fitnesscorona.org/
3.33.152.147301 Moved Permanently 70 B IP 3.33.152.147:0
File type HTML document, ASCII text
Hash 444abf344e6451888b9b906423139264
c057a5bd2c7eed14ddd702cbdc9ad46db4e02849
613b3a8aa9c3da3743098ab57db8948725f8d02b2a37f849d73cde6dc92c5a9e
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: fitnesscorona.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 09 Oct 2022 15:03:01 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 70
Connection: keep-alive
Location: http://www.phoenixfitnesscorona.com
Server: ip-100-74-2-59.eu-west-2.compute.internal
X-Request-Id: 2e359159-d59c-47d9-8447-b50509015873
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cf768e41672570b0a4a9fe86045915fc
2249064a86b2ba11e28208b9fba1c9f1db4f3e9e
a049499f78078df12f4d1c5180f1f36715a5c99db4f31c18ee06bcf0b6382b30
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A049499F78078DF12F4D1C5180F1F36715A5C99DB4F31C18EE06BCF0B6382B30"
Last-Modified: Fri, 07 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12428
Expires: Sun, 09 Oct 2022 18:30:09 GMT
Date: Sun, 09 Oct 2022 15:03:01 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
54.230.111.118200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 54.230.111.118:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 3f17af4e8a1739eda4a518039f4892f9
c3feba08ae7e8f57e0fe9bcd2ebedea6bda67cbb
c485b09cad08b5233fe8753682faf59219fe0d18fcc34d90dc88fb0971295f5f
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 09 Oct 2022 14:47:55 GMT
Expires: Sun, 09 Oct 2022 15:25:16 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: TFvXDplbzmxUfU5QnSA-npN_5EjUGITc98ftbUVEgKDjZzsYzxSNTw==
Age: 906
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3d0ffae9abfdf558a6286013a0201c8b
2dc8ea0000a1b0c0f849611fdd73429bca51bfad
8e19eab9b6d16819f9ef3920971542cbcf5dd18280617e2de1a3827f0c149398
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8E19EAB9B6D16819F9EF3920971542CBCF5DD18280617E2DE1A3827F0C149398"
Last-Modified: Sun, 09 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7017
Expires: Sun, 09 Oct 2022 16:59:58 GMT
Date: Sun, 09 Oct 2022 15:03:01 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: CYiY1A2jpF36IMT4nY92yvf3igxi22bEbrHFnmyRXNg4fFjYfZVctYEgUZEIg/oQ+7g/UnhdGyk=
x-amz-request-id: QT2YEFKV5PQWC8CK
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 09 Oct 2022 15:00:04 GMT
age: 177
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 09 Oct 2022 15:03:01 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.phoenixfitnesscorona.com/
160.153.136.3200 OK 7.9 kB URL HTTP/1.1 www.phoenixfitnesscorona.com/
IP 160.153.136.3:0
ASN #21501 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (19287), with CRLF line terminators
Hash 38d242d55b8e191fe0432280a6f94756
3e1b7e763135f038ba52a9ebb01918ac92a82f72
c21308a3abc28061918fb3e6fc7050deb491116aac6a685b1df5fd69b36dd683
GET / HTTP/1.1
Host: www.phoenixfitnesscorona.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Link: <http://www.phoenixfitnesscorona.com/site.css?v=>; rel=preload; as=style,<https://fonts.googleapis.com>; rel=preconnect; crossorigin,<https://fonts.gstatic.com>; rel=preconnect; crossorigin,<https://img1.wsimg.com>; rel=preconnect; crossorigin,<https://img2.wsimg.com>; rel=preconnect; crossorigin,<https://img4.wsimg.com>; rel=preconnect; crossorigin,<http://img4.wsimg.com>; rel=preconnect; crossorigin,<http://nebula.wsimg.com>; rel=preconnect; crossorigin
cache-control: public, max-age=60, s-maxage=300
Content-Security-Policy: frame-ancestors 'self'
content-type: text/html; charset=utf-8
Vary: Accept-Encoding
Content-Encoding: gzip
Server: DPS/1.13.2
X-SiteId: 4000
Set-Cookie: dps_site_id=4000; path=/
ETag: ff89316bd90f6512e7e914d9feb1acf9
Date: Sun, 09 Oct 2022 15:03:01 GMT
Connection: keep-alive
Keep-Alive: timeout=5
Transfer-Encoding: chunked
fonts.googleapis.com/css?family=Fredericka+the+Great|Allura|Amatic+SC|Arizonia|Averia+Sans+Libre|Cabin+Sketch|Francois+One|Jacques+Francois+Shadow|Josefin+Slab|Kaushan+Script|Love+Ya+Like+A+Sister|Merriweather|Offside|Open+Sans|Open+Sans+Condensed|Oswald|Over+the+Rainbow|Pacifico|Romanesco|Sacramento|Seaweed+Script|Special+Elite
142.250.74.10200 OK 1.9 kB URL HTTP/1.1 fonts.googleapis.com/css?family=Fredericka+the+Great|Allura|Amatic+SC|Arizonia|Averia+Sans+Libre|Cabin+Sketch|Francois+One|Jacques+Francois+Shadow|Josefin+Slab|Kaushan+Script|Love+Ya+Like+A+Sister|Merriweather|Offside|Open+Sans|Open+Sans+Condensed|Oswald|Over+the+Rainbow|Pacifico|Romanesco|Sacramento|Seaweed+Script|Special+Elite
IP 142.250.74.10:0
Hash 58e007c42eabb39326eea60c713b9640
525117904100fb0d18c03c71a59cd46e5ab9c316
26866f09b6d6a23069e350f823a0291f49cdd6c7d97dc64f3180ef9bf2c90172
GET /css?family=Fredericka+the+Great|Allura|Amatic+SC|Arizonia|Averia+Sans+Libre|Cabin+Sketch|Francois+One|Jacques+Francois+Shadow|Josefin+Slab|Kaushan+Script|Love+Ya+Like+A+Sister|Merriweather|Offside|Open+Sans|Open+Sans+Condensed|Oswald|Over+the+Rainbow|Pacifico|Romanesco|Sacramento|Seaweed+Script|Special+Elite HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.phoenixfitnesscorona.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sun, 09 Oct 2022 15:03:01 GMT
Date: Sun, 09 Oct 2022 15:03:01 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=Open+Sans:400,700italic,800italic|Source+Sans+Pro
142.250.74.10200 OK 885 B URL HTTP/1.1 fonts.googleapis.com/css?family=Open+Sans:400,700italic,800italic|Source+Sans+Pro
IP 142.250.74.10:0
Hash 42aeb8f3516243c7f6bad56822ad30cf
7690ea6ab862a7799288e825b171dd961f8b5d9d
76c85dee415542cea34112d622e2f74c72b7db0ecd76477a54c1a9345e02bab5
GET /css?family=Open+Sans:400,700italic,800italic|Source+Sans+Pro HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.phoenixfitnesscorona.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sun, 09 Oct 2022 15:03:01 GMT
Date: Sun, 09 Oct 2022 15:03:01 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
img1.wsimg.com/starfield/duel/v2.5.8/duel.js?appid=O3BkA5J1
23.36.79.16200 OK 15 kB URL HTTP/1.1 img1.wsimg.com/starfield/duel/v2.5.8/duel.js?appid=O3BkA5J1
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (32004), with CRLF, LF line terminators
Hash 7963600a5ad58b3897e5ad49376b2910
7014be7cef21acec73b972d52d076d55b3cc1b0f
cbbbd69a63b7ec0099059549113d863b4f316a9cce50dd38b427db133181e8e7
GET /starfield/duel/v2.5.8/duel.js?appid=O3BkA5J1 HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.phoenixfitnesscorona.com/
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Last-Modified: Thu, 14 Jan 2016 20:03:53 GMT
Accept-Ranges: bytes
ETag: "6e4534b164fd11:0"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 15038
Cache-Control: max-age=31536000
Expires: Mon, 09 Oct 2023 15:03:01 GMT
Date: Sun, 09 Oct 2022 15:03:01 GMT
Connection: keep-alive
Timing-Allow-Origin: *
Access-Control-Allow-Origin: *
www.phoenixfitnesscorona.com/site.css?v=
160.153.136.3200 OK 8.3 kB URL HTTP/1.1 www.phoenixfitnesscorona.com/site.css?v=
IP 160.153.136.3:0
ASN #21501 Host Europe GmbH
File type Unicode text, UTF-8 text, with very long lines (49203), with no line terminators
Hash 916013561277bfb719e09b7a90857d00
3555d48b7a3694cc46a8621a2a668e770051cf49
ac287599cd61b4fb3605ba7494ad409668ff626ede20259f253933decb0e578e
GET /site.css?v= HTTP/1.1
Host: www.phoenixfitnesscorona.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.phoenixfitnesscorona.com/
Cookie: dps_site_id=4000
HTTP/1.1 200 OK
