www.abuse.ch/?p=3581
151.101.130.49301 Moved Permanently 0 B IP 151.101.130.49:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?p=3581 HTTP/1.1
Host: www.abuse.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 0
Server: Varnish
Retry-After: 0
Location: https://www.abuse.ch/?p=3581
Accept-Ranges: bytes
Date: Mon, 20 Mar 2023 06:21:54 GMT
Via: 1.1 varnish
X-Served-By: cache-bma1667-BMA
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1679293315.513832,VS0,VE1
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash ec332b81a27117ce9c16b67a5a8e4fac
b6d2afa2c859d000ad830d3d8d73f57bac6ffce2
1dc32c78e4e850303813338fd4e9616a41c8c05d1063748a1e76a92c397a5e8f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DC32C78E4E850303813338FD4E9616A41C8C05D1063748A1E76A92C397A5E8F"
Last-Modified: Mon, 20 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20517
Expires: Mon, 20 Mar 2023 12:03:51 GMT
Date: Mon, 20 Mar 2023 06:21:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 28774b36cf8bb6b054329393a33f6239
728313ddff6d5ceb6db3eb8445f039779616a140
08378fe6a897ab5a9c8d3bc2748c9670659d0d0d164317fdfac88d23fee78fa0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08378FE6A897AB5A9C8D3BC2748C9670659D0D0D164317FDFAC88D23FEE78FA0"
Last-Modified: Sun, 19 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6759
Expires: Mon, 20 Mar 2023 08:14:33 GMT
Date: Mon, 20 Mar 2023 06:21:54 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 29fdbcd53b5646cfcdd46510063734c4
85e3ceda5ef130219f4fe8a31e52e2690c8f7d8e
24c27586332c016685e6231fec5836e921048d8aaefbcd4cd6f88969f9d91e18
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Content-Length, Backoff, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 20 Mar 2023 05:27:11 GMT
content-type: application/json
age: 3283
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 4e6141892ec4705c6a0134f3157b969d
4169fdea42b0fa9cb565e14b8e8fdb293575c78e
905537ef3e3a4a9030391b44bd6ac6bb5d7c9ec752b1821d683dfbf483096163
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "905537EF3E3A4A9030391B44BD6AC6BB5D7C9EC752B1821D683DFBF483096163"
Last-Modified: Sun, 19 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5483
Expires: Mon, 20 Mar 2023 07:53:17 GMT
Date: Mon, 20 Mar 2023 06:21:54 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: QxX+gNeMJB6uO2fOntyh76rtyKDuPVyyxbuk5vzqeGvgFhBJtA7wxvwc9uhhE/3fhAN2k/gLk2I=
x-amz-request-id: Q2DP5NHV60MGKBX4
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 20 Mar 2023 05:52:39 GMT
age: 1755
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
www.abuse.ch/?p=3581
151.101.66.49301 Moved Permanently 297 B IP 151.101.66.49:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 16eebc8cc34ba52870b03e5e54748669
d793568d042ae5e48cf4e1f6ac10401d77439728
aed83a683a4e1f16c3cff79c8db2744630b226e6aecbb6dfcc3cb1fc458ae1c8
GET /?p=3581 HTTP/1.1
Host: www.abuse.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
server: Apache/2
strict-transport-security: max-age=31536000; includeSubDomains; preload
permissions-policy: accelerometer=(), ambient-light-sensor=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), speaker=(), usb=(), vr=()
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src 'self' https://fonts.gstatic.com https://www.gstatic.com:443; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://platform.twitter.com:443 https://www.gstatic.com:443 https://www.googletagmanager.com:443; style-src 'self' 'unsafe-inline' https://www.gstatic.com:443 https://fonts.googleapis.com; frame-src https://platform.twitter.com:443; img-src 'self' data: https://syndication.twitter.com:443; object-src 'none'
expect-ct: enforce, max-age=86400
location: https://abuse.ch/?p=3581
cache-control: max-age=300
expires: Mon, 20 Mar 2023 06:26:48 GMT
content-type: text/html; charset=iso-8859-1
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 20 Mar 2023 06:21:54 GMT
age: 6
x-served-by: cache-msp11834-MSP, cache-bma1631-BMA
x-cache: HIT, MISS
x-cache-hits: 1, 0
x-timer: S1679293315.735374,VS0,VE111
