k.courageousglimmeringdirect.shop/wbalce/rha37/azc-nm-cp1ral-c1-ft.html
104.16.118.67200 OK 4.5 kB URL HTTP/1.1 k.courageousglimmeringdirect.shop/wbalce/rha37/azc-nm-cp1ral-c1-ft.html
IP 104.16.118.67:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (4579)
Hash 2f225045351726a3c4709d25119c66fa
a82b91603c89d9c271b69e65410b2d07dface67e
4b233c6691005360bd20346f5dc92695d51d617931a838f54506698dd2150ee3
Analyzer Verdict Alert fortinet Phishing
GET /wbalce/rha37/azc-nm-cp1ral-c1-ft.html HTTP/1.1
Host: k.courageousglimmeringdirect.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:49:20 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 04 May 2022 10:41:32 GMT
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2hO5HQtZGLB7uS4U6j%2BhJRZuhW5E8sPJoZ%2FpkdQKN6LL4l1uuYjUijY1PqxpJzCns9NWTvdrKKyP5LFkB8bNXeoyf5YShrNg1b%2Fb1%2FSr4Gvsn3EN%2FpYwR%2B4IhzTY0t3Wgew7M%2F7TZwETnGoODW%2BRpdxjSy0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 792f9cf0d832b4e8-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e935ea42be4feaed61a824b0b903913e
f966cfa80d65a805cb9d7c6a53b3340865d7c51a
eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9029
Expires: Thu, 02 Feb 2023 05:19:50 GMT
Date: Thu, 02 Feb 2023 02:49:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7e05c8461bd2dc5a149f71e2c465ea29
705983959c887e243cb55a8a1796757b579ee977
4d9ea085d5dda9dabed11af9847c2b0aa6182358673b356a4e2bd631e22a9922
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D9EA085D5DDA9DABED11AF9847C2B0AA6182358673B356A4E2BD631E22A9922"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10095
Expires: Thu, 02 Feb 2023 05:37:36 GMT
Date: Thu, 02 Feb 2023 02:49:21 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 02 Feb 2023 02:43:28 GMT
content-type: application/json
age: 353
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9a76feabb767086ae0fa54e0ffbf763f
3655d78994a1e9838340669462728b67c8c12e54
bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4226
Expires: Thu, 02 Feb 2023 03:59:47 GMT
Date: Thu, 02 Feb 2023 02:49:21 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ErlmOBSa4KvmMVaayns1GW359NQM/er3sN8uDuzX5YPuLzrg7j0Vhi6haG9BM/+BH4L6s6L+keU=
x-amz-request-id: A05MSDXKY3K2ZNTW
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 02 Feb 2023 01:51:47 GMT
age: 3454
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 02:49:21 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
k.courageousglimmeringdirect.shop/wbalce/rha37/s-alogo.css
104.16.118.67200 OK 2.2 kB URL HTTP/1.1 k.courageousglimmeringdirect.shop/wbalce/rha37/s-alogo.css
IP 104.16.118.67:0
File type ASCII text, with very long lines (7969), with no line terminators
Hash bb5f8841b75dc537ff288c37c75a7753
325ea833ff3ad2794c5478ba70d3c795635cbaea
5dd6b29c07fe518749b002588729a706378a6b03c3fc611310a1297aab89a7d6
GET /wbalce/rha37/s-alogo.css HTTP/1.1
Host: k.courageousglimmeringdirect.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://k.courageousglimmeringdirect.shop/wbalce/rha37/azc-nm-cp1ral-c1-ft.html
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:49:21 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 04 May 2022 10:41:42 GMT
ETag: W/"1f21-5de2d4564c37f"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OHNmrPf7rE2JXmi5VbZbSc8uoO3vRDsLYg5ac4G1Nlx1WJ%2FDuDkqRzVwFCu2YagSkh7ZsmzZeQxRXpOwhhvig8pr%2BiAtGAFXv4U%2BEeyjNnHkWKv7pb8y5gZXDCBSLurmi2qllO5XbbWMsKZVnIHMceWUFo8%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 792f9cf33927b4e8-OSL
alt-svc: h2=":443"; ma=60
gauvaiho.net/pfe/current/micro.tag.min.js?z=4984707&sw=/sw-check-permissions-4eee0.js
