaCG39p38NGXn74xkGBfnKgmozitzFlkVTTAP0E_iA==
age: 2307489
X-Firefox-Spdy: h2
cdn.cookielaw.org/logos/static/poweredBy_ot_logo.svg
104.16.149.64200 OK 0 B URL HTTP/2 cdn.cookielaw.org/logos/static/poweredBy_ot_logo.svg
IP 104.16.149.64:0
GET /logos/static/poweredBy_ot_logo.svg HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:25:00 GMT
content-type: image/svg+xml
content-md5: LpuayL42jB78xRllx0vkOw==
last-modified: Wed, 01 Feb 2023 17:51:44 GMT
x-ms-request-id: cb2975b1-301e-0055-7e91-363391000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 69379
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 793cdd05cb7db518-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
du3vkre908mr5.cloudfront.net/img/svg/heroes/promos/stvalentine_sale_index.svg
143.204.42.163200 OK 0 B URL HTTP/2 du3vkre908mr5.cloudfront.net/img/svg/heroes/promos/stvalentine_sale_index.svg
IP 143.204.42.163:0
GET /img/svg/heroes/promos/stvalentine_sale_index.svg HTTP/1.1
Host: du3vkre908mr5.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Thu, 02 Feb 2023 08:02:37 GMT
last-modified: Thu, 02 Feb 2023 07:48:23 GMT
etag: W/"63db6ac7-26c6"
expires: Fri, 02 Feb 2024 08:02:37 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000; preload
x-frame-options: DENY
x-server: 0
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: gzip
via: 1.1 google, 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: h6PfXSiVXvFkLyHf2ycbv8aDdi7d2CdAylXRxJCotmyfYC-v0PrkGw==
age: 120143
X-Firefox-Spdy: h2
damt7w3yoa0t2.cloudfront.net/assets/img/svg/icons/grey/icon_product_woo.svg
54.230.245.231200 OK 0 B URL HTTP/2 damt7w3yoa0t2.cloudfront.net/assets/img/svg/icons/grey/icon_product_woo.svg
IP 54.230.245.231:0
GET /assets/img/svg/icons/grey/icon_product_woo.svg HTTP/1.1
Host: damt7w3yoa0t2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eu.siteground.com
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Mon, 09 Jan 2023 01:04:11 GMT
last-modified: Fri, 06 Jan 2023 10:06:44 GMT
etag: W/"63b7f2b4-132e"
expires: Tue, 09 Jan 2024 01:04:11 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000; preload
x-frame-options: DENY
x-server: 0
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: gzip
via: 1.1 google, 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
vary: Origin
access-control-allow-origin: https://eu.siteground.com
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZU_s3t1VUoDp_Hfxi66ILlw-WuLyUI63pmTFTIkurpBTsK2Embdd1g==
age: 2218849
X-Firefox-Spdy: h2
damt7w3yoa0t2.cloudfront.net/assets/img/svg/icons/grey/icon_product_blog.svg
54.230.245.231200 OK 0 B URL HTTP/2 damt7w3yoa0t2.cloudfront.net/assets/img/svg/icons/grey/icon_product_blog.svg
IP 54.230.245.231:0
GET /assets/img/svg/icons/grey/icon_product_blog.svg HTTP/1.1
Host: damt7w3yoa0t2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eu.siteground.com
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Tue, 17 Jan 2023 00:25:06 GMT
last-modified: Mon, 16 Jan 2023 14:35:00 GMT
etag: W/"63c56094-2e8"
expires: Wed, 17 Jan 2024 00:25:06 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000; preload
x-frame-options: DENY
x-server: 0
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: gzip
via: 1.1 google, 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
vary: Origin
access-control-allow-origin: https://eu.siteground.com
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Jm88a2saBK8JQkds7ehsloz_woPKbyHkqztOYfAvZAEP2AWwQ992tg==
age: 1529994
X-Firefox-Spdy: h2
damt7w3yoa0t2.cloudfront.net/assets/img/svg/icons/icon_shield_round.svg
54.230.245.231200 OK 0 B URL HTTP/2 damt7w3yoa0t2.cloudfront.net/assets/img/svg/icons/icon_shield_round.svg
IP 54.230.245.231:0
GET /assets/img/svg/icons/icon_shield_round.svg HTTP/1.1
Host: damt7w3yoa0t2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eu.siteground.com
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Thu, 02 Feb 2023 08:02:37 GMT
last-modified: Thu, 02 Feb 2023 07:48:23 GMT
etag: W/"63db6ac7-2f3"
expires: Fri, 02 Feb 2024 08:02:37 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000; preload
x-frame-options: DENY
