| candlegrowl.top/ |  172.67.182.130 | 301 Moved Permanently | 0 B |
IP172.67.182.130:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET INFO HTTP Request to a *.top domain |
GET / HTTP/1.1
Host: candlegrowl.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 28 Jan 2023 18:52:56 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sat, 28 Jan 2023 19:52:56 GMT
Location: https://candlegrowl.top/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PqxVMVxYzfzHphzbT5r7X4R5RrDfH7qC1cDlFrYaeFEoqfjgDMY%2FybiH%2B99PvrZFhfr3T3JPwAYjgv%2Ff5Q%2FslRdmjr%2B%2BQcVDKyYjAFy5VZi3%2BmSCNYyFljCHpvc7nV0XmRY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 790bed975af30b45-OSL
alt-svc: h2=":443"; ma=60
|
|
| r3.o.lencr.org/ |  95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash81dd5c5cc5b3278876cb44dcb520a60f c0511a59e9eccdcdda98717b87c89c5d59974808 41736c303afdb3d31e48724b107dcb22883cae02f3562308eb52d9164001a2de
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "41736C303AFDB3D31E48724B107DCB22883CAE02F3562308EB52D9164001A2DE"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3383
Expires: Sat, 28 Jan 2023 19:49:20 GMT
Date: Sat, 28 Jan 2023 18:52:57 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hasha2104f935c638b4767ca5ae0d738ef23 85c6af15af749be0ceeae6de17c36925b750f166 5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11579
Expires: Sat, 28 Jan 2023 22:05:56 GMT
Date: Sat, 28 Jan 2023 18:52:57 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashbf0c602d32b3c14606f22a86183b5e3c 6eabd8d83475eba731968abe1a05a8bfd272f160 6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 28 Jan 2023 18:35:31 GMT
content-type: application/json
age: 1046
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash69f73ac59327cd9ad7d99816ccfcc03e c54844f82dbee0d5ee4c8ce344eb0139373e6c6b e81c685b2d8f0e31b89e5cfc911a2c5a99a556646830ac5a8468d991b5e871a3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E81C685B2D8F0E31B89E5CFC911A2C5A99A556646830AC5A8468D991B5E871A3"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3447
Expires: Sat, 28 Jan 2023 19:50:24 GMT
Date: Sat, 28 Jan 2023 18:52:57 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash7b922915ebf1fa3639b333f994c74f24 144a3f80b98fd0652d4614f24cf6cbbee40f8938 adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: bFFv+1BVQ6Snet7sbQ4EoxtE7tzSiF5iL4pHh1GE4VlENSlHEO/p6tFKykuSqLhY5EzDYcnQapk=
x-amz-request-id: 0GFD5GD38D0YGTZQ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 28 Jan 2023 18:50:01 GMT
age: 176
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 18:52:57 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/s/gts1p5/VXTpGxmk3pM | 142.250.74.131 | 200 OK | 471 B |
URL HTTP/1.1ocsp.pki.goog/s/gts1p5/VXTpGxmk3pM IP142.250.74.131:0
Hash6dcd14a9f595da5e24405420e9956642 207e258d008d50b8f6f396293bb03cf21a55f9d9 6a9da8a64b8e294eca2807efe62ef7baa66c8a15a79280ac130f2edb8d029eb7
POST /s/gts1p5/VXTpGxmk3pM HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 18:52:57 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Last-Modified, ETag, Content-Length, Expires, Cache-Control, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 28 Jan 2023 18:49:03 GMT
age: 234
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash16a7b6a7128312e2f985d30df18c4487 6017bff79ffb525d9c7f9f32b999b74b5dc69602 663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18105
Expires: Sat, 28 Jan 2023 23:54:42 GMT
Date: Sat, 28 Jan 2023 18:52:57 GMT
Connection: keep-alive
|
|
| push.services.mozilla.com/ | 44.237.169.181 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP44.237.169.181:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 0AqpjKp2bkNs0nEcKTRidw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: dvaOjkzDpoVJ/fYpMUpAoq0sJjA=
|
|
| ocsp.pki.goog/s/gts1p5/VXTpGxmk3pM | 142.250.74.131 | 200 OK | 471 B |
URL HTTP/1.1ocsp.pki.goog/s/gts1p5/VXTpGxmk3pM IP142.250.74.131:0
Hash6dcd14a9f595da5e24405420e9956642 207e258d008d50b8f6f396293bb03cf21a55f9d9 6a9da8a64b8e294eca2807efe62ef7baa66c8a15a79280ac130f2edb8d029eb7
POST /s/gts1p5/VXTpGxmk3pM HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 18:52:58 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| static.mercdn.net/item/detail/orig/photos/m53343214109_1.jpg?1570975154 | 199.232.210.131 | 200 OK | 44 kB |
URL HTTP/2static.mercdn.net/item/detail/orig/photos/m53343214109_1.jpg?1570975154 IP199.232.210.131:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 812x812, components 3\012- data Hash18d0d191ec141e8fc9c5fab994c242e5 f6ccc7bac91212dd39a6804d0087d2ea76bc946f 62b6bbffd01546fc40312ccb959dbbd36cd72d533a7bcb6f83dbfef28e4fd5ea
GET /item/detail/orig/photos/m53343214109_1.jpg?1570975154 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://candlegrowl.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"EAuSXq_F15bQsy2jXSIAAAAiMmY3NjM4ZGI3MmE1NDA5M2E5MTA2MzA5MGE1YmY0Yjgi"
last-modified: Sun, 13 Oct 2019 13:59:15 GMT
x-amz-id-2: 47RNNYEOsopkwQYE6M+vB8FqUiPsNTl5b20xGJvDnsMnIraOb/k0ymGl6IRcpmWDzacyCbEW7QE=
x-amz-request-id: RTM6DFXS2N6077TT
x-amz-version-id: bMRNIOPNWBGYrmI1zJ7lVCUgtstZtjxb
via: http/1.1 rear.sv123 (ATS [cMsSfW]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Sat, 28 Jan 2023 18:52:59 GMT
age: 1374678
x-served-by: cache-tyo11980-TYO, cache-bma1676-BMA
x-cache: HIT, HIT
x-cache-hits: 7, 1
x-timer: S1674931979.034145,VS0,VE1
access-control-allow-origin: *
content-length: 44318
X-Firefox-Spdy: h2
|
|
| static.mercdn.net/item/detail/orig/photos/m63894758943_1.jpg?1644032100 | 199.232.210.131 | 200 OK | 107 kB |
URL HTTP/2static.mercdn.net/item/detail/orig/photos/m63894758943_1.jpg?1644032100 IP199.232.210.131:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 720x720, components 3\012- data Size107 kB (107137 bytes) Hash040603248ab3bbcd2df1bbf392d92876 05ee61a1dd452649028aa38d9479bf0e2c0a0838 580dc439a5b98ba9090abdc88eedc18e1d2918b6702eed35a3057f409b53b06c
GET /item/detail/orig/photos/m63894758943_1.jpg?1644032100 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://candlegrowl.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"EMyvXOuWmz90ZfD9YSIAAAAiMzJhMzVjZDAwY2Y0NWU2Y2E3ZTczMzk2ODQwNDk2ZjEi"
last-modified: Sat, 05 Feb 2022 03:35:01 GMT
x-amz-id-2: qSzbObzQpAL5t8VRRPfybr9wG6teIV5KcQZYCm6SG/PmbFIxs160DfGjbAglh92U8z/61QmMagc=
x-amz-request-id: 3SQK7H4CH071G06M
x-amz-version-id: Amy0OICHSxXNnpX5LDernivAzmZZJQbV
via: http/1.1 rear.sv119 (ATS [cHs f ]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Sat, 28 Jan 2023 18:52:59 GMT
age: 3358018
x-served-by: cache-tyo11941-TYO, cache-bma1676-BMA
x-cache: HIT, HIT
x-cache-hits: 72, 1
x-timer: S1674931979.034149,VS0,VE1
access-control-allow-origin: *
content-length: 107137
X-Firefox-Spdy: h2
|
|
| static.mercdn.net/item/detail/orig/photos/m40132881567_1.jpg?1660046321 | 199.232.210.131 | 200 OK | 77 kB |
URL HTTP/2static.mercdn.net/item/detail/orig/photos/m40132881567_1.jpg?1660046321 IP199.232.210.131:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 616x720, components 3\012- data Hashe800d0694f5d420beef9bc52b2efd23c 9c4433253c3b0bd2c6e39cbb543df46e52175548 0764ae9d5baf13ff45e207fef543b6509304c662614b7f2f19c020b67d11d0c2
GET /item/detail/orig/photos/m40132881567_1.jpg?1660046321 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://candlegrowl.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"EGI-LSZNJjv_8kvyYiIAAAAiYzIwODcwYWEwYTk3ZTE1YTQ2MzEyOGRjYjA1OGY0ZDQi"
last-modified: Tue, 09 Aug 2022 11:58:42 GMT
x-amz-id-2: rSyxdYsUKqUk9HikxUcGj0wVdGOo13oJIv3PSZA87RgE/aaP2fjh6IOdIjBVhi4KQFFKKtadnnQ=
x-amz-request-id: WNVX73RPN6E35BG0
x-amz-version-id: QCXhYQhbHIM4FCpULem5E1xLpsF35kr2
via: http/1.1 rear.sv107 (ATS [cHs f ]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Sat, 28 Jan 2023 18:52:59 GMT
age: 3444041
x-served-by: cache-tyo11945-TYO, cache-bma1676-BMA
x-cache: HIT, HIT
x-cache-hits: 253, 2
x-timer: S1674931979.034160,VS0,VE6
access-control-allow-origin: *
content-length: 76574
X-Firefox-Spdy: h2