139.45.197.251200 OK 14 kB URL HTTP/1.1 gauvaiho.net/pfe/current/micro.tag.min.js?z=4984707&sw=/sw-check-permissions-4eee0.js
IP 139.45.197.251:0
File type C source, ASCII text, with very long lines (41091), with no line terminators
Hash 002d32199f9116c7429c84ef9d7849bb
328e4f6b8bdfb247e311b58cddab5eaa21d5b4e3
8b9b2a4d4da7ff539e51c4bb298f0587b0c14ed4158294bfa003cb8b6893d1dc
GET /pfe/current/micro.tag.min.js?z=4984707&sw=/sw-check-permissions-4eee0.js HTTP/1.1
Host: gauvaiho.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://k.courageousglimmeringdirect.shop/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 02:49:21 GMT
Content-Type: application/javascript
Last-Modified: Fri, 27 Jan 2023 11:03:52 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63d3af98-a083"
Access-Control-Allow-Credentials: true
Cache-Control: no-cache
Pragma: no-cache
Content-Encoding: gzip
k.courageousglimmeringdirect.shop/wbalce/rha37/c14.jpg
104.16.118.67200 OK 1.7 kB URL HTTP/1.1 k.courageousglimmeringdirect.shop/wbalce/rha37/c14.jpg
IP 104.16.118.67:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x50, components 3\012- data
Hash 48d090838ebbe2a11778b5febb1c6c3c
e5e78b7f184a2ddf68a54e4e812dc4bab254840a
467e9ce453696603c6b7555b0e35bf240a6f3748c4128db2a8d09d2b2b320654
GET /wbalce/rha37/c14.jpg HTTP/1.1
Host: k.courageousglimmeringdirect.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://k.courageousglimmeringdirect.shop/wbalce/rha37/azc-nm-cp1ral-c1-ft.html
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:49:21 GMT
Content-Type: image/jpeg
Content-Length: 1693
Connection: keep-alive
Last-Modified: Wed, 04 May 2022 10:41:33 GMT
ETag: "69d-5de2d44da70dc"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iX%2B7k0G4Wfm875dACyAyhf35F1Uxry3soBO56RMVNxhQB0ysARPAT77xxrEWjrBGoWfMEMDTcN1cYEPFxOBP%2FAbb6N%2FPMqRF3txCj%2B5Zfop5IOaT2c%2BUMXwx4vH6cjIN6aaEkmXzYaCjFaPHeAakL4rZdUg%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792f9cf4397db4e8-OSL
alt-svc: h2=":443"; ma=60
k.courageousglimmeringdirect.shop/wbalce/rha37/c16.jpg
104.16.118.67200 OK 1.8 kB URL HTTP/1.1 k.courageousglimmeringdirect.shop/wbalce/rha37/c16.jpg
IP 104.16.118.67:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x50, components 3\012- data
Hash 36fc46f2d92a9202eb63c89d02455730
99ed1d05b9146cce33d8f3319e88e804cca4c67b
29caaffd985cb734bcbd7681f999646d12decde061e3d819ad75c7e19c80cd33
GET /wbalce/rha37/c16.jpg HTTP/1.1
Host: k.courageousglimmeringdirect.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://k.courageousglimmeringdirect.shop/wbalce/rha37/azc-nm-cp1ral-c1-ft.html
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:49:21 GMT
Content-Type: image/jpeg
Content-Length: 1836
Connection: keep-alive
Last-Modified: Wed, 04 May 2022 10:41:33 GMT
ETag: "72c-5de2d44dee580"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Bj%2BbezK%2F0tg5HUxbTSn%2FUAl1R5YZfUQJdWv5ckpi%2Bw35oEjMLHWPfIr9Anz2TdC9fqFvid491pJkfSegprqmbWJoYeROzy7x1RVN3sB0cR%2Fpl9ufUhP7YZWbIzEqs%2B2Dw229HsiDYXPnIfooG1fZwgM2HwA%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792f9cf43c7ab4f4-OSL
alt-svc: h2=":443"; ma=60
k.courageousglimmeringdirect.shop/wbalce/rha37/azspr.png
104.16.118.67200 OK 8.9 kB URL HTTP/1.1 k.courageousglimmeringdirect.shop/wbalce/rha37/azspr.png
IP 104.16.118.67:0
File type PNG image data, 170 x 127, 8-bit colormap, non-interlaced\012- data
Hash 22ff85984408598121eab05c7f576ab1
04cd6465e45f7049d49b5cf7d6fb86b0749103f3
9cdbed04336f5d22ba8bee4e6664162b1200743ab09263ea1e828202c35bac52
GET /wbalce/rha37/azspr.png HTTP/1.1
