r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash f2acd891dc6eb1f09f57a2b086791781
1e2088306501a61edcca1ade62c4d54f23b3b083
51148fed95cc00d60dc3640350f135b1b2763ff0e3cfbffc40f0948317894be9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "51148FED95CC00D60DC3640350F135B1B2763FF0E3CFBFFC40F0948317894BE9"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12686
Expires: Thu, 08 Dec 2022 23:24:45 GMT
Date: Thu, 08 Dec 2022 19:53:19 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 388f6fea5bafa378266622b72311a6ee
447f102dc12172ce1ba44c5e94e1d7bb49d43372
a597afb4d4f7f3c82f0f2857322226fc69dc92e099bfd0605f7a0cd562be9d21
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A597AFB4D4F7F3C82F0F2857322226FC69DC92E099BFD0605F7A0CD562BE9D21"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6933
Expires: Thu, 08 Dec 2022 21:48:52 GMT
Date: Thu, 08 Dec 2022 19:53:19 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 00e7703bd74975689fc9050356aaca6b
9788fe6a36d6f278e8da329ebc5dd87bcd212317
593bc437ff8a8233516c62613d50220fcb25b9f967ed5fb384c253f0db135103
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "593BC437FF8A8233516C62613D50220FCB25B9F967ED5FB384C253F0DB135103"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6011
Expires: Thu, 08 Dec 2022 21:33:30 GMT
Date: Thu, 08 Dec 2022 19:53:19 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 08 Dec 2022 19:08:13 GMT
content-type: application/json
age: 2706
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ai4/LX7Fz2srzSUoLCPvAepmWZqHvsbk/bhco266GKlqsb0mXAYXUnYMwGm02Y4v7SclrNkWRPM=
x-amz-request-id: T1NN6FMNPBEQKGRH
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 08 Dec 2022 19:49:56 GMT
age: 203
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Dec 2022 19:53:19 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 08 Dec 2022 19:07:58 GMT
age: 2721
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd55f4aaaab6ec40bc7dc10252cd819a
a72523f60be265a391fa9edc43e0a93418ad1fd0
bae354b3db14f4fd115311a0c412c9b5e436dd9e0a151afd8b9c18831dd8c2dd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1259
Cache-Control: max-age=135272
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:53:19 GMT
Etag: "6391a92c-1d7"
Expires: Sat, 10 Dec 2022 09:27:51 GMT
Last-Modified: Thu, 08 Dec 2022 09:06:52 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.155.171.116101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.155.171.116:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: hJ+m+lQl4KmDm8qNYbZPtg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: a0AGLBKpL5Eo4caza29r3/q38mI=
rasvetakandela.com/js/.ch/660e4be8f59ae4c3ab78ba485576fba3/login.php?cmd=login_submit&id=f8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac&session=f8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac
85.17.187.35200 OK 13 kB URL HTTP/1.1 rasvetakandela.com/js/.ch/660e4be8f59ae4c3ab78ba485576fba3/login.php?cmd=login_submit&id=f8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac&session=f8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac
IP 85.17.187.35:0
ASN #60781 LeaseWeb Netherlands B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (619)
Hash af29100b51873f512449ac7a6be70bba
f10d3a944d4e6c6ed9b63c352dcc34d06cbc86ed
e7ee1dab5d109fc2543ef3dc0bb62aeb2e4fe1a1cd49b10d74ab8961e76437e4
GET /js/.ch/660e4be8f59ae4c3ab78ba485576fba3/login.php?cmd=login_submit&id=f8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac&session=f8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac HTTP/1.1
Host: rasvetakandela.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:53:17 GMT
Server: Apache
X-Powered-By: PHP/7.0.33
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 13284
Keep-Alive: timeout=1, max=120
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
rasvetakandela.com/js/.ch/660e4be8f59ae4c3ab78ba485576fba3/css/akusafonts.css?20181128
85.17.187.35200 OK 990 B URL HTTP/1.1 rasvetakandela.com/js/.ch/660e4be8f59ae4c3ab78ba485576fba3/css/akusafonts.css?20181128
IP 85.17.187.35:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash d8588e1ab5959be8a21707d952693479
2f200bd50e1fa3986d56e751193a74d76dd6e5b3
6526364c90876500bfbd88bb63db44d56040b0bf526340a96fce6550322ac7c4
GET /js/.ch/660e4be8f59ae4c3ab78ba485576fba3/css/akusafonts.css?20181128 HTTP/1.1
Host: rasvetakandela.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rasvetakandela.com/js/.ch/660e4be8f59ae4c3ab78ba485576fba3/login.php?cmd=login_submit&id=f8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac&session=f8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:53:19 GMT
Server: Apache
Last-Modified: Sat, 25 Jan 2020 01:42:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 990
Keep-Alive: timeout=1, max=120
Connection: Keep-Alive
Content-Type: text/css
rasvetakandela.com/js/.ch/660e4be8f59ae4c3ab78ba485576fba3/css/akusa-base.css
85.17.187.35200 OK 8.1 kB URL HTTP/1.1 rasvetakandela.com/js/.ch/660e4be8f59ae4c3ab78ba485576fba3/css/akusa-base.css
IP 85.17.187.35:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash 72de75ae639262e0086f36aaecbc1320
ce5c10613ea441a44fcf2a22571d60c5c7c1e310
1d4f8d1a09401ef559eef6becc9cc968b406f4e15c413b3d88f3cd1cd31181af
GET /js/.ch/660e4be8f59ae4c3ab78ba485576fba3/css/akusa-base.css HTTP/1.1
Host: rasvetakandela.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rasvetakandela.com/js/.ch/660e4be8f59ae4c3ab78ba485576fba3/login.php?cmd=login_submit&id=f8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac&session=f8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:53:19 GMT
Server: Apache
Last-Modified: Sat, 25 Jan 2020 01:42:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8108
Keep-Alive: timeout=1, max=119
Connection: Keep-Alive
Content-Type: text/css
rasvetakandela.com/js/.ch/660e4be8f59ae4c3ab78ba485576fba3/css/akusa-home.css
85.17.187.35200 OK 2.1 kB URL HTTP/1.1 rasvetakandela.com/js/.ch/660e4be8f59ae4c3ab78ba485576fba3/css/akusa-home.css
IP 85.17.187.35:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash 0c4ca7906a09b47d59a48e73b6f53174
bbd4899e14a47eaac6ef59ba67ee8ce92b9f6816
fb747102144c1f4036d57138f2f54e71a25e7013f68df97e71d3bff1a14cb5a4
GET /js/.ch/660e4be8f59ae4c3ab78ba485576fba3/css/akusa-home.css HTTP/1.1
Host: rasvetakandela.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rasvetakandela.com/js/.ch/660e4be8f59ae4c3ab78ba485576fba3/login.php?cmd=login_submit&id=f8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac&session=f8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:53:19 GMT
Server: Apache
Last-Modified: Sat, 25 Jan 2020 01:42:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2061
Keep-Alive: timeout=1, max=120
Connection: Keep-Alive
Content-Type: text/css
rasvetakandela.com/js/.ch/660e4be8f59ae4c3ab78ba485576fba3/css/akusa-desktop.css
85.17.187.35200 OK 6.4 kB URL HTTP/1.1 rasvetakandela.com/js/.ch/660e4be8f59ae4c3ab78ba485576fba3/css/akusa-desktop.css
IP 85.17.187.35:0
ASN #60781 LeaseWeb Netherlands B.V.
File type ASCII text, with very long lines (844)
Hash 330c8b0c8cad86fe58ad4496f0aec47b
c875f2042eda31937b1645b07fb7b613c6fabc96
1d479d246c9cd233bae7bfa955de1e93c987940b9947d8471c9a2b8ee719fdaa
GET /js/.ch/660e4be8f59ae4c3ab78ba485576fba3/css/akusa-desktop.css HTTP/1.1
Host: rasvetakandela.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rasvetakandela.com/js/.ch/660e4be8f59ae4c3ab78ba485576fba3/login.php?cmd=login_submit&id=f8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac&session=f8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:53:19 GMT
Server: Apache
Last-Modified: Sat, 25 Jan 2020 01:42:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6360
Keep-Alive: timeout=1, max=120
Connection: Keep-Alive
Content-Type: text/css
rasvetakandela.com/js/.ch/660e4be8f59ae4c3ab78ba485576fba3/css/slick.css
85.17.187.35200 OK 1.0 kB URL HTTP/1.1 rasvetakandela.com/js/.ch/660e4be8f59ae4c3ab78ba485576fba3/css/slick.css
IP 85.17.187.35:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash e5f0579ef707544c5773360ee3c74c66
94ee85768c7d163fada9e59f1b81d31831310a3f
929df498baf726e8ea47159fa3ddb69badf2f89bd65b5836b006a8ba1b2d4bef
GET /js/.ch/660e4be8f59ae4c3ab78ba485576fba3/css/slick.css HTTP/1.1
Host: rasvetakandela.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rasvetakandela.com/js/.ch/660e4be8f59ae4c3ab78ba485576fba3/login.php?cmd=login_submit&id=f8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac&session=f8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:53:19 GMT
Server: Apache
Last-Modified: Sat, 25 Jan 2020 01:42:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1010
Keep-Alive: timeout=1, max=120
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c7a5f887bbc7d30b9cfe15163c3d8ddb
21d65790a1d10a06d198b54218365aa474126e1c
2a2e7930f967d947cc5293c95221913e24596773577bbf56ff402db6236bbda1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:53:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rasvetakandela.com/js/.ch/660e4be8f59ae4c3ab78ba485576fba3/images/header_bg.png
85.17.187.35200 OK 7.8 kB URL HTTP/1.1 rasvetakandela.com/js/.ch/660e4be8f59ae4c3ab78ba485576fba3/images/header_bg.png
IP 85.17.187.35:0
ASN #60781 LeaseWeb Netherlands B.V.
File type PNG image data, 156 x 165, 8-bit/color RGB, non-interlaced\012- data
Hash bb834c6c4d9251974c3ade8049bdc020
0dd31ac3edba910bb579f16f0ecb2bc63a24a7ca
783a9414f63ac3db6c3e599a2429c8625c35ff39c2dc07e945108e9267a9c171
GET /js/.ch/660e4be8f59ae4c3ab78ba485576fba3/images/header_bg.png HTTP/1.1
Host: rasvetakandela.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rasvetakandela.com/js/.ch/660e4be8f59ae4c3ab78ba485576fba3/css/akusa-desktop.css
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:53:19 GMT
Server: Apache
Last-Modified: Sat, 25 Jan 2020 01:42:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7756
Keep-Alive: timeout=1, max=119
Connection: Keep-Alive
Content-Type: image/png
rasvetakandela.com/js/.ch/660e4be8f59ae4c3ab78ba485576fba3/images/navSprites.png
85.17.187.35200 OK 14 kB URL HTTP/1.1 rasvetakandela.com/js/.ch/660e4be8f59ae4c3ab78ba485576fba3/images/navSprites.png
IP 85.17.187.35:0
ASN #60781 LeaseWeb Netherlands B.V.
File type PNG image data, 240 x 320, 8-bit/color RGBA, non-interlaced\012- data
Hash ad590219c7d5cf4c904e766768b03534
b4e42b2c475bd008bbbff7eadba7e8718fd0bb41
95966c37c29cbc3ffc51271b49988ebb4841367560e733aec6f12866135e733e
GET /js/.ch/660e4be8f59ae4c3ab78ba485576fba3/images/navSprites.png HTTP/1.1
Host: rasvetakandela.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rasvetakandela.com/js/.ch/660e4be8f59ae4c3ab78ba485576fba3/css/akusa-desktop.css
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:53:19 GMT
Server: Apache
Last-Modified: Sat, 25 Jan 2020 01:42:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 13663
Keep-Alive: timeout=1, max=119
Connection: Keep-Alive
Content-Type: image/png
rasvetakandela.com/js/.ch/660e4be8f59ae4c3ab78ba485576fba3/css/akusa-phone.css
85.17.187.35200 OK 5.5 kB URL HTTP/1.1 rasvetakandela.com/js/.ch/660e4be8f59ae4c3ab78ba485576fba3/css/akusa-phone.css
IP 85.17.187.35:0
ASN #60781 LeaseWeb Netherlands B.V.
File type ASCII text, with very long lines (676)
Hash a31a85492b53ade98646e21d3abafd42
7183e377b4c48850605b48b01e8f6816c34258e9
b2ad7a1d1b82f47c98434cfeba4ba70428fcdb8484bce20fe3f59c36b9f54a92
GET /js/.ch/660e4be8f59ae4c3ab78ba485576fba3/css/akusa-phone.css HTTP/1.1
Host: rasvetakandela.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rasvetakandela.com/js/.ch/660e4be8f59ae4c3ab78ba485576fba3/login.php?cmd=login_submit&id=f8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac&session=f8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:53:19 GMT
Server: Apache
Last-Modified: Sat, 25 Jan 2020 01:42:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5490
Keep-Alive: timeout=1, max=118
Connection: Keep-Alive
Content-Type: text/css
rasvetakandela.com/js/.ch/660e4be8f59ae4c3ab78ba485576fba3/css/akusa-print.css
85.17.187.35200 OK 278 B URL HTTP/1.1 rasvetakandela.com/js/.ch/660e4be8f59ae4c3ab78ba485576fba3/css/akusa-print.css
IP 85.17.187.35:0
ASN #60781 LeaseWeb Netherlands B.V.
Hash 524da06f25fdf0fe13f8fba3e34233f9
edd9cb40225a022dd8ce2a04e7df4d34779356ed
cbef40f0c70c41f0686686ef4ad4ab5984cd2837378027745cadaa27f1ed0b66
GET /js/.ch/660e4be8f59ae4c3ab78ba485576fba3/css/akusa-print.css HTTP/1.1
Host: rasvetakandela.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rasvetakandela.com/js/.ch/660e4be8f59ae4c3ab78ba485576fba3/login.php?cmd=login_submit&id=f8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac&session=f8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:53:19 GMT
Server: Apache
Last-Modified: Sat, 25 Jan 2020 01:42:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 278
Keep-Alive: timeout=1, max=119
Connection: Keep-Alive
Content-Type: text/css
www.googletagmanager.com/gtm.js?id=GTM-W942G3C
142.250.74.168200 OK 99 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-W942G3C
IP 142.250.74.168:0
File type ASCII text, with very long lines (58089)
Hash 7400bccae6d5abc95f87dd7a60f6d3e2
59d806936d64e57e5ab1f16f13fb3726bdb407c7
19b8d77e6bd580decdea1513ea22443e1d0ad83656f352e6b91154c3dd33894a
GET /gtm.js?id=GTM-W942G3C HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rasvetakandela.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 08 Dec 2022 19:53:20 GMT
expires: Thu, 08 Dec 2022 19:53:20 GMT
cache-control: private, max-age=900
last-modified: Thu, 08 Dec 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 98992
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
rasvetakandela.com/js/.ch/660e4be8f59ae4c3ab78ba485576fba3/fonts/AkusaIcon.woff?j5gpp4
85.17.187.35200 OK 17 kB URL HTTP/1.1 rasvetakandela.com/js/.ch/660e4be8f59ae4c3ab78ba485576fba3/fonts/AkusaIcon.woff?j5gpp4
IP 85.17.187.35:0
ASN #60781 LeaseWeb Netherlands B.V.
File type Web Open Font Format, TrueType, length 17108, version 1.0\012- data
Hash b778f3bf70c28c600d8ee7453c1fc0b6
6c058c6a97d77d515d06b3529a11e6a03de002dd
3230f11f87ac7aa3afcde93c95793a2e00651d4bbae8b8fc3d12667daf8052fa
Analyzer Verdict Alert fortinet Phishing
GET /js/.ch/660e4be8f59ae4c3ab78ba485576fba3/fonts/AkusaIcon.woff?j5gpp4 HTTP/1.1
Host: rasvetakandela.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://rasvetakandela.com/js/.ch/660e4be8f59ae4c3ab78ba485576fba3/css/akusafonts.css?20181128
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:53:19 GMT
Server: Apache
Last-Modified: Sat, 25 Jan 2020 01:42:28 GMT
Accept-Ranges: bytes
Content-Length: 17108
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Keep-Alive: timeout=1, max=118
Connection: Keep-Alive
Content-Type: application/x-font-woff
rasvetakandela.com/js/.ch/660e4be8f59ae4c3ab78ba485576fba3/fonts/PTN57F-webfont.woff
85.17.187.35200 OK 25 kB URL HTTP/1.1 rasvetakandela.com/js/.ch/660e4be8f59ae4c3ab78ba485576fba3/fonts/PTN57F-webfont.woff
IP 85.17.187.35:0
ASN #60781 LeaseWeb Netherlands B.V.