content-length: 297
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 20 Mar 2023 06:21:54 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Content-Length, Retry-After, Content-Type, Expires, Alert, Pragma, ETag, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 20 Mar 2023 06:14:32 GMT
age: 443
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
abuse.ch/?p=3581
151.101.2.49200 OK 6.2 kB IP 151.101.2.49:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (779)
Hash 609a93a7b7a5f2f0a14e001dc57a520e
e75fef94f8203332df8a4fec76787e8967bd8ebe
dc2095e3ecb26da390e9617b16de3e6eeb3d7215dd383e0f8d4b96ea2bd63a2d
GET /?p=3581 HTTP/1.1
Host: abuse.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: Apache/2
strict-transport-security: max-age=31536000; includeSubDomains; preload
permissions-policy: accelerometer=(), ambient-light-sensor=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), speaker=(), usb=(), vr=()
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src 'self' https://fonts.gstatic.com https://www.gstatic.com:443; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://platform.twitter.com:443 https://www.gstatic.com:443 https://www.googletagmanager.com:443; style-src 'self' 'unsafe-inline' https://www.gstatic.com:443 https://fonts.googleapis.com; frame-src https://platform.twitter.com:443; img-src 'self' data: https://syndication.twitter.com:443; object-src 'none'
expect-ct: enforce, max-age=86400
last-modified: Sun, 19 Mar 2023 08:50:53 GMT
etag: "5b89-5f73ce87041f5-gzip"
cache-control: max-age=300
expires: Mon, 20 Mar 2023 06:26:49 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
content-type: text/html
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 20 Mar 2023 06:21:55 GMT
age: 6
x-served-by: cache-msp11866-MSP, cache-bma1683-BMA
x-cache: HIT, MISS
x-cache-hits: 1, 0
x-timer: S1679293315.937605,VS0,VE439
vary: Accept-Encoding
content-length: 6190
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 4c195a3fc0c2abb831630cef1dcfa770
eda338de3063640556177b9db364c33193d7f6dc
c22eb0537cd79666b82fe61dd77fe9b0b3c059a4c65d405412acfc2c6800b444
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C22EB0537CD79666B82FE61DD77FE9B0B3C059A4C65D405412ACFC2C6800B444"
Last-Modified: Sun, 19 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12871
Expires: Mon, 20 Mar 2023 09:56:26 GMT
Date: Mon, 20 Mar 2023 06:21:55 GMT
Connection: keep-alive
abuse.ch/css/bootstrap.min.css
151.101.2.49200 OK 19 kB URL HTTP/2 abuse.ch/css/bootstrap.min.css
IP 151.101.2.49:0
File type ASCII text, with very long lines (65320)
Hash bc926d176eaaaa9fd2b245fbe6ad7d94
7ad7be43b1046973a71cb597127751262084d899
18ca3be5fe3504ee1a984b1b1b39f92a02f4035233b6f23a8cb071d39d03d57a
GET /css/bootstrap.min.css HTTP/1.1
Host: abuse.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://abuse.ch/?p=3581
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache/2
strict-transport-security: max-age=31536000; includeSubDomains; preload
permissions-policy: accelerometer=(), ambient-light-sensor=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), speaker=(), usb=(), vr=()
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src 'self' https://fonts.gstatic.com https://www.gstatic.com:443; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://platform.twitter.com:443 https://www.gstatic.com:443 https://www.googletagmanager.com:443; style-src 'self' 'unsafe-inline' https://www.gstatic.com:443 https://fonts.googleapis.com; frame-src https://platform.twitter.com:443; img-src 'self' data: https://syndication.twitter.com:443; object-src 'none'
expect-ct: enforce, max-age=86400
last-modified: Fri, 17 Mar 2023 09:30:04 GMT
etag: "1e822-5f71538e3c906-gzip"
cache-control: max-age=604800
expires: Fri, 24 Mar 2023 12:11:01 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
content-type: text/css
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 20 Mar 2023 06:21:55 GMT
age: 238062
x-served-by: cache-msp11870-MSP, cache-bma1683-BMA
x-cache: MISS, HIT