Host: k.courageousglimmeringdirect.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://k.courageousglimmeringdirect.shop/wbalce/rha37/azc-nm-cp1ral-c1-ft.html
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:49:21 GMT
Content-Type: image/png
Content-Length: 8918
Connection: keep-alive
Last-Modified: Thu, 19 May 2022 08:14:21 GMT
ETag: "22d6-5df58f6035292"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CxXEMq9vWBKFvy4597cfw7IHQ0T59o%2F1h%2BYYa5BCIvnn6%2BTnOqSn0haUQ4DuR8%2BhDQ5b%2BqK6%2B6f9l2wTTkTHrtFQaEdfQAk64wz%2FXXxLrTbVNMDbq8I2Cenq0RiE%2FBuZPHZQqB3oqcWRw1L%2BkkeYkKNKY5U%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792f9cf43b751c02-OSL
alt-svc: h2=":443"; ma=60
k.courageousglimmeringdirect.shop/wbalce/rha37/c15.jpg
104.16.118.67200 OK 1.8 kB URL HTTP/1.1 k.courageousglimmeringdirect.shop/wbalce/rha37/c15.jpg
IP 104.16.118.67:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x50, components 3\012- data
Hash 714b557e5cb6189ca2fd6d7b640978fd
13dfa1db89210ad95ba66ac95bb650afd2447767
e06ad3ba617044032f6765b818cf73aa55412dd51da367955b9150e9b2a579e6
GET /wbalce/rha37/c15.jpg HTTP/1.1
Host: k.courageousglimmeringdirect.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://k.courageousglimmeringdirect.shop/wbalce/rha37/azc-nm-cp1ral-c1-ft.html
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:49:21 GMT
Content-Type: image/jpeg
Content-Length: 1753
Connection: keep-alive
Last-Modified: Wed, 04 May 2022 10:41:34 GMT
ETag: "6d9-5de2d44e0683a"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MirFZ9ueZUhEFghj92HewUKL9OQSBduH4HWJ5o%2FBeRvJgb6BV2xq8SE8NnGUPGGYuy3mu6V5tUhP6WAaZS6%2Bj1A9Jx7WPlUXdSVY%2FN8UfoFm%2Bv0GfzXBlI1IyUjUw5w5%2F73Ic6%2FxFURywWrMsF%2BrLfQj9mg%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792f9cf43f231c12-OSL
alt-svc: h2=":443"; ma=60
k.courageousglimmeringdirect.shop/wbalce/rha37/c18.jpg
104.16.118.67200 OK 1.6 kB URL HTTP/1.1 k.courageousglimmeringdirect.shop/wbalce/rha37/c18.jpg
IP 104.16.118.67:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x50, components 3\012- data
Hash 042f0e3c63e1aa60876391ea1a9ad55f
00fa8df8cdb5c0d4403d0b1a83c1581c92023750
61f742290d7c3b36d2d469d32e18928b4c2c7e6cc4a57decb0a5794c9b1cb448
GET /wbalce/rha37/c18.jpg HTTP/1.1
Host: k.courageousglimmeringdirect.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://k.courageousglimmeringdirect.shop/wbalce/rha37/azc-nm-cp1ral-c1-ft.html
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:49:21 GMT
Content-Type: image/jpeg
Content-Length: 1644
Connection: keep-alive
Last-Modified: Wed, 04 May 2022 10:41:34 GMT
ETag: "66c-5de2d44e2a28c"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=InezKkx0OA%2FElJ1Cqt%2F6DorbCvt6vp%2B9S1A6S6wxiD075E9n9t8nDrgahIvlESzb1ILFHkOzMbfekr%2B6O9M0dSVa%2FeWKU78vmvw9rSWZHee7BADu8bY%2FV1fOqnPPUYxlT5VEpLYSTbd7e08%2FeaUe1WJRhk0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792f9cf43c87b4f9-OSL
alt-svc: h2=":443"; ma=60
k.courageousglimmeringdirect.shop/wbalce/rha37/spinspr.png
104.16.118.67200 OK 18 kB URL HTTP/1.1 k.courageousglimmeringdirect.shop/wbalce/rha37/spinspr.png
IP 104.16.118.67:0
File type PNG image data, 330 x 330, 8-bit colormap, non-interlaced\012- data
Hash b5c6eb120b24e60fb3dc87ae2cdd5fcc
dc2e38131531815d83c1eba8961447a25bde781e
b876e39c89d8a1585350871f625fa6c9137bff2688c6f409921925396196e746
GET /wbalce/rha37/spinspr.png HTTP/1.1
Host: k.courageousglimmeringdirect.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://k.courageousglimmeringdirect.shop/wbalce/rha37/azc-nm-cp1ral-c1-ft.html