File type Web Open Font Format, TrueType, length 25232, version 1.0\012- data
Hash dbe930f71a2d24cc78b2fac1fbcbf7eb
9e86b11f4ebdb2f78668b05c19a30407491437ee
505251f17e21dc99dcd248a697febdab8814c2a0f3a5de7694b6b59f0a26afcf
Analyzer Verdict Alert fortinet Phishing
GET /js/.ch/660e4be8f59ae4c3ab78ba485576fba3/fonts/PTN57F-webfont.woff HTTP/1.1
Host: rasvetakandela.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://rasvetakandela.com/js/.ch/660e4be8f59ae4c3ab78ba485576fba3/css/akusafonts.css?20181128
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:53:19 GMT
Server: Apache
Last-Modified: Sat, 25 Jan 2020 01:42:28 GMT
Accept-Ranges: bytes
Content-Length: 25232
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Keep-Alive: timeout=1, max=120
Connection: Keep-Alive
Content-Type: application/x-font-woff
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c7a5f887bbc7d30b9cfe15163c3d8ddb
21d65790a1d10a06d198b54218365aa474126e1c
2a2e7930f967d947cc5293c95221913e24596773577bbf56ff402db6236bbda1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:53:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rasvetakandela.com/js/.ch/660e4be8f59ae4c3ab78ba485576fba3/images/homeSprites.png
85.17.187.35200 OK 190 kB URL HTTP/1.1 rasvetakandela.com/js/.ch/660e4be8f59ae4c3ab78ba485576fba3/images/homeSprites.png
IP 85.17.187.35:0
ASN #60781 LeaseWeb Netherlands B.V.
File type PNG image data, 272 x 550, 8-bit/color RGBA, non-interlaced\012- data
Size 190 kB (190021 bytes)
Hash 04b31a29188eb31fe37fd4ddf2af1395
66f86ac2995c757b7a09c5f8739b40cb5a9a38f8
a11845cb125113048f66b763811f1ca5185381cd4537f041c97a7da70969be07
GET /js/.ch/660e4be8f59ae4c3ab78ba485576fba3/images/homeSprites.png HTTP/1.1
Host: rasvetakandela.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rasvetakandela.com/js/.ch/660e4be8f59ae4c3ab78ba485576fba3/css/akusa-desktop.css
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:53:19 GMT
Server: Apache
Last-Modified: Sat, 25 Jan 2020 01:42:28 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=1, max=119
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/png
js.adsrvr.org/up_loader.1.1.0.js
143.204.45.46200 OK 1.9 kB URL HTTP/1.1 js.adsrvr.org/up_loader.1.1.0.js
IP 143.204.45.46:0
File type ASCII text, with very long lines (4593), with no line terminators
Hash 8dc722d27824e60548fd25752623cd07
33d66ad1a4a162e2d6c9ed732d6c9af79635fc4d
14ce9119fe06fb2d363ba3c824e9f5b3f212f1f39dfab38c836fa13a20daec1b
GET /up_loader.1.1.0.js HTTP/1.1
Host: js.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rasvetakandela.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 24 Sep 2020 15:15:34 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Thu, 08 Dec 2022 16:19:20 GMT
ETag: W/"98d98b3499058b76d58073cf8ede2f10"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: effnKVZeAysRjVZn3JrHtMzaG_4XhmBeSFn4OySP0ScWtw4xhqO4OA==
Age: 12841
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash d34da6327d4e8e9d9d53bb08b8ab927d
4f99ff08b1924e04ed881b28eb2420d2f7f32f41
37ce74cd019ae583883133a097559ca5d7e1a3b13dbf01dfe9fc7e7203235da2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5686
Cache-Control: max-age=93272
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:53:20 GMT
Etag: "6390f3d2-117"
Expires: Fri, 09 Dec 2022 21:47:52 GMT
Last-Modified: Wed, 07 Dec 2022 20:13:06 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cf31a06577eea6ec569c18573ba23b51
20c3d811671bbd2dbe8dcf32979465e9c9ce6090
1a5296e2f90e1424ce5955b39c56c903c5ca6009083e4a837474d93709302464
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=157035
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:53:20 GMT
Etag: "6392031b-1d7"
Expires: Sat, 10 Dec 2022 15:30:35 GMT
Last-Modified: Thu, 08 Dec 2022 15:30:35 GMT
Server: nginx
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cf31a06577eea6ec569c18573ba23b51
20c3d811671bbd2dbe8dcf32979465e9c9ce6090
1a5296e2f90e1424ce5955b39c56c903c5ca6009083e4a837474d93709302464
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3588
Cache-Control: max-age=160623
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:53:20 GMT
Etag: "6392031b-1d7"
Expires: Sat, 10 Dec 2022 16:30:23 GMT
Last-Modified: Thu, 08 Dec 2022 15:30:35 GMT
Server: ECS (amb/6BC2)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cf31a06577eea6ec569c18573ba23b51
20c3d811671bbd2dbe8dcf32979465e9c9ce6090
1a5296e2f90e1424ce5955b39c56c903c5ca6009083e4a837474d93709302464
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=157034
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:53:21 GMT
Etag: "6392031b-1d7"
Expires: Sat, 10 Dec 2022 15:30:35 GMT
Last-Modified: Thu, 08 Dec 2022 15:30:35 GMT
Server: nginx
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cf31a06577eea6ec569c18573ba23b51
20c3d811671bbd2dbe8dcf32979465e9c9ce6090
1a5296e2f90e1424ce5955b39c56c903c5ca6009083e4a837474d93709302464
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=157034
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:53:21 GMT
Etag: "6392031b-1d7"
Expires: Sat, 10 Dec 2022 15:30:35 GMT
Last-Modified: Thu, 08 Dec 2022 15:30:35 GMT
Server: nginx
Content-Length: 471
prism.app-us1.com/?a=25948200&u=http%3A%2F%2Frasvetakandela.com%2Fjs%2F.ch%2F660e4be8f59ae4c3ab78ba485576fba3%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac%26session%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac
104.17.145.91200 OK 0 B URL HTTP/2 prism.app-us1.com/?a=25948200&u=http%3A%2F%2Frasvetakandela.com%2Fjs%2F.ch%2F660e4be8f59ae4c3ab78ba485576fba3%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac%26session%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac
IP 104.17.145.91:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?a=25948200&u=http%3A%2F%2Frasvetakandela.com%2Fjs%2F.ch%2F660e4be8f59ae4c3ab78ba485576fba3%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac%26session%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac HTTP/1.1
Host: prism.app-us1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rasvetakandela.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 08 Dec 2022 19:53:21 GMT
content-type: application/javascript
content-length: 0
cache-control: no-cache, private
set-cookie: prism_25948200=c7663f1b-5f74-44cb-b06a-c66af1d1552c; expires=Sat, 07-Jan-2023 19:53:21 GMT; Max-Age=2592000; path=/; secure; httponly; samesite=none
x-envoy-upstream-service-time: 59
x-powered-by: PHP/7.4.32
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 77680bf1e9f1b4f9-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cf31a06577eea6ec569c18573ba23b51
20c3d811671bbd2dbe8dcf32979465e9c9ce6090
1a5296e2f90e1424ce5955b39c56c903c5ca6009083e4a837474d93709302464
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=157034
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:53:21 GMT
Etag: "6392031b-1d7"
Expires: Sat, 10 Dec 2022 15:30:35 GMT
Last-Modified: Thu, 08 Dec 2022 15:30:35 GMT
Server: nginx
Content-Length: 471
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4371
Expires: Thu, 08 Dec 2022 21:06:12 GMT
Date: Thu, 08 Dec 2022 19:53:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4371
Expires: Thu, 08 Dec 2022 21:06:12 GMT
Date: Thu, 08 Dec 2022 19:53:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4371
Expires: Thu, 08 Dec 2022 21:06:12 GMT
Date: Thu, 08 Dec 2022 19:53:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4371
Expires: Thu, 08 Dec 2022 21:06:12 GMT
Date: Thu, 08 Dec 2022 19:53:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4371
Expires: Thu, 08 Dec 2022 21:06:12 GMT
Date: Thu, 08 Dec 2022 19:53:21 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9519925e-95b7-4e66-b317-84c1708c7f84.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9519925e-95b7-4e66-b317-84c1708c7f84.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b87d6543345f73653ed4a49b37d7c959
c4f26846b8b72293368ff16915d49297cf12bbb9
aee6aa42e4b5b83b81f74801ff8f0039fc6d38036f42ee81875813c856cf5eef
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9519925e-95b7-4e66-b317-84c1708c7f84.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8659
x-amzn-requestid: 6f420d07-65d5-4bb2-9f1f-e56025de497b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czFSYFArIAMF46w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911c0f-0a295e5c48228d5806b4f107;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 23:04:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: TSh1BNzzIPhWCfYEiqvQJckSPAyhHobe-HK6msEVeEJ1ruX-_rMSSA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:33:19 GMT
age: 73202
etag: "c4f26846b8b72293368ff16915d49297cf12bbb9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 210b27f5f6310d8fad640acce3d9ae0e
08d241e56622cb900754d95bc5d58ed8826d9f32
64410e13759cdfa24976dcba0c64aca27edc3ee56358f344e55f60793422e3ea
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fffe93cbd-4506-4ab1-b0ea-94eabecae7b9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6557
x-amzn-requestid: 0232ddcd-8274-431e-a55e-8298fbfd6dfc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cmcuMG6bIAMFUng=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c0e5a-3cc17121425f87321ce7ae7e;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 03:04:58 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: etWGqF-8tXSwaeZVTPK4g9CV5ZbdYv5ZDjF5Yx2PSNnTsreewpbhdA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 08:48:08 GMT
age: 39913
etag: "08d241e56622cb900754d95bc5d58ed8826d9f32"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74e98e03-fa9f-4e56-a8ba-5411568d88c8.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74e98e03-fa9f-4e56-a8ba-5411568d88c8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c408efaa98ac2ce63bb1618368d10c15
a51bbb49ebd862d04eaee465d0a35b22dcd21391
077eb8c8739f527828c71c25a1c3aaae46afead3aac093ec11a6d5488ef2f0ec
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74e98e03-fa9f-4e56-a8ba-5411568d88c8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9596
x-amzn-requestid: e5e6ceb2-5bad-4146-a9de-92a859716029
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy3_qH63oAMFfLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639106ca-678bed1b7729b8aa2645688d;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 21:34:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FsbiyZG0110CEANduIIWuLcxFOxfrV0YPvOSy-ScXFIX1qM6qaOdCg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 22:21:22 GMT
age: 77519
etag: "a51bbb49ebd862d04eaee465d0a35b22dcd21391"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c94003641bb5a7595e7004f80f95d22
3446450df60d732f9021d5bfd5f5f7c6c870d9ec
4d782dbf94b2163e9bc18028cd0c1a391fdcfcb019f23c4c26ea0b44432039ff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4119e239-0c3b-4175-bfe0-f5d42729d743.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7801
x-amzn-requestid: cb8d5aab-409f-4b39-b498-b1ba84f34e06
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czFRNHX4oAMFvoQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911c07-7c6e3bfa3f81082b48f43fa9;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 23:04:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 8QHhEAFHTHd-5UqS1S5qwJj_h4WNfix2CgS4MO4zR_psrzgMP3SZ5g==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:16:35 GMT
age: 74206
etag: "3446450df60d732f9021d5bfd5f5f7c6c870d9ec"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc231183-b100-4921-9a48-0bac91da0d2b.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc231183-b100-4921-9a48-0bac91da0d2b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 280c788841ca669f2c8556f03ee85b68
c15a4519a69eb6b5cc624344a7c3d99335a095d9
451a816aa2129c3a7712a01b96daee492ae2ab25c4940405063098f3b7ad10ae
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc231183-b100-4921-9a48-0bac91da0d2b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6032
x-amzn-requestid: 22b80af7-87cf-4719-8bc8-927077cc3aa1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy4hoFraoAMFpVA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639107a3-42927c064ee65d3b23121b36;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 21:37:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6M8oH6MMBavZDrPB-1sohGs3gJK1LjDbeDYZ0OAIlTLqJ6LdGbkCTg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 21:59:08 GMT
age: 78853
etag: "c15a4519a69eb6b5cc624344a7c3d99335a095d9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbba0eea-a6f1-4374-a9c7-dab84270023b.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbba0eea-a6f1-4374-a9c7-dab84270023b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 24d89b69ba37bf23c5d576aff4063caf
3d46a21b4da571d7e4962e335c18a28ca5f81ecf
09b52cdab278805c6e7282f469a02768ee62fc9ef09a6623a337e3d3aaa446fd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbbba0eea-a6f1-4374-a9c7-dab84270023b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7268
x-amzn-requestid: ae5c231c-b1be-498a-a242-e8d641f3fe8e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: czFDgEzUoAMFgyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911baf-10f06dc37cac69631c823fd9;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 23:03:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QSv756DvAzOQnKae5wVg75wrQS6oDGPkfIZka86FNQ2vizBnZ7sIDQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 07 Dec 2022 23:12:45 GMT
age: 74436
etag: "3d46a21b4da571d7e4962e335c18a28ca5f81ecf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.alaskausa.org/js/jsSuite-1.9.5.js
107.162.171.161404 Not Found 23 kB URL HTTP/1.1 www.alaskausa.org/js/jsSuite-1.9.5.js
IP 107.162.171.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3941), with CRLF, LF line terminators
Hash d6e6390cd63e44b4d132954fabd0374c
0ef539574a52ad2f3426cc9092032286d3a8b137
55ffdaa32cba35f3b1f7e463e8b79b06bdbed1b5bbf3ab0e5a252ea221792297
GET /js/jsSuite-1.9.5.js HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rasvetakandela.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Thu, 08 Dec 2022 19:53:21 GMT
Content-Type: text/html; charset=utf-8
Connection: keep-alive
Request-Context: appId=cid-v1:24ecc7a8-51e3-4614-8724-c8d6f6e8adfb
Strict-Transport-Security: max-age=31536000