|
|
| static.mercdn.net/item/detail/orig/photos/m19082520317_1.jpg?1583816150 | 199.232.210.131 | 200 OK | 108 kB |
URL HTTP/2static.mercdn.net/item/detail/orig/photos/m19082520317_1.jpg?1583816150 IP199.232.210.131:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1080, components 3\012- data Size108 kB (108176 bytes) Hash891ffb75ad2fa389342e4a45c2f9e875 eab88019df61ae1c2a3018611c5f1997d8a380fc 8c0dbb54717018edf9682dcc0513f6b3d1ec2246e5843344416517e75f532c62
GET /item/detail/orig/photos/m19082520317_1.jpg?1583816150 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://candlegrowl.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"EAFTgU6BYbYT1x1nXiIAAAAiYmU5OTY3YjdjMGU2ZTg5ODM3MmJmMDM3OWNlOTcwMTci"
last-modified: Tue, 10 Mar 2020 04:55:51 GMT
x-amz-id-2: lunQTXi9yC9GrGQALa2YO6ijPTtdy2wocz1uKsPlXsc9SzI7eO/WCKm65HYSk5QNfays0XsuC0k=
x-amz-request-id: QRX0PZM8RT3NFK8X
x-amz-version-id: z56KJFtsxipKo4bUq5Oon7mMuqa6MFSV
via: http/1.1 rear.sv120 (ATS [cHs f ]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Sat, 28 Jan 2023 18:52:59 GMT
age: 3068224
x-served-by: cache-tyo11972-TYO, cache-bma1676-BMA
x-cache: HIT, HIT
x-cache-hits: 27, 1
x-timer: S1674931979.037786,VS0,VE1
access-control-allow-origin: *
content-length: 108176
X-Firefox-Spdy: h2
|
|
| static.mercdn.net/item/detail/orig/photos/m64884714182_1.jpg?1583813678 | 199.232.210.131 | 200 OK | 127 kB |
URL HTTP/2static.mercdn.net/item/detail/orig/photos/m64884714182_1.jpg?1583813678 IP199.232.210.131:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1080, components 3\012- data Size127 kB (127267 bytes) Hash9817446c1765c0dd222d7206091a6db8 27ce78de7dd3565189db084ff915c22965e068b4 1b9a5b24e6dab3b8976ba094a5c5efba9bfe164b77eee4001146317b38954d75
GET /item/detail/orig/photos/m64884714182_1.jpg?1583813678 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://candlegrowl.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"EJiCgFwHE6BSLxRnXiIAAAAiNDJkNDRkMmNlY2U0OTk0MWIwMGE2MTA3N2I2NjMzODci"
last-modified: Tue, 10 Mar 2020 04:14:39 GMT
x-amz-id-2: wSdUabMMlN7ZwJaIn58xBTxt06Odhi5Sv+2qXLQo3mm9dBaIxb9cO8Yv3TDGXo0x8cTosU5rHd0=
x-amz-request-id: NZGG3WBB7ESWTY41
x-amz-version-id: M6MkYX9PReOG2GbTQ_BiH4fPQ8qJtGPP
via: http/1.1 rear.sv124 (ATS [cHs f ]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Sat, 28 Jan 2023 18:52:59 GMT
age: 2042474
x-served-by: cache-tyo11929-TYO, cache-bma1676-BMA
x-cache: HIT, HIT
x-cache-hits: 86, 1
x-timer: S1674931979.037804,VS0,VE2
access-control-allow-origin: *
content-length: 127267
X-Firefox-Spdy: h2
|
|
| static.mercdn.net/item/detail/orig/photos/m90233179170_1.jpg?1582604419 | 199.232.210.131 | 200 OK | 130 kB |
URL HTTP/2static.mercdn.net/item/detail/orig/photos/m90233179170_1.jpg?1582604419 IP199.232.210.131:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1080, components 3\012- data Size130 kB (130117 bytes) Hash9a603ea8c11edf0ec0f8787b721b8c65 292d6891c35536f79b1c4590ec623666ba847d48 c2e79a2c696fe212c950ecd4b83be9bd2e9f96623294aea74dd2f2cca972b425
GET /item/detail/orig/photos/m90233179170_1.jpg?1582604419 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://candlegrowl.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"ENG7jC-zMpCDhKBUXiIAAAAiNTIyYjc5ZWRkNDM0ZTU2OWE5NTVhMGNhZWRkNjUyYmQi"
last-modified: Tue, 25 Feb 2020 04:20:20 GMT
x-amz-id-2: N3ibOBMR11O5+e+WbbokuVIGrgJS9YzJx3WC5s+dfrX+fYGWzunrjCW2N5Ld/+yNKxzPiyqzIcY=
x-amz-request-id: KXSRHS24B3TW2Q1A
x-amz-version-id: t4.B9iot.XyzPTX_osQtLVyCjg_u8ODR
via: http/1.1 rear.sv129 (ATS [cMsSfW]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Sat, 28 Jan 2023 18:52:59 GMT
age: 3095208
x-served-by: cache-tyo11922-TYO, cache-bma1676-BMA
x-cache: HIT, HIT
x-cache-hits: 63, 1
x-timer: S1674931979.037821,VS0,VE4
access-control-allow-origin: *
content-length: 130117
X-Firefox-Spdy: h2
|
|
| static.mercdn.net/item/detail/orig/photos/m51922346452_1.jpg?1582597225 | 199.232.210.131 | 200 OK | 106 kB |
URL HTTP/2static.mercdn.net/item/detail/orig/photos/m51922346452_1.jpg?1582597225 IP199.232.210.131:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1080, components 3\012- data Size106 kB (105576 bytes) Hash9d878f691e288eadbadf191be0776e1f 95b58a224e67dfcda33cac23098f420b2f0e99b3 4b44147f5e1a7fd545834d5a2e2ed26b2234908d8c3b6c7e2c0b2d56d4e733c7
GET /item/detail/orig/photos/m51922346452_1.jpg?1582597225 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://candlegrowl.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"EBQzmIDyLUR2aoRUXiIAAAAiYmJkYzEyYTU4YjZiZTNjODMxMWI3MTIyZmQ3OTFlYjMi"
last-modified: Tue, 25 Feb 2020 02:20:26 GMT
x-amz-id-2: IZGu3BaHfGL5uZaSSzl4ZCMSkz3JZTDrVjxRQYDbkZq9oN4ib7344yW7qV8oufBzEzcB7QExnEM=
x-amz-request-id: 5P08NQ4Q0XZCJHF6
x-amz-version-id: fViRPXxbsP1wNqm2LLvNZrS8bv8iPNFq
via: http/1.1 rear.sv121 (ATS [cMsSfW]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Sat, 28 Jan 2023 18:52:59 GMT
age: 3373925
x-served-by: cache-tyo11926-TYO, cache-bma1676-BMA
x-cache: HIT, HIT
x-cache-hits: 17, 1
x-timer: S1674931979.034091,VS0,VE2
access-control-allow-origin: *
content-length: 105576
X-Firefox-Spdy: h2
|
|
| candlegrowl.top/includes/templates/1127-2/images/header_award.png | 172.67.182.130 | 200 OK | 1.9 kB |
URL HTTP/2candlegrowl.top/includes/templates/1127-2/images/header_award.png IP172.67.182.130:0
File typePNG image data, 363 x 18, 4-bit colormap, non-interlaced\012- data Hash1d76d30e63148d491276abb7f62c598a 77bec84f0e7e1bf541337541777fa3e08098bbcb e94fd3429374a1a35392774397991f72ade7d3065740ebc9a440e5a5ce18836d
GET /includes/templates/1127-2/images/header_award.png HTTP/1.1
Host: candlegrowl.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://candlegrowl.top/
Cookie: zenid=ignpvv3hvb3rhdcr5uv0ljcvu5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 18:52:59 GMT
content-type: image/png
content-length: 1944
last-modified: Mon, 19 Sep 2022 02:38:28 GMT
etag: "798-5e8fe9b49fb15"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=luNQTRKjYtpMphtOvR94CefEZ6opKSG8MSjZzUwIod9GqC8RRxwreIE4Cpa0%2F%2BjruKGXNZkDrlCBZqSK3cOrT%2FeLTgprcUC%2BbnwgUrQrWYIm33PPNtlNfRd1p3XBvEEdfEs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790beda45fe1b4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| candlegrowl.top/includes/templates/1127-2/images/left/navi-new.gif | 172.67.182.130 | 200 OK | 5.3 kB |
URL HTTP/2candlegrowl.top/includes/templates/1127-2/images/left/navi-new.gif IP172.67.182.130:0
File typeGIF image data, version 89a, 200 x 172\012- data Hashf3fd928e20a7ad825ebb750d83dff90d 656dff0292c8b61015709b91de25f15f4b22b3f2 952392c77b80aae80e6b0589e79c2a09861731d2f60981157850cc86ef79e3e8
GET /includes/templates/1127-2/images/left/navi-new.gif HTTP/1.1
Host: candlegrowl.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://candlegrowl.top/
Cookie: zenid=ignpvv3hvb3rhdcr5uv0ljcvu5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 18:52:59 GMT
content-type: image/gif
content-length: 5340
last-modified: Mon, 19 Sep 2022 02:38:28 GMT
etag: "14dc-5e8fe9b49fb15"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EMD4nQq5kiE78mTJ2G88u8Uv06sREMcqQYLEAJJZjtC0EJLmtMPFAHSOjq4MuFUNhA7m%2BOf1gIf%2BGQODE8NhqdJJsXWyiAX3Kj%2BZE9o5L%2BFD7BPf5lLTBiHHZf4r7tXrYHM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790beda45ff0b4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| candlegrowl.top/includes/templates/1127-2/images/left/mail.gif | 172.67.182.130 | 200 OK | 7.5 kB |
URL HTTP/2candlegrowl.top/includes/templates/1127-2/images/left/mail.gif IP172.67.182.130:0
File typeGIF image data, version 89a, 180 x 128\012- data Hashf2aa21ebb665a5c717f93b03314a70c2 57bf92c1175322c34c8b50c6c892c6ff26749ea2 4acf48a47cca2f0657a1afd6dba1a6532e8a15ae166ec6730c1d5746aacd6cb6
GET /includes/templates/1127-2/images/left/mail.gif HTTP/1.1
Host: candlegrowl.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://candlegrowl.top/
Cookie: zenid=ignpvv3hvb3rhdcr5uv0ljcvu5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 18:52:59 GMT