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:49:21 GMT
Content-Type: image/png
Content-Length: 17781
Connection: keep-alive
Last-Modified: Thu, 19 May 2022 08:14:35 GMT
ETag: "4575-5df58f6e30cca"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lQQ5vNmdxTQ%2Bf3ezhE6fakozNJpaNhng5Kosukjm6rRqlAiPPKj4mDrB4fQB2R0ZtXrkTy%2BjOnglAOQCWa%2B49F24VdR7Dch%2FUYQ72VVKOL8QKLQ%2FoHod6qCP9Dd2kvrFrNQXF6RZIh0UVXUH4LIPY8RQHcE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792f9cf43958fabc-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2431d8f089a7b3cf2c9e744f557545ab
655d68a9f02e06abdee849b3dea942fb5e3a9c71
46abde8a4cdcf8e5af6ab0a31e8e05312685b27cc8a90d6c3b46d7a7c6195a25
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "46ABDE8A4CDCF8E5AF6AB0A31E8E05312685B27CC8A90D6C3B46D7A7C6195A25"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18867
Expires: Thu, 02 Feb 2023 08:03:48 GMT
Date: Thu, 02 Feb 2023 02:49:21 GMT
Connection: keep-alive
k.courageousglimmeringdirect.shop/wbalce/rha37/mnu2.png
104.16.118.67200 OK 134 B URL HTTP/1.1 k.courageousglimmeringdirect.shop/wbalce/rha37/mnu2.png
IP 104.16.118.67:0
File type PNG image data, 40 x 36, 8-bit/color RGBA, non-interlaced\012- data
Hash f52e2d6d695477104d4b95055195699b
1a27830c84e12c53e47497c645c52dd538b0af9c
1328a243e666f96278e1b9dce4de847ca2afa6ea45678714c73e7f42a04cc55d
GET /wbalce/rha37/mnu2.png HTTP/1.1
Host: k.courageousglimmeringdirect.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://k.courageousglimmeringdirect.shop/wbalce/rha37/azc-nm-cp1ral-c1-ft.html
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:49:21 GMT
Content-Type: image/png
Content-Length: 134
Connection: keep-alive
Last-Modified: Thu, 19 May 2022 08:14:30 GMT
ETag: "86-5df58f696bd5e"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jdnR7T48cocnG4iRskzbw2AJfWN5%2FrEP7VfaIG3NlxjfUsAXqlH92%2F9QxCeo725bSi5oHoFh23uFwxzTDFGDtqu3WGZFs9g8NtxBGhVFW%2F2q21s%2FkDzgp6tFOctUdgxv%2B4wyg9XcnADKk%2Bwt%2F3Tm5IkVKWQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792f9cf539edb4e8-OSL
alt-svc: h2=":443"; ma=60
k.courageousglimmeringdirect.shop/wbalce/rha37/icon-right.png
104.16.118.67200 OK 361 B URL HTTP/1.1 k.courageousglimmeringdirect.shop/wbalce/rha37/icon-right.png
IP 104.16.118.67:0
File type PNG image data, 39 x 28, 8-bit colormap, non-interlaced\012- data
Hash c83308be52bcec85363b6c2ba914c4cc
a13593666f0a3af709e47c26c7af23a2098b6e37
b9c633ca437abd52db139ae50b35e44ec07d5897f2d420aa917ecbd4077a223e
GET /wbalce/rha37/icon-right.png HTTP/1.1
Host: k.courageousglimmeringdirect.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://k.courageousglimmeringdirect.shop/wbalce/rha37/s-alogo.css
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:49:21 GMT
Content-Type: image/png
Content-Length: 361
Connection: keep-alive
Last-Modified: Thu, 19 May 2022 08:14:09 GMT
ETag: "169-5df58f553d815"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=40cvXfe%2Bj8khAltfzHgGmgwsOtYpmZ49j0fXKWx3jB9vvzT7cu7IENDhFcG%2BD%2BIk0UjeWefkBMXw3vQg6yHyu120l82B98baAPOHTrJjVqmqdc4IjU0yli4N50OEQL%2BdDOucrCPLNSz4Pg%2F59QC79%2FRZ9H0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792f9cf53cdeb4f4-OSL
alt-svc: h2=":443"; ma=60
k.courageousglimmeringdirect.shop/wbalce/rha37/spin_prize2.png
104.16.118.67200 OK 2.8 kB URL HTTP/1.1 k.courageousglimmeringdirect.shop/wbalce/rha37/spin_prize2.png
IP 104.16.118.67:0
File type PNG image data, 142 x 173, 8-bit colormap, non-interlaced\012- data
Hash f278c8d30fc51b72e0774b9ecb49214c
03b574db82b31ee5758eb5093fda8ea25d1b00d8
43f3e6d7e7b011430b39020bc5ff8fe6be2947100c597de44ca549ea96a0fd7c