x-cache-hits: 0, 1
x-timer: S1679293315.454907,VS0,VE1
vary: Accept-Encoding
content-length: 18607
X-Firefox-Spdy: h2
abuse.ch/css/custom.css
151.101.2.49200 OK 1.4 kB IP 151.101.2.49:0
Hash c50f9b65de4a22a1810a00292ceadb3f
e340b8aeae6b8e8e55745b7e1d344897488cc64a
23900fd370817d8ebb70367b6654e37550ccb339d48ef8a0cabc956dcaafa7f7
GET /css/custom.css HTTP/1.1
Host: abuse.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://abuse.ch/?p=3581
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache/2
strict-transport-security: max-age=31536000; includeSubDomains; preload
permissions-policy: accelerometer=(), ambient-light-sensor=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), speaker=(), usb=(), vr=()
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src 'self' https://fonts.gstatic.com https://www.gstatic.com:443; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://platform.twitter.com:443 https://www.gstatic.com:443 https://www.googletagmanager.com:443; style-src 'self' 'unsafe-inline' https://www.gstatic.com:443 https://fonts.googleapis.com; frame-src https://platform.twitter.com:443; img-src 'self' data: https://syndication.twitter.com:443; object-src 'none'
expect-ct: enforce, max-age=86400
last-modified: Mon, 13 Mar 2023 10:31:31 GMT
etag: "12f5-5f6c59d46dd9e-gzip"
cache-control: max-age=604800
expires: Tue, 21 Mar 2023 07:15:24 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
content-type: text/css
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 20 Mar 2023 06:21:55 GMT
age: 507512
x-served-by: cache-msp11860-MSP, cache-bma1683-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1679293315.455249,VS0,VE2
vary: Accept-Encoding
content-length: 1385
X-Firefox-Spdy: h2
abuse.ch/js/jquery-3.6.0.min.js
151.101.2.49200 OK 31 kB URL HTTP/2 abuse.ch/js/jquery-3.6.0.min.js
IP 151.101.2.49:0
File type ASCII text, with very long lines (65447)
Hash 31d53c8cdce8012a24abc8e84aa972e5
7287b1ec5d88304ba44fc1958b8de9596274c4e3
1b72bc7f54bc9170e605f6c4bb5529668c4ee3efeee602fdb63036b45b49f41c
GET /js/jquery-3.6.0.min.js HTTP/1.1
Host: abuse.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://abuse.ch/?p=3581
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache/2
strict-transport-security: max-age=31536000; includeSubDomains; preload
permissions-policy: accelerometer=(), ambient-light-sensor=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), speaker=(), usb=(), vr=()
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src 'self' https://fonts.gstatic.com https://www.gstatic.com:443; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://platform.twitter.com:443 https://www.gstatic.com:443 https://www.googletagmanager.com:443; style-src 'self' 'unsafe-inline' https://www.gstatic.com:443 https://fonts.googleapis.com; frame-src https://platform.twitter.com:443; img-src 'self' data: https://syndication.twitter.com:443; object-src 'none'
expect-ct: enforce, max-age=86400
last-modified: Mon, 13 Mar 2023 10:31:31 GMT
etag: "15d9d-5f6c59d4dd30d-gzip"
cache-control: max-age=604800
expires: Mon, 20 Mar 2023 14:35:30 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
content-type: application/javascript
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 20 Mar 2023 06:21:55 GMT
age: 568777
x-served-by: cache-msp11839-MSP, cache-bma1683-BMA
x-cache: MISS, HIT
x-cache-hits: 0, 1
x-timer: S1679293315.456637,VS0,VE2
vary: Accept-Encoding
content-length: 30902
X-Firefox-Spdy: h2
abuse.ch/js/bootstrap.min.js
151.101.2.49200 OK 12 kB URL HTTP/2 abuse.ch/js/bootstrap.min.js
IP 151.101.2.49:0
File type ASCII text, with very long lines (32075)
Hash 6861dcb089c1e5e3bdf5b19998df63a0
62b269112154a79ab27bb559be56b63a4b93ad55
cc7d8e6134d48571ca9a6630185752ace64298a01985dcb9519e606542c4655e
GET /js/bootstrap.min.js HTTP/1.1
Host: abuse.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://abuse.ch/?p=3581
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache/2
strict-transport-security: max-age=31536000; includeSubDomains; preload