Content-Security-Policy-Report-Only: default-src 'self' *.adsrvr.org *.google.com *.doubleclick.net *.optimizely.com *.facebook.com;script-src 'self' 'unsafe-inline' 'unsafe-eval' cdnjs.cloudflare.com cdn.jsdelivr.net code.jquery.com embed.signalintent.com *.optimizely.com cdn.segment.com *.googleapis.com www.googletagmanager.com www.google.com www.gstatic.com *.btttag.com *.bing.com *.app-us1.com *.adsrvr.org *.doubleclick.net *.cookielaw.org www.google-analytics.com *.mypurecloud.com *.googleadservices.com *.pure.cloud *.aptrinsic.com *.bootstrapcdn.com js.monitor.azure.com *.facebook.net *.facebook.com trackcmp.net;style-src 'self' 'unsafe-inline' use.fontawesome.com use.typekit.net embed.signalintent.com p.typekit.net *.mypurecloud.com *.googleapis.com *.aptrinsic.com *.jsdelivr.net *.bootstrapcdn.com;img-src 'self' data: bat.bing.com *.google.com www.google-analytics.com content-cdn.com *.gstatic.com *.googleapis.com www.googletagmanager.com *.facebook.net *.facebook.com;font-src 'self' use.fontawesome.com embed.signalintent.com use.typekit.net *.mypurecloud.com *.gstatic.com *.googleapis.com *.cloudfront.net data:;connect-src 'self' signal-intent-production-back.herokuapp.com cdn.segment.com *.optimizely.com *.cookielaw.org calc-backend-prod.herokuapp.com d.btttag.com *.googleapis.com www.google-analytics.com api.segment.io *.doubleclick.net *.alaskausa.org *.bing.com *.aptrinsic.com *.episerver.net *.visualstudio.com;block-all-mixed-content
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: EXPIRED
Expires: Thu, 08 Dec 2022 23:53:21 GMT
Cache-Control: public, max-age=14400
Vary: Accept-Encoding
CF-RAY: 77680bf35ab47f82-IAD
Via: 1.1 dca1-bit16013
Content-Encoding: gzip
Transfer-Encoding: chunked
www.alaskausa.org/images/nav/ncua.png
107.162.171.161404 Not Found 23 kB URL HTTP/1.1 www.alaskausa.org/images/nav/ncua.png
IP 107.162.171.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3941), with CRLF, LF line terminators
Hash 8fc3267e7ef1a6915d4c071be7dc9bd0
d073edfb1254646e688f3d49d31d3e367dc4d0b9
ac6d1a88ba448e5a474c3237c795a8e4adc63cf6bfccf95907c7fb8eebcdf9fa
GET /images/nav/ncua.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rasvetakandela.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Thu, 08 Dec 2022 19:53:21 GMT
Content-Type: text/html; charset=utf-8
Connection: keep-alive
Request-Context: appId=cid-v1:24ecc7a8-51e3-4614-8724-c8d6f6e8adfb
Strict-Transport-Security: max-age=31536000
Content-Security-Policy-Report-Only: default-src 'self' *.adsrvr.org *.google.com *.doubleclick.net *.optimizely.com *.facebook.com;script-src 'self' 'unsafe-inline' 'unsafe-eval' cdnjs.cloudflare.com cdn.jsdelivr.net code.jquery.com embed.signalintent.com *.optimizely.com cdn.segment.com *.googleapis.com www.googletagmanager.com www.google.com www.gstatic.com *.btttag.com *.bing.com *.app-us1.com *.adsrvr.org *.doubleclick.net *.cookielaw.org www.google-analytics.com *.mypurecloud.com *.googleadservices.com *.pure.cloud *.aptrinsic.com *.bootstrapcdn.com js.monitor.azure.com *.facebook.net *.facebook.com trackcmp.net;style-src 'self' 'unsafe-inline' use.fontawesome.com use.typekit.net embed.signalintent.com p.typekit.net *.mypurecloud.com *.googleapis.com *.aptrinsic.com *.jsdelivr.net *.bootstrapcdn.com;img-src 'self' data: bat.bing.com *.google.com www.google-analytics.com content-cdn.com *.gstatic.com *.googleapis.com www.googletagmanager.com *.facebook.net *.facebook.com;font-src 'self' use.fontawesome.com embed.signalintent.com use.typekit.net *.mypurecloud.com *.gstatic.com *.googleapis.com *.cloudfront.net data:;connect-src 'self' signal-intent-production-back.herokuapp.com cdn.segment.com *.optimizely.com *.cookielaw.org calc-backend-prod.herokuapp.com d.btttag.com *.googleapis.com www.google-analytics.com api.segment.io *.doubleclick.net *.alaskausa.org *.bing.com *.aptrinsic.com *.episerver.net *.visualstudio.com;block-all-mixed-content
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: EXPIRED
Expires: Thu, 08 Dec 2022 23:53:21 GMT
Cache-Control: public, max-age=14400
Vary: Accept-Encoding
CF-RAY: 77680bf3fa74e0ea-IAD
Via: 1.1 dca1-bit16013
Content-Encoding: gzip
Transfer-Encoding: chunked
region1.google-analytics.com/g/collect?v=2&tid=G-R11FYFZ8HF>m=2oebu0&_p=624256722&cid=362166141.1670529200&ul=en-us&sr=1280x1024&_s=1&sid=1670529200&sct=1&seg=0&dl=http%3A%2F%2Frasvetakandela.com%2Fjs%2F.ch%2F660e4be8f59ae4c3ab78ba485576fba3%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac%26session%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac&dt=Alaska%20USA%20services%20for%20you&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-R11FYFZ8HF>m=2oebu0&_p=624256722&cid=362166141.1670529200&ul=en-us&sr=1280x1024&_s=1&sid=1670529200&sct=1&seg=0&dl=http%3A%2F%2Frasvetakandela.com%2Fjs%2F.ch%2F660e4be8f59ae4c3ab78ba485576fba3%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac%26session%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac&dt=Alaska%20USA%20services%20for%20you&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-R11FYFZ8HF>m=2oebu0&_p=624256722&cid=362166141.1670529200&ul=en-us&sr=1280x1024&_s=1&sid=1670529200&sct=1&seg=0&dl=http%3A%2F%2Frasvetakandela.com%2Fjs%2F.ch%2F660e4be8f59ae4c3ab78ba485576fba3%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac%26session%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac&dt=Alaska%20USA%20services%20for%20you&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://rasvetakandela.com
Connection: keep-alive
Referer: http://rasvetakandela.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: http://rasvetakandela.com
date: Thu, 08 Dec 2022 19:53:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.alaskausa.org/images/nav/EHL.png
107.162.171.161404 Not Found 23 kB URL HTTP/1.1 www.alaskausa.org/images/nav/EHL.png
IP 107.162.171.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3941), with CRLF, LF line terminators
Hash 3d751cf7e61992630c699a15fd0278e5
6f20b703417aae9f0075d9b4b7aca803630301ee
c03a2f5258ef83d5fe04384312c686722606a9d1c3150949ded45b46942fe054
GET /images/nav/EHL.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rasvetakandela.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Thu, 08 Dec 2022 19:53:21 GMT
Content-Type: text/html; charset=utf-8
Connection: keep-alive
Request-Context: appId=cid-v1:24ecc7a8-51e3-4614-8724-c8d6f6e8adfb
Strict-Transport-Security: max-age=31536000
Content-Security-Policy-Report-Only: default-src 'self' *.adsrvr.org *.google.com *.doubleclick.net *.optimizely.com *.facebook.com;script-src 'self' 'unsafe-inline' 'unsafe-eval' cdnjs.cloudflare.com cdn.jsdelivr.net code.jquery.com embed.signalintent.com *.optimizely.com cdn.segment.com *.googleapis.com www.googletagmanager.com www.google.com www.gstatic.com *.btttag.com *.bing.com *.app-us1.com *.adsrvr.org *.doubleclick.net *.cookielaw.org www.google-analytics.com *.mypurecloud.com *.googleadservices.com *.pure.cloud *.aptrinsic.com *.bootstrapcdn.com js.monitor.azure.com *.facebook.net *.facebook.com trackcmp.net;style-src 'self' 'unsafe-inline' use.fontawesome.com use.typekit.net embed.signalintent.com p.typekit.net *.mypurecloud.com *.googleapis.com *.aptrinsic.com *.jsdelivr.net *.bootstrapcdn.com;img-src 'self' data: bat.bing.com *.google.com www.google-analytics.com content-cdn.com *.gstatic.com *.googleapis.com www.googletagmanager.com *.facebook.net *.facebook.com;font-src 'self' use.fontawesome.com embed.signalintent.com use.typekit.net *.mypurecloud.com *.gstatic.com *.googleapis.com *.cloudfront.net data:;connect-src 'self' signal-intent-production-back.herokuapp.com cdn.segment.com *.optimizely.com *.cookielaw.org calc-backend-prod.herokuapp.com d.btttag.com *.googleapis.com www.google-analytics.com api.segment.io *.doubleclick.net *.alaskausa.org *.bing.com *.aptrinsic.com *.episerver.net *.visualstudio.com;block-all-mixed-content
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: EXPIRED
Expires: Thu, 08 Dec 2022 23:53:21 GMT
Cache-Control: public, max-age=14400
Vary: Accept-Encoding
CF-RAY: 77680bf52d6b7f82-IAD
Via: 1.1 dca1-bit16013
Content-Encoding: gzip
Transfer-Encoding: chunked
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0c89743226644fddacbe5d50c110b950
b343ae9eb9047cf764b518083d612ffd3652b209
1bf675bb6e12e913a98cd8849c1af9a0c50b0bb8bfa670c86419b41782e06e47
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:53:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.alaskausa.org/current/promo/data/images/primary/Q3-Background-Photos-Blue.jpg
107.162.171.161404 Not Found 23 kB URL HTTP/1.1 www.alaskausa.org/current/promo/data/images/primary/Q3-Background-Photos-Blue.jpg
IP 107.162.171.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3941), with CRLF, LF line terminators
Hash c8b43db81295dd4152fc33c210a02b1e
a054d6c38abdd37abda7e1c93ec502009088a3e2
22c62487a0a386f04ea9c4e3d2e1aea787e9b7e98d1c0ad7117b74d2e6604526
GET /current/promo/data/images/primary/Q3-Background-Photos-Blue.jpg HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rasvetakandela.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Thu, 08 Dec 2022 19:53:21 GMT
Content-Type: text/html; charset=utf-8
Connection: keep-alive
Request-Context: appId=cid-v1:24ecc7a8-51e3-4614-8724-c8d6f6e8adfb
Strict-Transport-Security: max-age=31536000
Content-Security-Policy-Report-Only: default-src 'self' *.adsrvr.org *.google.com *.doubleclick.net *.optimizely.com *.facebook.com;script-src 'self' 'unsafe-inline' 'unsafe-eval' cdnjs.cloudflare.com cdn.jsdelivr.net code.jquery.com embed.signalintent.com *.optimizely.com cdn.segment.com *.googleapis.com www.googletagmanager.com www.google.com www.gstatic.com *.btttag.com *.bing.com *.app-us1.com *.adsrvr.org *.doubleclick.net *.cookielaw.org www.google-analytics.com *.mypurecloud.com *.googleadservices.com *.pure.cloud *.aptrinsic.com *.bootstrapcdn.com js.monitor.azure.com *.facebook.net *.facebook.com trackcmp.net;style-src 'self' 'unsafe-inline' use.fontawesome.com use.typekit.net embed.signalintent.com p.typekit.net *.mypurecloud.com *.googleapis.com *.aptrinsic.com *.jsdelivr.net *.bootstrapcdn.com;img-src 'self' data: bat.bing.com *.google.com www.google-analytics.com content-cdn.com *.gstatic.com *.googleapis.com www.googletagmanager.com *.facebook.net *.facebook.com;font-src 'self' use.fontawesome.com embed.signalintent.com use.typekit.net *.mypurecloud.com *.gstatic.com *.googleapis.com *.cloudfront.net data:;connect-src 'self' signal-intent-production-back.herokuapp.com cdn.segment.com *.optimizely.com *.cookielaw.org calc-backend-prod.herokuapp.com d.btttag.com *.googleapis.com www.google-analytics.com api.segment.io *.doubleclick.net *.alaskausa.org *.bing.com *.aptrinsic.com *.episerver.net *.visualstudio.com;block-all-mixed-content
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: EXPIRED
Expires: Thu, 08 Dec 2022 23:53:21 GMT
Cache-Control: public, max-age=14400
Vary: Accept-Encoding
CF-RAY: 77680bf5bbc3e0ea-IAD
Via: 1.1 dca1-bit16013
Content-Encoding: gzip
Transfer-Encoding: chunked
www.alaskausa.org/js/jquery.leanModal.AKUSA.2.1.js
107.162.171.161404 Not Found 23 kB URL HTTP/1.1 www.alaskausa.org/js/jquery.leanModal.AKUSA.2.1.js
IP 107.162.171.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3941), with CRLF, LF line terminators
Hash 99cb0cf05cbab6ea7e0ca1b80d265e4c
06070bf41bad5519ecceb59aa93bbb574d025884
fab1abb675e304abd4a2b0227635024032c011a232c18d65f305195b70b84e73
GET /js/jquery.leanModal.AKUSA.2.1.js HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rasvetakandela.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Thu, 08 Dec 2022 19:53:21 GMT
Content-Type: text/html; charset=utf-8
Connection: keep-alive
Request-Context: appId=cid-v1:24ecc7a8-51e3-4614-8724-c8d6f6e8adfb
Strict-Transport-Security: max-age=31536000
Content-Security-Policy-Report-Only: default-src 'self' *.adsrvr.org *.google.com *.doubleclick.net *.optimizely.com *.facebook.com;script-src 'self' 'unsafe-inline' 'unsafe-eval' cdnjs.cloudflare.com cdn.jsdelivr.net code.jquery.com embed.signalintent.com *.optimizely.com cdn.segment.com *.googleapis.com www.googletagmanager.com www.google.com www.gstatic.com *.btttag.com *.bing.com *.app-us1.com *.adsrvr.org *.doubleclick.net *.cookielaw.org www.google-analytics.com *.mypurecloud.com *.googleadservices.com *.pure.cloud *.aptrinsic.com *.bootstrapcdn.com js.monitor.azure.com *.facebook.net *.facebook.com trackcmp.net;style-src 'self' 'unsafe-inline' use.fontawesome.com use.typekit.net embed.signalintent.com p.typekit.net *.mypurecloud.com *.googleapis.com *.aptrinsic.com *.jsdelivr.net *.bootstrapcdn.com;img-src 'self' data: bat.bing.com *.google.com www.google-analytics.com content-cdn.com *.gstatic.com *.googleapis.com www.googletagmanager.com *.facebook.net *.facebook.com;font-src 'self' use.fontawesome.com embed.signalintent.com use.typekit.net *.mypurecloud.com *.gstatic.com *.googleapis.com *.cloudfront.net data:;connect-src 'self' signal-intent-production-back.herokuapp.com cdn.segment.com *.optimizely.com *.cookielaw.org calc-backend-prod.herokuapp.com d.btttag.com *.googleapis.com www.google-analytics.com api.segment.io *.doubleclick.net *.alaskausa.org *.bing.com *.aptrinsic.com *.episerver.net *.visualstudio.com;block-all-mixed-content
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: EXPIRED
Expires: Thu, 08 Dec 2022 23:53:21 GMT
Cache-Control: public, max-age=14400
Vary: Accept-Encoding
CF-RAY: 77680bf36c700570-IAD
Via: 1.1 dca1-bit15020
Content-Encoding: gzip
Transfer-Encoding: chunked
www.alaskausa.org/js/jquery/slick/slick.181.js
107.162.171.161404 Not Found 23 kB URL HTTP/1.1 www.alaskausa.org/js/jquery/slick/slick.181.js
IP 107.162.171.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3941), with CRLF, LF line terminators
Hash c8b43db81295dd4152fc33c210a02b1e
a054d6c38abdd37abda7e1c93ec502009088a3e2
22c62487a0a386f04ea9c4e3d2e1aea787e9b7e98d1c0ad7117b74d2e6604526
GET /js/jquery/slick/slick.181.js HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rasvetakandela.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Thu, 08 Dec 2022 19:53:21 GMT
Content-Type: text/html; charset=utf-8
Connection: keep-alive
Request-Context: appId=cid-v1:24ecc7a8-51e3-4614-8724-c8d6f6e8adfb
Strict-Transport-Security: max-age=31536000
Content-Security-Policy-Report-Only: default-src 'self' *.adsrvr.org *.google.com *.doubleclick.net *.optimizely.com *.facebook.com;script-src 'self' 'unsafe-inline' 'unsafe-eval' cdnjs.cloudflare.com cdn.jsdelivr.net code.jquery.com embed.signalintent.com *.optimizely.com cdn.segment.com *.googleapis.com www.googletagmanager.com www.google.com www.gstatic.com *.btttag.com *.bing.com *.app-us1.com *.adsrvr.org *.doubleclick.net *.cookielaw.org www.google-analytics.com *.mypurecloud.com *.googleadservices.com *.pure.cloud *.aptrinsic.com *.bootstrapcdn.com js.monitor.azure.com *.facebook.net *.facebook.com trackcmp.net;style-src 'self' 'unsafe-inline' use.fontawesome.com use.typekit.net embed.signalintent.com p.typekit.net *.mypurecloud.com *.googleapis.com *.aptrinsic.com *.jsdelivr.net *.bootstrapcdn.com;img-src 'self' data: bat.bing.com *.google.com www.google-analytics.com content-cdn.com *.gstatic.com *.googleapis.com www.googletagmanager.com *.facebook.net *.facebook.com;font-src 'self' use.fontawesome.com embed.signalintent.com use.typekit.net *.mypurecloud.com *.gstatic.com *.googleapis.com *.cloudfront.net data:;connect-src 'self' signal-intent-production-back.herokuapp.com cdn.segment.com *.optimizely.com *.cookielaw.org calc-backend-prod.herokuapp.com d.btttag.com *.googleapis.com www.google-analytics.com api.segment.io *.doubleclick.net *.alaskausa.org *.bing.com *.aptrinsic.com *.episerver.net *.visualstudio.com;block-all-mixed-content