x-server: 0
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: gzip
via: 1.1 google, 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
vary: Origin
access-control-allow-origin: https://eu.siteground.com
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: o3BE3V0X4QV1KKlzXzAxl7TL0GxISPqxIw-wT5JUTUIOZiOx8S4l_Q==
age: 120143
X-Firefox-Spdy: h2
damt7w3yoa0t2.cloudfront.net/assets/img/svg/icons/grey/icon_product_speed_caching.svg
54.230.245.231200 OK 0 B URL HTTP/2 damt7w3yoa0t2.cloudfront.net/assets/img/svg/icons/grey/icon_product_speed_caching.svg
IP 54.230.245.231:0
GET /assets/img/svg/icons/grey/icon_product_speed_caching.svg HTTP/1.1
Host: damt7w3yoa0t2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eu.siteground.com
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Mon, 09 Jan 2023 00:25:31 GMT
last-modified: Sun, 08 Jan 2023 03:36:13 GMT
etag: W/"63ba3a2d-4c9"
expires: Tue, 09 Jan 2024 00:25:31 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000; preload
x-frame-options: DENY
x-server: 0
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: gzip
via: 1.1 google, 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
vary: Origin
access-control-allow-origin: https://eu.siteground.com
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0cIocv3E2FL_reKgxzLHYpV4FvOZFjEEqa7AvUUT2AvBESGmGpZLeQ==
age: 2221169
X-Firefox-Spdy: h2
damt7w3yoa0t2.cloudfront.net/assets/img/svg/icons/icon_qna_support.svg
54.230.245.231200 OK 0 B URL HTTP/2 damt7w3yoa0t2.cloudfront.net/assets/img/svg/icons/icon_qna_support.svg
IP 54.230.245.231:0
GET /assets/img/svg/icons/icon_qna_support.svg HTTP/1.1
Host: damt7w3yoa0t2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eu.siteground.com
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Thu, 05 Jan 2023 03:11:21 GMT
last-modified: Tue, 03 Jan 2023 18:42:32 GMT
etag: W/"63b47718-34f"
expires: Fri, 05 Jan 2024 03:11:21 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000; preload
x-frame-options: DENY
x-server: 0
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: gzip
via: 1.1 google, 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
vary: Origin
access-control-allow-origin: https://eu.siteground.com
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: gWLJAjDY9ukQkk6cGRFSczEvvi__RUc-rTr1eOblhO03ggUnbU9vng==
age: 2556819
X-Firefox-Spdy: h2
damt7w3yoa0t2.cloudfront.net/assets/img/svg/logo-ideal.svg
54.230.245.231200 OK 0 B URL HTTP/2 damt7w3yoa0t2.cloudfront.net/assets/img/svg/logo-ideal.svg
IP 54.230.245.231:0
GET /assets/img/svg/logo-ideal.svg HTTP/1.1
Host: damt7w3yoa0t2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eu.siteground.com
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Wed, 18 Jan 2023 00:21:05 GMT
last-modified: Tue, 17 Jan 2023 14:44:09 GMT
etag: W/"63c6b439-1067"
expires: Thu, 18 Jan 2024 00:21:05 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000; preload
x-frame-options: DENY
x-server: 0
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: gzip
via: 1.1 google, 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
vary: Origin
access-control-allow-origin: https://eu.siteground.com
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: gdImUX2BKZYYHcdD5D8LhGSUo7wv1hWln27TT3hAc_uT5EemDgMXSg==
age: 1443835
X-Firefox-Spdy: h2
damt7w3yoa0t2.cloudfront.net/assets/img/svg/icons/icon_heart_percent.svg
54.230.245.231200 OK 0 B URL HTTP/2 damt7w3yoa0t2.cloudfront.net/assets/img/svg/icons/icon_heart_percent.svg
IP 54.230.245.231:0
GET /assets/img/svg/icons/icon_heart_percent.svg HTTP/1.1
Host: damt7w3yoa0t2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eu.siteground.com
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Thu, 02 Feb 2023 09:03:06 GMT
last-modified: Thu, 02 Feb 2023 09:01:51 GMT
etag: W/"63db7bff-3d2"
expires: Fri, 02 Feb 2024 09:03:06 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000; preload
x-frame-options: DENY
x-server: 0
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: gzip
via: 1.1 google, 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
vary: Origin