permissions-policy: accelerometer=(), ambient-light-sensor=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), speaker=(), usb=(), vr=()
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src 'self' https://fonts.gstatic.com https://www.gstatic.com:443; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://platform.twitter.com:443 https://www.gstatic.com:443 https://www.googletagmanager.com:443; style-src 'self' 'unsafe-inline' https://www.gstatic.com:443 https://fonts.googleapis.com; frame-src https://platform.twitter.com:443; img-src 'self' data: https://syndication.twitter.com:443; object-src 'none'
expect-ct: enforce, max-age=86400
last-modified: Fri, 17 Mar 2023 09:30:04 GMT
etag: "b63d-5f71538eb1c38-gzip"
cache-control: max-age=604800
expires: Fri, 24 Mar 2023 12:11:01 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
content-type: application/javascript
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 20 Mar 2023 06:21:55 GMT
age: 238062
x-served-by: cache-msp11826-MSP, cache-bma1683-BMA
x-cache: MISS, HIT
x-cache-hits: 0, 1
x-timer: S1679293315.457120,VS0,VE1
vary: Accept-Encoding
content-length: 12031
X-Firefox-Spdy: h2
abuse.ch/js/google-charts.js
151.101.2.49200 OK 20 kB URL HTTP/2 abuse.ch/js/google-charts.js
IP 151.101.2.49:0
File type ASCII text, with very long lines (1846)
Hash 4328c938d8eedf5c8e1726fbc700a1e0
1545240ede7c59d7ba34ea87358dd06909de0ef5
ae6fb8956b15d696ccdd2cbdcdb379ba4019cf486dd9124b48a207251cc5a112
GET /js/google-charts.js HTTP/1.1
Host: abuse.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://abuse.ch/?p=3581
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache/2
strict-transport-security: max-age=31536000; includeSubDomains; preload
permissions-policy: accelerometer=(), ambient-light-sensor=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), speaker=(), usb=(), vr=()
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src 'self' https://fonts.gstatic.com https://www.gstatic.com:443; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://platform.twitter.com:443 https://www.gstatic.com:443 https://www.googletagmanager.com:443; style-src 'self' 'unsafe-inline' https://www.gstatic.com:443 https://fonts.googleapis.com; frame-src https://platform.twitter.com:443; img-src 'self' data: https://syndication.twitter.com:443; object-src 'none'
expect-ct: enforce, max-age=86400
last-modified: Tue, 14 Mar 2023 22:07:38 GMT
etag: "10451-5f6e374a5414f-gzip"
cache-control: max-age=604800
expires: Wed, 22 Mar 2023 08:46:03 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
content-type: application/javascript
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 20 Mar 2023 06:21:55 GMT
age: 423171
x-served-by: cache-msp11869-MSP, cache-bma1683-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1679293315.457599,VS0,VE1
vary: Accept-Encoding
content-length: 20081
X-Firefox-Spdy: h2
abuse.ch/images/abusech.svg
151.101.2.49200 OK 3.6 kB URL HTTP/2 abuse.ch/images/abusech.svg
IP 151.101.2.49:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- exported SGML document, ASCII text, with very long lines (1190)
Hash 9ddaffc8c0fee530dee16441ce9e8770
7cb1898f607064265d90e901d8bb81d5c8028efe
93d876cec102be1503dd8866a0632796cb62c73a6ad74bc736fa62647a666cfe
GET /images/abusech.svg HTTP/1.1
Host: abuse.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://abuse.ch/?p=3581
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache/2
strict-transport-security: max-age=31536000; includeSubDomains; preload
permissions-policy: accelerometer=(), ambient-light-sensor=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), speaker=(), usb=(), vr=()
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src 'self' https://fonts.gstatic.com https://www.gstatic.com:443; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://platform.twitter.com:443 https://www.gstatic.com:443 https://www.googletagmanager.com:443; style-src 'self' 'unsafe-inline' https://www.gstatic.com:443 https://fonts.googleapis.com; frame-src https://platform.twitter.com:443; img-src 'self' data: https://syndication.twitter.com:443; object-src 'none'