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: EXPIRED
Expires: Thu, 08 Dec 2022 23:53:21 GMT
Cache-Control: public, max-age=14400
Vary: Accept-Encoding
CF-RAY: 77680bf37c84e0fa-IAD
Via: 1.1 dca1-bit9045
Content-Encoding: gzip
Transfer-Encoding: chunked
www.alaskausa.org/current/promo/data/images/primary/Q3-Floating-Banner-Blue.png
107.162.171.161404 Not Found 23 kB URL HTTP/1.1 www.alaskausa.org/current/promo/data/images/primary/Q3-Floating-Banner-Blue.png
IP 107.162.171.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3941), with CRLF, LF line terminators
Hash e9b8dc07d028c3cc07039b4146a9668f
9da955d225f041792a3cf35f942a004b8b2b7148
874a33d667f892e5bbdb3c44eed95e8d192c54fe44158084984a3398e90b2ecd
GET /current/promo/data/images/primary/Q3-Floating-Banner-Blue.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rasvetakandela.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Thu, 08 Dec 2022 19:53:21 GMT
Content-Type: text/html; charset=utf-8
Connection: keep-alive
Request-Context: appId=cid-v1:24ecc7a8-51e3-4614-8724-c8d6f6e8adfb
Strict-Transport-Security: max-age=31536000
Content-Security-Policy-Report-Only: default-src 'self' *.adsrvr.org *.google.com *.doubleclick.net *.optimizely.com *.facebook.com;script-src 'self' 'unsafe-inline' 'unsafe-eval' cdnjs.cloudflare.com cdn.jsdelivr.net code.jquery.com embed.signalintent.com *.optimizely.com cdn.segment.com *.googleapis.com www.googletagmanager.com www.google.com www.gstatic.com *.btttag.com *.bing.com *.app-us1.com *.adsrvr.org *.doubleclick.net *.cookielaw.org www.google-analytics.com *.mypurecloud.com *.googleadservices.com *.pure.cloud *.aptrinsic.com *.bootstrapcdn.com js.monitor.azure.com *.facebook.net *.facebook.com trackcmp.net;style-src 'self' 'unsafe-inline' use.fontawesome.com use.typekit.net embed.signalintent.com p.typekit.net *.mypurecloud.com *.googleapis.com *.aptrinsic.com *.jsdelivr.net *.bootstrapcdn.com;img-src 'self' data: bat.bing.com *.google.com www.google-analytics.com content-cdn.com *.gstatic.com *.googleapis.com www.googletagmanager.com *.facebook.net *.facebook.com;font-src 'self' use.fontawesome.com embed.signalintent.com use.typekit.net *.mypurecloud.com *.gstatic.com *.googleapis.com *.cloudfront.net data:;connect-src 'self' signal-intent-production-back.herokuapp.com cdn.segment.com *.optimizely.com *.cookielaw.org calc-backend-prod.herokuapp.com d.btttag.com *.googleapis.com www.google-analytics.com api.segment.io *.doubleclick.net *.alaskausa.org *.bing.com *.aptrinsic.com *.episerver.net *.visualstudio.com;block-all-mixed-content
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: EXPIRED
Expires: Thu, 08 Dec 2022 23:53:21 GMT
Cache-Control: public, max-age=14400
Vary: Accept-Encoding
CF-RAY: 77680bf6c80e7f82-IAD
Via: 1.1 dca1-bit16013
Content-Encoding: gzip
Transfer-Encoding: chunked
www.alaskausa.org/images/nav/akusafcu_logo.png
107.162.171.161404 Not Found 23 kB URL HTTP/1.1 www.alaskausa.org/images/nav/akusafcu_logo.png
IP 107.162.171.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3941), with CRLF, LF line terminators
Hash 0a13ca1208d1bcfdbf252d54eafa8d83
ad0a43368ec58de9d9491f6973ae1801a8e0f81a
7bbcde61b0f2408b050bf9ae0cd1bcbba86f6f491e015c02553cf9628909847e
GET /images/nav/akusafcu_logo.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rasvetakandela.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Thu, 08 Dec 2022 19:53:21 GMT
Content-Type: text/html; charset=utf-8
Connection: keep-alive
Request-Context: appId=cid-v1:24ecc7a8-51e3-4614-8724-c8d6f6e8adfb
Strict-Transport-Security: max-age=31536000
Content-Security-Policy-Report-Only: default-src 'self' *.adsrvr.org *.google.com *.doubleclick.net *.optimizely.com *.facebook.com;script-src 'self' 'unsafe-inline' 'unsafe-eval' cdnjs.cloudflare.com cdn.jsdelivr.net code.jquery.com embed.signalintent.com *.optimizely.com cdn.segment.com *.googleapis.com www.googletagmanager.com www.google.com www.gstatic.com *.btttag.com *.bing.com *.app-us1.com *.adsrvr.org *.doubleclick.net *.cookielaw.org www.google-analytics.com *.mypurecloud.com *.googleadservices.com *.pure.cloud *.aptrinsic.com *.bootstrapcdn.com js.monitor.azure.com *.facebook.net *.facebook.com trackcmp.net;style-src 'self' 'unsafe-inline' use.fontawesome.com use.typekit.net embed.signalintent.com p.typekit.net *.mypurecloud.com *.googleapis.com *.aptrinsic.com *.jsdelivr.net *.bootstrapcdn.com;img-src 'self' data: bat.bing.com *.google.com www.google-analytics.com content-cdn.com *.gstatic.com *.googleapis.com www.googletagmanager.com *.facebook.net *.facebook.com;font-src 'self' use.fontawesome.com embed.signalintent.com use.typekit.net *.mypurecloud.com *.gstatic.com *.googleapis.com *.cloudfront.net data:;connect-src 'self' signal-intent-production-back.herokuapp.com cdn.segment.com *.optimizely.com *.cookielaw.org calc-backend-prod.herokuapp.com d.btttag.com *.googleapis.com www.google-analytics.com api.segment.io *.doubleclick.net *.alaskausa.org *.bing.com *.aptrinsic.com *.episerver.net *.visualstudio.com;block-all-mixed-content
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: EXPIRED
Expires: Thu, 08 Dec 2022 23:53:21 GMT
Cache-Control: public, max-age=14400
Vary: Accept-Encoding
CF-RAY: 77680bf6dc1d8299-IAD
Via: 1.1 dca1-bit9045
Content-Encoding: gzip
Transfer-Encoding: chunked
www.alaskausa.org/js/jsSuite-1.9.5.js
107.162.171.161404 Not Found 23 kB URL HTTP/1.1 www.alaskausa.org/js/jsSuite-1.9.5.js
IP 107.162.171.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3941), with CRLF, LF line terminators
Hash 9bd5bc57ccd0a46b8d29d97db230071b
1e91d346dedb580a8e80387e2b43147ff6aa2d4f
32358914e1d4f9a43c566297d65ea9c74a440476f362c9e503fbb0fe62ea4670
GET /js/jsSuite-1.9.5.js HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rasvetakandela.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Thu, 08 Dec 2022 19:53:21 GMT
Content-Type: text/html; charset=utf-8
Connection: keep-alive
Request-Context: appId=cid-v1:24ecc7a8-51e3-4614-8724-c8d6f6e8adfb
Strict-Transport-Security: max-age=31536000
Content-Security-Policy-Report-Only: default-src 'self' *.adsrvr.org *.google.com *.doubleclick.net *.optimizely.com *.facebook.com;script-src 'self' 'unsafe-inline' 'unsafe-eval' cdnjs.cloudflare.com cdn.jsdelivr.net code.jquery.com embed.signalintent.com *.optimizely.com cdn.segment.com *.googleapis.com www.googletagmanager.com www.google.com www.gstatic.com *.btttag.com *.bing.com *.app-us1.com *.adsrvr.org *.doubleclick.net *.cookielaw.org www.google-analytics.com *.mypurecloud.com *.googleadservices.com *.pure.cloud *.aptrinsic.com *.bootstrapcdn.com js.monitor.azure.com *.facebook.net *.facebook.com trackcmp.net;style-src 'self' 'unsafe-inline' use.fontawesome.com use.typekit.net embed.signalintent.com p.typekit.net *.mypurecloud.com *.googleapis.com *.aptrinsic.com *.jsdelivr.net *.bootstrapcdn.com;img-src 'self' data: bat.bing.com *.google.com www.google-analytics.com content-cdn.com *.gstatic.com *.googleapis.com www.googletagmanager.com *.facebook.net *.facebook.com;font-src 'self' use.fontawesome.com embed.signalintent.com use.typekit.net *.mypurecloud.com *.gstatic.com *.googleapis.com *.cloudfront.net data:;connect-src 'self' signal-intent-production-back.herokuapp.com cdn.segment.com *.optimizely.com *.cookielaw.org calc-backend-prod.herokuapp.com d.btttag.com *.googleapis.com www.google-analytics.com api.segment.io *.doubleclick.net *.alaskausa.org *.bing.com *.aptrinsic.com *.episerver.net *.visualstudio.com;block-all-mixed-content
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: EXPIRED
Expires: Thu, 08 Dec 2022 23:53:21 GMT
Cache-Control: public, max-age=14400
Vary: Accept-Encoding
CF-RAY: 77680bf77cf1e0ea-IAD
Via: 1.1 dca1-bit16013
Content-Encoding: gzip
Transfer-Encoding: chunked
www.alaskausa.org/current/promo/data/images/secondary/Safeguard.png
107.162.171.161404 Not Found 23 kB URL HTTP/1.1 www.alaskausa.org/current/promo/data/images/secondary/Safeguard.png
IP 107.162.171.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3941), with CRLF, LF line terminators
Hash 853673764e378aff992148352350e3fa
17cd7b53d320d71ee032de328760525ffa215b96
5f220bc658a0fdb1ab74edcae7116c83ddcbd291b11f092dbbee328612931ef2
GET /current/promo/data/images/secondary/Safeguard.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rasvetakandela.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Thu, 08 Dec 2022 19:53:22 GMT
Content-Type: text/html; charset=utf-8
Connection: keep-alive
Request-Context: appId=cid-v1:24ecc7a8-51e3-4614-8724-c8d6f6e8adfb
Strict-Transport-Security: max-age=31536000
Content-Security-Policy-Report-Only: default-src 'self' *.adsrvr.org *.google.com *.doubleclick.net *.optimizely.com *.facebook.com;script-src 'self' 'unsafe-inline' 'unsafe-eval' cdnjs.cloudflare.com cdn.jsdelivr.net code.jquery.com embed.signalintent.com *.optimizely.com cdn.segment.com *.googleapis.com www.googletagmanager.com www.google.com www.gstatic.com *.btttag.com *.bing.com *.app-us1.com *.adsrvr.org *.doubleclick.net *.cookielaw.org www.google-analytics.com *.mypurecloud.com *.googleadservices.com *.pure.cloud *.aptrinsic.com *.bootstrapcdn.com js.monitor.azure.com *.facebook.net *.facebook.com trackcmp.net;style-src 'self' 'unsafe-inline' use.fontawesome.com use.typekit.net embed.signalintent.com p.typekit.net *.mypurecloud.com *.googleapis.com *.aptrinsic.com *.jsdelivr.net *.bootstrapcdn.com;img-src 'self' data: bat.bing.com *.google.com www.google-analytics.com content-cdn.com *.gstatic.com *.googleapis.com www.googletagmanager.com *.facebook.net *.facebook.com;font-src 'self' use.fontawesome.com embed.signalintent.com use.typekit.net *.mypurecloud.com *.gstatic.com *.googleapis.com *.cloudfront.net data:;connect-src 'self' signal-intent-production-back.herokuapp.com cdn.segment.com *.optimizely.com *.cookielaw.org calc-backend-prod.herokuapp.com d.btttag.com *.googleapis.com www.google-analytics.com api.segment.io *.doubleclick.net *.alaskausa.org *.bing.com *.aptrinsic.com *.episerver.net *.visualstudio.com;block-all-mixed-content
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: EXPIRED
Expires: Thu, 08 Dec 2022 23:53:22 GMT
Cache-Control: public, max-age=14400
Vary: Accept-Encoding
CF-RAY: 77680bf7ff47e0fa-IAD
Via: 1.1 dca1-bit9045
Content-Encoding: gzip
Transfer-Encoding: chunked
www.alaskausa.org/current/promo/data/images/secondary/24_7.png
107.162.171.161404 Not Found 23 kB URL HTTP/1.1 www.alaskausa.org/current/promo/data/images/secondary/24_7.png
IP 107.162.171.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3941), with CRLF, LF line terminators
Hash 652137a911816f26cebf15024ff2b3cb
98f3f9667d2b8b6b7f4e80fc64c5e34aa46c9fd3
c0a7cbcede012b091c97da9ed10e60203067ef7e75999b3366b9dc2da862b530
GET /current/promo/data/images/secondary/24_7.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rasvetakandela.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Thu, 08 Dec 2022 19:53:22 GMT
Content-Type: text/html; charset=utf-8
Connection: keep-alive
Request-Context: appId=cid-v1:24ecc7a8-51e3-4614-8724-c8d6f6e8adfb
Strict-Transport-Security: max-age=31536000
Content-Security-Policy-Report-Only: default-src 'self' *.adsrvr.org *.google.com *.doubleclick.net *.optimizely.com *.facebook.com;script-src 'self' 'unsafe-inline' 'unsafe-eval' cdnjs.cloudflare.com cdn.jsdelivr.net code.jquery.com embed.signalintent.com *.optimizely.com cdn.segment.com *.googleapis.com www.googletagmanager.com www.google.com www.gstatic.com *.btttag.com *.bing.com *.app-us1.com *.adsrvr.org *.doubleclick.net *.cookielaw.org www.google-analytics.com *.mypurecloud.com *.googleadservices.com *.pure.cloud *.aptrinsic.com *.bootstrapcdn.com js.monitor.azure.com *.facebook.net *.facebook.com trackcmp.net;style-src 'self' 'unsafe-inline' use.fontawesome.com use.typekit.net embed.signalintent.com p.typekit.net *.mypurecloud.com *.googleapis.com *.aptrinsic.com *.jsdelivr.net *.bootstrapcdn.com;img-src 'self' data: bat.bing.com *.google.com www.google-analytics.com content-cdn.com *.gstatic.com *.googleapis.com www.googletagmanager.com *.facebook.net *.facebook.com;font-src 'self' use.fontawesome.com embed.signalintent.com use.typekit.net *.mypurecloud.com *.gstatic.com *.googleapis.com *.cloudfront.net data:;connect-src 'self' signal-intent-production-back.herokuapp.com cdn.segment.com *.optimizely.com *.cookielaw.org calc-backend-prod.herokuapp.com d.btttag.com *.googleapis.com www.google-analytics.com api.segment.io *.doubleclick.net *.alaskausa.org *.bing.com *.aptrinsic.com *.episerver.net *.visualstudio.com;block-all-mixed-content
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: EXPIRED
Expires: Thu, 08 Dec 2022 23:53:22 GMT
Cache-Control: public, max-age=14400
Vary: Accept-Encoding
CF-RAY: 77680bf7c9d80570-IAD
Via: 1.1 dca1-bit15020
Content-Encoding: gzip
Transfer-Encoding: chunked
www.alaskausa.org/current/promo/data/images/secondary/Credit_Card.png
107.162.171.161404 Not Found 23 kB URL HTTP/1.1 www.alaskausa.org/current/promo/data/images/secondary/Credit_Card.png
IP 107.162.171.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3941), with CRLF, LF line terminators
Hash 0651da6786592ca8927ad9a2ef917fa9
303c10603d3cc546eafd68d9cc15b7a9050c53f0
54aa7532a8b60ece2847443ad14418f2f99916994c5649dd4b59cc9f423a8365
GET /current/promo/data/images/secondary/Credit_Card.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rasvetakandela.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Thu, 08 Dec 2022 19:53:22 GMT
Content-Type: text/html; charset=utf-8
Connection: keep-alive
Request-Context: appId=cid-v1:24ecc7a8-51e3-4614-8724-c8d6f6e8adfb
Strict-Transport-Security: max-age=31536000