access-control-allow-origin: https://eu.siteground.com
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: FdY4C8UBdUnRjq9xjOq2eC40NxYoF5YwJSCN3ybA26Zc9HQyr2XhSA==
age: 116514
X-Firefox-Spdy: h2
damt7w3yoa0t2.cloudfront.net/assets/img/svg/icons/grey/icon_product_user.svg
54.230.245.231200 OK 0 B URL HTTP/2 damt7w3yoa0t2.cloudfront.net/assets/img/svg/icons/grey/icon_product_user.svg
IP 54.230.245.231:0
GET /assets/img/svg/icons/grey/icon_product_user.svg HTTP/1.1
Host: damt7w3yoa0t2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eu.siteground.com
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Sat, 14 Jan 2023 00:23:20 GMT
last-modified: Thu, 12 Jan 2023 12:01:50 GMT
etag: W/"63bff6ae-2e1"
expires: Sun, 14 Jan 2024 00:23:20 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000; preload
x-frame-options: DENY
x-server: 0
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: gzip
via: 1.1 google, 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
vary: Origin
access-control-allow-origin: https://eu.siteground.com
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: uHN7NSwUFHqEG4XYp41V9aZFOLud4Us4-72Ecwu55VsiiAPbc8cIMg==
age: 1789300
X-Firefox-Spdy: h2
cdn.cookielaw.org/logos/static/ot_close.svg
104.16.149.64200 OK 0 B URL HTTP/2 cdn.cookielaw.org/logos/static/ot_close.svg
IP 104.16.149.64:0
GET /logos/static/ot_close.svg HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 17:25:00 GMT
content-type: image/svg+xml
content-md5: pcXWFGpuVeSg/jVnYCseRg==
last-modified: Thu, 02 Feb 2023 13:33:38 GMT
x-ms-request-id: 7d4a892d-201e-010a-0968-37873a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 39864
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 793cdd05bb53b518-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
damt7w3yoa0t2.cloudfront.net/img/svg/blocks/services/premium_google_cloud.svg
54.230.245.231200 OK 0 B URL HTTP/2 damt7w3yoa0t2.cloudfront.net/img/svg/blocks/services/premium_google_cloud.svg
IP 54.230.245.231:0
GET /img/svg/blocks/services/premium_google_cloud.svg HTTP/1.1
Host: damt7w3yoa0t2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Thu, 19 Jan 2023 18:47:10 GMT
last-modified: Thu, 19 Jan 2023 13:42:42 GMT
etag: W/"63c948d2-6180"
expires: Fri, 19 Jan 2024 18:47:10 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000; preload
x-frame-options: DENY
x-server: 0
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: gzip
via: 1.1 google, 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: I1iqZt46YMTm0IgjnhTmUUHxxzoeYwruM9_7AvslSsl57NNSlZ5_2Q==
age: 1291070
X-Firefox-Spdy: h2
d3fjrnfgbgznt3.cloudfront.net/img/svg/heroes/promos/stvalentine_percent_index.svg
143.204.55.71200 OK 0 B URL HTTP/2 d3fjrnfgbgznt3.cloudfront.net/img/svg/heroes/promos/stvalentine_percent_index.svg
IP 143.204.55.71:0
GET /img/svg/heroes/promos/stvalentine_percent_index.svg HTTP/1.1
Host: d3fjrnfgbgznt3.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Thu, 02 Feb 2023 08:02:37 GMT
last-modified: Thu, 02 Feb 2023 07:48:23 GMT
etag: W/"63db6ac7-1d64"
expires: Fri, 02 Feb 2024 08:02:37 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000; preload
x-frame-options: DENY
x-server: 0
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: gzip
via: 1.1 google, 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
vary: Accept-Encoding
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _AsABjxbIvtwOnN2O8hbcCoIePlK-VFOIGGoMYvnmsFzKtD7rB8xkw==
age: 120143
X-Firefox-Spdy: h2
damt7w3yoa0t2.cloudfront.net/assets/img/svg/icon_instagram.svg
54.230.245.231200 OK 0 B URL HTTP/2 damt7w3yoa0t2.cloudfront.net/assets/img/svg/icon_instagram.svg
IP 54.230.245.231:0
GET /assets/img/svg/icon_instagram.svg HTTP/1.1
Host: damt7w3yoa0t2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eu.siteground.com
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Sun, 22 Jan 2023 00:42:41 GMT
last-modified: Fri, 20 Jan 2023 08:42:05 GMT
etag: W/"63ca53dd-4f5"
expires: Mon, 22 Jan 2024 00:42:41 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000; preload
x-frame-options: DENY
x-server: 0
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: gzip