Link: <http://www.phoenixfitnesscorona.com/site.css?v=>; rel=preload; as=style,<https://fonts.googleapis.com>; rel=preconnect; crossorigin,<https://fonts.gstatic.com>; rel=preconnect; crossorigin,<https://img1.wsimg.com>; rel=preconnect; crossorigin,<https://img2.wsimg.com>; rel=preconnect; crossorigin,<https://img4.wsimg.com>; rel=preconnect; crossorigin,<http://img4.wsimg.com>; rel=preconnect; crossorigin,<http://nebula.wsimg.com>; rel=preconnect; crossorigin
cache-control: public, max-age=60, s-maxage=300
Content-Security-Policy: frame-ancestors 'self'
content-type: text/css
Vary: Accept-Encoding
Content-Encoding: gzip
Server: DPS/1.13.2
X-SiteId: 4000
Set-Cookie: dps_site_id=4000; path=/
ETag: 156ec858905a0c2cb310f089dbf8b0f4
Date: Sun, 09 Oct 2022 15:03:01 GMT
Connection: keep-alive
Keep-Alive: timeout=5
Transfer-Encoding: chunked
img1.wsimg.com/wst/v7/WSB7_J_20210107_0018_Dep-18653_2928/v2/libs/jquery/jq.js
23.36.79.16200 OK 34 kB URL HTTP/2 img1.wsimg.com/wst/v7/WSB7_J_20210107_0018_Dep-18653_2928/v2/libs/jquery/jq.js
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32803)
Hash ffbd68b90288734f20a8bc1b890c8143
c22936fd20c6f2666025bb937c8828fa211d2397
282feef6cdc7aed262b96959d783da530a5289983b23fa2f7ca1ebbcfc9fe043
GET /wst/v7/WSB7_J_20210107_0018_Dep-18653_2928/v2/libs/jquery/jq.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.phoenixfitnesscorona.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Thu, 07 Jan 2021 07:35:11 GMT
accept-ranges: bytes
etag: "3daa7ba1c7e4d61:0"
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Mon, 09 Oct 2023 15:03:01 GMT
date: Sun, 09 Oct 2022 15:03:01 GMT
content-length: 33456
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/wst/v7/WSB7_J_20210107_0018_Dep-18653_2928/v2/common/cookiemanager/cookiemanager.js
23.36.79.16200 OK 355 B URL HTTP/2 img1.wsimg.com/wst/v7/WSB7_J_20210107_0018_Dep-18653_2928/v2/common/cookiemanager/cookiemanager.js
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (510)
Hash 64cdc6cc53cd845582e35757b19a478d
b3aae1e961a5708a71d7a87b002072d44ebf3ce7
cf972c9b7ffe0f86c00374659e6ba8f6711315cffad70bd492ff43dc27ab9d1c
GET /wst/v7/WSB7_J_20210107_0018_Dep-18653_2928/v2/common/cookiemanager/cookiemanager.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.phoenixfitnesscorona.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Thu, 07 Jan 2021 07:28:02 GMT
accept-ranges: bytes
etag: "433bf9a1c6e4d61:0"
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Mon, 09 Oct 2023 15:03:01 GMT
date: Sun, 09 Oct 2022 15:03:01 GMT
content-length: 355
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/wst/v7/WSB7_J_20210107_0018_Dep-18653_2928/v2/designer/iebackground/iebackground.js
23.36.79.16200 OK 603 B URL HTTP/2 img1.wsimg.com/wst/v7/WSB7_J_20210107_0018_Dep-18653_2928/v2/designer/iebackground/iebackground.js
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (1149)
Hash bc399704c6fb20bbf537307f73fcce27
f5dca274f5615961087b1492bafd3626d0dea05d
08a5d12c258a30baa53f8554491c3b2e4bd61088d1dd9268d4df30f3b106df70
GET /wst/v7/WSB7_J_20210107_0018_Dep-18653_2928/v2/designer/iebackground/iebackground.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.phoenixfitnesscorona.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Thu, 07 Jan 2021 07:28:45 GMT
accept-ranges: bytes
etag: "16d6b5bbc6e4d61:0"
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Mon, 09 Oct 2023 15:03:01 GMT
date: Sun, 09 Oct 2022 15:03:01 GMT
content-length: 603
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/wst/v7/WSB7_J_20210107_0018_Dep-18653_2928/v2/designer/app/builder/ui/controls/media/gallery/media.gallery.js
23.36.79.16200 OK 3.5 kB URL HTTP/2 img1.wsimg.com/wst/v7/WSB7_J_20210107_0018_Dep-18653_2928/v2/designer/app/builder/ui/controls/media/gallery/media.gallery.js
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (11346)
Hash a353783274c0aa6b923e9f2dae0e9114
06d0eee6de60ec9e476197d8b8fc5fa4952d4ee3
744a3551aaa8981b515e9e0c979d8e147d2cd8f94c52224db0fea73d5ee26f64
GET /wst/v7/WSB7_J_20210107_0018_Dep-18653_2928/v2/designer/app/builder/ui/controls/media/gallery/media.gallery.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.phoenixfitnesscorona.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Thu, 07 Jan 2021 07:28:41 GMT
accept-ranges: bytes
etag: "f2fdfb9c6e4d61:0"
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Mon, 09 Oct 2023 15:03:01 GMT
date: Sun, 09 Oct 2022 15:03:01 GMT
content-length: 3509
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.youtube.com/embed/FfPpYOeUbtI?feature=oembed&wmode=opaque&theme=dark&showinfo=1&autoplay=0
142.250.74.78301 Moved Permanently 0 B URL HTTP/1.1 www.youtube.com/embed/FfPpYOeUbtI?feature=oembed&wmode=opaque&theme=dark&showinfo=1&autoplay=0
IP 142.250.74.78:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /embed/FfPpYOeUbtI?feature=oembed&wmode=opaque&theme=dark&showinfo=1&autoplay=0 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.phoenixfitnesscorona.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Content-Type: application/binary
X-Content-Type-Options: nosniff
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Sun, 09 Oct 2022 15:03:01 GMT
Location: https://www.youtube.com/embed/FfPpYOeUbtI?feature=oembed&wmode=opaque&theme=dark&showinfo=1&autoplay=0
Server: ESF
Content-Length: 0
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/specialelite/v18/XLYgIZbkc4JPUL5CVArUVL0ntnAOSA.woff2
216.58.207.195200 OK 53 kB URL HTTP/1.1 fonts.gstatic.com/s/specialelite/v18/XLYgIZbkc4JPUL5CVArUVL0ntnAOSA.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 53296, version 1.0\012- data
Hash 95d46c7f34ba085b157ebb3a20ba76df
f6a504bc195422f2b9cb305f6981d37950ae2d9d
770493d84cbb753cd0573d0f014550583138f40469d137e310d239593a1949d8
GET /s/specialelite/v18/XLYgIZbkc4JPUL5CVArUVL0ntnAOSA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.phoenixfitnesscorona.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 53296
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 05 Oct 2022 22:30:47 GMT
Expires: Thu, 05 Oct 2023 22:30:47 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Tue, 19 Apr 2022 19:00:19 GMT
Content-Type: font/woff2
Age: 318734
img1.wsimg.com/wst/v7/WSB7_J_20210107_0018_Dep-18653_2928/v2/common/util/util.window.js
23.36.79.16200 OK 115 B URL HTTP/2 img1.wsimg.com/wst/v7/WSB7_J_20210107_0018_Dep-18653_2928/v2/common/util/util.window.js
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
Hash e878894614e251da8021dee0ef797424
887b2780af43b5fe4671526b4883503dfa99b232
8d452739e41086ffd63da0071f785471bae8ac0c166483e270c07193c3be3d21
GET /wst/v7/WSB7_J_20210107_0018_Dep-18653_2928/v2/common/util/util.window.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.phoenixfitnesscorona.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Thu, 07 Jan 2021 07:28:07 GMT
accept-ranges: bytes
etag: "7ef89fa4c6e4d61:0"
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Mon, 09 Oct 2023 15:03:01 GMT
date: Sun, 09 Oct 2022 15:03:01 GMT
content-length: 115
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/wst/v7/WSB7_J_20210107_0018_Dep-18653_2928/v2/designer/util/util.instances.js
23.36.79.16200 OK 295 B URL HTTP/2 img1.wsimg.com/wst/v7/WSB7_J_20210107_0018_Dep-18653_2928/v2/designer/util/util.instances.js
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (531)
Hash ef8e0dd7d36d7880e86c96b87e47790a
31d42c09052030100110612b042c65b6d21315dd
75e38ec3d3ce584510dd429144b04930d7bf50a6e032f48330c41ba2c01db782
GET /wst/v7/WSB7_J_20210107_0018_Dep-18653_2928/v2/designer/util/util.instances.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.phoenixfitnesscorona.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Thu, 07 Jan 2021 07:28:46 GMT
accept-ranges: bytes