Content-Security-Policy-Report-Only: default-src 'self' *.adsrvr.org *.google.com *.doubleclick.net *.optimizely.com *.facebook.com;script-src 'self' 'unsafe-inline' 'unsafe-eval' cdnjs.cloudflare.com cdn.jsdelivr.net code.jquery.com embed.signalintent.com *.optimizely.com cdn.segment.com *.googleapis.com www.googletagmanager.com www.google.com www.gstatic.com *.btttag.com *.bing.com *.app-us1.com *.adsrvr.org *.doubleclick.net *.cookielaw.org www.google-analytics.com *.mypurecloud.com *.googleadservices.com *.pure.cloud *.aptrinsic.com *.bootstrapcdn.com js.monitor.azure.com *.facebook.net *.facebook.com trackcmp.net;style-src 'self' 'unsafe-inline' use.fontawesome.com use.typekit.net embed.signalintent.com p.typekit.net *.mypurecloud.com *.googleapis.com *.aptrinsic.com *.jsdelivr.net *.bootstrapcdn.com;img-src 'self' data: bat.bing.com *.google.com www.google-analytics.com content-cdn.com *.gstatic.com *.googleapis.com www.googletagmanager.com *.facebook.net *.facebook.com;font-src 'self' use.fontawesome.com embed.signalintent.com use.typekit.net *.mypurecloud.com *.gstatic.com *.googleapis.com *.cloudfront.net data:;connect-src 'self' signal-intent-production-back.herokuapp.com cdn.segment.com *.optimizely.com *.cookielaw.org calc-backend-prod.herokuapp.com d.btttag.com *.googleapis.com www.google-analytics.com api.segment.io *.doubleclick.net *.alaskausa.org *.bing.com *.aptrinsic.com *.episerver.net *.visualstudio.com;block-all-mixed-content
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: EXPIRED
Expires: Thu, 08 Dec 2022 23:53:22 GMT
Cache-Control: public, max-age=14400
Vary: Accept-Encoding
CF-RAY: 77680bf86ebd8299-IAD
Via: 1.1 dca1-bit9045
Content-Encoding: gzip
Transfer-Encoding: chunked
www.alaskausa.org/current/promo/data/images/secondary/ClickSWITCH.png
107.162.171.161404 Not Found 23 kB URL HTTP/1.1 www.alaskausa.org/current/promo/data/images/secondary/ClickSWITCH.png
IP 107.162.171.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3941), with CRLF, LF line terminators
Hash bc8899c6af5d680f8d0002616fedd64a
b8e7b746550dc31c459e2a2d9d0a977398a64de0
2dba813ccfc1a0b47f2d770388c215007ee8eb196cbab533329af96ce75c2526
GET /current/promo/data/images/secondary/ClickSWITCH.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rasvetakandela.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Thu, 08 Dec 2022 19:53:22 GMT
Content-Type: text/html; charset=utf-8
Connection: keep-alive
Request-Context: appId=cid-v1:24ecc7a8-51e3-4614-8724-c8d6f6e8adfb
Strict-Transport-Security: max-age=31536000
Content-Security-Policy-Report-Only: default-src 'self' *.adsrvr.org *.google.com *.doubleclick.net *.optimizely.com *.facebook.com;script-src 'self' 'unsafe-inline' 'unsafe-eval' cdnjs.cloudflare.com cdn.jsdelivr.net code.jquery.com embed.signalintent.com *.optimizely.com cdn.segment.com *.googleapis.com www.googletagmanager.com www.google.com www.gstatic.com *.btttag.com *.bing.com *.app-us1.com *.adsrvr.org *.doubleclick.net *.cookielaw.org www.google-analytics.com *.mypurecloud.com *.googleadservices.com *.pure.cloud *.aptrinsic.com *.bootstrapcdn.com js.monitor.azure.com *.facebook.net *.facebook.com trackcmp.net;style-src 'self' 'unsafe-inline' use.fontawesome.com use.typekit.net embed.signalintent.com p.typekit.net *.mypurecloud.com *.googleapis.com *.aptrinsic.com *.jsdelivr.net *.bootstrapcdn.com;img-src 'self' data: bat.bing.com *.google.com www.google-analytics.com content-cdn.com *.gstatic.com *.googleapis.com www.googletagmanager.com *.facebook.net *.facebook.com;font-src 'self' use.fontawesome.com embed.signalintent.com use.typekit.net *.mypurecloud.com *.gstatic.com *.googleapis.com *.cloudfront.net data:;connect-src 'self' signal-intent-production-back.herokuapp.com cdn.segment.com *.optimizely.com *.cookielaw.org calc-backend-prod.herokuapp.com d.btttag.com *.googleapis.com www.google-analytics.com api.segment.io *.doubleclick.net *.alaskausa.org *.bing.com *.aptrinsic.com *.episerver.net *.visualstudio.com;block-all-mixed-content
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: EXPIRED
Expires: Thu, 08 Dec 2022 23:53:22 GMT
Cache-Control: public, max-age=14400
Vary: Accept-Encoding
CF-RAY: 77680bf91e20e0ea-IAD
Via: 1.1 dca1-bit16013
Content-Encoding: gzip
Transfer-Encoding: chunked
www.alaskausa.org/current/promo/data/images/secondary/learn.png
107.162.171.161404 Not Found 23 kB URL HTTP/1.1 www.alaskausa.org/current/promo/data/images/secondary/learn.png
IP 107.162.171.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3941), with CRLF, LF line terminators
Hash d6e6390cd63e44b4d132954fabd0374c
0ef539574a52ad2f3426cc9092032286d3a8b137
55ffdaa32cba35f3b1f7e463e8b79b06bdbed1b5bbf3ab0e5a252ea221792297
GET /current/promo/data/images/secondary/learn.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rasvetakandela.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Thu, 08 Dec 2022 19:53:22 GMT
Content-Type: text/html; charset=utf-8
Connection: keep-alive
Request-Context: appId=cid-v1:24ecc7a8-51e3-4614-8724-c8d6f6e8adfb
Strict-Transport-Security: max-age=31536000
Content-Security-Policy-Report-Only: default-src 'self' *.adsrvr.org *.google.com *.doubleclick.net *.optimizely.com *.facebook.com;script-src 'self' 'unsafe-inline' 'unsafe-eval' cdnjs.cloudflare.com cdn.jsdelivr.net code.jquery.com embed.signalintent.com *.optimizely.com cdn.segment.com *.googleapis.com www.googletagmanager.com www.google.com www.gstatic.com *.btttag.com *.bing.com *.app-us1.com *.adsrvr.org *.doubleclick.net *.cookielaw.org www.google-analytics.com *.mypurecloud.com *.googleadservices.com *.pure.cloud *.aptrinsic.com *.bootstrapcdn.com js.monitor.azure.com *.facebook.net *.facebook.com trackcmp.net;style-src 'self' 'unsafe-inline' use.fontawesome.com use.typekit.net embed.signalintent.com p.typekit.net *.mypurecloud.com *.googleapis.com *.aptrinsic.com *.jsdelivr.net *.bootstrapcdn.com;img-src 'self' data: bat.bing.com *.google.com www.google-analytics.com content-cdn.com *.gstatic.com *.googleapis.com www.googletagmanager.com *.facebook.net *.facebook.com;font-src 'self' use.fontawesome.com embed.signalintent.com use.typekit.net *.mypurecloud.com *.gstatic.com *.googleapis.com *.cloudfront.net data:;connect-src 'self' signal-intent-production-back.herokuapp.com cdn.segment.com *.optimizely.com *.cookielaw.org calc-backend-prod.herokuapp.com d.btttag.com *.googleapis.com www.google-analytics.com api.segment.io *.doubleclick.net *.alaskausa.org *.bing.com *.aptrinsic.com *.episerver.net *.visualstudio.com;block-all-mixed-content
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: EXPIRED
Expires: Thu, 08 Dec 2022 23:53:22 GMT
Cache-Control: public, max-age=14400
Vary: Accept-Encoding
CF-RAY: 77680bf9bc380570-IAD
Via: 1.1 dca1-bit15020
Content-Encoding: gzip
Transfer-Encoding: chunked
www.alaskausa.org/js/jquery.accAccordion.js
107.162.171.161404 Not Found 23 kB URL HTTP/1.1 www.alaskausa.org/js/jquery.accAccordion.js
IP 107.162.171.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3941), with CRLF, LF line terminators
Hash dd10cda43c4edec6dfca39504f0f7056
07142577ade729813e9e35e636ff9e2068b3c6b9
848ba86efdc095d5a5a70188a77831b703021d95e7210d195bea41465742af29
GET /js/jquery.accAccordion.js HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rasvetakandela.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Thu, 08 Dec 2022 19:53:22 GMT
Content-Type: text/html; charset=utf-8
Connection: keep-alive
Request-Context: appId=cid-v1:24ecc7a8-51e3-4614-8724-c8d6f6e8adfb
Strict-Transport-Security: max-age=31536000
Content-Security-Policy-Report-Only: default-src 'self' *.adsrvr.org *.google.com *.doubleclick.net *.optimizely.com *.facebook.com;script-src 'self' 'unsafe-inline' 'unsafe-eval' cdnjs.cloudflare.com cdn.jsdelivr.net code.jquery.com embed.signalintent.com *.optimizely.com cdn.segment.com *.googleapis.com www.googletagmanager.com www.google.com www.gstatic.com *.btttag.com *.bing.com *.app-us1.com *.adsrvr.org *.doubleclick.net *.cookielaw.org www.google-analytics.com *.mypurecloud.com *.googleadservices.com *.pure.cloud *.aptrinsic.com *.bootstrapcdn.com js.monitor.azure.com *.facebook.net *.facebook.com trackcmp.net;style-src 'self' 'unsafe-inline' use.fontawesome.com use.typekit.net embed.signalintent.com p.typekit.net *.mypurecloud.com *.googleapis.com *.aptrinsic.com *.jsdelivr.net *.bootstrapcdn.com;img-src 'self' data: bat.bing.com *.google.com www.google-analytics.com content-cdn.com *.gstatic.com *.googleapis.com www.googletagmanager.com *.facebook.net *.facebook.com;font-src 'self' use.fontawesome.com embed.signalintent.com use.typekit.net *.mypurecloud.com *.gstatic.com *.googleapis.com *.cloudfront.net data:;connect-src 'self' signal-intent-production-back.herokuapp.com cdn.segment.com *.optimizely.com *.cookielaw.org calc-backend-prod.herokuapp.com d.btttag.com *.googleapis.com www.google-analytics.com api.segment.io *.doubleclick.net *.alaskausa.org *.bing.com *.aptrinsic.com *.episerver.net *.visualstudio.com;block-all-mixed-content
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: EXPIRED
Expires: Thu, 08 Dec 2022 23:53:22 GMT
Cache-Control: public, max-age=14400
Vary: Accept-Encoding
CF-RAY: 77680bf9a862e0fa-IAD
Via: 1.1 dca1-bit9045
Content-Encoding: gzip
Transfer-Encoding: chunked
www.alaskausa.org/current/promo/data/images/primary/Q3-Background-Photos-Green.jpg
107.162.171.161404 Not Found 23 kB URL HTTP/1.1 www.alaskausa.org/current/promo/data/images/primary/Q3-Background-Photos-Green.jpg
IP 107.162.171.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3941), with CRLF, LF line terminators
Hash dd10cda43c4edec6dfca39504f0f7056
07142577ade729813e9e35e636ff9e2068b3c6b9
848ba86efdc095d5a5a70188a77831b703021d95e7210d195bea41465742af29
GET /current/promo/data/images/primary/Q3-Background-Photos-Green.jpg HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rasvetakandela.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Thu, 08 Dec 2022 19:53:22 GMT
Content-Type: text/html; charset=utf-8
Connection: keep-alive
Request-Context: appId=cid-v1:24ecc7a8-51e3-4614-8724-c8d6f6e8adfb
Strict-Transport-Security: max-age=31536000
Content-Security-Policy-Report-Only: default-src 'self' *.adsrvr.org *.google.com *.doubleclick.net *.optimizely.com *.facebook.com;script-src 'self' 'unsafe-inline' 'unsafe-eval' cdnjs.cloudflare.com cdn.jsdelivr.net code.jquery.com embed.signalintent.com *.optimizely.com cdn.segment.com *.googleapis.com www.googletagmanager.com www.google.com www.gstatic.com *.btttag.com *.bing.com *.app-us1.com *.adsrvr.org *.doubleclick.net *.cookielaw.org www.google-analytics.com *.mypurecloud.com *.googleadservices.com *.pure.cloud *.aptrinsic.com *.bootstrapcdn.com js.monitor.azure.com *.facebook.net *.facebook.com trackcmp.net;style-src 'self' 'unsafe-inline' use.fontawesome.com use.typekit.net embed.signalintent.com p.typekit.net *.mypurecloud.com *.googleapis.com *.aptrinsic.com *.jsdelivr.net *.bootstrapcdn.com;img-src 'self' data: bat.bing.com *.google.com www.google-analytics.com content-cdn.com *.gstatic.com *.googleapis.com www.googletagmanager.com *.facebook.net *.facebook.com;font-src 'self' use.fontawesome.com embed.signalintent.com use.typekit.net *.mypurecloud.com *.gstatic.com *.googleapis.com *.cloudfront.net data:;connect-src 'self' signal-intent-production-back.herokuapp.com cdn.segment.com *.optimizely.com *.cookielaw.org calc-backend-prod.herokuapp.com d.btttag.com *.googleapis.com www.google-analytics.com api.segment.io *.doubleclick.net *.alaskausa.org *.bing.com *.aptrinsic.com *.episerver.net *.visualstudio.com;block-all-mixed-content
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: EXPIRED
Expires: Thu, 08 Dec 2022 23:53:22 GMT
Cache-Control: public, max-age=14400
Vary: Accept-Encoding
CF-RAY: 77680bf9f9308299-IAD
Via: 1.1 dca1-bit9045
Content-Encoding: gzip
Transfer-Encoding: chunked
www.alaskausa.org/current/promo/data/images/primary/Q3-Floating-Banner-green.png
107.162.171.161404 Not Found 23 kB URL HTTP/1.1 www.alaskausa.org/current/promo/data/images/primary/Q3-Floating-Banner-green.png
IP 107.162.171.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3941), with CRLF, LF line terminators
Hash 4a05712dd109bdfcac39616225d54700
8f259eb6a164a2c49850e88b90845bb2504059bf
bd347bbf2ffd3b9991c64d542ef87c6980284534c28aa4e6e26f18c6f88cb59e
GET /current/promo/data/images/primary/Q3-Floating-Banner-green.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rasvetakandela.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Thu, 08 Dec 2022 19:53:22 GMT
Content-Type: text/html; charset=utf-8
Connection: keep-alive
Request-Context: appId=cid-v1:24ecc7a8-51e3-4614-8724-c8d6f6e8adfb
Strict-Transport-Security: max-age=31536000
Content-Security-Policy-Report-Only: default-src 'self' *.adsrvr.org *.google.com *.doubleclick.net *.optimizely.com *.facebook.com;script-src 'self' 'unsafe-inline' 'unsafe-eval' cdnjs.cloudflare.com cdn.jsdelivr.net code.jquery.com embed.signalintent.com *.optimizely.com cdn.segment.com *.googleapis.com www.googletagmanager.com www.google.com www.gstatic.com *.btttag.com *.bing.com *.app-us1.com *.adsrvr.org *.doubleclick.net *.cookielaw.org www.google-analytics.com *.mypurecloud.com *.googleadservices.com *.pure.cloud *.aptrinsic.com *.bootstrapcdn.com js.monitor.azure.com *.facebook.net *.facebook.com trackcmp.net;style-src 'self' 'unsafe-inline' use.fontawesome.com use.typekit.net embed.signalintent.com p.typekit.net *.mypurecloud.com *.googleapis.com *.aptrinsic.com *.jsdelivr.net *.bootstrapcdn.com;img-src 'self' data: bat.bing.com *.google.com www.google-analytics.com content-cdn.com *.gstatic.com *.googleapis.com www.googletagmanager.com *.facebook.net *.facebook.com;font-src 'self' use.fontawesome.com embed.signalintent.com use.typekit.net *.mypurecloud.com *.gstatic.com *.googleapis.com *.cloudfront.net data:;connect-src 'self' signal-intent-production-back.herokuapp.com cdn.segment.com *.optimizely.com *.cookielaw.org calc-backend-prod.herokuapp.com d.btttag.com *.googleapis.com www.google-analytics.com api.segment.io *.doubleclick.net *.alaskausa.org *.bing.com *.aptrinsic.com *.episerver.net *.visualstudio.com;block-all-mixed-content
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: EXPIRED
Expires: Thu, 08 Dec 2022 23:53:22 GMT
Cache-Control: public, max-age=14400
Vary: Accept-Encoding
CF-RAY: 77680bfacf28e0ea-IAD
Via: 1.1 dca1-bit16013
Content-Encoding: gzip
Transfer-Encoding: chunked
www.alaskausa.org/current/promo/data/images/secondary/House.png
107.162.171.161404 Not Found 23 kB URL HTTP/1.1 www.alaskausa.org/current/promo/data/images/secondary/House.png
IP 107.162.171.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3941), with CRLF, LF line terminators
Hash 86a57ffad2f0eb596813cdbc5432d4da
45007d77c4ac733b1f08e29f54668555053d63c2
b5c59af99c1d1d5c4b567079cdc4c50b741bce2010d356cef4278c39ed553cba
GET /current/promo/data/images/secondary/House.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rasvetakandela.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Thu, 08 Dec 2022 19:53:22 GMT
Content-Type: text/html; charset=utf-8
Connection: keep-alive
Request-Context: appId=cid-v1:24ecc7a8-51e3-4614-8724-c8d6f6e8adfb
Strict-Transport-Security: max-age=31536000