GET /wbalce/rha37/spin_prize2.png HTTP/1.1
Host: k.courageousglimmeringdirect.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://k.courageousglimmeringdirect.shop/wbalce/rha37/s-alogo.css
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:49:21 GMT
Content-Type: image/png
Content-Length: 2814
Connection: keep-alive
Last-Modified: Thu, 19 May 2022 08:14:15 GMT
ETag: "afe-5df58f5a9c092"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9jYv8%2BOmZSnpV2YenmNr20xqcGFccnPBhxIy29NWUjpoBgpHTyWv%2BNzTAG0U1YGglwI7r9mt8sX4Q0FMPJlWHZKk%2BhE2S6CZd4%2FNwAoYMtg292DH1cvMCrFeNI3rTfyqARwfbPmn6jFOK41U4gIOKw8sZuQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792f9cf53bba1c02-OSL
alt-svc: h2=":443"; ma=60
k.courageousglimmeringdirect.shop/wbalce/rha37/c11.jpg
104.16.118.67200 OK 2.0 kB URL HTTP/1.1 k.courageousglimmeringdirect.shop/wbalce/rha37/c11.jpg
IP 104.16.118.67:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x50, components 3\012- data
Hash 917260d5d9299c85464b87131a7d7bac
fc7e86a2a8f2af77fd33c12cac60e12fc3e560d3
89cf463880419ea76649125b148eab68cc14c34c1d4d4235887187c2caf32408
GET /wbalce/rha37/c11.jpg HTTP/1.1
Host: k.courageousglimmeringdirect.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://k.courageousglimmeringdirect.shop/wbalce/rha37/azc-nm-cp1ral-c1-ft.html
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:49:21 GMT
Content-Type: image/jpeg
Content-Length: 1965
Connection: keep-alive
Last-Modified: Wed, 04 May 2022 10:41:33 GMT
ETag: "7ad-5de2d44d36426"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BfB3IWvaLhWJ7OcA19yCFaBS0g1krFTi%2BBN1ZsHUUY7Z5gjShT7zljtYXi8d9ip73AENwwpifP3FlQt%2BLFTSBWdexv80OBaksZMf9Z2kpKgtBruWl6lDMmPGRK%2FF2YY4PTg7Iura%2BYbnebtqUBgSWa%2F5r1Q%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792f9cf53f581c12-OSL
alt-svc: h2=":443"; ma=60
k.courageousglimmeringdirect.shop/wbalce/rha37/c12.jpg
104.16.118.67200 OK 1.7 kB URL HTTP/1.1 k.courageousglimmeringdirect.shop/wbalce/rha37/c12.jpg
IP 104.16.118.67:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x50, components 3\012- data
Hash f6be2412b8c6d6ec8a513cf257c3897f
17ab195111dc0937de5ac2bfba5213831dc09e1e
c4c217d6d2305ac8a44f0888b35114705bd3d860aa443b90419ffb9f162701dd
GET /wbalce/rha37/c12.jpg HTTP/1.1
Host: k.courageousglimmeringdirect.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://k.courageousglimmeringdirect.shop/wbalce/rha37/azc-nm-cp1ral-c1-ft.html
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:49:21 GMT
Content-Type: image/jpeg
Content-Length: 1693
Connection: keep-alive
Last-Modified: Wed, 04 May 2022 10:41:33 GMT
ETag: "69d-5de2d44d4bbe7"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=inyiwOB3zAP%2BwTSrmaT51wLy%2Bs05zipvd8gPvkCKUtBxympegOdScwP4sQ6%2Fb%2FJC1f9FVbFBKvklnYjFRB9TrWybanQDbZvm%2BbJzEKyPdJreBGq1SEFW%2F7C86LKXnrtzLF6AiQXTQsrBlMbIjhvx2aShDN4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792f9cf53ceeb4f9-OSL
alt-svc: h2=":443"; ma=60
gauvaiho.net/zone?&pub=0&zone_id=4984707&is_mobile=false&domain=k.courageousglimmeringdirect.shop&var=&ymid=&var_3=&dsig=&action=prerequest
139.45.197.251200 OK 0 B URL HTTP/2 gauvaiho.net/zone?&pub=0&zone_id=4984707&is_mobile=false&domain=k.courageousglimmeringdirect.shop&var=&ymid=&var_3=&dsig=&action=prerequest
IP 139.45.197.251:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /zone?&pub=0&zone_id=4984707&is_mobile=false&domain=k.courageousglimmeringdirect.shop&var=&ymid=&var_3=&dsig=&action=prerequest HTTP/1.1
Host: gauvaiho.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://k.courageousglimmeringdirect.shop