expect-ct: enforce, max-age=86400
last-modified: Mon, 13 Mar 2023 10:31:31 GMT
etag: "29f4-5f6c59d46dd9e"
cache-control: max-age=604800
expires: Tue, 21 Mar 2023 19:22:04 GMT
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
content-type: image/svg+xml
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 20 Mar 2023 06:21:55 GMT
age: 471364
x-served-by: cache-msp11871-MSP, cache-bma1683-BMA
x-cache: HIT, HIT
x-cache-hits: 117, 1
x-timer: S1679293315.458175,VS0,VE1
vary: Accept-Encoding
content-length: 3587
X-Firefox-Spdy: h2
abuse.ch/images/twitter.png
151.101.2.49200 OK 1.4 kB URL HTTP/2 abuse.ch/images/twitter.png
IP 151.101.2.49:0
File type PNG image data, 40 x 33, 8-bit colormap, non-interlaced\012- data
Hash 8bdef3e7da8e4a19f35125c91fa207a7
f878ab48a56c178b86f391279f7522ce7818a349
9de704e540e57ecf5b9190840cf38f48935925bf3e48d55dfe03a69bec86aa95
GET /images/twitter.png HTTP/1.1
Host: abuse.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://abuse.ch/?p=3581
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache/2
strict-transport-security: max-age=31536000; includeSubDomains; preload
permissions-policy: accelerometer=(), ambient-light-sensor=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), speaker=(), usb=(), vr=()
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src 'self' https://fonts.gstatic.com https://www.gstatic.com:443; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://platform.twitter.com:443 https://www.gstatic.com:443 https://www.googletagmanager.com:443; style-src 'self' 'unsafe-inline' https://www.gstatic.com:443 https://fonts.googleapis.com; frame-src https://platform.twitter.com:443; img-src 'self' data: https://syndication.twitter.com:443; object-src 'none'
expect-ct: enforce, max-age=86400
last-modified: Tue, 21 Feb 2023 07:24:49 GMT
etag: "562-5f530acc9f4b9"
cache-control: max-age=7776000
expires: Mon, 22 May 2023 07:39:58 GMT
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
content-type: image/png
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 20 Mar 2023 06:21:55 GMT
age: 2327924
x-served-by: cache-msp11859-MSP, cache-bma1683-BMA
x-cache: HIT, HIT
x-cache-hits: 1227, 1
x-timer: S1679293315.459105,VS0,VE1
content-length: 1378
X-Firefox-Spdy: h2
abuse.ch/images/linkedin.png
151.101.2.49200 OK 1.1 kB URL HTTP/2 abuse.ch/images/linkedin.png
IP 151.101.2.49:0
File type PNG image data, 40 x 40, 8-bit colormap, non-interlaced\012- data
Hash dd60f55c86de18a57ef51c0c9f83b8b0
4ba9e5d30f2ac93ff98aaae42f41c125dd2abd84
fdd3fd61382eb0cbf383bed0189b389788b644bcc5365a421142c3aa85de210c
GET /images/linkedin.png HTTP/1.1
Host: abuse.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://abuse.ch/?p=3581
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache/2
strict-transport-security: max-age=31536000; includeSubDomains; preload
permissions-policy: accelerometer=(), ambient-light-sensor=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), speaker=(), usb=(), vr=()
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src 'self' https://fonts.gstatic.com https://www.gstatic.com:443; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://platform.twitter.com:443 https://www.gstatic.com:443 https://www.googletagmanager.com:443; style-src 'self' 'unsafe-inline' https://www.gstatic.com:443 https://fonts.googleapis.com; frame-src https://platform.twitter.com:443; img-src 'self' data: https://syndication.twitter.com:443; object-src 'none'
expect-ct: enforce, max-age=86400
last-modified: Tue, 07 Feb 2023 19:04:06 GMT
etag: "450-5f420cfcf0845"
cache-control: max-age=7776000
expires: Tue, 09 May 2023 10:34:50 GMT
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
content-type: image/png
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 20 Mar 2023 06:21:55 GMT
age: 3439859
x-served-by: cache-msp11859-MSP, cache-bma1683-BMA
x-cache: HIT, HIT
x-cache-hits: 268, 1
x-timer: S1679293315.459769,VS0,VE1