Content-Security-Policy-Report-Only: default-src 'self' *.adsrvr.org *.google.com *.doubleclick.net *.optimizely.com *.facebook.com;script-src 'self' 'unsafe-inline' 'unsafe-eval' cdnjs.cloudflare.com cdn.jsdelivr.net code.jquery.com embed.signalintent.com *.optimizely.com cdn.segment.com *.googleapis.com www.googletagmanager.com www.google.com www.gstatic.com *.btttag.com *.bing.com *.app-us1.com *.adsrvr.org *.doubleclick.net *.cookielaw.org www.google-analytics.com *.mypurecloud.com *.googleadservices.com *.pure.cloud *.aptrinsic.com *.bootstrapcdn.com js.monitor.azure.com *.facebook.net *.facebook.com trackcmp.net;style-src 'self' 'unsafe-inline' use.fontawesome.com use.typekit.net embed.signalintent.com p.typekit.net *.mypurecloud.com *.googleapis.com *.aptrinsic.com *.jsdelivr.net *.bootstrapcdn.com;img-src 'self' data: bat.bing.com *.google.com www.google-analytics.com content-cdn.com *.gstatic.com *.googleapis.com www.googletagmanager.com *.facebook.net *.facebook.com;font-src 'self' use.fontawesome.com embed.signalintent.com use.typekit.net *.mypurecloud.com *.gstatic.com *.googleapis.com *.cloudfront.net data:;connect-src 'self' signal-intent-production-back.herokuapp.com cdn.segment.com *.optimizely.com *.cookielaw.org calc-backend-prod.herokuapp.com d.btttag.com *.googleapis.com www.google-analytics.com api.segment.io *.doubleclick.net *.alaskausa.org *.bing.com *.aptrinsic.com *.episerver.net *.visualstudio.com;block-all-mixed-content
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: EXPIRED
Expires: Thu, 08 Dec 2022 23:53:22 GMT
Cache-Control: public, max-age=14400
Vary: Accept-Encoding
CF-RAY: 77680bf85a697f82-IAD
Via: 1.1 dca1-bit16013
Content-Encoding: gzip
Transfer-Encoding: chunked
www.alaskausa.org/current/promo/data/images/primary/Q3-Background-Photos-Yellow.jpg
107.162.171.161404 Not Found 23 kB URL HTTP/1.1 www.alaskausa.org/current/promo/data/images/primary/Q3-Background-Photos-Yellow.jpg
IP 107.162.171.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3941), with CRLF, LF line terminators
Hash 5bba9aa911346ca611eee966cbd431b2
ab0229ad0648d80a6f00147592f2be20c84744da
8077ee1f397336997579ff8dbceb6e728651aceaa9ee8eb3aefa4d569d719183
GET /current/promo/data/images/primary/Q3-Background-Photos-Yellow.jpg HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rasvetakandela.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Thu, 08 Dec 2022 19:53:22 GMT
Content-Type: text/html; charset=utf-8
Connection: keep-alive
Request-Context: appId=cid-v1:24ecc7a8-51e3-4614-8724-c8d6f6e8adfb
Strict-Transport-Security: max-age=31536000
Content-Security-Policy-Report-Only: default-src 'self' *.adsrvr.org *.google.com *.doubleclick.net *.optimizely.com *.facebook.com;script-src 'self' 'unsafe-inline' 'unsafe-eval' cdnjs.cloudflare.com cdn.jsdelivr.net code.jquery.com embed.signalintent.com *.optimizely.com cdn.segment.com *.googleapis.com www.googletagmanager.com www.google.com www.gstatic.com *.btttag.com *.bing.com *.app-us1.com *.adsrvr.org *.doubleclick.net *.cookielaw.org www.google-analytics.com *.mypurecloud.com *.googleadservices.com *.pure.cloud *.aptrinsic.com *.bootstrapcdn.com js.monitor.azure.com *.facebook.net *.facebook.com trackcmp.net;style-src 'self' 'unsafe-inline' use.fontawesome.com use.typekit.net embed.signalintent.com p.typekit.net *.mypurecloud.com *.googleapis.com *.aptrinsic.com *.jsdelivr.net *.bootstrapcdn.com;img-src 'self' data: bat.bing.com *.google.com www.google-analytics.com content-cdn.com *.gstatic.com *.googleapis.com www.googletagmanager.com *.facebook.net *.facebook.com;font-src 'self' use.fontawesome.com embed.signalintent.com use.typekit.net *.mypurecloud.com *.gstatic.com *.googleapis.com *.cloudfront.net data:;connect-src 'self' signal-intent-production-back.herokuapp.com cdn.segment.com *.optimizely.com *.cookielaw.org calc-backend-prod.herokuapp.com d.btttag.com *.googleapis.com www.google-analytics.com api.segment.io *.doubleclick.net *.alaskausa.org *.bing.com *.aptrinsic.com *.episerver.net *.visualstudio.com;block-all-mixed-content
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: EXPIRED
Expires: Thu, 08 Dec 2022 23:53:22 GMT
Cache-Control: public, max-age=14400
Vary: Accept-Encoding
CF-RAY: 77680bfb4e260570-IAD
Via: 1.1 dca1-bit15020
Content-Encoding: gzip
Transfer-Encoding: chunked
www.alaskausa.org/current/promo/data/images/primary/billpay.jpg
107.162.171.161404 Not Found 23 kB URL HTTP/1.1 www.alaskausa.org/current/promo/data/images/primary/billpay.jpg
IP 107.162.171.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3941), with CRLF, LF line terminators
Hash 1151efb9587cc61bc6ce2cf6cd171511
679d010d501a9d34db3d8a0383402b8fd6b5af90
3ef62b7a6b5ea4ca33798b71fc8013cb702a5816c4dc1a12466ff78ec8f5d970
GET /current/promo/data/images/primary/billpay.jpg HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rasvetakandela.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Thu, 08 Dec 2022 19:53:22 GMT
Content-Type: text/html; charset=utf-8
Connection: keep-alive
Request-Context: appId=cid-v1:24ecc7a8-51e3-4614-8724-c8d6f6e8adfb
Strict-Transport-Security: max-age=31536000
Content-Security-Policy-Report-Only: default-src 'self' *.adsrvr.org *.google.com *.doubleclick.net *.optimizely.com *.facebook.com;script-src 'self' 'unsafe-inline' 'unsafe-eval' cdnjs.cloudflare.com cdn.jsdelivr.net code.jquery.com embed.signalintent.com *.optimizely.com cdn.segment.com *.googleapis.com www.googletagmanager.com www.google.com www.gstatic.com *.btttag.com *.bing.com *.app-us1.com *.adsrvr.org *.doubleclick.net *.cookielaw.org www.google-analytics.com *.mypurecloud.com *.googleadservices.com *.pure.cloud *.aptrinsic.com *.bootstrapcdn.com js.monitor.azure.com *.facebook.net *.facebook.com trackcmp.net;style-src 'self' 'unsafe-inline' use.fontawesome.com use.typekit.net embed.signalintent.com p.typekit.net *.mypurecloud.com *.googleapis.com *.aptrinsic.com *.jsdelivr.net *.bootstrapcdn.com;img-src 'self' data: bat.bing.com *.google.com www.google-analytics.com content-cdn.com *.gstatic.com *.googleapis.com www.googletagmanager.com *.facebook.net *.facebook.com;font-src 'self' use.fontawesome.com embed.signalintent.com use.typekit.net *.mypurecloud.com *.gstatic.com *.googleapis.com *.cloudfront.net data:;connect-src 'self' signal-intent-production-back.herokuapp.com cdn.segment.com *.optimizely.com *.cookielaw.org calc-backend-prod.herokuapp.com d.btttag.com *.googleapis.com www.google-analytics.com api.segment.io *.doubleclick.net *.alaskausa.org *.bing.com *.aptrinsic.com *.episerver.net *.visualstudio.com;block-all-mixed-content
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: EXPIRED
Expires: Thu, 08 Dec 2022 23:53:22 GMT
Cache-Control: public, max-age=14400
Vary: Accept-Encoding
CF-RAY: 77680bfbac088299-IAD
Via: 1.1 dca1-bit9045
Content-Encoding: gzip
Transfer-Encoding: chunked
www.alaskausa.org/current/promo/data/images/secondary/Great_Rates.png
107.162.171.161404 Not Found 23 kB URL HTTP/1.1 www.alaskausa.org/current/promo/data/images/secondary/Great_Rates.png
IP 107.162.171.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3941), with CRLF, LF line terminators
Hash 0f8af0c46cd47290e0f5611045cde783
5c02fe4d3099633462f247a158e85ab12ec7f6bc
86f319edc69c312a21ef23a2d64d8d5980790d0bcf7331d7bfade1a7ea556feb
GET /current/promo/data/images/secondary/Great_Rates.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rasvetakandela.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Thu, 08 Dec 2022 19:53:22 GMT
Content-Type: text/html; charset=utf-8
Connection: keep-alive
Request-Context: appId=cid-v1:24ecc7a8-51e3-4614-8724-c8d6f6e8adfb
Strict-Transport-Security: max-age=31536000
Content-Security-Policy-Report-Only: default-src 'self' *.adsrvr.org *.google.com *.doubleclick.net *.optimizely.com *.facebook.com;script-src 'self' 'unsafe-inline' 'unsafe-eval' cdnjs.cloudflare.com cdn.jsdelivr.net code.jquery.com embed.signalintent.com *.optimizely.com cdn.segment.com *.googleapis.com www.googletagmanager.com www.google.com www.gstatic.com *.btttag.com *.bing.com *.app-us1.com *.adsrvr.org *.doubleclick.net *.cookielaw.org www.google-analytics.com *.mypurecloud.com *.googleadservices.com *.pure.cloud *.aptrinsic.com *.bootstrapcdn.com js.monitor.azure.com *.facebook.net *.facebook.com trackcmp.net;style-src 'self' 'unsafe-inline' use.fontawesome.com use.typekit.net embed.signalintent.com p.typekit.net *.mypurecloud.com *.googleapis.com *.aptrinsic.com *.jsdelivr.net *.bootstrapcdn.com;img-src 'self' data: bat.bing.com *.google.com www.google-analytics.com content-cdn.com *.gstatic.com *.googleapis.com www.googletagmanager.com *.facebook.net *.facebook.com;font-src 'self' use.fontawesome.com embed.signalintent.com use.typekit.net *.mypurecloud.com *.gstatic.com *.googleapis.com *.cloudfront.net data:;connect-src 'self' signal-intent-production-back.herokuapp.com cdn.segment.com *.optimizely.com *.cookielaw.org calc-backend-prod.herokuapp.com d.btttag.com *.googleapis.com www.google-analytics.com api.segment.io *.doubleclick.net *.alaskausa.org *.bing.com *.aptrinsic.com *.episerver.net *.visualstudio.com;block-all-mixed-content
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: EXPIRED
Expires: Thu, 08 Dec 2022 23:53:22 GMT
Cache-Control: public, max-age=14400
Vary: Accept-Encoding
CF-RAY: 77680bf97b9f59bc-IAD
Via: 1.1 dca1-bit9045
Content-Encoding: gzip
Transfer-Encoding: chunked
www.alaskausa.org/current/promo/data/images/primary/billpay_float.png
107.162.171.161404 Not Found 23 kB URL HTTP/1.1 www.alaskausa.org/current/promo/data/images/primary/billpay_float.png
IP 107.162.171.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3941), with CRLF, LF line terminators
Hash 5d0ff3cfe845119075e1b5be03651bdb
fd1737e90b14b56ace2db817f2fe48c351ae6578
c2258b0470c0dcd8f0d4e9acb5689d3fc811e4521e9210274d520cef77a0f8e7
GET /current/promo/data/images/primary/billpay_float.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rasvetakandela.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Thu, 08 Dec 2022 19:53:22 GMT
Content-Type: text/html; charset=utf-8
Connection: keep-alive
Request-Context: appId=cid-v1:24ecc7a8-51e3-4614-8724-c8d6f6e8adfb
Strict-Transport-Security: max-age=31536000
Content-Security-Policy-Report-Only: default-src 'self' *.adsrvr.org *.google.com *.doubleclick.net *.optimizely.com *.facebook.com;script-src 'self' 'unsafe-inline' 'unsafe-eval' cdnjs.cloudflare.com cdn.jsdelivr.net code.jquery.com embed.signalintent.com *.optimizely.com cdn.segment.com *.googleapis.com www.googletagmanager.com www.google.com www.gstatic.com *.btttag.com *.bing.com *.app-us1.com *.adsrvr.org *.doubleclick.net *.cookielaw.org www.google-analytics.com *.mypurecloud.com *.googleadservices.com *.pure.cloud *.aptrinsic.com *.bootstrapcdn.com js.monitor.azure.com *.facebook.net *.facebook.com trackcmp.net;style-src 'self' 'unsafe-inline' use.fontawesome.com use.typekit.net embed.signalintent.com p.typekit.net *.mypurecloud.com *.googleapis.com *.aptrinsic.com *.jsdelivr.net *.bootstrapcdn.com;img-src 'self' data: bat.bing.com *.google.com www.google-analytics.com content-cdn.com *.gstatic.com *.googleapis.com www.googletagmanager.com *.facebook.net *.facebook.com;font-src 'self' use.fontawesome.com embed.signalintent.com use.typekit.net *.mypurecloud.com *.gstatic.com *.googleapis.com *.cloudfront.net data:;connect-src 'self' signal-intent-production-back.herokuapp.com cdn.segment.com *.optimizely.com *.cookielaw.org calc-backend-prod.herokuapp.com d.btttag.com *.googleapis.com www.google-analytics.com api.segment.io *.doubleclick.net *.alaskausa.org *.bing.com *.aptrinsic.com *.episerver.net *.visualstudio.com;block-all-mixed-content
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: EXPIRED
Expires: Thu, 08 Dec 2022 23:53:22 GMT
Cache-Control: public, max-age=14400
Vary: Accept-Encoding
CF-RAY: 77680bfca9397f82-IAD
Via: 1.1 dca1-bit16013
Content-Encoding: gzip
Transfer-Encoding: chunked
www.alaskausa.org/js/jquery.leanModal.AKUSA.2.1.js
107.162.171.161404 Not Found 35 kB URL HTTP/1.1 www.alaskausa.org/js/jquery.leanModal.AKUSA.2.1.js
IP 107.162.171.161:0
Hash 99d1cfb8aa27a465b0726b90fc750182
391d2f88b169113a71d5b28581105d4d98b00810
f3daa28777a53287cccc0468a7fd1bcbc326f03954df1d4438127fd459ef4ca5
GET /js/jquery.leanModal.AKUSA.2.1.js HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rasvetakandela.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Thu, 08 Dec 2022 19:53:22 GMT
Content-Type: text/html; charset=utf-8
Connection: keep-alive
Request-Context: appId=cid-v1:24ecc7a8-51e3-4614-8724-c8d6f6e8adfb
Strict-Transport-Security: max-age=31536000
Content-Security-Policy-Report-Only: default-src 'self' *.adsrvr.org *.google.com *.doubleclick.net *.optimizely.com *.facebook.com;script-src 'self' 'unsafe-inline' 'unsafe-eval' cdnjs.cloudflare.com cdn.jsdelivr.net code.jquery.com embed.signalintent.com *.optimizely.com cdn.segment.com *.googleapis.com www.googletagmanager.com www.google.com www.gstatic.com *.btttag.com *.bing.com *.app-us1.com *.adsrvr.org *.doubleclick.net *.cookielaw.org www.google-analytics.com *.mypurecloud.com *.googleadservices.com *.pure.cloud *.aptrinsic.com *.bootstrapcdn.com js.monitor.azure.com *.facebook.net *.facebook.com trackcmp.net;style-src 'self' 'unsafe-inline' use.fontawesome.com use.typekit.net embed.signalintent.com p.typekit.net *.mypurecloud.com *.googleapis.com *.aptrinsic.com *.jsdelivr.net *.bootstrapcdn.com;img-src 'self' data: bat.bing.com *.google.com www.google-analytics.com content-cdn.com *.gstatic.com *.googleapis.com www.googletagmanager.com *.facebook.net *.facebook.com;font-src 'self' use.fontawesome.com embed.signalintent.com use.typekit.net *.mypurecloud.com *.gstatic.com *.googleapis.com *.cloudfront.net data:;connect-src 'self' signal-intent-production-back.herokuapp.com cdn.segment.com *.optimizely.com *.cookielaw.org calc-backend-prod.herokuapp.com d.btttag.com *.googleapis.com www.google-analytics.com api.segment.io *.doubleclick.net *.alaskausa.org *.bing.com *.aptrinsic.com *.episerver.net *.visualstudio.com;block-all-mixed-content
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: EXPIRED
Expires: Thu, 08 Dec 2022 23:53:22 GMT
Cache-Control: public, max-age=14400
Vary: Accept-Encoding
CF-RAY: 77680bfc6856e0ea-IAD
Via: 1.1 dca1-bit16013
Content-Encoding: gzip
Transfer-Encoding: chunked
www.alaskausa.org/current/promo/data/images/primary/Q3-Floating-Banner-yellow.png
107.162.171.161404 Not Found 23 kB URL HTTP/1.1 www.alaskausa.org/current/promo/data/images/primary/Q3-Floating-Banner-yellow.png
IP 107.162.171.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3941), with CRLF, LF line terminators
Hash 1ed52c9b614f1a029f7739a23a86c388