content-type: image/gif
content-length: 7466
last-modified: Mon, 19 Sep 2022 02:38:28 GMT
etag: "1d2a-5e8fe9b49f72d"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wIQlOftVZ46OE7EpbdyJwbeSxuxA4issDe1qyKB00k0hXONS%2BNYKa3Cu%2FmMSFRE07Ib3m4iGGlkO1l7d8OP23R36s%2FtM3OT4hbUiTOSt7SguZwuDCVsthAt1m3a5wBEU5ME%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790beda45febb4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| candlegrowl.top/includes/templates/1127-2/images/logo.gif | 172.67.182.130 | 200 OK | 2.0 kB |
URL HTTP/2candlegrowl.top/includes/templates/1127-2/images/logo.gif IP172.67.182.130:0
File typePNG image data, 151 x 37, 8-bit/color RGBA, non-interlaced\012- data Hash29121636211191669f798cf2754fd91e 4da3fdc708ccf672acf108ea7823124b9b475746 a64a1045bffb9b732f04e73afe8b3e55b5f6369b73cf456424d9a6c4fbcbbe55
GET /includes/templates/1127-2/images/logo.gif HTTP/1.1
Host: candlegrowl.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://candlegrowl.top/
Cookie: zenid=ignpvv3hvb3rhdcr5uv0ljcvu5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 18:52:59 GMT
content-type: image/gif
content-length: 2046
last-modified: Mon, 19 Sep 2022 02:38:28 GMT
etag: "7fe-5e8fe9b4a454c"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1uJ4jGK7BmOeRXiWxbgcNi9cKDOc4B4kb%2Fsg25YqqqXly3P2r2ZNm8wWESJBh7GlyT5dgEE1cGmgXOIiDXygrnZ6Rzns%2BDx1PlfRj8dQwEKIipNnOsUOR5ATkVPritKy48I%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790beda45fe0b4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| candlegrowl.top/includes/templates/1127-2/images/icon-cart.png | 172.67.182.130 | 200 OK | 1.7 kB |
URL HTTP/2candlegrowl.top/includes/templates/1127-2/images/icon-cart.png IP172.67.182.130:0
File typePNG image data, 60 x 60, 8-bit colormap, non-interlaced\012- data Hashff74a10f159c2b74f781c54710e6ee05 dbef0b53d39989fe6098572ecd38a0645f0803f9 c5e936ae91e8dbc2072accb5c72c2908a115c5cd7a37272bdfc0f1d7eaeba4f4
GET /includes/templates/1127-2/images/icon-cart.png HTTP/1.1
Host: candlegrowl.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://candlegrowl.top/
Cookie: zenid=ignpvv3hvb3rhdcr5uv0ljcvu5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 18:52:59 GMT
content-type: image/png
content-length: 1746
last-modified: Mon, 19 Sep 2022 02:38:28 GMT
etag: "6d2-5e8fe9b4a0ab4"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=X0YLs3OFs2LCSCxPV9nQ6oTNindfM91g4ZSpPK2yxohayB3p5G3KBTI2XcuO1cRMmxzyebjkTJy6h%2BUsVpzyRv6a1biohfCrDFMjBnfd7FV9PC6DAhfRJKVYGk7O3UzfEHc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790beda45fe2b4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashf2a0c2c0f25bdd19baf87cbb3a87dcdb bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6812
Expires: Sat, 28 Jan 2023 20:46:31 GMT
Date: Sat, 28 Jan 2023 18:52:59 GMT
Connection: keep-alive
|
|
| candlegrowl.top/includes/templates/1127-2/css/stylesheet_related.css | 172.67.182.130 | 200 OK | 1.2 kB |
URL HTTP/2candlegrowl.top/includes/templates/1127-2/css/stylesheet_related.css IP172.67.182.130:0
File typeASCII text, with CRLF line terminators Hash736cc51add79ca0188f0bec18a0460ce 64bafc292a406698ac49099e03f49dc0e863bebd 197f394f7148f5809e1ec5e53ba54caf6e90d6b34bb8be0c8e827dc321a9c7b4
GET /includes/templates/1127-2/css/stylesheet_related.css HTTP/1.1
Host: candlegrowl.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://candlegrowl.top/
Cookie: zenid=ignpvv3hvb3rhdcr5uv0ljcvu5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 18:52:59 GMT
content-type: text/css
last-modified: Mon, 19 Sep 2022 02:38:28 GMT
etag: W/"74a-5e8fe9b4a1e3c-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GkoYzSElrlfojw%2F9YK%2Bbmm19Jp2TuFcP5gMDZ59J58r1l%2F8k0VYjZ%2BZr87VIo9nrAaT4vUtPilJ9LpYmLrNWAUGPyRwnWGDXEwSTjwiFaJVI1ARotp7sIXNvzcfPpigsDRI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 790beda44fd5b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashf2a0c2c0f25bdd19baf87cbb3a87dcdb bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6812
Expires: Sat, 28 Jan 2023 20:46:31 GMT
Date: Sat, 28 Jan 2023 18:52:59 GMT
Connection: keep-alive
|
|
| candlegrowl.top/includes/templates/1127-2/css/stylesheet_searchtop.css | 172.67.182.130 | 200 OK | 913 B |
URL HTTP/2candlegrowl.top/includes/templates/1127-2/css/stylesheet_searchtop.css IP172.67.182.130:0
File typeASCII text, with CRLF line terminators Hash6c512a99a443197bc113df997153eb4b 95b2ffd3d4df673ee98a78287835e2ab90cdf412 a824a08b979219657199f08ef0e6e4ca8ac74e4c48ac113f1f6fbdd5e3c12985
GET /includes/templates/1127-2/css/stylesheet_searchtop.css HTTP/1.1
Host: candlegrowl.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://candlegrowl.top/
Cookie: zenid=ignpvv3hvb3rhdcr5uv0ljcvu5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 18:52:59 GMT
content-type: text/css
last-modified: Mon, 19 Sep 2022 02:38:28 GMT
etag: W/"3c9-5e8fe9b4a2224-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7TTaEo8OT0IIS4%2FYO7cQlbQmSV6EqCiqu%2Bze7zWWHnH4ga8iG%2Bdnalu0k09cuLSqvaIZomWj4nKqlUEgctWhwFbeCNst5Vq5iJ0Svc67BJXex2TPdm2Uu2lPJTEmwDDjhTw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 790beda44fdab4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| candlegrowl.top/includes/templates/1127-2/css/stylesheet_tm.css | 172.67.182.130 | 200 OK | 4.3 kB |
URL HTTP/2candlegrowl.top/includes/templates/1127-2/css/stylesheet_tm.css IP172.67.182.130:0
File typeUnicode text, UTF-8 text, with CRLF line terminators Hashfd65b6df360f70ea41eae207966c6bfd 68b7a32446dfb5af0f12c4b041be2bff00d4d3b1 c67b4c8cdbab84ff047ab6a4171b546683b2efd99e3315c93cfabe7ab62f4869
GET /includes/templates/1127-2/css/stylesheet_tm.css HTTP/1.1
Host: candlegrowl.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://candlegrowl.top/
Cookie: zenid=ignpvv3hvb3rhdcr5uv0ljcvu5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 18:52:59 GMT
content-type: text/css
last-modified: Mon, 19 Sep 2022 02:38:28 GMT
etag: W/"36e2-5e8fe9b4a1e3c-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Z4wfhRsPM%2Bas%2F6iGL2livMTwbfsh0iYVF3UKvjLF2IjDr1eTzcnBAsHKbqztHaGYAztq6bbntMNoINY%2FFXeIGzm35yI9LjQmUoh2MzIiMnCWp7XXrO1YmUCIgyKZp0ioRKo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 790beda44fdcb4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| candlegrowl.top/includes/templates/1127-2/images/bottom/jikan.gif | 172.67.182.130 | 200 OK | 5.8 kB |
URL HTTP/2candlegrowl.top/includes/templates/1127-2/images/bottom/jikan.gif IP172.67.182.130:0
File typeGIF image data, version 89a, 250 x 120\012- data Hashcd05d67ea65b396f5554775b103907c9 182769ef2d898065bf9fe74e481ace74ed77673d 9be5c55a0ba6c24abb8af82254b2a94077228175692cc8fccf7d80540dfdfeb3
GET /includes/templates/1127-2/images/bottom/jikan.gif HTTP/1.1
Host: candlegrowl.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://candlegrowl.top/
Cookie: zenid=ignpvv3hvb3rhdcr5uv0ljcvu5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 18:52:59 GMT
content-type: image/gif
content-length: 5834
last-modified: Mon, 19 Sep 2022 02:38:28 GMT
etag: "16ca-5e8fe9b4a1284"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=i1dB87cfHolHwFXNu0xa5e%2FlcdnABgQMVhQXesv0rkjQXjXaM5SxSQ7nokobD1qfZmi%2BoSXKylDbphmMxdih%2Bawj792guw5uGaOJtqRVrKO6KfdAw6XCm0sQjzaPc2a25p0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790beda4781fb4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| candlegrowl.top/includes/templates/1127-2/images/bottom/yamato.gif | 172.67.182.130 | 200 OK | 4.4 kB |
URL HTTP/2candlegrowl.top/includes/templates/1127-2/images/bottom/yamato.gif IP172.67.182.130:0
File typeGIF image data, version 89a, 230 x 25\012- data Hash3250a41f57aad850f9105e1e0d59a5bb d867cc3132bb65efdf3cfec4537808181682e593 3c8f8d09bf4b01625f5c247f6d92ebb72fb948466b75221f9c5c163cdcad03aa
GET /includes/templates/1127-2/images/bottom/yamato.gif HTTP/1.1
Host: candlegrowl.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://candlegrowl.top/
Cookie: zenid=ignpvv3hvb3rhdcr5uv0ljcvu5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 18:52:59 GMT