etag: "64ac5ebcc6e4d61:0"
vary: Accept-Encoding
content-encoding: gzip
content-length: 295
cache-control: max-age=31536000
expires: Mon, 09 Oct 2023 15:03:01 GMT
date: Sun, 09 Oct 2022 15:03:01 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/wst/v7/WSB7_J_20210107_0018_Dep-18653_2928/v2/designer/util/util.model.js
23.36.79.16200 OK 219 B URL HTTP/2 img1.wsimg.com/wst/v7/WSB7_J_20210107_0018_Dep-18653_2928/v2/designer/util/util.model.js
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (360)
Hash 2a6038bf222eeeafb20ac0a138da7670
ae4248cd9d81eac4a253e291c696a9afbcca00e8
54a71869dc89113c4279de8765f9fd30ac6b0ee1b9816c94fb4c47592892f51b
GET /wst/v7/WSB7_J_20210107_0018_Dep-18653_2928/v2/designer/util/util.model.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.phoenixfitnesscorona.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Thu, 07 Jan 2021 07:28:47 GMT
accept-ranges: bytes
etag: "eb88cbcc6e4d61:0"
vary: Accept-Encoding
content-encoding: gzip
content-length: 219
cache-control: max-age=31536000
expires: Mon, 09 Oct 2023 15:03:01 GMT
date: Sun, 09 Oct 2022 15:03:01 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
img1.wsimg.com/wst/v7/WSB7_J_20210107_0018_Dep-18653_2928/v2/common/util/documentHelper.js
23.36.79.16200 OK 270 B URL HTTP/2 img1.wsimg.com/wst/v7/WSB7_J_20210107_0018_Dep-18653_2928/v2/common/util/documentHelper.js
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
Hash 49e9bf5973adf1a5b9134af42bb5c1ea
b2988aa9d5cc6eb539fbf9258c58a2580f569495
9100913b3359ba68cb9fbfd1ed8ca0e03243585add59b707fe660dce7cc2984a
GET /wst/v7/WSB7_J_20210107_0018_Dep-18653_2928/v2/common/util/documentHelper.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.phoenixfitnesscorona.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Thu, 07 Jan 2021 07:28:06 GMT
accept-ranges: bytes
etag: "9cf772a4c6e4d61:0"
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Mon, 09 Oct 2023 15:03:01 GMT
date: Sun, 09 Oct 2022 15:03:01 GMT
content-length: 270
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash a5bb2ca079b8c15c921933d39c57ae47
7ae6e38c3e12ef05164b04df7f2a65be3a3ec440
336607c0f56b4a97511339d2437520aa8c9d6cb07b5b5ddf535efe65561d2890
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 15:03:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
54.230.111.118200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 54.230.111.118:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Sun, 09 Oct 2022 14:41:06 GMT
Cache-Control: max-age=3600
Expires: Sun, 09 Oct 2022 15:26:49 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Se5m4GG7Gh-lr-IxlUngnyVg57vxEZzXLZgAN71BI2t_iNqEa6_fCA==
Age: 2001
img1.wsimg.com/traffic-assets/js/tccl.min.js
23.36.79.16404 Not Found 1.2 kB URL HTTP/1.1 img1.wsimg.com/traffic-assets/js/tccl.min.js
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 5343c1a8b203c162a3bf3870d9f50fd4
04b5b886c20d88b57eea6d8ff882624a4ac1e51d
dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f
GET /traffic-assets/js/tccl.min.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.phoenixfitnesscorona.com/
HTTP/1.1 404 Not Found
Content-Type: text/html
Content-Length: 1245
Cache-Control: max-age=1800
Expires: Sun, 09 Oct 2022 15:33:02 GMT
Date: Sun, 09 Oct 2022 15:03:02 GMT
Connection: keep-alive
Timing-Allow-Origin: *
Access-Control-Allow-Origin: *
X-N: S
www.youtube.com/s/player/17ab0793/www-player.css
142.250.74.78200 OK 50 kB URL HTTP/2 www.youtube.com/s/player/17ab0793/www-player.css
IP 142.250.74.78:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash ce9b3268e83e864464ee0b1c1bcbd395
aec0d122b7a1674fd2c903e350d7c1e345bdda9a
eccc42a16e7cb2c976a2f247265ef435954d636410182b6e8d6443457252d0e6
GET /s/player/17ab0793/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/FfPpYOeUbtI?feature=oembed&wmode=opaque&theme=dark&showinfo=1&autoplay=0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 50095
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 06 Oct 2022 16:56:14 GMT
expires: Fri, 06 Oct 2023 16:56:14 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 06 Oct 2022 00:52:14 GMT
content-type: text/css
age: 252408
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/17ab0793/www-embed-player.vflset/www-embed-player.js
142.250.74.78200 OK 97 kB URL HTTP/2 www.youtube.com/s/player/17ab0793/www-embed-player.vflset/www-embed-player.js
IP 142.250.74.78:0
File type ASCII text, with very long lines (572)
Hash 25913148e87059714551dcf4917e9cda
77186ee8b563a941961829ca4df183e6c0b63660
2c1f6b675637c3df7fce30c177b7a16047d026aca38b4f2e562b8328d775acf0
GET /s/player/17ab0793/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/FfPpYOeUbtI?feature=oembed&wmode=opaque&theme=dark&showinfo=1&autoplay=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 97396
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 06 Oct 2022 16:56:14 GMT
expires: Fri, 06 Oct 2023 16:56:14 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 06 Oct 2022 00:52:14 GMT
content-type: text/javascript
age: 252408
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/s/player/17ab0793/player_ias.vflset/en_US/base.js
142.250.74.78200 OK 593 kB URL HTTP/2 www.youtube.com/s/player/17ab0793/player_ias.vflset/en_US/base.js
IP 142.250.74.78:0
File type ASCII text, with very long lines (554)
Size 593 kB (592870 bytes)
Hash b30301fb53e40884dbd3be8408d61222
77c903074d3a42ed7981bb7334c25b388fefdebf
bcf6f84f1a3b6ade4733d7237e30988dae2bc8245b045f3ed1a5eab5015ccfe3
GET /s/player/17ab0793/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/embed/FfPpYOeUbtI?feature=oembed&wmode=opaque&theme=dark&showinfo=1&autoplay=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding, Origin
content-encoding: br
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 592870
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 06 Oct 2022 16:57:15 GMT
expires: Fri, 06 Oct 2023 16:57:15 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 06 Oct 2022 00:52:14 GMT
content-type: text/javascript
age: 252347
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash a5bb2ca079b8c15c921933d39c57ae47
7ae6e38c3e12ef05164b04df7f2a65be3a3ec440
336607c0f56b4a97511339d2437520aa8c9d6cb07b5b5ddf535efe65561d2890
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 15:03:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
nebula.wsimg.com/ad5c181a9ecd0a5533a60ec693fea798?AccessKeyId=3AA1CB189CCA46B6C904&disposition=0&alloworigin=1
23.36.79.43200 OK 1.2 kB URL HTTP/1.1 nebula.wsimg.com/ad5c181a9ecd0a5533a60ec693fea798?AccessKeyId=3AA1CB189CCA46B6C904&disposition=0&alloworigin=1
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash ea3015f1f30dcfaa94c55ba736dbee90
0eb1df1a7b7a032ee5cfdfe3d1c401fcf4aa2f7f
499cc1da9dc7ccb99fb9b5c9e6e6c206a97dc37c4138c2b6df2f4387363e5622
GET /ad5c181a9ecd0a5533a60ec693fea798?AccessKeyId=3AA1CB189CCA46B6C904&disposition=0&alloworigin=1 HTTP/1.1
Host: nebula.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.phoenixfitnesscorona.com/
HTTP/1.1 200 OK
Server: Apache
x-cloud-request-id: GDN5F5E47438157129E3F927A435A0A9
x-cloud-bucket-key: 092edf59b9515cf97faf8241322a180e
x-cloud-bucket-name: resources
x-cloud-object-key: ad5c181a9ecd0a5533a60ec693fea798
x-cloud-object-name: resources/8872b22f-a4e8-4540-becf-dddd764b4859-cropped-soc-link1.png
x-cloud-version: 1a1dceab83bcce022ff50b924bb8d0a8
x-cloud-acl: public-read
x-cloud-meta:
ETag: d9193598b8144469d1aae05abf245eb0
Last-Modified: Sun, 03 Nov 2019 13:02:21 GMT
created-date: Tue, 18 Oct 2016 03:37:37 GMT
Access-Control-Allow-Origin: *
x-cloud-public-bucket: []