Connection: keep-alive
Referer: http://k.courageousglimmeringdirect.shop/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 02:49:21 GMT
content-length: 0
x-trace-id: 1cfd0a31bb55a041db924677ff66f467
access-control-allow-origin: http://k.courageousglimmeringdirect.shop
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
k.courageousglimmeringdirect.shop/wbalce/rha37/c17.jpg
104.16.118.67200 OK 1.4 kB URL HTTP/1.1 k.courageousglimmeringdirect.shop/wbalce/rha37/c17.jpg
IP 104.16.118.67:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x50, components 3\012- data
Hash 114ae87eeecabac5224a9f3f06702520
dd57143fdcd3195e35a6aa576407e187558e2683
7755427e1ee32cfcf6afe349798209f074fdfe55869716ea2a21e25d725754fb
GET /wbalce/rha37/c17.jpg HTTP/1.1
Host: k.courageousglimmeringdirect.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://k.courageousglimmeringdirect.shop/wbalce/rha37/azc-nm-cp1ral-c1-ft.html
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:49:21 GMT
Content-Type: image/jpeg
Content-Length: 1416
Connection: keep-alive
Last-Modified: Wed, 04 May 2022 10:41:34 GMT
ETag: "588-5de2d44e28b1c"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MihBDnr2XE7iYSl7VQpQ3i91ixCQwY4moxhe2cA0ucB95BtW6TZqlSJV74W%2BOh%2FifNHfe6IyqDHkJETYCl%2FCntebx18EVwR50BdpDy8aEy%2BGuEE8TtYyDEsVLFwRf832pmCBLZdyk9O%2FBp2M%2FKhnNMmRVcY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792f9cf5899efabc-OSL
alt-svc: h2=":443"; ma=60
k.courageousglimmeringdirect.shop/wbalce/rha37/refresh.png
104.16.118.67200 OK 1.4 kB URL HTTP/1.1 k.courageousglimmeringdirect.shop/wbalce/rha37/refresh.png
IP 104.16.118.67:0
File type PNG image data, 70 x 70, 8-bit colormap, non-interlaced\012- data
Hash a935405db2eb5d7008d6114ce6579680
2e0075c9e02cec0819ca50d887f1a2726343315e
4edf83dd151a0c3ae7a918624ff3f0146cdbdf12fb322be851b852c20d8f58ff
GET /wbalce/rha37/refresh.png HTTP/1.1
Host: k.courageousglimmeringdirect.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://k.courageousglimmeringdirect.shop/wbalce/rha37/azc-nm-cp1ral-c1-ft.html
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:49:21 GMT
Content-Type: image/png
Content-Length: 1441
Connection: keep-alive
Last-Modified: Thu, 19 May 2022 08:14:13 GMT
ETag: "5a1-5df58f594e88f"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=u53CmAsr8%2BNyHin0yMP%2FJ%2BYdogAnPWE8SMAjSrLyLiecV6w76hyGuwUEWrjvBbUs0a0cr5XeRFFg2q%2B3Wxu9euuwER3It32qn67k7k1gZuo9Vgd5joDxmtwOk44ewmq6eP2QjL8F1jc9osuk3IUlJScN39o%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792f9cf63be91c02-OSL
alt-svc: h2=":443"; ma=60
k.courageousglimmeringdirect.shop/wbalce/rha37/c13.jpg
104.16.118.67200 OK 1.8 kB URL HTTP/1.1 k.courageousglimmeringdirect.shop/wbalce/rha37/c13.jpg
IP 104.16.118.67:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 50x50, components 3\012- data
Hash df9a7f7b26ec33a222d94d1850304f9c
366a71de29b9a11592b356da437dd7ea7d70bb89
7f7f1e0d459f98e3d221473bbabd64493fdf63f9d5cdead83f23f0b8316f923e
GET /wbalce/rha37/c13.jpg HTTP/1.1
Host: k.courageousglimmeringdirect.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://k.courageousglimmeringdirect.shop/wbalce/rha37/azc-nm-cp1ral-c1-ft.html
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:49:21 GMT
Content-Type: image/jpeg
Content-Length: 1811
Connection: keep-alive
Last-Modified: Wed, 04 May 2022 10:41:33 GMT
ETag: "713-5de2d44d659f9"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gmYKHoLqK%2FaCUXykBNHVcFL5FhZWJCuAOkg%2FGopqBVdK4XYPbfMy3cYh1gjQjm4nPW8v89ssnIS7asjUIvpKNXpD9biUngqzwClOO4v6VdeNIT0uYrMuW2gkxe1EEB%2FKUKm05rTTbn8pWLJy%2BCLfIm0OApQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792f9cf62a58b4e8-OSL