content-type: image/gif
content-length: 4431
last-modified: Mon, 19 Sep 2022 02:38:28 GMT
etag: "114f-5e8fe9b4a1284"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VS0KdnfaXfQUYIK679oHGbTwI73kz51%2F4cXWbBCrvbuvHEPT%2Fkn1AIu3FKieQ9UO1KdYqVlAqj%2BBg8010jnPv1et2BwlvM3fRb%2Fl%2FgJmzWYGn6XPOatoPWeeVgdHGTrRsTg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790beda4781db4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| candlegrowl.top/includes/templates/1127-2/images/bottom/information.gif | 172.67.182.130 | 200 OK | 2.8 kB |
URL HTTP/2candlegrowl.top/includes/templates/1127-2/images/bottom/information.gif IP172.67.182.130:0
File typeGIF image data, version 89a, 300 x 40\012- data Hashad82d4097290ebcf4cbdd51a79b48768 21ab0e6c8eeae2e53b6e7fc7621334baf0ed1540 8141f019bd0c989b2f8526da071bdd5684911c4c6e317c6ff26ae748c99e32db
GET /includes/templates/1127-2/images/bottom/information.gif HTTP/1.1
Host: candlegrowl.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://candlegrowl.top/
Cookie: zenid=ignpvv3hvb3rhdcr5uv0ljcvu5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 18:52:59 GMT
content-type: image/gif
content-length: 2800
last-modified: Mon, 19 Sep 2022 02:38:28 GMT
etag: "af0-5e8fe9b4a1284"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hYOCqSYpTNfiJNmUcbPFeJfxHxgEvNFjrH97Ivsh3QeYw1HKYzE%2FQp0HjUkhns32Fkrq56pvEAcTSAG%2BYHXtla4tLdfdS3KybGpoyHNafBN4pFWWjRppqCvot7xa7d2X39g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790beda4781cb4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| candlegrowl.top/includes/templates/1127-2/images/bottom/nekopos1.gif | 172.67.182.130 | 200 OK | 3.0 kB |
URL HTTP/2candlegrowl.top/includes/templates/1127-2/images/bottom/nekopos1.gif IP172.67.182.130:0
File typeGIF image data, version 89a, 100 x 25\012- data Hash64ce633f5b8ff42f7b6105d4a0e453e8 44e2fe7050a8cf33837c4d286da4dd537527aeb2 bbbc6864a19223a050589d6425667f7c9cb89d2c926f73c0dd609e410427c323
GET /includes/templates/1127-2/images/bottom/nekopos1.gif HTTP/1.1
Host: candlegrowl.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://candlegrowl.top/
Cookie: zenid=ignpvv3hvb3rhdcr5uv0ljcvu5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 18:52:59 GMT
content-type: image/gif
content-length: 2971
last-modified: Mon, 19 Sep 2022 02:38:28 GMT
etag: "b9b-5e8fe9b4a1284"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9BxPWrNRRYqmELQLbTTwYA%2BbZ6zIBvSu%2BXtGTx2r57OyqUkAGPA2EVevSNLswXAnzi1Bf9ckhJh8R7g1uEZBO8mGtcG8C6iPh5yBy93hMs4%2BQ%2FzmQ6eIlw5brzeyUfoL3hY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790beda47821b4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ed7c466-ac98-4e05-89cf-f0abf56e8d98.jpeg | 34.120.237.76 | 200 OK | 5.0 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ed7c466-ac98-4e05-89cf-f0abf56e8d98.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashc982569d070f24dba1259603091c22e3 0f93acb5bee53670cc4ef486922f7333d96a2f4e 9a5a2d8a181a763ee6f60c27b396a0e3d7b1527e5177b2aff8d511db250753ed
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ed7c466-ac98-4e05-89cf-f0abf56e8d98.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4975
x-amzn-requestid: 633350b7-4686-40d5-8c9d-3c097f8e2d34
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-EBGuaoAMFbSw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443b3-4201212c1a0eb2a65d3f494c;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: XRAeWdoEkbnzXKOs_EdgQ1r9BGOeDNh4FRXm-fv0KiCz4juqk8UKIw==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:59:35 GMT
age: 75204
etag: "0f93acb5bee53670cc4ef486922f7333d96a2f4e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| candlegrowl.top/includes/templates/1127-2/images/bottom/nekopos.gif | 172.67.182.130 | 200 OK | 16 kB |
URL HTTP/2candlegrowl.top/includes/templates/1127-2/images/bottom/nekopos.gif IP172.67.182.130:0
File typeGIF image data, version 89a, 250 x 150\012- data Hash2014577832eac8ea9d1431e9f9e972b9 0edac89e885014d4f68e1f058fbc66a0d19ba71e 2225856361181b3463a7bdf7da135cc5b79f32fd17dbcad19bde85abdeb09ac6
GET /includes/templates/1127-2/images/bottom/nekopos.gif HTTP/1.1
Host: candlegrowl.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://candlegrowl.top/
Cookie: zenid=ignpvv3hvb3rhdcr5uv0ljcvu5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 18:52:59 GMT
content-type: image/gif
content-length: 15478
last-modified: Mon, 19 Sep 2022 02:38:28 GMT
etag: "3c76-5e8fe9b4a1284"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BuTTkqMLCAO3Vew1HJR9PE0vEC1cZH4VsRo%2B9nKsdSb5oLaIcHCh668LmvGfyOrNkIVcYBFp1ZoyLUpiTNHc1gl33Tn57nMXPkbCp7Bh%2BvURGLcWmytsovvQn1%2FbbARBHQE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790beda47826b4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg | 34.120.237.76 | 200 OK | 7.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashea24bcba583bd8bd139559448a343e68 b9d37c2b14f890d41983a59f352e8f7caa9c94bb e5ef5975eec964ae1684deb424f00833f2d217bdc7e6c385320ed3adeb6bc1c4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7585
x-amzn-requestid: bfb52acb-e0d7-482d-8be9-be5db1c16cac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_vkE5roAMF0Hw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d44663-2d38d314177e0ac40d4c8240;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:47:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 1WE1zQwrCGVy8HLT9_BFkAr6rQE_ROyttMOByR32KeT0w2Hd_ylvYQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 22:16:00 GMT
age: 74219
etag: "b9d37c2b14f890d41983a59f352e8f7caa9c94bb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg | 34.120.237.76 | 200 OK | 12 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashb7a0759c043594fbe85af422b59b8227 a05cfaad16078f42218dae233da38f6f5dff8487 e898d6ef1b3998fb9322a8fc190069ec5f7b3582bfe8397a2367497d84a27549
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11568
x-amzn-requestid: 2e85f75e-ab9d-4d45-adad-7313950a9647
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fSWbxGwnoAMFejw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d0d117-68f1a9e71a07a0453311fd32;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 06:49:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dbz3wXGNaetf6xvRE98rshyHy-FVfDo8co-4VDL0a4Qe3E4U8A82Og==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 18:36:06 GMT
age: 1013
etag: "a05cfaad16078f42218dae233da38f6f5dff8487"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg | 34.120.237.76 | 200 OK | 4.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash4205d8106659e00fff1cbe9262918b8c ab4f6528594a1725934727dc7d834c028a79c609 31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hAzO-IMqc1CFpiBAlRl8seIYL9UonyrBMATibovyFq5kEuaweY_VyA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:56:46 GMT
age: 75373
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdeb12df7-074b-4044-bdbe-0e07bccbc8e9.jpeg | 34.120.237.76 | 200 OK | 12 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdeb12df7-074b-4044-bdbe-0e07bccbc8e9.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash0ed1a0bd725b2078b4cfe4ed83877901 62493ca03be9870aac2341e033611a6d56bd322a 706e84bc63fd98acaeb72789239af3210ae6e3910e6589d92a25899dc9059dfc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdeb12df7-074b-4044-bdbe-0e07bccbc8e9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12397
x-amzn-requestid: e8436997-696d-483a-b03a-a84e7ca614ea
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_T5HbzoAMFXsw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445b2-1c2ccd0a187d0a3e2f6a59cc;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:44:18 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: lmLHc8fKQYUpq9B-GyOQ0FKzhxi0ToTEPA7cu6JnQftgDFDNV8USvw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:56:37 GMT
age: 75382