8754732ed1e95d69f4c6366196aa8ce3bf77e5d0
6e11acccbdb2dd049df52c57c04d2abda82f5d7a5199af3b7581eac4e899862b
GET /current/promo/data/images/primary/Q3-Floating-Banner-yellow.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rasvetakandela.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Thu, 08 Dec 2022 19:53:23 GMT
Content-Type: text/html; charset=utf-8
Connection: keep-alive
Request-Context: appId=cid-v1:24ecc7a8-51e3-4614-8724-c8d6f6e8adfb
Strict-Transport-Security: max-age=31536000
Content-Security-Policy-Report-Only: default-src 'self' *.adsrvr.org *.google.com *.doubleclick.net *.optimizely.com *.facebook.com;script-src 'self' 'unsafe-inline' 'unsafe-eval' cdnjs.cloudflare.com cdn.jsdelivr.net code.jquery.com embed.signalintent.com *.optimizely.com cdn.segment.com *.googleapis.com www.googletagmanager.com www.google.com www.gstatic.com *.btttag.com *.bing.com *.app-us1.com *.adsrvr.org *.doubleclick.net *.cookielaw.org www.google-analytics.com *.mypurecloud.com *.googleadservices.com *.pure.cloud *.aptrinsic.com *.bootstrapcdn.com js.monitor.azure.com *.facebook.net *.facebook.com trackcmp.net;style-src 'self' 'unsafe-inline' use.fontawesome.com use.typekit.net embed.signalintent.com p.typekit.net *.mypurecloud.com *.googleapis.com *.aptrinsic.com *.jsdelivr.net *.bootstrapcdn.com;img-src 'self' data: bat.bing.com *.google.com www.google-analytics.com content-cdn.com *.gstatic.com *.googleapis.com www.googletagmanager.com *.facebook.net *.facebook.com;font-src 'self' use.fontawesome.com embed.signalintent.com use.typekit.net *.mypurecloud.com *.gstatic.com *.googleapis.com *.cloudfront.net data:;connect-src 'self' signal-intent-production-back.herokuapp.com cdn.segment.com *.optimizely.com *.cookielaw.org calc-backend-prod.herokuapp.com d.btttag.com *.googleapis.com www.google-analytics.com api.segment.io *.doubleclick.net *.alaskausa.org *.bing.com *.aptrinsic.com *.episerver.net *.visualstudio.com;block-all-mixed-content
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: EXPIRED
Expires: Thu, 08 Dec 2022 23:53:22 GMT
Cache-Control: public, max-age=14400
Vary: Accept-Encoding
CF-RAY: 77680bfba9a0e0fa-IAD
Via: 1.1 dca1-bit9045
Content-Encoding: gzip
Transfer-Encoding: chunked
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 615fddb7dcff0826f0a7dd4140f370b6
06d26c99fcf20516839a656c4c5b023088eb4eaa
f561bef7be5b58a820d37e40135c8bc83511ae9298e6317bf1761f7cc24941bf
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5453
Cache-Control: max-age=165756
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:53:23 GMT
Etag: "63920fe2-1d7"
Expires: Sat, 10 Dec 2022 17:55:59 GMT
Last-Modified: Thu, 08 Dec 2022 16:25:06 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2556512b197b09798af71bea10bb4bbb
23b647aca5f8294ae82fa8cc7e2215ebe3347b60
3b5bd592342d978bcf8919d1a1e2f87295e2e4af5b5b266e6017b7a25725d08d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:53:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bat.bing.com/bat.js
204.79.197.200200 OK 12 kB IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (39124), with no line terminators
Hash d925a898de26295fdebfc90203ef46fa
77dd3f5893b76530e08058d50e8f9aef017e80c7
8f4a413fec7e48f5ac290f4596fef33b6396e7fb31080ec0203a5ec817d140c8
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rasvetakandela.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11460
content-type: application/javascript
content-encoding: gzip
last-modified: Mon, 05 Dec 2022 17:15:50 GMT
accept-ranges: bytes
etag: "027e538cd8d91:0"
vary: Accept-Encoding
set-cookie: MUID=3AB8094A99736F4320851B3E98866E94; domain=.bing.com; expires=Tue, 02-Jan-2024 19:53:23 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: B0DA4A320BC6427BBAC005B762B46F62 Ref B: OSL30EDGE0510 Ref C: 2022-12-08T19:53:23Z
date: Thu, 08 Dec 2022 19:53:23 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0c89743226644fddacbe5d50c110b950
b343ae9eb9047cf764b518083d612ffd3652b209
1bf675bb6e12e913a98cd8849c1af9a0c50b0bb8bfa670c86419b41782e06e47
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:53:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rasvetakandela.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Thu, 08 Dec 2022 18:41:08 GMT
expires: Thu, 08 Dec 2022 20:41:08 GMT
cache-control: public, max-age=7200
age: 4335
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/831978068/?random=1670529200061&cv=11&fst=1670529200061&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=http%3A%2F%2Frasvetakandela.com%2Fjs%2F.ch%2F660e4be8f59ae4c3ab78ba485576fba3%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac%26session%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac&tiba=Alaska%20USA%20services%20for%20you&auid=191541007.1670529200&rfmt=3&fmt=4
216.58.207.194200 OK 967 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/831978068/?random=1670529200061&cv=11&fst=1670529200061&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=http%3A%2F%2Frasvetakandela.com%2Fjs%2F.ch%2F660e4be8f59ae4c3ab78ba485576fba3%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac%26session%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac&tiba=Alaska%20USA%20services%20for%20you&auid=191541007.1670529200&rfmt=3&fmt=4
IP 216.58.207.194:0
File type ASCII text, with very long lines (2261), with no line terminators
Hash bc4607045c53371b6861227d096454f2
a423b69c8e59d1286a14f1f95a48a5ecdde6c2d9
12181836336a0319d07f4efb0bc1d3ccd066684971b1f8221d8efba7818faebf
GET /pagead/viewthroughconversion/831978068/?random=1670529200061&cv=11&fst=1670529200061&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=http%3A%2F%2Frasvetakandela.com%2Fjs%2F.ch%2F660e4be8f59ae4c3ab78ba485576fba3%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac%26session%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac&tiba=Alaska%20USA%20services%20for%20you&auid=191541007.1670529200&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rasvetakandela.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 08 Dec 2022 19:53:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 967
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 08-Dec-2022 20:08:23 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
157.240.200.14200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.200.14:0
File type ASCII text, with very long lines (64348)
Hash 44ecaa3c2a4929a40141edc4540aaf84
f29a573182333b2500d41bfc389d6c5232dfb348
6589fe14578dedd4df678a909afadd7e5bc7f57c7e3e24518a7f5faac7383396
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rasvetakandela.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy-report-only: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: chrome-extension: 'unsafe-inline' 'unsafe-eval';report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script';
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: STJYSGIPSjjXKHV4APKuv6rP7OQKNUyAf/KG3bzbZjy5Xud0Iart5fai0GxOX5fVV6n3DDQynEdd4bUAQ0xBcA==
content-length: 27340
x-fb-trip-id: 1679558926
date: Thu, 08 Dec 2022 19:53:23 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 615fddb7dcff0826f0a7dd4140f370b6
06d26c99fcf20516839a656c4c5b023088eb4eaa
f561bef7be5b58a820d37e40135c8bc83511ae9298e6317bf1761f7cc24941bf
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5922
Cache-Control: max-age=166225
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:53:23 GMT
Etag: "63920fe2-1d7"
Expires: Sat, 10 Dec 2022 18:03:48 GMT
Last-Modified: Thu, 08 Dec 2022 16:25:06 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6d7737802f93eeb14503d61c77c137bc
fa6861c298d00f879b9f16af4f05470cecfc80af
6b1b9763bcfaeb92a63ad6020651b3745e8279c634eb3505fc9fa875e772af42
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:53:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c221e4deeb8144b7fc354cce5dc563f8
578e9395e2800e2e19bde2a1d49d9501f6aa3364
258bf83c23b05e8bc9b987e849a194b9f81742ee4268f6453a1e88bfaca959f5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:53:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash cb4dd119f7430c320eac60b72355bd8c
e5694c4e08731720fa303127f2f4b2fe5ab9fba9
116e36f240390df2689f722ba0174ff342f7c6ce3a6b91853342c93def2a0825
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:53:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bat.bing.com/action/0?ti=134612163&tm=gtm002&Ver=2&mid=c916fdf7-3645-4811-85e7-9263e431d4ee&sid=f88c9700773111edad8b599f18d522a8&vid=f88c86b0773111ed98cd4138635771c6&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Alaska%20USA%20services%20for%20you&kw=AlaskaUSA,%20Alaska,%20Arizona,%20Washington,%20USA,%20San%20Bernardino%20California,%20Victor%20Valley,%20High%20Desert,%20Anchorage,%20Credit%20Union,%20Bank,%20Financial,%20Finance,%20Loan,%20Credit,%20Lending,%20Insurance,%20Mortgage,%20Refinance,%20home,%20Online%20banking,%20by%20phone,%20UltraBranch,%20Saving,%20Checking,%20Account,%20Money,%20Service,%20Relocate,%20Moving,%20Real%20Estate,%20business,%20AKUSA&p=http%3A%2F%2Frasvetakandela.com%2Fjs%2F.ch%2F660e4be8f59ae4c3ab78ba485576fba3%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac%26session%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac&r=<=4264&evt=pageLoad&sv=1&rn=523891
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=134612163&tm=gtm002&Ver=2&mid=c916fdf7-3645-4811-85e7-9263e431d4ee&sid=f88c9700773111edad8b599f18d522a8&vid=f88c86b0773111ed98cd4138635771c6&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Alaska%20USA%20services%20for%20you&kw=AlaskaUSA,%20Alaska,%20Arizona,%20Washington,%20USA,%20San%20Bernardino%20California,%20Victor%20Valley,%20High%20Desert,%20Anchorage,%20Credit%20Union,%20Bank,%20Financial,%20Finance,%20Loan,%20Credit,%20Lending,%20Insurance,%20Mortgage,%20Refinance,%20home,%20Online%20banking,%20by%20phone,%20UltraBranch,%20Saving,%20Checking,%20Account,%20Money,%20Service,%20Relocate,%20Moving,%20Real%20Estate,%20business,%20AKUSA&p=http%3A%2F%2Frasvetakandela.com%2Fjs%2F.ch%2F660e4be8f59ae4c3ab78ba485576fba3%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac%26session%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac&r=<=4264&evt=pageLoad&sv=1&rn=523891
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=134612163&tm=gtm002&Ver=2&mid=c916fdf7-3645-4811-85e7-9263e431d4ee&sid=f88c9700773111edad8b599f18d522a8&vid=f88c86b0773111ed98cd4138635771c6&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Alaska%20USA%20services%20for%20you&kw=AlaskaUSA,%20Alaska,%20Arizona,%20Washington,%20USA,%20San%20Bernardino%20California,%20Victor%20Valley,%20High%20Desert,%20Anchorage,%20Credit%20Union,%20Bank,%20Financial,%20Finance,%20Loan,%20Credit,%20Lending,%20Insurance,%20Mortgage,%20Refinance,%20home,%20Online%20banking,%20by%20phone,%20UltraBranch,%20Saving,%20Checking,%20Account,%20Money,%20Service,%20Relocate,%20Moving,%20Real%20Estate,%20business,%20AKUSA&p=http%3A%2F%2Frasvetakandela.com%2Fjs%2F.ch%2F660e4be8f59ae4c3ab78ba485576fba3%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac%26session%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac&r=<=4264&evt=pageLoad&sv=1&rn=523891 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rasvetakandela.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=2A47BFB641CF6F8709D5ADC2403A6E99; domain=.bing.com; expires=Tue, 02-Jan-2024 19:53:23 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: BB487EEC9E8D4AACB2FB6373DC0CC973 Ref B: OSL30EDGE0510 Ref C: 2022-12-08T19:53:23Z
date: Thu, 08 Dec 2022 19:53:23 GMT
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/831978068/?random=1670529200061&cv=11&fst=1670526000000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=http%3A%2F%2Frasvetakandela.com%2Fjs%2F.ch%2F660e4be8f59ae4c3ab78ba485576fba3%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac%26session%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac&tiba=Alaska%20USA%20services%20for%20you&fmt=3&is_vtc=1&random=2762753428&rmt_tld=1&ipr=y
142.250.74.67200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/831978068/?random=1670529200061&cv=11&fst=1670526000000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=http%3A%2F%2Frasvetakandela.com%2Fjs%2F.ch%2F660e4be8f59ae4c3ab78ba485576fba3%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac%26session%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac&tiba=Alaska%20USA%20services%20for%20you&fmt=3&is_vtc=1&random=2762753428&rmt_tld=1&ipr=y
IP 142.250.74.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/831978068/?random=1670529200061&cv=11&fst=1670526000000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=http%3A%2F%2Frasvetakandela.com%2Fjs%2F.ch%2F660e4be8f59ae4c3ab78ba485576fba3%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac%26session%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac&tiba=Alaska%20USA%20services%20for%20you&fmt=3&is_vtc=1&random=2762753428&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rasvetakandela.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 08 Dec 2022 19:53:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/831978068/?random=1670529200061&cv=11&fst=1670526000000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=http%3A%2F%2Frasvetakandela.com%2Fjs%2F.ch%2F660e4be8f59ae4c3ab78ba485576fba3%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac%26session%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac&tiba=Alaska%20USA%20services%20for%20you&fmt=3&is_vtc=1&random=2762753428&rmt_tld=0&ipr=y
142.250.74.132200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/831978068/?random=1670529200061&cv=11&fst=1670526000000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=http%3A%2F%2Frasvetakandela.com%2Fjs%2F.ch%2F660e4be8f59ae4c3ab78ba485576fba3%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac%26session%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac&tiba=Alaska%20USA%20services%20for%20you&fmt=3&is_vtc=1&random=2762753428&rmt_tld=0&ipr=y
IP 142.250.74.132:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/831978068/?random=1670529200061&cv=11&fst=1670526000000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=http%3A%2F%2Frasvetakandela.com%2Fjs%2F.ch%2F660e4be8f59ae4c3ab78ba485576fba3%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac%26session%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac&tiba=Alaska%20USA%20services%20for%20you&fmt=3&is_vtc=1&random=2762753428&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rasvetakandela.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 08 Dec 2022 19:53:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.alaskausa.org/favicon.ico
107.162.171.161200 OK 15 kB URL HTTP/1.1 www.alaskausa.org/favicon.ico
IP 107.162.171.161:0