alt-svc: h2=":443"; ma=60
k.courageousglimmeringdirect.shop/wbalce/rha37/gift.gif
104.16.118.67200 OK 7.8 kB URL HTTP/1.1 k.courageousglimmeringdirect.shop/wbalce/rha37/gift.gif
IP 104.16.118.67:0
File type GIF image data, version 89a, 70 x 70\012- data
Hash 0d61554227445957833d5a59fb50720c
b6717ef98f131eeb1bca21a53907e31ea939177b
6267cfe381b8def516dc6d81a4a099350d66236c18c605c7059456cd48d26e99
GET /wbalce/rha37/gift.gif HTTP/1.1
Host: k.courageousglimmeringdirect.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://k.courageousglimmeringdirect.shop/wbalce/rha37/azc-nm-cp1ral-c1-ft.html
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 02:49:21 GMT
Content-Type: image/gif
Content-Length: 7819
Connection: keep-alive
Last-Modified: Wed, 04 May 2022 10:41:36 GMT
ETag: "1e8b-5de2d45021188"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KjvtLYBruDZlwomRKRrI%2FuCczXdpxL8rUIIR0jsC2rz%2FIgrlaWrokWSkj1trk0pshKk5fYpxlBrIMcoza4DvnaX0u8Xyx1jWqu9AMzUFkh5besOZ7qg0wP0utylFS%2Fw%2B1tmxY9EH2vZjedu4UDSGRHg17Zo%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792f9cf62d3db4f4-OSL
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 02 Feb 2023 02:49:05 GMT
age: 16
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8391
Expires: Thu, 02 Feb 2023 05:09:13 GMT
Date: Thu, 02 Feb 2023 02:49:22 GMT
Connection: keep-alive
push.services.mozilla.com/
52.10.3.114101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.10.3.114:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: JD22SQ+q1sSx+DOruqVLUg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: +P3Gpv6ZeOVWp1nzFDk5hGAFT3M=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14055
Expires: Thu, 02 Feb 2023 06:43:38 GMT
Date: Thu, 02 Feb 2023 02:49:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14055
Expires: Thu, 02 Feb 2023 06:43:38 GMT
Date: Thu, 02 Feb 2023 02:49:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14055
Expires: Thu, 02 Feb 2023 06:43:38 GMT
Date: Thu, 02 Feb 2023 02:49:23 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b9af1fd56c0de8f128ddce88d49c1b4d
e3bb3d4950f7c0267f4476eef21872da332831aa
908153182f76362ff329803d9c11c06c66181e85e8e51dabd927f1f1ac630d5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8944
x-amzn-requestid: 07495184-ede8-485c-94e8-5302ec348ea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: freiLHRPoAMFYbw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dade0d-275437a54eceb40e302a7f55;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:47:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 86qoRJHXcrnBGi3REMF5q3ANzKdqEs5F3yFUBmiIt6SCbBVnhGe2Kw==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:58:57 GMT
age: 17426
etag: "e3bb3d4950f7c0267f4476eef21872da332831aa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85f439bb-b615-43ac-bd20-2466bff7ff50.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85f439bb-b615-43ac-bd20-2466bff7ff50.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d910c24f5a6108cb74103cd70692a703
9fe648fa464e46d16f685aca1704f3414eda4107
5cbe5e571e62555225621440203ae24a3b8c41ac7f49b6b731bc2c94e620797f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85f439bb-b615-43ac-bd20-2466bff7ff50.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5561
x-amzn-requestid: 76ca969b-a840-4d5c-97c1-2dfd93b8f630