etag: "62493ca03be9870aac2341e033611a6d56bd322a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f884785-3b60-4d1a-b7b9-f58e73d6d819.jpeg | 34.120.237.76 | 200 OK | 13 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f884785-3b60-4d1a-b7b9-f58e73d6d819.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashb4afa01d2ffe17f8378e4c0b5afd4608 f5c7e2137efa07a207427a6b6fe1df541f85ea25 84fc0c05d25d674b5594b54720017332b86d391f66c7136d76cfce3e884e8e12
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6f884785-3b60-4d1a-b7b9-f58e73d6d819.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13375
x-amzn-requestid: 372fcbe8-85a1-4be2-a006-31fb9289c5e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-CxF6BoAMFyGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443ab-4b9860545c612cc416cbe599;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: yEFlWGi3J14JLA0l2h02VlIqV8opHesKP6GOvfoP5Tp0m7dOYDxIGA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:59:32 GMT
age: 75207
etag: "f5c7e2137efa07a207427a6b6fe1df541f85ea25"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| static.mercdn.net/item/detail/orig/photos/m10084543378_1.jpg?1635056994 | 199.232.210.131 | 200 OK | 34 kB |
URL HTTP/2static.mercdn.net/item/detail/orig/photos/m10084543378_1.jpg?1635056994 IP199.232.210.131:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 540x720, components 3\012- data Hash119a74ce8096eec3c4eb906d74fc47f1 e6b00cdf7e89609b616bafb1b7defd9164d951a6 21b0fe722e94b5558bf4027d954c2065ceeb4949e7f72a403e2e2e41f17be82f
GET /item/detail/orig/photos/m10084543378_1.jpg?1635056994 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://candlegrowl.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"EOB1vyYZ-9RoY_10YSIAAAAiMmI0YjY1MzVmM2U0NzNlOWUwOTc3ODcxZmJjYWQyOTki"
last-modified: Sun, 24 Oct 2021 06:29:55 GMT
x-amz-id-2: dnlDf8RzX6eqjix5jZ0ngePOTI0t2CXaZUfBE4XKXCztCz8C1iLOobwuue4CxqTR44bGVO6qS2g=
x-amz-request-id: 7E25EXS8RENTQASD
x-amz-version-id: HpSeTuzC4wr0t1AM2QsrEl_Na7qVCrEe
via: http/1.1 rear.sv119 (ATS [cHs f ]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Sat, 28 Jan 2023 18:52:59 GMT
age: 915712
x-served-by: cache-tyo11923-TYO, cache-bma1676-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1674931979.034206,VS0,VE256
access-control-allow-origin: *
content-length: 34326
X-Firefox-Spdy: h2
|
|
| static.mercdn.net/item/detail/orig/photos/m24717901020_1.jpg?1662626233 | 199.232.210.131 | 200 OK | 63 kB |
URL HTTP/2static.mercdn.net/item/detail/orig/photos/m24717901020_1.jpg?1662626233 IP199.232.210.131:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1080, components 3\012- data Hash038b2db43279ed1bc0344d3537719ed8 a7f563afc814def5d90bbf2df73da37041433b8a 560943b117f18335eae1bf9362faad2b9d7e37b57cc7374f55905f57d1c811ac
GET /item/detail/orig/photos/m24717901020_1.jpg?1662626233 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://candlegrowl.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"EN_yz0tJRkoDuqkZYyIAAAAiODY1OTYyZWZiNjA2YzA0NjgwY2IwZjIyYmJhZGYzMDki"
last-modified: Thu, 08 Sep 2022 08:37:14 GMT
x-amz-id-2: QHib7S+bgp36lxg46RYH+20+Wj9XnUNGjSgW0bCpjgWYMy9sHcFGz/bGaRFb60AkRC6fDzyMoNA=
x-amz-request-id: 0PBYT26ZQ8EFY6QV
x-amz-version-id: bQrVMZm9NWZVhtWKWmcMKY.TenpUCIya
via: http/1.1 rear.sv125 (ATS [cHs f ]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Sat, 28 Jan 2023 18:52:59 GMT
age: 485054
x-served-by: cache-tyo11967-TYO, cache-bma1676-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1674931979.034113,VS0,VE260
access-control-allow-origin: *
content-length: 63431
X-Firefox-Spdy: h2
|
|
| static.mercdn.net/item/detail/orig/photos/m44354524766_1.jpg?1527638879 | 199.232.210.131 | 200 OK | 63 kB |
URL HTTP/2static.mercdn.net/item/detail/orig/photos/m44354524766_1.jpg?1527638879 IP199.232.210.131:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 540x720, components 3\012- data Hash9ba474a01bebbc780ef77d94c9fa240c 683c0c8417ab2ae7b0d4ce412c5926b5883a8a36 5b730c864c33e3e4ccfd2c06bce41615b773fa073e4bc4c52bc187316fce5355
GET /item/detail/orig/photos/m44354524766_1.jpg?1527638879 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://candlegrowl.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"ENP7izByoME1YesNWyIAAAAiMzZlZWQ1NzhjNDc2MTcyODczMjk3MWY0NGQwMGQ4OWYi"
last-modified: Wed, 30 May 2018 00:08:01 GMT
x-amz-id-2: IAwL1UDQnv+Q8NWA4X5njvpYmhyUqZ0UeiIz7jFQF2xTtOZucKN9WAaQIwmtWtnz9j8u/SUsmwc=
x-amz-request-id: 2K2DS2BFES0JQY2B
x-amz-storage-class: REDUCED_REDUNDANCY
x-amz-version-id: PACb1VFWp7d0ZejDOyn5TVg.B3jI0wKE
via: http/1.1 rear.sv130 (ATS [cHs f ]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Sat, 28 Jan 2023 18:52:59 GMT
age: 171113
x-served-by: cache-tyo11927-TYO, cache-bma1676-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1674931979.032376,VS0,VE263
access-control-allow-origin: *
content-length: 62671
X-Firefox-Spdy: h2
|
|
| static.mercdn.net/item/detail/orig/photos/m41426589040_1.jpg?1645255211 | 199.232.210.131 | 200 OK | 58 kB |
URL HTTP/2static.mercdn.net/item/detail/orig/photos/m41426589040_1.jpg?1645255211 IP199.232.210.131:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 810x1080, components 3\012- data Hash69cee2a7eafb9d4f7f3b9fa03192eeb0 4a395c24c5ec4c88307c52b6dc70600ac47e109f d3c8e2e7b0f085f9c86b587e59e3a6326fa51a73a0a5763215841f592db0d070
GET /item/detail/orig/photos/m41426589040_1.jpg?1645255211 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://candlegrowl.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"EOFkxdDXZfXyLJoQYiIAAAAiN2QwYzg4ZTQ3OTkxZWUzMzEyYWY4MDI3YjdkYTdiZDEi"
last-modified: Sat, 19 Feb 2022 07:20:12 GMT
x-amz-id-2: 6ZFcWP0ZX1JHAhsl8Zjb6n2Gf8SMhd1mvWNamffhEl2qeOBcwWJ5Xptu3KeUSKyqJroG7/gUQXQ=
x-amz-request-id: G6YP78TM3RPTXJZS
x-amz-version-id: 8fE80eDDMzZg199DDOy1mRZewCBt3ypf
via: http/1.1 rear.sv109 (ATS [cHs f ]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Sat, 28 Jan 2023 18:52:59 GMT
age: 2861260
x-served-by: cache-tyo11943-TYO, cache-bma1676-BMA
x-cache: HIT, MISS
x-cache-hits: 5, 0
x-timer: S1674931979.037796,VS0,VE264
access-control-allow-origin: *
content-length: 58214
X-Firefox-Spdy: h2
|
|
| static.mercdn.net/item/detail/orig/photos/m64450586039_1.jpg?1563939234 | 199.232.210.131 | 200 OK | 34 kB |
URL HTTP/2static.mercdn.net/item/detail/orig/photos/m64450586039_1.jpg?1563939234 IP199.232.210.131:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 540x720, components 3\012- data Hash2a718c9360446cede317e3f09e8add1b 6899896b0e0ee2b2dfd5d710214e848b12cc5390 9d9de2cfaeb70b885a2fd3230e59f5a18299023373d69ce41335dec745190d53
GET /item/detail/orig/photos/m64450586039_1.jpg?1563939234 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://candlegrowl.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"EPXcZAFAMPUMo9E3XSIAAAAiNzk1NGI2NTUxNjdmMzliMzY0M2JiYTQyMTg3MDA5YjIi"
last-modified: Wed, 24 Jul 2019 03:33:55 GMT
x-amz-id-2: qAd1AO30OM+Jrs67jegFnSd3mdAX005sCqOsa4pTqORpPwwzK8+jv/suhBosb6jHHzAfjUz4gzg=
x-amz-request-id: F8JF56AJ8K7BSE5N
x-amz-version-id: o_3YWMBDWLKiicn704kofu9_L1hlkchM
via: http/1.1 rear.sv102 (ATS [cHs f ]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Sat, 28 Jan 2023 18:52:59 GMT
age: 313403
x-served-by: cache-tyo11955-TYO, cache-bma1676-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1674931979.040229,VS0,VE263
access-control-allow-origin: *
content-length: 34343
X-Firefox-Spdy: h2
|
|
| static.mercdn.net/item/detail/orig/photos/m93698621857_1.jpg?1515829747 | 199.232.210.131 | 200 OK | 27 kB |
URL HTTP/2static.mercdn.net/item/detail/orig/photos/m93698621857_1.jpg?1515829747 IP199.232.210.131:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 411x555, components 3\012- data Hash97233b62b2d9872634e1d9261850bd60 0df07924048c26f68cba6cfcda3bb406d64dc25e 65f621911c872032b6c934c0919c00190d27b184eab47ac573b8f08bff68b4bd
GET /item/detail/orig/photos/m93698621857_1.jpg?1515829747 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://candlegrowl.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"EO7vKrxZP4449LlZWiIAAAAiOGI4MDYzNmRlMzljMjU3ODU5NTdhZTVhNDA4YjM0NGIi"
last-modified: Sat, 13 Jan 2018 07:49:08 GMT