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1244
Content-Type: image/png
Cache-Control: must-revalidate, max-age=31536000
Date: Sun, 09 Oct 2022 15:03:02 GMT
Connection: keep-alive
nebula.wsimg.com/5235f4603ecbea85dbffd45647b6f992?AccessKeyId=3AA1CB189CCA46B6C904&disposition=0&alloworigin=1
23.36.79.43200 OK 3.3 kB URL HTTP/1.1 nebula.wsimg.com/5235f4603ecbea85dbffd45647b6f992?AccessKeyId=3AA1CB189CCA46B6C904&disposition=0&alloworigin=1
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 95x141, components 3\012- data
Hash 41fc736af5186b76992479f57ce982b2
6f0028e5a71eec2abe2a3d80fa99d43cbcc8de5d
9a1477171c72ac7f34f79185e810ce2bfe44d7b619f770adf6ccdca410547e33
GET /5235f4603ecbea85dbffd45647b6f992?AccessKeyId=3AA1CB189CCA46B6C904&disposition=0&alloworigin=1 HTTP/1.1
Host: nebula.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.phoenixfitnesscorona.com/
HTTP/1.1 200 OK
Server: Apache
x-cloud-request-id: GDNB02DAB7D1E7B3A4D2ED9F66D4139F
x-cloud-bucket-key: 092edf59b9515cf97faf8241322a180e
x-cloud-bucket-name: resources
x-cloud-object-key: 5235f4603ecbea85dbffd45647b6f992
x-cloud-object-name: resources/662f991e-fa3c-4e0a-9d2b-2008baba0dfe-cropped-new floor.jpg
x-cloud-version: d92675d22d1f6b44568fc72eeb3233eb
x-cloud-acl: public-read
x-cloud-meta:
ETag: beb958877ce493129f3af425e429cc90
Last-Modified: Fri, 24 Feb 2017 07:51:38 GMT
created-date: Fri, 24 Feb 2017 07:51:38 GMT
Access-Control-Allow-Origin: *
x-cloud-public-bucket: []
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3302
Content-Type: image/jpeg
Cache-Control: must-revalidate, max-age=31536000
Date: Sun, 09 Oct 2022 15:03:02 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 29a32d9388903ec730ac67b6b1f10269
6d54710f2bf0b284533005d8c783f3f15c9920af
cd03b8d5ae307fb1b3d976457c9762a743d5268ddd1f82c1fb5ae2fcd3e3d6d1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 15:03:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
nebula.wsimg.com/a928c882ed08e450f58164b5b62d877c?AccessKeyId=3AA1CB189CCA46B6C904&disposition=0&alloworigin=1
23.36.79.43200 OK 7.8 kB URL HTTP/1.1 nebula.wsimg.com/a928c882ed08e450f58164b5b62d877c?AccessKeyId=3AA1CB189CCA46B6C904&disposition=0&alloworigin=1
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=14, height=0, manufacturer=samsung, model=SM-G900V, orientation=upper-left, xresolution=2260, yresolution=2268, resolutionunit=2, software=G900VVRU2DPJ2, datetime=2016:12:14 17:08:52, GPS-Data, width=0], baseline, precision 8, 118x130, components 3\012- data
Hash ed218deaf470122812d41f600c881980
7fb3339a64c9a99d7557224b8ee58b42d2a41643
c1ad3876d1358a9e08198fce807c56c8d011eb343a606dd3ab3cd1fc70540627
GET /a928c882ed08e450f58164b5b62d877c?AccessKeyId=3AA1CB189CCA46B6C904&disposition=0&alloworigin=1 HTTP/1.1
Host: nebula.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.phoenixfitnesscorona.com/
HTTP/1.1 200 OK
Server: Apache
x-cloud-request-id: GDNADC4C0A0DBCF71C08DC1D5E7AD6F8
x-cloud-bucket-key: 092edf59b9515cf97faf8241322a180e
x-cloud-bucket-name: resources
x-cloud-object-key: a928c882ed08e450f58164b5b62d877c
x-cloud-object-name: resources/8a385c29-5ff5-4d7e-8fb6-e7abd47c8267-cropped-20161214_170852 copy.jpg
x-cloud-version: 1ef20a755dae1c5b0e34b73b13e381f6
x-cloud-acl: public-read
x-cloud-meta:
ETag: bfa9ec881fabff97a7b9e96d33bf4dfd
Last-Modified: Fri, 24 Feb 2017 07:52:10 GMT
created-date: Fri, 24 Feb 2017 07:52:10 GMT
Access-Control-Allow-Origin: *
x-cloud-public-bucket: []
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7774
Content-Type: image/jpeg
Cache-Control: must-revalidate, max-age=31536000
Date: Sun, 09 Oct 2022 15:03:02 GMT
Connection: keep-alive
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 08 Oct 2022 12:31:58 GMT
expires: Sun, 08 Oct 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 95464
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 07 Oct 2022 00:48:31 GMT
expires: Sat, 07 Oct 2023 00:48:31 GMT
cache-control: public, max-age=31536000
age: 224071
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0e2d9e91637474eeaf391312eed441bd
5d29603c731b75308f7d1f584b3ac4c263c96a9e
7da864345088083e1a6fec2d95e07186ef8dbcef8505570e547844c556dfe3be
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6021
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 15:03:02 GMT
Last-Modified: Sun, 09 Oct 2022 13:22:41 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 8a2449aeb44e755b2e6897d30993dda0
16cd83b0e0975ebf09e7035c26bbda168af42ac8
fd80527f810be13b70107c447b6f6f226c6145fbcc3b5446f9c834bca2f1597b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 15:03:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
nebula.wsimg.com/4d3457efbb63b6a087c286d7780487fc?AccessKeyId=3AA1CB189CCA46B6C904&disposition=0&alloworigin=1
23.36.79.43200 OK 1.0 kB URL HTTP/1.1 nebula.wsimg.com/4d3457efbb63b6a087c286d7780487fc?AccessKeyId=3AA1CB189CCA46B6C904&disposition=0&alloworigin=1
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash bf5e8be5f6fac68e5efbadf053ba86cd
1843d1ad86c4eeddfebb2d0ccfc503c8997f48f4
8d0b7a95e30097348a268cc33aa1f49daa98f51ae0f19cc820f0fa178e97d7ea
GET /4d3457efbb63b6a087c286d7780487fc?AccessKeyId=3AA1CB189CCA46B6C904&disposition=0&alloworigin=1 HTTP/1.1
Host: nebula.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.phoenixfitnesscorona.com/
HTTP/1.1 200 OK
Server: Apache
x-cloud-request-id: GDNCFC05D4E401E9DABEBA19CD91CD9C
x-cloud-bucket-key: 092edf59b9515cf97faf8241322a180e
x-cloud-bucket-name: resources
x-cloud-object-key: 4d3457efbb63b6a087c286d7780487fc
x-cloud-object-name: resources/32165c56-47d3-4436-9352-4a9309e6f49a-cropped-twitter.png
x-cloud-version: 660f8a4c8781966c408d81672432c2af
x-cloud-acl: public-read
x-cloud-meta:
ETag: 84162bea47f61617899aa750de7cde7a
Last-Modified: Sun, 03 Nov 2019 13:01:47 GMT
created-date: Tue, 25 Oct 2016 08:07:39 GMT
Access-Control-Allow-Origin: *
x-cloud-public-bucket: []
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1005
Content-Type: image/png
Cache-Control: must-revalidate, max-age=31536000
Date: Sun, 09 Oct 2022 15:03:02 GMT
Connection: keep-alive
nebula.wsimg.com/9556c70324fbf43b68cb90a21c4d7c87?AccessKeyId=3AA1CB189CCA46B6C904&disposition=0&alloworigin=1
23.36.79.43200 OK 21 kB URL HTTP/1.1 nebula.wsimg.com/9556c70324fbf43b68cb90a21c4d7c87?AccessKeyId=3AA1CB189CCA46B6C904&disposition=0&alloworigin=1
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type PNG image data, 147 x 151, 8-bit/color RGBA, non-interlaced\012- data
Hash 7cf0949da97962686d5718cf3005e0cf
7faa8c73f41bba627e9f8e5a615f3510fb19dc28
e5362a78d52146a2ce64bf157375b88590d2c49c08f529ff4008bcae89d2cac6
GET /9556c70324fbf43b68cb90a21c4d7c87?AccessKeyId=3AA1CB189CCA46B6C904&disposition=0&alloworigin=1 HTTP/1.1
Host: nebula.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.phoenixfitnesscorona.com/
HTTP/1.1 200 OK
Server: Apache
x-cloud-request-id: GDN2BF53570125499A9A6CDD44848C06
x-cloud-bucket-key: 092edf59b9515cf97faf8241322a180e
x-cloud-bucket-name: resources
x-cloud-object-key: 9556c70324fbf43b68cb90a21c4d7c87
x-cloud-object-name: resources/d385190e-1583-46ca-b23f-60f054276cbd-cropped-PF03-transparent.png
x-cloud-version: c8f61decd01c686e136c74185255c492
x-cloud-acl: public-read
x-cloud-meta:
ETag: 84967edfa411bc2ccd64840b76414676
Last-Modified: Sun, 03 Nov 2019 13:02:52 GMT
created-date: Wed, 02 Nov 2016 08:26:58 GMT
Access-Control-Allow-Origin: *
x-cloud-public-bucket: []
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 21024
Content-Type: image/png
Cache-Control: must-revalidate, max-age=31536000
Date: Sun, 09 Oct 2022 15:03:02 GMT
Connection: keep-alive