content-length: 1104
X-Firefox-Spdy: h2
abuse.ch/images/bazaar.webp
151.101.2.49200 OK 27 kB URL HTTP/2 abuse.ch/images/bazaar.webp
IP 151.101.2.49:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash bf25d07166fb8f4788902aa6cf717890
778f89b80890218b705e1023a952e9505f207199
664836302b1fca9012ea09739ef049f2e7c032ebc3ef235cc6e9e1cad36cf459
GET /images/bazaar.webp HTTP/1.1
Host: abuse.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://abuse.ch/?p=3581
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache/2
strict-transport-security: max-age=31536000; includeSubDomains; preload
permissions-policy: accelerometer=(), ambient-light-sensor=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), speaker=(), usb=(), vr=()
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src 'self' https://fonts.gstatic.com https://www.gstatic.com:443; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://platform.twitter.com:443 https://www.gstatic.com:443 https://www.googletagmanager.com:443; style-src 'self' 'unsafe-inline' https://www.gstatic.com:443 https://fonts.googleapis.com; frame-src https://platform.twitter.com:443; img-src 'self' data: https://syndication.twitter.com:443; object-src 'none'
expect-ct: enforce, max-age=86400
last-modified: Mon, 13 Mar 2023 10:31:31 GMT
etag: "698c-5f6c59d46ed3e"
cache-control: max-age=604800
expires: Tue, 21 Mar 2023 13:19:10 GMT
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 20 Mar 2023 06:21:55 GMT
age: 493303
x-served-by: cache-msp11882-MSP, cache-bma1683-BMA
x-cache: HIT, HIT
x-cache-hits: 516, 1
x-timer: S1679293315.460165,VS0,VE1
content-length: 27020
X-Firefox-Spdy: h2
abuse.ch/images/urlhaus.webp
151.101.2.49200 OK 12 kB URL HTTP/2 abuse.ch/images/urlhaus.webp
IP 151.101.2.49:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 9de3e4b36452be0a44ebb669db89932e
0d9e955ccd06edea6bde5a4892ab174907801821
8ed7ee646b4a19b20852c9b4da98d67663fd718f973284ba9bf75b402bbe1c35
GET /images/urlhaus.webp HTTP/1.1
Host: abuse.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://abuse.ch/?p=3581
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache/2
strict-transport-security: max-age=31536000; includeSubDomains; preload
permissions-policy: accelerometer=(), ambient-light-sensor=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), speaker=(), usb=(), vr=()
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src 'self' https://fonts.gstatic.com https://www.gstatic.com:443; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://platform.twitter.com:443 https://www.gstatic.com:443 https://www.googletagmanager.com:443; style-src 'self' 'unsafe-inline' https://www.gstatic.com:443 https://fonts.googleapis.com; frame-src https://platform.twitter.com:443; img-src 'self' data: https://syndication.twitter.com:443; object-src 'none'
expect-ct: enforce, max-age=86400
last-modified: Mon, 13 Mar 2023 10:31:31 GMT
etag: "2d9c-5f6c59d4ae4f9"
cache-control: max-age=604800
expires: Tue, 21 Mar 2023 07:18:44 GMT
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 20 Mar 2023 06:21:55 GMT
age: 514794
x-served-by: cache-msp11829-MSP, cache-bma1683-BMA
x-cache: HIT, HIT
x-cache-hits: 9, 1
x-timer: S1679293315.462827,VS0,VE2
content-length: 11676
X-Firefox-Spdy: h2
abuse.ch/images/feodo.webp
151.101.2.49200 OK 21 kB URL HTTP/2 abuse.ch/images/feodo.webp
IP 151.101.2.49:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 118612a5865ed20a15e6abdfa61c96e9
15e38ca960fef88da997fc462cfe871201443aa2
68350648670a4723b02c32b75cf3992ddc57da333214684b4e19920b93ab5f7e
GET /images/feodo.webp HTTP/1.1
Host: abuse.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://abuse.ch/?p=3581
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache/2
strict-transport-security: max-age=31536000; includeSubDomains; preload
permissions-policy: accelerometer=(), ambient-light-sensor=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), speaker=(), usb=(), vr=()