x-amz-id-2: BbW8BbCNvziVijT4Vi1AdQ18/gzWoRiuqEgs+ddMZEYKIFcq++R51EFnX5KcK5Akr+UQiSl8Hys=
x-amz-request-id: YEHSFWE0DSJRK6WB
x-amz-storage-class: REDUCED_REDUNDANCY
x-amz-version-id: null
via: http/1.1 rear.sv120 (ATS [cHs f ]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Sat, 28 Jan 2023 18:52:59 GMT
age: 3392647
x-served-by: cache-tyo11949-TYO, cache-bma1676-BMA
x-cache: HIT, MISS
x-cache-hits: 21, 0
x-timer: S1674931979.034192,VS0,VE280
access-control-allow-origin: *
content-length: 26556
X-Firefox-Spdy: h2
|
|
| static.mercdn.net/item/detail/orig/photos/m44510466869_1.jpg?1659253835 | 199.232.210.131 | 200 OK | 169 kB |
URL HTTP/2static.mercdn.net/item/detail/orig/photos/m44510466869_1.jpg?1659253835 IP199.232.210.131:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 810x1080, components 3\012- data Size169 kB (168894 bytes) Hash1b861db0db0e4a4c6c05bea55cb79024 4aa1a4020c81589ee8e952ce0aa8d3334292fca7 d93f18164c5f8c229ed2364c77ab97c82f6517db765f0dc972c367b6ac94abda
GET /item/detail/orig/photos/m44510466869_1.jpg?1659253835 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://candlegrowl.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"EAMKdA7qk28vTDTmYiIAAAAiYTFmZDUyODQ5YTgyZGFiN2U0NzdhNTEwMzIxZTEzOTci"
last-modified: Sun, 31 Jul 2022 07:50:36 GMT
x-amz-id-2: nU1Rg1iU9UCcXXEkh+co7zzwvQZVrZzYS4OnlTcdRTBf99Yk0mHfci3je2g01mgOLHIlN8wRRcc=
x-amz-request-id: 29MPT4109YZDGXVD
x-amz-version-id: 0BMSWlWwznQLhmx1th.82saQvthD8nEq
via: http/1.1 rear.sv123 (ATS [cHs f ]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Sat, 28 Jan 2023 18:52:59 GMT
age: 1063764
x-served-by: cache-tyo11969-TYO, cache-bma1676-BMA
x-cache: HIT, MISS
x-cache-hits: 3, 0
x-timer: S1674931979.040207,VS0,VE286
access-control-allow-origin: *
content-length: 168894
X-Firefox-Spdy: h2
|
|
| static.mercdn.net/item/detail/orig/photos/m35333600723_1.jpg?1638072016 | 199.232.210.131 | 200 OK | 56 kB |
URL HTTP/2static.mercdn.net/item/detail/orig/photos/m35333600723_1.jpg?1638072016 IP199.232.210.131:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x1080, components 3\012- data Hash93fdbcad3ee5d95ab4c67733561a635d 3ec1ec20511c1ff10540396cf6a90baf88aa61c9 5fa1ff64d8eb7a2b76136f4ad6b4374f7fe61b564938d1657752963a925adfac
GET /item/detail/orig/photos/m35333600723_1.jpg?1638072016 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://candlegrowl.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"EG73RfDhGQ5Y0f6iYSIAAAAiNTlmYzFlZjMwYjZmZDBiNjk5ZTVhZTNkYWQyMGJmYWYi"
last-modified: Sun, 28 Nov 2021 04:00:17 GMT
x-amz-id-2: 4o0j87TSPGDtyXfb6h5URyrv0Ey/tbc/xvegDfBgmqDfiChbup/8iNQsUALfQe9IjgkzVU7G0tI=
x-amz-request-id: PQ47YMGF1HK3VWP8
x-amz-version-id: TwsOQO8MUfv3HqxlYboGweBdHsl0geLL
via: http/1.1 rear.sv122 (ATS [cMsSfW]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Sat, 28 Jan 2023 18:52:59 GMT
age: 30677
x-served-by: cache-tyo11931-TYO, cache-bma1676-BMA
x-cache: HIT, MISS
x-cache-hits: 1, 0
x-timer: S1674931979.040251,VS0,VE293
access-control-allow-origin: *
content-length: 56471
X-Firefox-Spdy: h2
|
|
| candlegrowl.top/includes/templates/1127-2/images/left/170824_left_gift.jpg | 172.67.182.130 | 200 OK | 27 kB |
URL HTTP/2candlegrowl.top/includes/templates/1127-2/images/left/170824_left_gift.jpg IP172.67.182.130:0
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 190x124, components 3\012- data Hash7bad1d5a21c02171a9ff7358e4378c13 876558a727324ffa5bbe5cf1606b2e7cd0aecc90 867378d9b2d6dd9fd72fd6995990d51c22cfbda0fcb0e0fc85cfb64d2f1a9af1
GET /includes/templates/1127-2/images/left/170824_left_gift.jpg HTTP/1.1
Host: candlegrowl.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://candlegrowl.top/
Cookie: zenid=ignpvv3hvb3rhdcr5uv0ljcvu5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 18:52:59 GMT
content-type: image/jpeg
content-length: 27338
last-modified: Mon, 19 Sep 2022 02:38:28 GMT
etag: "6aca-5e8fe9b49f72d"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nZSU1lLHxkI%2BuM%2BAEGjeeSuvF0ReImoPg2cR5idKDR4syG6v%2B0hk5cv6PzDRBYqDEioGPKoh3rnoRHSW0Ce1IwV6MKQlDAblhBoepegAXnKlXWZp2GvOLuYoefuVNoewsSE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790beda45ff2b4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| candlegrowl.top/includes/templates/1127-2/images/bottom/all_yj.png | 172.67.182.130 | 200 OK | 21 kB |
URL HTTP/2candlegrowl.top/includes/templates/1127-2/images/bottom/all_yj.png IP172.67.182.130:0
File typePNG image data, 320 x 40, 8-bit/color RGBA, non-interlaced\012- data Hash4193f1572e5a0c95125efbef8399c1f0 e60cb3f02b750ecf1be080eecf75cfbcac54eb36 323709d7cc5d328379211d091df52e375910d7c62009fff85b20e4254880d208
GET /includes/templates/1127-2/images/bottom/all_yj.png HTTP/1.1
Host: candlegrowl.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://candlegrowl.top/
Cookie: zenid=ignpvv3hvb3rhdcr5uv0ljcvu5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 18:52:59 GMT
content-type: image/png
content-length: 20818
last-modified: Mon, 19 Sep 2022 02:38:28 GMT
etag: "5152-5e8fe9b4a1284"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=v%2Bxwcq3qpd%2FT%2B%2Fy4%2FPiLeVUOb04bFq790nLcs3Zq1pDT4x1FpKpCxT8CSqzK92B7Uppilz%2F8H5MJx88qfcFZH3wjrRnyoP8OT%2B6fFqDz9CBXcuuivIrddn14kIFxLyjt8xE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790beda47827b4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.mercdn.net/item/detail/orig/photos/m45977588327_1.jpg?1636283224 | 199.232.210.131 | 200 OK | 63 kB |
URL HTTP/2static.mercdn.net/item/detail/orig/photos/m45977588327_1.jpg?1636283224 IP199.232.210.131:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 540x720, components 3\012- data Hash7f1fe8ec455387146b9d1ee2c3099d77 0a1e741fe5f7c0c0110d63ca571518516bf95d1f c10656073e13e0def79c9eb6258b558fd7469892fae1b8a1fe431e5eb7c224fc
GET /item/detail/orig/photos/m45977588327_1.jpg?1636283224 HTTP/1.1
Host: static.mercdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://candlegrowl.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: image/jpeg
cache-control: max-age=315360000
etag: W/"EBlb31c_tn_DWbOHYSIAAAAiZDVkNWZlMWJjZjJmODI3ODgxYTJiYjE4NGFiYzVlYzAi"
last-modified: Sun, 07 Nov 2021 11:07:05 GMT
x-amz-id-2: 0sFdM41Y6vGg4RwMIG0tXxvVfAQyWpP+c6DZpg/zTsW6vB2SSkyp0bTfwZ2E/rdzTltYZnMIULk=
x-amz-request-id: G7YQWXGGR3YMVYAT
x-amz-version-id: CINA7QiTJ60j3q79t4Oran5yrwOCZD1B
via: http/1.1 rear.sv113 (ATS [cMsSfW]), 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Sat, 28 Jan 2023 18:52:59 GMT
age: 0
x-served-by: cache-tyo11954-TYO, cache-bma1676-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1674931979.038000,VS0,VE429
access-control-allow-origin: *
content-length: 62910
X-Firefox-Spdy: h2
|
|
| candlegrowl.top/includes/templates/1127-2/images/bnr_campaign06.jpg | 172.67.182.130 | 200 OK | 99 kB |
URL HTTP/2candlegrowl.top/includes/templates/1127-2/images/bnr_campaign06.jpg IP172.67.182.130:0
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2022:05:17 17:26:03], progressive, precision 8, 401x401, components 3\012- data Hashf67fff3292b81c32f518f5095d247574 98eaae49c07241d02196192c09afef12524c8b77 46734631a255dc3435c0b15b0407364aab233516779acbca0c01ae8e62c6247f
GET /includes/templates/1127-2/images/bnr_campaign06.jpg HTTP/1.1
Host: candlegrowl.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://candlegrowl.top/
Cookie: zenid=ignpvv3hvb3rhdcr5uv0ljcvu5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 18:52:59 GMT
content-type: image/jpeg
content-length: 99413
last-modified: Mon, 19 Sep 2022 02:38:28 GMT
etag: "18455-5e8fe9b4a31c4"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nlIZk8wH2eXaJOJW%2Fn1aTx3Y1UsfpwrH7akcP9Biq6hgQljzyztj14mWsgceEmxUZTNAB6K0Ha0T3dCFTZocpJ26Tmq5lQFoaogAoBFoS6gANUsuY3uyYwvwdoRDe9WWyn4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790beda45fe7b4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| candlegrowl.top/includes/templates/1127-2/images/left/okiniiri-2018.jpg | 172.67.182.130 | 200 OK | 45 kB |