nebula.wsimg.com/df7aa53f3411a9a7d31676703301214c?AccessKeyId=3AA1CB189CCA46B6C904&disposition=0&alloworigin=1
23.36.79.43200 OK 21 kB URL HTTP/1.1 nebula.wsimg.com/df7aa53f3411a9a7d31676703301214c?AccessKeyId=3AA1CB189CCA46B6C904&disposition=0&alloworigin=1
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type PNG image data, 147 x 151, 8-bit/color RGBA, non-interlaced\012- data
Hash 7cf0949da97962686d5718cf3005e0cf
7faa8c73f41bba627e9f8e5a615f3510fb19dc28
e5362a78d52146a2ce64bf157375b88590d2c49c08f529ff4008bcae89d2cac6
GET /df7aa53f3411a9a7d31676703301214c?AccessKeyId=3AA1CB189CCA46B6C904&disposition=0&alloworigin=1 HTTP/1.1
Host: nebula.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.phoenixfitnesscorona.com/
HTTP/1.1 200 OK
Server: Apache
x-cloud-request-id: GDNC1CB9D23C674AF73AAC561A7066BF
x-cloud-bucket-key: 092edf59b9515cf97faf8241322a180e
x-cloud-bucket-name: resources
x-cloud-object-key: df7aa53f3411a9a7d31676703301214c
x-cloud-object-name: resources/98a8705a-ff51-4ca6-834e-60b5861906ee-cropped-PF03-transparent.png
x-cloud-version: 9b3cc3489aaf6a42d21d8069793e19a7
x-cloud-acl: public-read
x-cloud-meta:
ETag: 84967edfa411bc2ccd64840b76414676
Last-Modified: Thu, 21 May 2020 06:14:18 GMT
created-date: Wed, 02 Nov 2016 08:26:36 GMT
Access-Control-Allow-Origin: *
x-cloud-public-bucket: []
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 21024
Content-Type: image/png
Cache-Control: must-revalidate, max-age=31536000
Date: Sun, 09 Oct 2022 15:03:02 GMT
Connection: keep-alive
push.services.mozilla.com/
35.86.38.2101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.86.38.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: eCeYGGhMOGVFBfrFpZIavg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: W31p/ycL/cvUupiRny4sQjuCw7k=
edge.quantserve.com/quant.js
91.228.74.159200 OK 10 kB URL HTTP/1.1 edge.quantserve.com/quant.js
IP 91.228.74.159:0
File type ASCII text, with very long lines (26706)
Hash 9b97e6ee88f2959afd24a5e5dd2dad0d
d28b62129967fe35b59d2033997c0d15cc88ee27
43abef0f3b3b81a0476bb65de802b644c6e704db545df71fd67110f2597cb726
GET /quant.js HTTP/1.1
Host: edge.quantserve.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.phoenixfitnesscorona.com/
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 15:03:02 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: private, max-age=604800
Content-Encoding: gzip
Etag: "+b0B6ncQDCugPb96DWf2QA=="
Expires: Sun, 16 Oct 2022 15:03:02 GMT
Vary: Accept-Encoding
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 670a9be248be04d1e473a199190887a2
a2073aa26a6762af9e005e632e77ab99f2d6f1b3
85886f2c1f64d4da9adb514d39395c4a5459602e87d2f7e56f4c50e484a09918
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 15:03:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 0aca7edf23f6d8fb3c0b5a89400d3118
67e4a61460cb43d6882f3378d0455835d323c63f
acf66c6d19fa651d5a9a59b67b3e4c116485a2f60a5dd4d753afa411811019e4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 15:03:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
142.250.74.166200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP 142.250.74.166:0
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 09 Oct 2022 14:57:37 GMT
expires: Sun, 09 Oct 2022 15:12:37 GMT
cache-control: public, max-age=900
age: 325
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ee96d771e1664e3afe56cf32bfe45eee
3ab9109d6f7a952cf2f7071ecb5ee186f9eebf6a
df7a23267a1a0bddc477d2b3f4c870b6a6ab7b4dca5fc38164d814ccae2b2fdd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 15:03:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash ee96d771e1664e3afe56cf32bfe45eee
3ab9109d6f7a952cf2f7071ecb5ee186f9eebf6a
df7a23267a1a0bddc477d2b3f4c870b6a6ab7b4dca5fc38164d814ccae2b2fdd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 15:03:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/id
142.250.74.130302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP 142.250.74.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Sun, 09 Oct 2022 15:03:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.170200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.170:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Sun, 09 Oct 2022 15:03:02 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
redirector.googlevideo.com/initplayback?source=youtube&orc=1&oeis=1&ip=91.90.42.154&c=WEB_EMBEDDED_PLAYER&oad=3200&ovd=3200&oaad=3200&oavd=3200&ocs=700&oewis=1&oputc=1&ofpcc=1&msp=1&odeak=1&odepv=1&osfc=1&alr=yes&id=2840&cmo=sensitive_content=yes&sc=yes&cmo=td=c.youtube.com
142.250.74.78200 OK 243 B URL HTTP/2 redirector.googlevideo.com/initplayback?source=youtube&orc=1&oeis=1&ip=91.90.42.154&c=WEB_EMBEDDED_PLAYER&oad=3200&ovd=3200&oaad=3200&oavd=3200&ocs=700&oewis=1&oputc=1&ofpcc=1&msp=1&odeak=1&odepv=1&osfc=1&alr=yes&id=2840&cmo=sensitive_content=yes&sc=yes&cmo=td=c.youtube.com
IP 142.250.74.78:0
File type ASCII text, with very long lines (320), with no line terminators
Hash 2222fcc1e13f2804369ade2808432928
2d9b935c4b4725789f7f0198f6581358dd7063b2
b2a776cec56a05f155baf54283ba3a20fcfbb0c488ba0108457887d2b8755475
GET /initplayback?source=youtube&orc=1&oeis=1&ip=91.90.42.154&c=WEB_EMBEDDED_PLAYER&oad=3200&ovd=3200&oaad=3200&oavd=3200&ocs=700&oewis=1&oputc=1&ofpcc=1&msp=1&odeak=1&odepv=1&osfc=1&alr=yes&id=2840&cmo=sensitive_content=yes&sc=yes&cmo=td=c.youtube.com HTTP/1.1
Host: redirector.googlevideo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 09 Oct 2022 15:03:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
timing-allow-origin: https://www.youtube.com
access-control-expose-headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
content-type: text/plain; charset=UTF-8
content-encoding: gzip
server: ClientMapServer
content-length: 243
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1615a59f732d50dbd386c89f599fe0d5
ee4fae75b28e7a30ed404cf10e6f0830bd0b69f7
48574ec51753d230b28f90dd3cfd4862d307de1d507b2bb5a7bddf5a294876f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 15:03:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 0aca7edf23f6d8fb3c0b5a89400d3118
67e4a61460cb43d6882f3378d0455835d323c63f
acf66c6d19fa651d5a9a59b67b3e4c116485a2f60a5dd4d753afa411811019e4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 15:03:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
142.250.74.170200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP 142.250.74.170:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 10409ef8ec168e78fd437a7fc95a63f7
23cab6f341f9f399feae6d0fd5339974dd5026ac
4c404b72a957b9b8848cad3741c1144a844cd7fbf182c25957046f0a3f157bad
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sun, 09 Oct 2022 15:03:02 GMT
server: ESF
cache-control: private
content-length: 30909
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 6c98d1159d4d0e4886d03d837d873a86
295ee171e920021e2bd27ebd661f069bb2cc3f52
c701935caa68be37b1fb2448162ee0ebc3131d7a4843fb35faa2da1da05c1500
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 15:03:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b80398e65c98d84250756256d31eed2d
3cc23d1d91745ddd04ee676f51762f37c0bcdbd3
f2cb6fda3fdbd8f04d380e7841875d322353864124bb5b25ce36fb327a2bfded
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 15:03:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rules.quantcount.com/rules-p-Ec4LmcfNrRjQa.js
54.230.111.47301 Moved Permanently 167 B URL HTTP/1.1 rules.quantcount.com/rules-p-Ec4LmcfNrRjQa.js
IP 54.230.111.47:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /rules-p-Ec4LmcfNrRjQa.js HTTP/1.1