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdKYE3-IAMFqbw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadbdb-2729fe22420bcc0563c39aff;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:38:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: E91BIw8QT3vXXQY8GIPpnRqnTZV4paZ3wynf7UjLnjeIfwS0tiC1Gg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:12:07 GMT
age: 16636
etag: "9fe648fa464e46d16f685aca1704f3414eda4107"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash df4a4906103a8f409c066b1cded71384
22847e3926db3e3d5f6b529297a4abe8b377c3a6
84a14b73b2cc7f4641eaa5539cbee0a109ae2b05cf88d06797a2b00c8d4f0c43
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9221
x-amzn-requestid: 209c2ad4-7a1f-4867-bf98-4ca8621111a1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdTBFv5IAMFgqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadc13-1627a9d603c69f7760ad013b;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:39:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kAkcQOKAvuq3k-X081MLCqon-cnQJqGryVeE0fwX0a7bcXgJlySIvg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:12:07 GMT
age: 16636
etag: "22847e3926db3e3d5f6b529297a4abe8b377c3a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc1ea9f44-4a0b-4366-b041-d2bd88c5fcb5.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc1ea9f44-4a0b-4366-b041-d2bd88c5fcb5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 604c573da6f79effa2a81e711c14ad9e
322a3a510ca73e124d78e31b49d676ec891a6762
8d2b897fe4251106be9183fa2a6a3b0918cd1f4dcc5f814aa88a630a77b4045c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc1ea9f44-4a0b-4366-b041-d2bd88c5fcb5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7960
x-amzn-requestid: 774cebdf-b2bf-4a98-9d2b-e2abd4bd1a2b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5BG-hoAMFTSQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6c-234163873ca67e934d684a1d;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Uv7tRovOGAr5hGDOcMmPoh29VHlsX4bvWxjRLCXV1Bpg9l0dOBJxFA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:15:49 GMT
age: 16414
etag: "322a3a510ca73e124d78e31b49d676ec891a6762"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0f85742f336de59ca88f7f964a8b33f4
0fc7177f8cb06421a8807e93989f651bda743567
fbd5fd39c39c218b0fa956f8cb8050cbdbfcb109a92303f6175d73cc8c339526
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8642
x-amzn-requestid: 79840c68-3e99-428d-9c01-9e4a93a34486
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdUzH1-oAMFiwQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadc1e-5bb93c5126aaff474900da63;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:39:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Mc8C-oesi4njIn2K2f56GKuyt6erRJAqCU-B4InhTD8oIoqo4s5-Fg==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:18:43 GMT
age: 16240
etag: "0fc7177f8cb06421a8807e93989f651bda743567"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3366ef4f8733cb9c89a5c88f63a0a441
7da46843b6d885f38a4759a08e6c899906ab7b97
7114397ee5c251cc5cb46f3433c2cc17ff68a08e0872e227671198e9b61eba0a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9600
x-amzn-requestid: 48094e1a-d550-4a91-b87c-4a08505f7cce
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVsWcFN7IAMF2pg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d2275c-5ced593a7e2126c9494563df;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:10:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aZOeDFqBJQoGwLpIs-GpPvY0FKGCAOXY6MgzG32qzX-kVzUCKKv-kw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 02:29:58 GMT
age: 1165
etag: "7da46843b6d885f38a4759a08e6c899906ab7b97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2