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src 'self' https://fonts.gstatic.com https://www.gstatic.com:443; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://platform.twitter.com:443 https://www.gstatic.com:443 https://www.googletagmanager.com:443; style-src 'self' 'unsafe-inline' https://www.gstatic.com:443 https://fonts.googleapis.com; frame-src https://platform.twitter.com:443; img-src 'self' data: https://syndication.twitter.com:443; object-src 'none'
expect-ct: enforce, max-age=86400
last-modified: Wed, 15 Mar 2023 12:16:23 GMT
etag: "52be-5f6ef4ffd2d8f"
cache-control: max-age=604800
expires: Wed, 22 Mar 2023 12:16:36 GMT
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 20 Mar 2023 06:21:55 GMT
age: 410613
x-served-by: cache-msp11821-MSP, cache-bma1683-BMA
x-cache: HIT, HIT
x-cache-hits: 121, 1
x-timer: S1679293315.460703,VS0,VE1
content-length: 21182
X-Firefox-Spdy: h2
abuse.ch/images/threatfox.webp
151.101.2.49200 OK 16 kB URL HTTP/2 abuse.ch/images/threatfox.webp
IP 151.101.2.49:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash a4ae06a2f4c1eb41e66b9b9056e3517b
fc9d399055050cf508ddd722a625ee00da396f3d
99391951a89e07498410d208b7e7f5457f5f01b1dd22c8a589bada17affd2fed
GET /images/threatfox.webp HTTP/1.1
Host: abuse.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://abuse.ch/?p=3581
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache/2
strict-transport-security: max-age=31536000; includeSubDomains; preload
permissions-policy: accelerometer=(), ambient-light-sensor=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), speaker=(), usb=(), vr=()
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src 'self' https://fonts.gstatic.com https://www.gstatic.com:443; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://platform.twitter.com:443 https://www.gstatic.com:443 https://www.googletagmanager.com:443; style-src 'self' 'unsafe-inline' https://www.gstatic.com:443 https://fonts.googleapis.com; frame-src https://platform.twitter.com:443; img-src 'self' data: https://syndication.twitter.com:443; object-src 'none'
expect-ct: enforce, max-age=86400
last-modified: Mon, 13 Mar 2023 10:31:31 GMT
etag: "3f54-5f6c59d4ae4f9"
cache-control: max-age=604800
expires: Tue, 21 Mar 2023 10:07:38 GMT
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 20 Mar 2023 06:21:55 GMT
age: 504726
x-served-by: cache-msp11853-MSP, cache-bma1683-BMA
x-cache: HIT, HIT
x-cache-hits: 589, 1
x-timer: S1679293315.462805,VS0,VE2
content-length: 16212
X-Firefox-Spdy: h2
abuse.ch/images/ssl.webp
151.101.2.49200 OK 28 kB IP 151.101.2.49:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 6522c2e6f7f692a60034f2852dc7c016
6f5dedfe91a75e6b8fe754bf2bc979433c634334
2108b23593ee309e504b37a57e246873909b0ec80c651c4048215ad939ee9b7a
GET /images/ssl.webp HTTP/1.1
Host: abuse.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://abuse.ch/?p=3581
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache/2
strict-transport-security: max-age=31536000; includeSubDomains; preload
permissions-policy: accelerometer=(), ambient-light-sensor=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), speaker=(), usb=(), vr=()
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src 'self' https://fonts.gstatic.com https://www.gstatic.com:443; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://platform.twitter.com:443 https://www.gstatic.com:443 https://www.googletagmanager.com:443; style-src 'self' 'unsafe-inline' https://www.gstatic.com:443 https://fonts.googleapis.com; frame-src https://platform.twitter.com:443; img-src 'self' data: https://syndication.twitter.com:443; object-src 'none'
expect-ct: enforce, max-age=86400
last-modified: Mon, 13 Mar 2023 10:31:31 GMT
etag: "6e4a-5f6c59d4ae4f9"
cache-control: max-age=604800
expires: Tue, 21 Mar 2023 13:19:10 GMT
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 20 Mar 2023 06:21:55 GMT
age: 493304
x-served-by: cache-msp11882-MSP, cache-bma1683-BMA
x-cache: HIT, HIT
x-cache-hits: 83, 1
x-timer: S1679293315.462841,VS0,VE2
content-length: 28234
X-Firefox-Spdy: h2