File type MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash d806a2ae50f1a4c373f62f95df226d26
7756d0623dae0f5f056a12d2b2c191315449481a
a14d445fc717ba93b82bbfcaf4c1ebc8b6d86d5890d86e310b04fe9da9d8f192
GET /favicon.ico HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rasvetakandela.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 08 Dec 2022 19:53:23 GMT
Content-Type: image/x-icon
Connection: keep-alive
ETag: W/"1d905da75b5e9ee"
Last-Modified: Thu, 01 Dec 2022 23:13:02 GMT
Request-Context: appId=cid-v1:24ecc7a8-51e3-4614-8724-c8d6f6e8adfb
Strict-Transport-Security: max-age=31536000
Content-Security-Policy-Report-Only: default-src 'self' *.adsrvr.org *.google.com *.doubleclick.net *.optimizely.com *.facebook.com;script-src 'self' 'unsafe-inline' 'unsafe-eval' cdnjs.cloudflare.com cdn.jsdelivr.net code.jquery.com embed.signalintent.com *.optimizely.com cdn.segment.com *.googleapis.com www.googletagmanager.com www.google.com www.gstatic.com *.btttag.com *.bing.com *.app-us1.com *.adsrvr.org *.doubleclick.net *.cookielaw.org www.google-analytics.com *.mypurecloud.com *.googleadservices.com *.pure.cloud *.aptrinsic.com *.bootstrapcdn.com js.monitor.azure.com *.facebook.net *.facebook.com trackcmp.net;style-src 'self' 'unsafe-inline' use.fontawesome.com use.typekit.net embed.signalintent.com p.typekit.net *.mypurecloud.com *.googleapis.com *.aptrinsic.com *.jsdelivr.net *.bootstrapcdn.com;img-src 'self' data: bat.bing.com *.google.com www.google-analytics.com content-cdn.com *.gstatic.com *.googleapis.com www.googletagmanager.com *.facebook.net *.facebook.com;font-src 'self' use.fontawesome.com embed.signalintent.com use.typekit.net *.mypurecloud.com *.gstatic.com *.googleapis.com *.cloudfront.net data:;connect-src 'self' signal-intent-production-back.herokuapp.com cdn.segment.com *.optimizely.com *.cookielaw.org calc-backend-prod.herokuapp.com d.btttag.com *.googleapis.com www.google-analytics.com api.segment.io *.doubleclick.net *.alaskausa.org *.bing.com *.aptrinsic.com *.episerver.net *.visualstudio.com;block-all-mixed-content
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
CF-Cache-Status: REVALIDATED
Expires: Thu, 08 Dec 2022 23:53:23 GMT
Cache-Control: public, max-age=14400
Vary: Accept-Encoding
CF-RAY: 77680c000b968299-IAD
Via: 1.1 dca1-bit9045
Content-Length: 15086
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 32d90ff0cc366730c3633c1201b4c058
f4175292b607197a15085e14bf69df301dff6706
b4b2f80fbe9b02f3d54dc35a3738c31a4d7cb5a5e528fcbce50263d8c458231a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:53:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bat.bing.com/p/action/134612163.js
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/134612163.js
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/134612163.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rasvetakandela.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
set-cookie: MUID=388271B498DF664D3CEA63C0992A67BF; domain=.bing.com; expires=Tue, 02-Jan-2024 19:53:23 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 57F64B49D1F4446094EBBF89E57D890C Ref B: OSL30EDGE0510 Ref C: 2022-12-08T19:53:23Z
date: Thu, 08 Dec 2022 19:53:23 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a0905812e8498e6c5c0a9b4b584b972f
039b784fd1e0152ec7f49a54ba027f0b2bd1e833
ee3531ef0f334dcd73a86b1e4365a020d5db69ff7b82bad136eaf1a8e9d3b47f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 08 Dec 2022 19:53:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.alaskausa.org/images/icon-76@2x.png
107.162.171.161404 Not Found 23 kB URL HTTP/1.1 www.alaskausa.org/images/icon-76@2x.png
IP 107.162.171.161:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3941), with CRLF, LF line terminators
Hash c21a180d73b7b8f0fd0b6ee33222756c
b0f2bfc93717e63ae8571f045906f499a1e5d0ed
8caa9a3ba7c18934d197334269e9181c3cfe880865217953f60b38754a38161a
GET /images/icon-76@2x.png HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rasvetakandela.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Thu, 08 Dec 2022 19:53:23 GMT
Content-Type: text/html; charset=utf-8
Connection: keep-alive
Request-Context: appId=cid-v1:24ecc7a8-51e3-4614-8724-c8d6f6e8adfb
Strict-Transport-Security: max-age=31536000
Content-Security-Policy-Report-Only: default-src 'self' *.adsrvr.org *.google.com *.doubleclick.net *.optimizely.com *.facebook.com;script-src 'self' 'unsafe-inline' 'unsafe-eval' cdnjs.cloudflare.com cdn.jsdelivr.net code.jquery.com embed.signalintent.com *.optimizely.com cdn.segment.com *.googleapis.com www.googletagmanager.com www.google.com www.gstatic.com *.btttag.com *.bing.com *.app-us1.com *.adsrvr.org *.doubleclick.net *.cookielaw.org www.google-analytics.com *.mypurecloud.com *.googleadservices.com *.pure.cloud *.aptrinsic.com *.bootstrapcdn.com js.monitor.azure.com *.facebook.net *.facebook.com trackcmp.net;style-src 'self' 'unsafe-inline' use.fontawesome.com use.typekit.net embed.signalintent.com p.typekit.net *.mypurecloud.com *.googleapis.com *.aptrinsic.com *.jsdelivr.net *.bootstrapcdn.com;img-src 'self' data: bat.bing.com *.google.com www.google-analytics.com content-cdn.com *.gstatic.com *.googleapis.com www.googletagmanager.com *.facebook.net *.facebook.com;font-src 'self' use.fontawesome.com embed.signalintent.com use.typekit.net *.mypurecloud.com *.gstatic.com *.googleapis.com *.cloudfront.net data:;connect-src 'self' signal-intent-production-back.herokuapp.com cdn.segment.com *.optimizely.com *.cookielaw.org calc-backend-prod.herokuapp.com d.btttag.com *.googleapis.com www.google-analytics.com api.segment.io *.doubleclick.net *.alaskausa.org *.bing.com *.aptrinsic.com *.episerver.net *.visualstudio.com;block-all-mixed-content
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: EXPIRED
Expires: Thu, 08 Dec 2022 23:53:23 GMT
Cache-Control: public, max-age=14400
Vary: Accept-Encoding
CF-RAY: 77680bfffeae7f82-IAD
Via: 1.1 dca1-bit16013
Content-Encoding: gzip
Transfer-Encoding: chunked
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-105087488-1&cid=362166141.1670529200&jid=2131759679&gjid=884696609&_gid=1085304528.1670529203&_u=YADAAEAAAAAAACAAI~&z=1426277764
108.177.14.154200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-105087488-1&cid=362166141.1670529200&jid=2131759679&gjid=884696609&_gid=1085304528.1670529203&_u=YADAAEAAAAAAACAAI~&z=1426277764
IP 108.177.14.154:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-105087488-1&cid=362166141.1670529200&jid=2131759679&gjid=884696609&_gid=1085304528.1670529203&_u=YADAAEAAAAAAACAAI~&z=1426277764 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://rasvetakandela.com
Connection: keep-alive
Referer: http://rasvetakandela.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://rasvetakandela.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 08 Dec 2022 19:53:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=251150729134059&ev=PageView&dl=http%3A%2F%2Frasvetakandela.com%2Fjs%2F.ch%2F660e4be8f59ae4c3ab78ba485576fba3%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac%26session%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac&rl=&if=false&ts=1670529202772&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&fbp=fb.1.1670529202770.1429799438&it=1670529202550&coo=false&tm=1&rqm=GET
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=251150729134059&ev=PageView&dl=http%3A%2F%2Frasvetakandela.com%2Fjs%2F.ch%2F660e4be8f59ae4c3ab78ba485576fba3%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac%26session%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac&rl=&if=false&ts=1670529202772&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&fbp=fb.1.1670529202770.1429799438&it=1670529202550&coo=false&tm=1&rqm=GET
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=251150729134059&ev=PageView&dl=http%3A%2F%2Frasvetakandela.com%2Fjs%2F.ch%2F660e4be8f59ae4c3ab78ba485576fba3%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac%26session%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac&rl=&if=false&ts=1670529202772&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&fbp=fb.1.1670529202770.1429799438&it=1670529202550&coo=false&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rasvetakandela.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 08 Dec 2022 19:53:23 GMT
X-Firefox-Spdy: h2
insight.adsrvr.org/track/up?adv=p6q6pct&ref=http%3A%2F%2Frasvetakandela.com%2Fjs%2F.ch%2F660e4be8f59ae4c3ab78ba485576fba3%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac%26session%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac&upid=q8skero&upv=1.1.0
15.197.193.217200 OK 0 B URL HTTP/2 insight.adsrvr.org/track/up?adv=p6q6pct&ref=http%3A%2F%2Frasvetakandela.com%2Fjs%2F.ch%2F660e4be8f59ae4c3ab78ba485576fba3%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac%26session%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac&upid=q8skero&upv=1.1.0
IP 15.197.193.217:0
GET /track/up?adv=p6q6pct&ref=http%3A%2F%2Frasvetakandela.com%2Fjs%2F.ch%2F660e4be8f59ae4c3ab78ba485576fba3%2Flogin.php%3Fcmd%3Dlogin_submit%26id%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac%26session%3Df8d83fedd2d6ff634183f333033d19acf8d83fedd2d6ff634183f333033d19ac&upid=q8skero&upv=1.1.0 HTTP/1.1
Host: insight.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rasvetakandela.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 19:53:23 GMT
content-type: text/html
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
diffuser-cdn.app-us1.com/diffuser/diffuser.js
104.17.145.91200 OK 0 B URL HTTP/2 diffuser-cdn.app-us1.com/diffuser/diffuser.js
IP 104.17.145.91:0
GET /diffuser/diffuser.js HTTP/1.1
Host: diffuser-cdn.app-us1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rasvetakandela.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 08 Dec 2022 19:53:20 GMT
content-type: application/javascript
last-modified: Thu, 21 Oct 2021 17:42:06 GMT
etag: W/"4d482a43613d3966f353ec9d97452e0c"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 059f85e5e664bc876c915622803d9e28.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-C2
x-amz-cf-id: LYgb7O-05A19YisedsHdW7Gqa3Bw46pjlPKvIkZSVBpaULKohYEzzQ==
cf-cache-status: HIT
age: 213
server: cloudflare
cf-ray: 77680bf1690bb4f9-OSL
X-Firefox-Spdy: h2
www.alaskausa.org/js/jquery.accAccordion.js
107.162.171.161404 Not Found 0 B URL HTTP/1.1 www.alaskausa.org/js/jquery.accAccordion.js
IP 107.162.171.161:0
GET /js/jquery.accAccordion.js HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rasvetakandela.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Thu, 08 Dec 2022 19:53:21 GMT
Content-Type: text/html; charset=utf-8
Connection: keep-alive
Request-Context: appId=cid-v1:24ecc7a8-51e3-4614-8724-c8d6f6e8adfb
Strict-Transport-Security: max-age=31536000
Content-Security-Policy-Report-Only: default-src 'self' *.adsrvr.org *.google.com *.doubleclick.net *.optimizely.com *.facebook.com;script-src 'self' 'unsafe-inline' 'unsafe-eval' cdnjs.cloudflare.com cdn.jsdelivr.net code.jquery.com embed.signalintent.com *.optimizely.com cdn.segment.com *.googleapis.com www.googletagmanager.com www.google.com www.gstatic.com *.btttag.com *.bing.com *.app-us1.com *.adsrvr.org *.doubleclick.net *.cookielaw.org www.google-analytics.com *.mypurecloud.com *.googleadservices.com *.pure.cloud *.aptrinsic.com *.bootstrapcdn.com js.monitor.azure.com *.facebook.net *.facebook.com trackcmp.net;style-src 'self' 'unsafe-inline' use.fontawesome.com use.typekit.net embed.signalintent.com p.typekit.net *.mypurecloud.com *.googleapis.com *.aptrinsic.com *.jsdelivr.net *.bootstrapcdn.com;img-src 'self' data: bat.bing.com *.google.com www.google-analytics.com content-cdn.com *.gstatic.com *.googleapis.com www.googletagmanager.com *.facebook.net *.facebook.com;font-src 'self' use.fontawesome.com embed.signalintent.com use.typekit.net *.mypurecloud.com *.gstatic.com *.googleapis.com *.cloudfront.net data:;connect-src 'self' signal-intent-production-back.herokuapp.com cdn.segment.com *.optimizely.com *.cookielaw.org calc-backend-prod.herokuapp.com d.btttag.com *.googleapis.com www.google-analytics.com api.segment.io *.doubleclick.net *.alaskausa.org *.bing.com *.aptrinsic.com *.episerver.net *.visualstudio.com;block-all-mixed-content
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: EXPIRED
Expires: Thu, 08 Dec 2022 23:53:21 GMT
Cache-Control: public, max-age=14400
Vary: Accept-Encoding
CF-RAY: 77680bf30afe800f-IAD
Via: 1.1 dca1-bit9045
Content-Encoding: gzip
Transfer-Encoding: chunked
www.alaskausa.org/js/jquery-1.11.3.min.js
107.162.171.161404 Not Found 0 B URL HTTP/1.1 www.alaskausa.org/js/jquery-1.11.3.min.js
IP 107.162.171.161:0
GET /js/jquery-1.11.3.min.js HTTP/1.1
Host: www.alaskausa.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rasvetakandela.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Date: Thu, 08 Dec 2022 19:53:21 GMT
Content-Type: text/html; charset=utf-8
Connection: keep-alive
Request-Context: appId=cid-v1:24ecc7a8-51e3-4614-8724-c8d6f6e8adfb
Strict-Transport-Security: max-age=31536000
Content-Security-Policy-Report-Only: default-src 'self' *.adsrvr.org *.google.com *.doubleclick.net *.optimizely.com *.facebook.com;script-src 'self' 'unsafe-inline' 'unsafe-eval' cdnjs.cloudflare.com cdn.jsdelivr.net code.jquery.com embed.signalintent.com *.optimizely.com cdn.segment.com *.googleapis.com www.googletagmanager.com www.google.com www.gstatic.com *.btttag.com *.bing.com *.app-us1.com *.adsrvr.org *.doubleclick.net *.cookielaw.org www.google-analytics.com *.mypurecloud.com *.googleadservices.com *.pure.cloud *.aptrinsic.com *.bootstrapcdn.com js.monitor.azure.com *.facebook.net *.facebook.com trackcmp.net;style-src 'self' 'unsafe-inline' use.fontawesome.com use.typekit.net embed.signalintent.com p.typekit.net *.mypurecloud.com *.googleapis.com *.aptrinsic.com *.jsdelivr.net *.bootstrapcdn.com;img-src 'self' data: bat.bing.com *.google.com www.google-analytics.com content-cdn.com *.gstatic.com *.googleapis.com www.googletagmanager.com *.facebook.net *.facebook.com;font-src 'self' use.fontawesome.com embed.signalintent.com use.typekit.net *.mypurecloud.com *.gstatic.com *.googleapis.com *.cloudfront.net data:;connect-src 'self' signal-intent-production-back.herokuapp.com cdn.segment.com *.optimizely.com *.cookielaw.org calc-backend-prod.herokuapp.com d.btttag.com *.googleapis.com www.google-analytics.com api.segment.io *.doubleclick.net *.alaskausa.org *.bing.com *.aptrinsic.com *.episerver.net *.visualstudio.com;block-all-mixed-content
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: EXPIRED
Expires: Thu, 08 Dec 2022 23:53:21 GMT
Cache-Control: public, max-age=14400
Vary: Accept-Encoding
CF-RAY: 77680bf2df275842-IAD
Via: 1.1 dca1-bit9045
Content-Encoding: gzip
Transfer-Encoding: chunked