URL HTTP/2candlegrowl.top/includes/templates/1127-2/images/left/okiniiri-2018.jpg IP172.67.182.130:0
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2022:05:17 11:45:06], baseline, precision 8, 180x180, components 3\012- data Hashd3e8682bf8a5eeedaa6439ce3a2e318f e8d3500757535f95159bed33b78ae1df26ce9444 8ec14ce0b85f5c2429cdd1459198945305c14706790fe950cbd2c618414203bf
GET /includes/templates/1127-2/images/left/okiniiri-2018.jpg HTTP/1.1
Host: candlegrowl.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://candlegrowl.top/
Cookie: zenid=ignpvv3hvb3rhdcr5uv0ljcvu5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 18:52:59 GMT
content-type: image/jpeg
content-length: 44888
last-modified: Mon, 19 Sep 2022 02:38:28 GMT
etag: "af58-5e8fe9b4a3d7c"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7TDETE944Ir3VChLxgqZlROWTn4%2B2UFeOOM4g3CBXvrKE6o7u6E6cKuOyjPJyVyPxMjWrUKqPB4QVVwc%2B%2FhOwbwOV3NqLbPYlmhTgabRMgqwiI4ymsx8vTYNkZdQpngill0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790beda45fe8b4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| candlegrowl.top/includes/templates/1127-2/images/left/skt-001-170.jpg | 172.67.182.130 | 200 OK | 74 kB |
URL HTTP/2candlegrowl.top/includes/templates/1127-2/images/left/skt-001-170.jpg IP172.67.182.130:0
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2018 (Macintosh), datetime=2019:03:19 11:04:28], baseline, precision 8, 175x250, components 3\012- data Hashe2f1ff8912602c25040485cff2797fc7 9f564aaad1f0751ddcb50f460c51ff50cd497dd8 5245c3369e50cd10b7f6b93be1ed93edaffd3abec08f9809d83c816c57c46fc1
GET /includes/templates/1127-2/images/left/skt-001-170.jpg HTTP/1.1
Host: candlegrowl.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://candlegrowl.top/
Cookie: zenid=ignpvv3hvb3rhdcr5uv0ljcvu5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 18:52:59 GMT
content-type: image/jpeg
content-length: 73668
last-modified: Mon, 19 Sep 2022 02:38:28 GMT
etag: "11fc4-5e8fe9b49f72d"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MmqYCmYOPmrZoPkbz7b%2F%2FK4vqQpxML0adR8JNNkgeLUeKPJN0LH%2FqhvFX%2F3mIT0fByUjJFRlIt5HcHC70q2GgNfw9Ma3mY6gC1ynhOpOjAvUMwmbiwteLmMvrhlgiqMWsdo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790beda45fefb4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| candlegrowl.top/includes/templates/1127-2/images/parfect800_200.jpg | 172.67.182.130 | 200 OK | 97 kB |
URL HTTP/2candlegrowl.top/includes/templates/1127-2/images/parfect800_200.jpg IP172.67.182.130:0
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2022:04:26 11:02:42], baseline, precision 8, 810x203, components 3\012- data Hasha58a732fa2e5dc0174143c6e66584c1b e0552f497b0de7e340fcca00027f34923418d2c0 79402364f379a1fd5692ed213779ebfb2debc2c37f7e9ab4e92061af50ddd6ef
GET /includes/templates/1127-2/images/parfect800_200.jpg HTTP/1.1
Host: candlegrowl.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://candlegrowl.top/
Cookie: zenid=ignpvv3hvb3rhdcr5uv0ljcvu5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 18:52:59 GMT
content-type: image/jpeg
content-length: 97406
last-modified: Mon, 19 Sep 2022 02:38:28 GMT
etag: "17c7e-5e8fe9b4a54ec"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5P%2Bu9V8pa%2B35z4KtAdEIWAfItQQcLg6%2BDjOlMcgNyeUasXBoKhYEA16Km0CMIa7ZIePo2Rke6vl9Kz7pUvAV7z7WA%2FCuaZ1aGSPZ9V9p5yls0gl5VKU9MQUcG2JYIYNkab0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790beda46807b4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| candlegrowl.top/includes/templates/1127-2/images/bottom/atobarai_a2.jpg | 172.67.182.130 | 200 OK | 48 kB |
URL HTTP/2candlegrowl.top/includes/templates/1127-2/images/bottom/atobarai_a2.jpg IP172.67.182.130:0
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 740x120, components 3\012- data Hash6835d01f406042f940c271783bcf9094 63ff3c39ed4db35d9e882b17588cb4240337e706 891c65401f8bb3c15ab343a3d2f20e54da770f87ee899e3154404a9b26140281
GET /includes/templates/1127-2/images/bottom/atobarai_a2.jpg HTTP/1.1
Host: candlegrowl.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://candlegrowl.top/
Cookie: zenid=ignpvv3hvb3rhdcr5uv0ljcvu5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 18:52:59 GMT
content-type: image/jpeg
content-length: 47907
last-modified: Mon, 19 Sep 2022 02:38:28 GMT
etag: "bb23-5e8fe9b4a1284"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BWCIZZkv0mnTHTZc4du7a%2FbNiw5S%2BIvuhympn2%2BIYbbVM3qLhpzNam9zxpkyjsDoG%2Ffc38y2FJ3DsfabOKZ89miL8jcq2GK9BoPkec99iy%2Bp2WJdSzY7sQECmUPsTnWOktg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790beda4782ab4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| candlegrowl.top/includes/templates/1127-2/images/bnr_campaign02.jpg | 172.67.182.130 | 200 OK | 133 kB |
URL HTTP/2candlegrowl.top/includes/templates/1127-2/images/bnr_campaign02.jpg IP172.67.182.130:0
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2022:05:17 17:25:49], progressive, precision 8, 401x401, components 3\012- data Size133 kB (132618 bytes) Hash99573adaaa9cd559da647f412a8bc9bd c3ba237d0a494924a8fa5301003e44c73fd5a25f 93504faf35e272b96921d49a8274cbf75f6ebab962e0a1f8a6c9d83e1b7d67be
GET /includes/templates/1127-2/images/bnr_campaign02.jpg HTTP/1.1
Host: candlegrowl.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://candlegrowl.top/
Cookie: zenid=ignpvv3hvb3rhdcr5uv0ljcvu5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 18:52:59 GMT
content-type: image/jpeg
content-length: 132618
last-modified: Mon, 19 Sep 2022 02:38:28 GMT
etag: "2060a-5e8fe9b4a2ddc"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6epBIRhUXDjd6wQpS4oA3d3ebQGCPvuJZWuM7lFGntjx0xz4TRTBBggR5CzcyBDoQQD6ydC9bsJdyMXS9gpyWySsX77yEP7VcZmSwJYDpkSBC%2FpV1Q1lKiSGmAIiVjGuLxw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790beda45fe4b4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| candlegrowl.top/includes/templates/1127-2/images/cocos-summer-top1.jpg | 172.67.182.130 | 200 OK | 112 kB |
URL HTTP/2candlegrowl.top/includes/templates/1127-2/images/cocos-summer-top1.jpg IP172.67.182.130:0
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2022:04:26 11:01:11], baseline, precision 8, 810x203, components 3\012- data Size112 kB (111548 bytes) Hash22a0e5a974c2ced7636c1a83e5b7c306 f3e87fcce74a7d93d891f3c19ae79825956e8ec5 74c6edf80a02ee54f171963fe4270902baf60081a413c8d3c15b82bd73fd75b0
GET /includes/templates/1127-2/images/cocos-summer-top1.jpg HTTP/1.1
Host: candlegrowl.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://candlegrowl.top/
Cookie: zenid=ignpvv3hvb3rhdcr5uv0ljcvu5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 18:52:59 GMT
content-type: image/jpeg
content-length: 111548
last-modified: Mon, 19 Sep 2022 02:38:28 GMT
etag: "1b3bc-5e8fe9b4a35ac"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=T5ZfiR6cjt2p1aAbq8sWzuFAZteMGeXRlECxA1Hxp08F06xWHvuGaDHoWn3dII9vMMzzQdivmM0qPoHT%2BDOWIDtWKg2F1JSY%2F0wIYy8LNi52Cc681SSjMbOtimKppyGVi5o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790beda45ff8b4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| candlegrowl.top/includes/templates/1127-2/images/left/ino-espzz02457m1.jpg | 172.67.182.130 | 200 OK | 142 kB |
URL HTTP/2candlegrowl.top/includes/templates/1127-2/images/left/ino-espzz02457m1.jpg IP172.67.182.130:0
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 800x800, components 3\012- data Size142 kB (141991 bytes) Hashf21a590b4a4c7723348e6bdad182d003 180c6e83657b8781b8edbad7bff51dc54cc82554 00df00cd6140c9f98d31031d96388f965a11cd4bc87684bb27ce7ec66d386277
GET /includes/templates/1127-2/images/left/ino-espzz02457m1.jpg HTTP/1.1
Host: candlegrowl.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://candlegrowl.top/
Cookie: zenid=ignpvv3hvb3rhdcr5uv0ljcvu5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 18:52:59 GMT
content-type: image/jpeg
content-length: 141991
last-modified: Mon, 19 Sep 2022 02:38:28 GMT