via: 1.1 google, 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
vary: Origin
access-control-allow-origin: https://eu.siteground.com
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: l4jXiMwliQ1WoZrDCu7TJpZYQ_aq5S_ogP1W1Ozp4QvCdUNLBJLlGg==
age: 1096939
X-Firefox-Spdy: h2
damt7w3yoa0t2.cloudfront.net/assets/img/svg/icons/grey/icon_plus.svg
54.230.245.231200 OK 0 B URL HTTP/2 damt7w3yoa0t2.cloudfront.net/assets/img/svg/icons/grey/icon_plus.svg
IP 54.230.245.231:0
GET /assets/img/svg/icons/grey/icon_plus.svg HTTP/1.1
Host: damt7w3yoa0t2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eu.siteground.com
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Mon, 23 Jan 2023 00:46:06 GMT
last-modified: Sat, 21 Jan 2023 03:40:50 GMT
etag: W/"63cb5ec2-88"
expires: Tue, 23 Jan 2024 00:46:06 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000; preload
x-frame-options: DENY
x-server: 0
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: gzip
via: 1.1 google, 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
vary: Origin
access-control-allow-origin: https://eu.siteground.com
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2_p405MeqH_jydgjq8aXnwR6m7woLvDZGGQTucHGC5YJLNIMPYzXvw==
age: 1010334
X-Firefox-Spdy: h2
damt7w3yoa0t2.cloudfront.net/assets/img/svg//logos/sg_black.svg
54.230.245.231200 OK 0 B URL HTTP/2 damt7w3yoa0t2.cloudfront.net/assets/img/svg//logos/sg_black.svg
IP 54.230.245.231:0
GET /assets/img/svg//logos/sg_black.svg HTTP/1.1
Host: damt7w3yoa0t2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eu.siteground.com
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Tue, 10 Jan 2023 02:47:23 GMT
last-modified: Mon, 09 Jan 2023 16:02:48 GMT
etag: W/"63bc3aa8-1b02"
expires: Wed, 10 Jan 2024 02:47:23 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000; preload
x-frame-options: DENY
x-server: 0
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: gzip
via: 1.1 google, 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
vary: Origin
access-control-allow-origin: https://eu.siteground.com
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hXdHS2hi_5yWynBxYFKUQlhR4iVxJAT3nMv63bUsnAVeFXYcbK0hfQ==
age: 2126257
X-Firefox-Spdy: h2
damt7w3yoa0t2.cloudfront.net/assets/img/svg/logo-visa.svg
54.230.245.231200 OK 0 B URL HTTP/2 damt7w3yoa0t2.cloudfront.net/assets/img/svg/logo-visa.svg
IP 54.230.245.231:0
GET /assets/img/svg/logo-visa.svg HTTP/1.1
Host: damt7w3yoa0t2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eu.siteground.com
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Thu, 05 Jan 2023 03:11:53 GMT
last-modified: Thu, 05 Jan 2023 02:07:09 GMT
etag: W/"63b630cd-285"
expires: Fri, 05 Jan 2024 03:11:53 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000; preload
x-frame-options: DENY
x-server: 0
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: gzip
via: 1.1 google, 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
vary: Origin
access-control-allow-origin: https://eu.siteground.com
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: iYwLlFGD8K77EqjwWe3p0fb9ktAQcesMmpd7mTDNVRVnZqoQcuWg0A==
age: 2556787
X-Firefox-Spdy: h2
damt7w3yoa0t2.cloudfront.net/assets/img/svg//icons/grey/icon_product_wordpress.svg
54.230.245.231200 OK 0 B URL HTTP/2 damt7w3yoa0t2.cloudfront.net/assets/img/svg//icons/grey/icon_product_wordpress.svg
IP 54.230.245.231:0
GET /assets/img/svg//icons/grey/icon_product_wordpress.svg HTTP/1.1
Host: damt7w3yoa0t2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eu.siteground.com
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Tue, 17 Jan 2023 01:33:45 GMT
last-modified: Mon, 16 Jan 2023 14:35:00 GMT
etag: W/"63c56094-999"
expires: Wed, 17 Jan 2024 01:33:45 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000; preload
x-frame-options: DENY
x-server: 0
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: gzip
via: 1.1 google, 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
vary: Origin
access-control-allow-origin: https://eu.siteground.com
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZqxgzzTYFPIyT0JONwVD_rDB4PdRvYdEKWat63SqxOuyRDw1tCtqFQ==