Host: rules.quantcount.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.phoenixfitnesscorona.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Sun, 09 Oct 2022 15:03:02 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://rules.quantcount.com/rules-p-Ec4LmcfNrRjQa.js
X-Cache: Redirect from cloudfront
Via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: vi2dgTd0_rYzRyVXY2owES18zsEzD-oc2KCM-FT8j-XKaffeIQyX4w==
i.ytimg.com/vi_webp/FfPpYOeUbtI/sddefault.webp
142.250.74.22200 OK 21 kB URL HTTP/2 i.ytimg.com/vi_webp/FfPpYOeUbtI/sddefault.webp
IP 142.250.74.22:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x480, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9884b5cc628307bef48e8051e9a12c57
3713f58a573f49b1dcbf162440f69360757195e1
2662dcf29b16d78a60544c418943d0812bb8e36a16c8f3f99fbe6d92084a1e5f
GET /vi_webp/FfPpYOeUbtI/sddefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/webp
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 20754
date: Sun, 09 Oct 2022 15:03:02 GMT
expires: Sun, 09 Oct 2022 17:03:02 GMT
cache-control: public, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 6c98d1159d4d0e4886d03d837d873a86
295ee171e920021e2bd27ebd661f069bb2cc3f52
c701935caa68be37b1fb2448162ee0ebc3131d7a4843fb35faa2da1da05c1500
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 15:03:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1b523949818a5a16753637f9ad58584b
5d31dd0a86b616b95aa2855ced5ddc1b5d088213
6d4dc5c21d9a3ae5f2d4f259250be56bf1852336fa674f9ab926cdd395c1a107
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 15:03:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
nebula.phx3.secureserver.net/e89be278740856569bff34028085431f?AccessKeyId=3AA1CB189CCA46B6C904&disposition=0&alloworigin=1
216.69.141.2200 OK 13 kB URL HTTP/1.1 nebula.phx3.secureserver.net/e89be278740856569bff34028085431f?AccessKeyId=3AA1CB189CCA46B6C904&disposition=0&alloworigin=1
IP 216.69.141.2:0
ASN #398101 GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop Elements 5.0 (20060914.r.77) Windows, datetime=2016:10:26 22:51:12], baseline, precision 8, 29x32, components 3\012- data
Hash 7582e94dc4808fde421dcade72d873cb
36612c12b3355609a0f963eaf25ad75a25d25fa7
a18a1c490f12677b555e319b8911bf399e065e2eda0176d2bf48e6b697a65b15
GET /e89be278740856569bff34028085431f?AccessKeyId=3AA1CB189CCA46B6C904&disposition=0&alloworigin=1 HTTP/1.1
Host: nebula.phx3.secureserver.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.phoenixfitnesscorona.com/
HTTP/1.1 200 OK
Date: Sun, 09 Oct 2022 15:03:02 GMT
Server: Apache
x-cloud-request-id: GDNC5F2BADBD07C8AB0CED817720AD20
x-cloud-bucket-key: 092edf59b9515cf97faf8241322a180e
x-cloud-bucket-name: resources
x-cloud-object-key: e89be278740856569bff34028085431f
x-cloud-object-name: resources/5957480b-3306-4567-8ca0-f830150bc489-cropped-logo.jpg
x-cloud-version: 603d2b61a513fd2887d509c9731a6d19
x-cloud-acl: public-read
x-cloud-meta:
etag: d0411c618f87da35fe78922e4cd8363d
last-modified: Thu, 02 Feb 2017 05:54:56 GMT
created-date: Thu, 02 Feb 2017 05:54:56 GMT
access-control-allow-origin: *
x-cloud-public-bucket: []
expires: Tue, 08 Nov 2022 15:03:02 GMT
cache-control: max-age=2592000, must-revalidate
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 13240
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Content-Type: image/jpeg
yt3.ggpht.com/ytc/AMLnZu-eEjD7mtNhUJMMMxdlZ-I3Lk5c9MwwxgsMR0de=s68-c-k-c0x00ffffff-no-rj
142.250.74.161200 OK 5.4 kB URL HTTP/2 yt3.ggpht.com/ytc/AMLnZu-eEjD7mtNhUJMMMxdlZ-I3Lk5c9MwwxgsMR0de=s68-c-k-c0x00ffffff-no-rj
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 68x68, components 3\012- data
Hash 3cd8d321f8c242ca2ba89c06796659a2
ddbe439319f60d654b072ecea7c82f85ff98a154
2a843fe70e80a4aeb608b99148578849335e7d5db99f8dc4b3608f26afd09d29
GET /ytc/AMLnZu-eEjD7mtNhUJMMMxdlZ-I3Lk5c9MwwxgsMR0de=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "va"
expires: Mon, 10 Oct 2022 15:03:03 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sun, 09 Oct 2022 15:03:03 GMT
server: fife
content-length: 5363
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
rules.quantcount.com/rules-p-Ec4LmcfNrRjQa.js
54.230.111.47200 OK 2 B URL HTTP/2 rules.quantcount.com/rules-p-Ec4LmcfNrRjQa.js
IP 54.230.111.47:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
GET /rules-p-Ec4LmcfNrRjQa.js HTTP/1.1
Host: rules.quantcount.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.phoenixfitnesscorona.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 2
date: Sun, 09 Oct 2022 15:03:02 GMT
server: AmazonS3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
access-control-allow-methods: GET
cache-control: max-age=3600
x-cache: Error from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: z0IwgzjXUo3hhVSuzdVkGNaISoIL0dKvc6DvfmULb86bRlLN2TXBvQ==
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
142.250.74.170200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP 142.250.74.170:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Sun, 09 Oct 2022 15:03:03 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9d63a33a810a3d7a28f6519e59d3496d
2014dea5da83d6ae71faeb930961da138686e3f9
4c78501135253615594a6b90b5f473292ad5362bdf8b244d570ab7c1e654282e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 15:03:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
nebula.wsimg.com/fc589a0df860b42533d54005f6fd20f0?AccessKeyId=3AA1CB189CCA46B6C904&disposition=0&alloworigin=1
23.36.79.43200 OK 917 kB URL HTTP/1.1 nebula.wsimg.com/fc589a0df860b42533d54005f6fd20f0?AccessKeyId=3AA1CB189CCA46B6C904&disposition=0&alloworigin=1
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1920x1080, components 3\012- data
Size 917 kB (917255 bytes)
Hash 0d28cf331274017cf5ca6fa396cbf2ff
da2b31479ec48ae2b264d76d9899522c9731b55d
8e0725697fe093b197628b36de24b0bd32b4c18ded65962849d6b6d4e31aca74
GET /fc589a0df860b42533d54005f6fd20f0?AccessKeyId=3AA1CB189CCA46B6C904&disposition=0&alloworigin=1 HTTP/1.1
Host: nebula.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.phoenixfitnesscorona.com/
HTTP/1.1 200 OK
Server: Apache
x-cloud-request-id: GDNB3AEECB5887544B31556610E3C424
x-cloud-bucket-key: 092edf59b9515cf97faf8241322a180e
x-cloud-bucket-name: resources
x-cloud-object-key: fc589a0df860b42533d54005f6fd20f0
x-cloud-object-name: resources/753d56df-f5ce-4b08-9f37-dd5c89a5ad77-10 per session.jpg
x-cloud-version: 1e452c9283b199dff38a163303ed1877
x-cloud-acl: public-read
x-cloud-meta:
ETag: 15c4d1bc36d8a861d8b20ec5aa4afc0e
Last-Modified: Fri, 12 Feb 2021 00:34:22 GMT
created-date: Fri, 12 Feb 2021 00:34:22 GMT
Access-Control-Allow-Origin: *
x-cloud-public-bucket: []
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: image/jpeg
Cache-Control: must-revalidate, max-age=31536000
Date: Sun, 09 Oct 2022 15:03:02 GMT
Transfer-Encoding: chunked
Connection: keep-alive, Transfer-Encoding
pixel.quantserve.com/pixel;r=1073984154;rf=0;a=p-Ec4LmcfNrRjQa;url=http%3A%2F%2Fwww.phoenixfitnesscorona.com%2F;uht=2;fpan=1;fpa=P0-1120892815-1665327783225;pbc=;ns=0;ce=1;qjs=1;qv=39016d63-20220929161725;cm=;gdpr=0;ref=;d=phoenixfitnesscorona.com;dst=0;et=1665327783225;tzo=0;ogl=type.website%2Ctitle.Fitness%20Training%252C%20Nutrition%20-%20Phoenix%20Fitness%20-%20Corona%252C%20Ca%2Csite_name.Phoenix%20Fitness%2Curl.http%3A%2F%2Fwww%252Ephoenixfitnesscorona%252Ecom%2Fhome%252Ehtml%2Cdescription.Fitness%20training%20in%20Corona%252E%20Small%252C%20friendly%20fitness%20center%252E%20No%20matter%20your%20age%20o%2Cimage.%2F%2Fnebula%252Ewsimg%252Ecom%2Ffc589a0df860b42533d54005f6fd20f0%3FAccessKeyId%3D3AA1CB189CCA46B6;ses=0782f137-7390-4269-a7b0-0c06866f006f