etag: "22aa7-5e8fe9b49f72d"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=16DZhQQiFnNXOGguUb8dlid%2FRCgvZNoHCX0CoOKpjSsYuD1TcSnbb%2BfAu%2BH1A%2Bor4UZJObGOisP45mUgaPVXWuZVbUVWC3XATsclD%2FLrOciyMTYuH3njm2h2z26Zq8e%2FK7M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790beda45fedb4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| candlegrowl.top/includes/templates/1127-2/images/om-115_01.jpg | 172.67.182.130 | 200 OK | 321 kB |
URL HTTP/2candlegrowl.top/includes/templates/1127-2/images/om-115_01.jpg IP172.67.182.130:0
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2022:04:26 11:03:09 DIY-Thermocam raw data\012- (Lepton 2.x), scale 2-11520, spot sensor temperature 0.000000, unit celsius, color scheme 0, show spot sensor, calibration: offset 0.000000, slope 18062088434213887534763606016.000000], baseline, precision 8, 810x810, components 3\012- data Size321 kB (321228 bytes) Hashef203436434f12f9c22a08e7537eee51 d1494c4b11e90f188dfd1b9c67a75e4352f4868b 7b6274ae6bd57dd7a124d121b32934b6d453bc17aead7f10ee8a37a210f030ca
GET /includes/templates/1127-2/images/om-115_01.jpg HTTP/1.1
Host: candlegrowl.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://candlegrowl.top/
Cookie: zenid=ignpvv3hvb3rhdcr5uv0ljcvu5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 18:52:59 GMT
content-type: image/jpeg
content-length: 321228
last-modified: Mon, 19 Sep 2022 02:38:28 GMT
etag: "4e6cc-5e8fe9b4a4d1c"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qTUV9R17QSNXh9OZ%2FtpFM6BVrjdL0maLdasTtPm%2BSKzMPFBLxYikr8fvy%2FvNKnKjMc9p7WXKGhvRX1dLiJZlgZXrmymy88EFwXNH8ugFTNuj%2FQnqflya5nmFPGZ8xEXQYjk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790beda4680ab4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33ce0741-fcf6-4205-8b3a-016953553eaf.jpeg | 34.120.237.76 | 200 OK | 14 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33ce0741-fcf6-4205-8b3a-016953553eaf.jpeg IP34.120.237.76:0
Hash7eb66711a583ab2f3ee1f6bba00ba9ae 0bb6aa3ea7ded8ccd0556f95f7bfb845afb699e3 e61d49dec7805cb6b8d9f410f7a9098eb38a5b57ff877be527b3f410f070387d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33ce0741-fcf6-4205-8b3a-016953553eaf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 13376
x-amzn-requestid: 64d0092e-1f1a-4183-a4a6-805e0bf37d32
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-DvHIyoAMF6fA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443b1-6387770232ddca74531bce91;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Jqb6G21QeTDiI0HWT9Fd87D-HkAOiesyfN9vr7vMxrOUADBxV-_Fug==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:55:42 GMT
age: 75444
etag: "4aeca24ad4702f87feaf9674ea0c1ff6d71826a3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| candlegrowl.top/includes/templates/1127-2/css/stylesheet_css_buttons.css | 172.67.182.130 | 200 OK | 0 B |
URL HTTP/2candlegrowl.top/includes/templates/1127-2/css/stylesheet_css_buttons.css IP172.67.182.130:0
GET /includes/templates/1127-2/css/stylesheet_css_buttons.css HTTP/1.1
Host: candlegrowl.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://candlegrowl.top/
Cookie: zenid=ignpvv3hvb3rhdcr5uv0ljcvu5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 18:52:59 GMT
content-type: text/css
last-modified: Mon, 19 Sep 2022 02:38:28 GMT
etag: W/"7f1-5e8fe9b4a2224-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=d%2BvhSHgxoX%2FbYK9HLZovCXQ1SmhSt%2FAkheHgz2h7Y002R%2FaA1GqNgnTkA%2FI%2BsClYMk9WmC8y0XfffFcLPjDtF4P6VPJInN0tJA0JC%2BgFTiIL7%2BDG%2FdP3jD%2BXadohp%2F46LnE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 790beda44fd0b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| candlegrowl.top/includes/templates/1127-2/css/stylesheet_cart.css | 172.67.182.130 | 200 OK | 0 B |
URL HTTP/2candlegrowl.top/includes/templates/1127-2/css/stylesheet_cart.css IP172.67.182.130:0
GET /includes/templates/1127-2/css/stylesheet_cart.css HTTP/1.1
Host: candlegrowl.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://candlegrowl.top/
Cookie: zenid=ignpvv3hvb3rhdcr5uv0ljcvu5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 18:52:59 GMT
content-type: text/css
last-modified: Mon, 19 Sep 2022 02:38:28 GMT
etag: W/"21fa-5e8fe9b4a1e3c-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2z2BhtkhhenwU4zGQVVsKFc%2B5ylxdRJ25%2FOLMzrerUbzPLuaf9mDLxX78WCm1FURadAvk0w%2BA03BVIq3sXcCLJIEfNgKnO82SqhFKFq9%2BReBrMnu6PwrGQtxxKPyFpLKCb0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 790beda44fceb4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| candlegrowl.top/includes/templates/1127-2/css/stylesheet.css | 172.67.182.130 | 200 OK | 0 B |
URL HTTP/2candlegrowl.top/includes/templates/1127-2/css/stylesheet.css IP172.67.182.130:0
GET /includes/templates/1127-2/css/stylesheet.css HTTP/1.1
Host: candlegrowl.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://candlegrowl.top/
Cookie: zenid=ignpvv3hvb3rhdcr5uv0ljcvu5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 18:52:59 GMT
content-type: text/css
last-modified: Mon, 19 Sep 2022 02:38:28 GMT
etag: W/"55d4-5e8fe9b4a2224-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rKRz5mklvWEk7cYKDVYUkkRQd0Nmu7erjXfuf%2Bx%2F8lsySNKwkmBcWO%2F7rVMV6pZYP5tbfN0yw1wQZI5RmPzltlkphs8ZmH6%2FtxArl9j670a3PCSSAb1RHgwMD32F3cZwcBA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 790beda44fcdb4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| candlegrowl.top/includes/templates/1127-2/css/stylesheet_index_home.css | 172.67.182.130 | 200 OK | 0 B |
URL HTTP/2candlegrowl.top/includes/templates/1127-2/css/stylesheet_index_home.css IP172.67.182.130:0
GET /includes/templates/1127-2/css/stylesheet_index_home.css HTTP/1.1
Host: candlegrowl.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://candlegrowl.top/
Cookie: zenid=ignpvv3hvb3rhdcr5uv0ljcvu5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 18:52:59 GMT
content-type: text/css
last-modified: Mon, 19 Sep 2022 02:38:28 GMT
etag: W/"d56-5e8fe9b4a2224-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rhyWKl1bHq2ZAUm4nmiZujE1JDEaPNTMKrlH3kZI96AKsvRer%2B3VCdvFRnXz1kgtZ9NQyOn7k7Im9fdCdiLjelItPbjv4Ppz5VSPm9oR141UNvG417MMq87BaW6qlytbvhk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 790beda44fd3b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| candlegrowl.top/ | 172.67.182.130 | 200 OK | 0 B |
IP172.67.182.130:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
| NIDS | Severity | Alert |
|---|
| suricata | medium | ET INFO HTTP Request to a *.top domain |
GET / HTTP/1.1
Host: candlegrowl.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sat, 28 Jan 2023 18:52:58 GMT
content-type: text/html; charset=utf-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
vary: Accept-Encoding
set-cookie: zenid=ignpvv3hvb3rhdcr5uv0ljcvu5; path=/; domain=.candlegrowl.top; secure; HttpOnly
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2%2BsDxGY1XqA02bTrit9RLir9u16h8r%2By3ZeiF1Qdqyw8H8EME70DIcX8fvIBJMg8jilugi1telkHXIdNUsRrB%2BnYNts6e73xAnmgW0xnfmpICGIr4EhIpjxzB9vq6jOviUk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 790bed9acab0b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| candlegrowl.top/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js | 172.67.182.130 | 200 OK | 0 B |
URL HTTP/2candlegrowl.top/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP172.67.182.130:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Malware | |
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: candlegrowl.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://candlegrowl.top/
Cookie: zenid=ignpvv3hvb3rhdcr5uv0ljcvu5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 28 Jan 2023 18:52:58 GMT
content-type: application/javascript
last-modified: Mon, 23 Jan 2023 11:05:52 GMT
etag: W/"63ce6a10-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=a5MYtdB5Lio%2F4zv6PL4M5XB0T5vrx%2FT2zQqdWZXTITcapQpMEg1XyFABzCBHmrZSuvEUtl%2BWJ%2B4Vho3SToLagsMd48aBdJzMUJXh%2FLwQZ9YmmyxK2ID3SOVj%2BYKoh5PCNZU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 790beda4782bb4fa-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Mon, 30 Jan 2023 18:52:58 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2
|
|