age: 1525875
X-Firefox-Spdy: h2
damt7w3yoa0t2.cloudfront.net/assets/img/svg/icons/grey/icon_product_cloudflare.svg
54.230.245.231200 OK 0 B URL HTTP/2 damt7w3yoa0t2.cloudfront.net/assets/img/svg/icons/grey/icon_product_cloudflare.svg
IP 54.230.245.231:0
GET /assets/img/svg/icons/grey/icon_product_cloudflare.svg HTTP/1.1
Host: damt7w3yoa0t2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eu.siteground.com
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Sat, 21 Jan 2023 00:25:41 GMT
last-modified: Fri, 20 Jan 2023 08:42:05 GMT
etag: W/"63ca53dd-5c7"
expires: Sun, 21 Jan 2024 00:25:41 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000; preload
x-frame-options: DENY
x-server: 0
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: gzip
via: 1.1 google, 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
vary: Origin
access-control-allow-origin: https://eu.siteground.com
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BJPEEtRIJOyADRjaW06-MDkzXRT1Ko1MLsK8TvKLOqFaRG4S-ZuRPA==
age: 1184359
X-Firefox-Spdy: h2
damt7w3yoa0t2.cloudfront.net/assets/img/svg/icon-twitter.svg
54.230.245.231200 OK 0 B URL HTTP/2 damt7w3yoa0t2.cloudfront.net/assets/img/svg/icon-twitter.svg
IP 54.230.245.231:0
GET /assets/img/svg/icon-twitter.svg HTTP/1.1
Host: damt7w3yoa0t2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eu.siteground.com
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Thu, 12 Jan 2023 00:21:55 GMT
last-modified: Wed, 11 Jan 2023 13:48:22 GMT
etag: W/"63bebe26-25d"
expires: Fri, 12 Jan 2024 00:21:55 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000; preload
x-frame-options: DENY
x-server: 0
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: gzip
via: 1.1 google, 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
vary: Origin
access-control-allow-origin: https://eu.siteground.com
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: W0wvAZugKQBNdNXbDvXKtfkkp501WYnORf4Or1oKwCmqFssRLBCppA==
age: 1962185
X-Firefox-Spdy: h2
damt7w3yoa0t2.cloudfront.net/assets/img/svg/icons/grey/icon_product_heart.svg
54.230.245.231200 OK 0 B URL HTTP/2 damt7w3yoa0t2.cloudfront.net/assets/img/svg/icons/grey/icon_product_heart.svg
IP 54.230.245.231:0
GET /assets/img/svg/icons/grey/icon_product_heart.svg HTTP/1.1
Host: damt7w3yoa0t2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eu.siteground.com
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Mon, 09 Jan 2023 00:25:31 GMT
last-modified: Sun, 08 Jan 2023 06:06:28 GMT
etag: W/"63ba5d64-295"
expires: Tue, 09 Jan 2024 00:25:31 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000; preload
x-frame-options: DENY
x-server: 0
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: gzip
via: 1.1 google, 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
vary: Origin
access-control-allow-origin: https://eu.siteground.com
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KVqtgeK_kgvJ0OKQcQgtkoO7rmG4QYJbXzYKilKO-PckfBKDFbXWWg==
age: 2221169
X-Firefox-Spdy: h2
damt7w3yoa0t2.cloudfront.net/assets/img/svg/icon_youtube.svg
54.230.245.231200 OK 0 B URL HTTP/2 damt7w3yoa0t2.cloudfront.net/assets/img/svg/icon_youtube.svg
IP 54.230.245.231:0
GET /assets/img/svg/icon_youtube.svg HTTP/1.1
Host: damt7w3yoa0t2.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eu.siteground.com
Connection: keep-alive
Referer: https://eu.siteground.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Thu, 12 Jan 2023 01:05:43 GMT
last-modified: Wed, 11 Jan 2023 13:48:22 GMT
etag: W/"63bebe26-1ce"
expires: Fri, 12 Jan 2024 01:05:43 GMT
cache-control: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1
strict-transport-security: max-age=31536000; preload
x-frame-options: DENY
x-server: 0
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: gzip
via: 1.1 google, 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
vary: Origin
access-control-allow-origin: https://eu.siteground.com
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Dz2OGR32_iO-bJORcYHh8ysJIqvWxKXm6fctqFLx4KvXR4srrpESkg==
age: 1959557
X-Firefox-Spdy: h2