91.228.74.251200 OK 35 B URL HTTP/2 pixel.quantserve.com/pixel;r=1073984154;rf=0;a=p-Ec4LmcfNrRjQa;url=http%3A%2F%2Fwww.phoenixfitnesscorona.com%2F;uht=2;fpan=1;fpa=P0-1120892815-1665327783225;pbc=;ns=0;ce=1;qjs=1;qv=39016d63-20220929161725;cm=;gdpr=0;ref=;d=phoenixfitnesscorona.com;dst=0;et=1665327783225;tzo=0;ogl=type.website%2Ctitle.Fitness%20Training%252C%20Nutrition%20-%20Phoenix%20Fitness%20-%20Corona%252C%20Ca%2Csite_name.Phoenix%20Fitness%2Curl.http%3A%2F%2Fwww%252Ephoenixfitnesscorona%252Ecom%2Fhome%252Ehtml%2Cdescription.Fitness%20training%20in%20Corona%252E%20Small%252C%20friendly%20fitness%20center%252E%20No%20matter%20your%20age%20o%2Cimage.%2F%2Fnebula%252Ewsimg%252Ecom%2Ffc589a0df860b42533d54005f6fd20f0%3FAccessKeyId%3D3AA1CB189CCA46B6;ses=0782f137-7390-4269-a7b0-0c06866f006f
IP 91.228.74.251:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 55d25e9dc950d5db4d53a3b195c046c6
75e91ae3e549dab12ed1c9787ade9131aef1c981
a0d3a0aff7dc3bf32d2176fc3dcda6e7aba2867c4f4d1f7af6355d2cfc6c44f8
GET /pixel;r=1073984154;rf=0;a=p-Ec4LmcfNrRjQa;url=http%3A%2F%2Fwww.phoenixfitnesscorona.com%2F;uht=2;fpan=1;fpa=P0-1120892815-1665327783225;pbc=;ns=0;ce=1;qjs=1;qv=39016d63-20220929161725;cm=;gdpr=0;ref=;d=phoenixfitnesscorona.com;dst=0;et=1665327783225;tzo=0;ogl=type.website%2Ctitle.Fitness%20Training%252C%20Nutrition%20-%20Phoenix%20Fitness%20-%20Corona%252C%20Ca%2Csite_name.Phoenix%20Fitness%2Curl.http%3A%2F%2Fwww%252Ephoenixfitnesscorona%252Ecom%2Fhome%252Ehtml%2Cdescription.Fitness%20training%20in%20Corona%252E%20Small%252C%20friendly%20fitness%20center%252E%20No%20matter%20your%20age%20o%2Cimage.%2F%2Fnebula%252Ewsimg%252Ecom%2Ffc589a0df860b42533d54005f6fd20f0%3FAccessKeyId%3D3AA1CB189CCA46B6;ses=0782f137-7390-4269-a7b0-0c06866f006f HTTP/1.1
Host: pixel.quantserve.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.phoenixfitnesscorona.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 09 Oct 2022 15:03:03 GMT
content-type: image/gif
content-length: 35
cache-control: private, no-cache, no-store, proxy-revalidate
expires: Fri, 04 Aug 1978 12:00:00 GMT
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAo PSDo OUR SAMa IND COM NAV"
pragma: no-cache
set-cookie: mc=6342e2a7-728bd-e6d91-a67f1; expires=Thu, 09-Nov-2023 15:03:03 GMT; path=/; domain=.quantserve.com
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b5cf0255a785469b033344c2ec0ed394
a4a700c1c250cb10f175e67b4b11f2c94afb2bdb
191e75d8e785c03eb558af6f3efe0d557669b65b94d17b42a1b9b7f623947c6f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "191E75D8E785C03EB558AF6F3EFE0D557669B65B94D17B42A1B9B7F623947C6F"
Last-Modified: Fri, 07 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12327
Expires: Sun, 09 Oct 2022 18:28:30 GMT
Date: Sun, 09 Oct 2022 15:03:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b5cf0255a785469b033344c2ec0ed394
a4a700c1c250cb10f175e67b4b11f2c94afb2bdb
191e75d8e785c03eb558af6f3efe0d557669b65b94d17b42a1b9b7f623947c6f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "191E75D8E785C03EB558AF6F3EFE0D557669B65B94D17B42A1B9B7F623947C6F"
Last-Modified: Fri, 07 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12327
Expires: Sun, 09 Oct 2022 18:28:30 GMT
Date: Sun, 09 Oct 2022 15:03:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b5cf0255a785469b033344c2ec0ed394
a4a700c1c250cb10f175e67b4b11f2c94afb2bdb
191e75d8e785c03eb558af6f3efe0d557669b65b94d17b42a1b9b7f623947c6f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "191E75D8E785C03EB558AF6F3EFE0D557669B65B94D17B42A1B9B7F623947C6F"
Last-Modified: Fri, 07 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12327
Expires: Sun, 09 Oct 2022 18:28:30 GMT
Date: Sun, 09 Oct 2022 15:03:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b5cf0255a785469b033344c2ec0ed394
a4a700c1c250cb10f175e67b4b11f2c94afb2bdb
191e75d8e785c03eb558af6f3efe0d557669b65b94d17b42a1b9b7f623947c6f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "191E75D8E785C03EB558AF6F3EFE0D557669B65B94D17B42A1B9B7F623947C6F"
Last-Modified: Fri, 07 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12327
Expires: Sun, 09 Oct 2022 18:28:30 GMT
Date: Sun, 09 Oct 2022 15:03:03 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0583d755-2f5b-458f-86f0-774b9909eb6f.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0583d755-2f5b-458f-86f0-774b9909eb6f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6e9aa9808428e5fd81ac9d61d6f7c708
3a8d76badce50dd98938885082dcb6e30363ae88
d8f7c48a1cbe04af2f7e0455d1ef7af9b63506b9ae343ebf14ece8689bb06bf6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0583d755-2f5b-458f-86f0-774b9909eb6f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11800
x-amzn-requestid: 7bfb4e15-ea64-48b6-9e38-5d3e2d553863
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZQObZFveoAMFzpA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63365de2-620d4fc015ad475203e906e9;Sampled=0
x-amzn-remapped-date: Fri, 30 Sep 2022 03:09:22 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: btYc3mHTigZv3Bzl32D1z777hMKwf-pstyTS7Bp2eGmzbmGI4pIQXA==
via: 1.1 efcf7b9d0f917f9ebf314db03e52d9b6.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 08 Oct 2022 22:22:09 GMT
age: 60054
etag: "3a8d76badce50dd98938885082dcb6e30363ae88"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe24091eb-e938-48e0-9fb8-79f02e0cab61.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe24091eb-e938-48e0-9fb8-79f02e0cab61.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ce49a7a41382dc582440d497afb9ca5e
37cdb545e4a8be57aa4d5d9545adc0f934545f74
c026d3f791cb5c186a916f60d9c01b36b46b7cab476e0a7260b1a7332cde0f53
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe24091eb-e938-48e0-9fb8-79f02e0cab61.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5851
x-amzn-requestid: af2c5f7e-b9b6-4bc4-bfdc-0f2043ce4478
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZnSMfG-DoAMFi1A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f971c-355de3da1bfd68f768bb381e;Sampled=0
x-amzn-remapped-date: Fri, 07 Oct 2022 03:03:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: R6wcyKrY8dT2yE_s-wYEj3mKcF9XB0l3Y0AzAUIK_cCDEqvfTJPXug==
via: 1.1 995664ee945c06fc706b5cb8e0e650dc.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 09 Oct 2022 07:06:13 GMT
age: 28610
etag: "37cdb545e4a8be57aa4d5d9545adc0f934545f74"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ade344-507f-44c8-8fe3-b03ac965aee2.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ade344-507f-44c8-8fe3-b03ac965aee2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ff8cfe3904cca89e3bdfa8186ae382ba
0b9dce744f5facad9a0a136d81cf24e928211856
a6f0925a9666a43d018c05d717310f57b86316290fb4a7cdd309c35842e557a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ade344-507f-44c8-8fe3-b03ac965aee2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7674
x-amzn-requestid: 126f9400-fa43-413b-b496-338908efb777
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZeqScHUVoAMFrRg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633c240f-1b7cff3e3415299a4d17e19e;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 12:16:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: PGFGAFQp9bXlIYhRdRNE58sRhfrsLE1-qguCEC_FL-JRfGDaIHr2VA==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 08 Oct 2022 21:58:33 GMT
age: 61470
etag: "0b9dce744f5facad9a0a136d81cf24e928211856"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.youtube.com/embed/FfPpYOeUbtI?feature=oembed&wmode=opaque&theme=dark&showinfo=1&autoplay=0
142.250.74.78200 OK 40 kB URL HTTP/2 www.youtube.com/embed/FfPpYOeUbtI?feature=oembed&wmode=opaque&theme=dark&showinfo=1&autoplay=0
IP 142.250.74.78:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (58646)
Hash fb8e775548fb63db742e6be577f1d24e
2b04dd7237d13e06d2987779270932dc48b00608
2e0012efe0105dedfa3e0f1d0a2d20e6eabcba0a07b6426540e63c40c0a5a258
GET /embed/FfPpYOeUbtI?feature=oembed&wmode=opaque&theme=dark&showinfo=1&autoplay=0 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.phoenixfitnesscorona.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 09 Oct 2022 15:03:02 GMT
strict-transport-security: max-age=31536000
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=29BTB3J-7bQ; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=yvoEmpz9kdE; Domain=.youtube.com; Expires=Fri, 07-Apr-2023 15:03:02 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+329; expires=Tue, 08-Oct-2024 15:03:02 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F146807d4-3f30-4caa-aa1f-2b7890bec7f5.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F146807d4-3f30-4caa-aa1f-2b7890bec7f5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a3b74c93b6981236040ebf4134e04f55
c31c8db9e51872d0a28a3798ebd0f6f2abe993cb
8a48bd2b67104ad81b00a7882dbecd7d8b664056dd180483090d10a4c7c66960
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F146807d4-3f30-4caa-aa1f-2b7890bec7f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7250
x-amzn-requestid: 110ff68c-fd6f-4622-9296-2777b347eebf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZtIzZHgRoAMFXHA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6341ee7b-78af153005b9885a56809272;Sampled=0
x-amzn-remapped-date: Sat, 08 Oct 2022 21:41:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: LFZIZbYAE7hJm5yhAL-H9r6bq7zcfKYLkUtYegioG0OSRQl_-Dddsw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Sat, 08 Oct 2022 22:28:39 GMT
age: 59664
etag: "c31c8db9e51872d0a28a3798ebd0f6f2abe993cb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bc84c1e-fb86-480c-ae87-c8a7bc52cfb0.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bc84c1e-fb86-480c-ae87-c8a7bc52cfb0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ee802dc4a72f3824dcab31ef95c48936
f987fdbbb21538b6f55f7dae713b59e234882456
0b6ce28ab1428c11ea6d215b3d21b44b85ca101b4885bf27f633153014ed1cf2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bc84c1e-fb86-480c-ae87-c8a7bc52cfb0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8295
x-amzn-requestid: 0240dc68-f509-4a1f-a1c1-cd75e43d04d3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZtHcHFuVoAMF-Hw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6341ec4d-74e538af2f56b9271f6370c1;Sampled=0
x-amzn-remapped-date: Sat, 08 Oct 2022 21:31:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dR53uFDN1I7R9H7r2fmkEGIXuCY5FHGQd7LKz-H02trcasl3NoG2PA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 08 Oct 2022 21:44:18 GMT
etag: "f987fdbbb21538b6f55f7dae713b59e234882456"
content-type: image/jpeg
age: 62325
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
nebula.wsimg.com/c2cb4ee36d7c14fdf0d37c42911f1a2b?AccessKeyId=3AA1CB189CCA46B6C904&disposition=0&alloworigin=1
23.36.79.43200 OK 841 kB URL HTTP/1.1 nebula.wsimg.com/c2cb4ee36d7c14fdf0d37c42911f1a2b?AccessKeyId=3AA1CB189CCA46B6C904&disposition=0&alloworigin=1
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop Elements 5.0 (20060914.r.77) Windows, datetime=2017:02:16 23:40:49], baseline, precision 8, 1920x1080, components 3\012- data
Size 841 kB (841097 bytes)
Hash ecdea4b8a310155747cb0a87a4c633a8
544d638b3607c845552c722e902ef8f76b89755c
71551405d755c403ab69d707dd0568f3506502c930dccd3787417d33feca2250
GET /c2cb4ee36d7c14fdf0d37c42911f1a2b?AccessKeyId=3AA1CB189CCA46B6C904&disposition=0&alloworigin=1 HTTP/1.1
Host: nebula.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.phoenixfitnesscorona.com/
HTTP/1.1 200 OK
Server: Apache
x-cloud-request-id: GDNB3097FE4902B1AB62A05038FAB895
x-cloud-bucket-key: 092edf59b9515cf97faf8241322a180e
x-cloud-bucket-name: resources
x-cloud-object-key: c2cb4ee36d7c14fdf0d37c42911f1a2b
x-cloud-object-name: resources/919c4d0d-11e3-48fc-8551-b3a7597f970d-24 burn.jpg
x-cloud-version: d9de5ad38c6331371a6a8c127742f628
x-cloud-acl: public-read
x-cloud-meta:
ETag: 22fff2178ad77f58bd36f143bd294709
Last-Modified: Fri, 17 Feb 2017 07:41:44 GMT
created-date: Fri, 17 Feb 2017 07:41:44 GMT
Access-Control-Allow-Origin: *
x-cloud-public-bucket: []
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: image/jpeg
Cache-Control: must-revalidate, max-age=31536000
Date: Sun, 09 Oct 2022 15:03:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive, Transfer-Encoding
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 89a17c02cdf926b852220408f32d6ad4
c22fb94c77a74cfc00d6b2cc88643afa0563abbe
2a4d9286d35271838cb99d265e2c8dbb851fa80ac2ca293571125188e684a7e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 09 Oct 2022 15:03:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/js/th/RLowZH2Xcwtj3dY_yGSeKf8RcILu2Rj3JTO2BWyvP7U.js
142.250.74.164200 OK 14 kB URL HTTP/2 www.google.com/js/th/RLowZH2Xcwtj3dY_yGSeKf8RcILu2Rj3JTO2BWyvP7U.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (36288)
Hash fbfd3c94b2bff52e528e30e47e759e35
610c710509fd4c81f8c1cb6373694cdd756b9c6a
ba673825910e584be07daff4cccffd1b0b1653b936bd3c5841a268a030164912
GET /js/th/RLowZH2Xcwtj3dY_yGSeKf8RcILu2Rj3JTO2BWyvP7U.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14348
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:23:44 GMT
expires: Thu, 05 Oct 2023 19:23:44 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 27 Sep 2022 17:00:00 GMT
content-type: text/javascript
age: 329960
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
nebula.wsimg.com/57ee4f7f132141dac2685b67eccc2a33?AccessKeyId=3AA1CB189CCA46B6C904&disposition=0&alloworigin=1
23.36.79.43200 OK 456 kB URL HTTP/1.1 nebula.wsimg.com/57ee4f7f132141dac2685b67eccc2a33?AccessKeyId=3AA1CB189CCA46B6C904&disposition=0&alloworigin=1
IP 23.36.79.43:0
ASN #20940 Akamai International B.V.
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1024x683, components 3\012- data
Size 456 kB (455808 bytes)
Hash aed824a9032e2394223c3c34e5999978
284e1374c1cb7c09c2caa0575dcd0ec3cd9e350f
26aeb28638ce3d6587781266be06a9a40c23c22f093e1f042a113c1f097829d8
GET /57ee4f7f132141dac2685b67eccc2a33?AccessKeyId=3AA1CB189CCA46B6C904&disposition=0&alloworigin=1 HTTP/1.1
Host: nebula.wsimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.phoenixfitnesscorona.com/
HTTP/1.1 200 OK
Server: Apache
x-cloud-request-id: GDNEC6047651A681179F94B6144AB925
x-cloud-bucket-key: 092edf59b9515cf97faf8241322a180e
x-cloud-bucket-name: resources
x-cloud-object-key: 57ee4f7f132141dac2685b67eccc2a33
x-cloud-object-name: resources/68cf0ac4-150c-4988-9305-6d5cd1f5de28-8bb12418f60b1bcd1a4214575450ccbe.jpg
x-cloud-version: 071952af813869e993e3c2daaeccb4e7
x-cloud-acl: public-read
x-cloud-meta:
ETag: be497ade0702186792eb81a39b4b0710
Last-Modified: Thu, 21 May 2020 06:14:14 GMT
created-date: Thu, 20 Oct 2016 04:03:58 GMT
Access-Control-Allow-Origin: *
x-cloud-public-bucket: []
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: image/jpeg
Cache-Control: must-revalidate, max-age=31536000
Date: Sun, 09 Oct 2022 15:03:03 GMT
Transfer-Encoding: chunked
Connection: keep-alive, Transfer-Encoding
www.phoenixfitnesscorona.com/
160.153.136.3302 Found 0 B URL HTTP/1.1 www.phoenixfitnesscorona.com/
IP 160.153.136.3:0
ASN #21501 Host Europe GmbH
GET / HTTP/1.1
Host: www.phoenixfitnesscorona.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Connection: close
Pragma: no-cache
cache-control: no-cache
Location: /