abuse.ch/images/yaraify.webp
151.101.2.49200 OK 70 kB URL HTTP/2 abuse.ch/images/yaraify.webp
IP 151.101.2.49:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 44be57c9b27f6e01a39fb894b867ad54
5a391aaa3d539fada78400019a431000ccc7deb3
08f58339bcee07484cbf4ea41b6c40648d5bc88e5e34f18f0619351b93577639
GET /images/yaraify.webp HTTP/1.1
Host: abuse.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://abuse.ch/?p=3581
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache/2
strict-transport-security: max-age=31536000; includeSubDomains; preload
permissions-policy: accelerometer=(), ambient-light-sensor=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), speaker=(), usb=(), vr=()
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src 'self' https://fonts.gstatic.com https://www.gstatic.com:443; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://platform.twitter.com:443 https://www.gstatic.com:443 https://www.googletagmanager.com:443; style-src 'self' 'unsafe-inline' https://www.gstatic.com:443 https://fonts.googleapis.com; frame-src https://platform.twitter.com:443; img-src 'self' data: https://syndication.twitter.com:443; object-src 'none'
expect-ct: enforce, max-age=86400
last-modified: Tue, 14 Mar 2023 22:07:38 GMT
etag: "1107e-5f6e3749fb349"
cache-control: max-age=604800
expires: Wed, 22 Mar 2023 11:52:08 GMT
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 20 Mar 2023 06:21:55 GMT
age: 411906
x-served-by: cache-msp11854-MSP, cache-bma1683-BMA
x-cache: HIT, HIT
x-cache-hits: 125, 1
x-timer: S1679293315.462976,VS0,VE1
content-length: 69758
X-Firefox-Spdy: h2
abuse.ch/js/twitter_widget.js
151.101.2.49200 OK 33 kB URL HTTP/2 abuse.ch/js/twitter_widget.js
IP 151.101.2.49:0
File type ASCII text, with very long lines (32016)
Hash ed588d3d793f4f1bb1a71207ec6fac8e
88e2f915469a80b724767218d4d35374c0ab95fd
d7607922113c121b8e5c00af173d9076d5732113b5ba7bee43b0e87abf654243
GET /js/twitter_widget.js HTTP/1.1
Host: abuse.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://abuse.ch/?p=3581
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache/2
strict-transport-security: max-age=31536000; includeSubDomains; preload
permissions-policy: accelerometer=(), ambient-light-sensor=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), speaker=(), usb=(), vr=()
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src 'self' https://fonts.gstatic.com https://www.gstatic.com:443; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://platform.twitter.com:443 https://www.gstatic.com:443 https://www.googletagmanager.com:443; style-src 'self' 'unsafe-inline' https://www.gstatic.com:443 https://fonts.googleapis.com; frame-src https://platform.twitter.com:443; img-src 'self' data: https://syndication.twitter.com:443; object-src 'none'
expect-ct: enforce, max-age=86400
last-modified: Mon, 13 Mar 2023 10:31:31 GMT
etag: "1c897-5f6c59d4dd30d-gzip"
cache-control: max-age=604800
expires: Mon, 20 Mar 2023 23:35:31 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
content-type: application/javascript
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 20 Mar 2023 06:21:55 GMT
age: 515131
x-served-by: cache-msp11858-MSP, cache-bma1683-BMA
x-cache: MISS, HIT
x-cache-hits: 0, 1
x-timer: S1679293316.527248,VS0,VE1
vary: Accept-Encoding
content-length: 33369
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash f1619e65eeac4c79d93deb418bb1b740
b1c592a47ab71569364b05c87362caef4dea7c67
7c83a70b21133bb49f5e0f8e9abd1fecb1a814b754d6d26e598e7e4589564c04
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 06:21:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-MZSJ4F05DR
142.250.74.168200 OK 79 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-MZSJ4F05DR
IP 142.250.74.168:0
File type ASCII text, with very long lines (21772)
Hash 28630f5053f681ca531746ce57a6cedc
260fa4b4637d52b79f49fa52dbe54e37ed27ae01
4a699d0392215578bb3134ae6abd71156d2730d97a19f961f772aa428793c520
GET /gtag/js?id=G-MZSJ4F05DR HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://abuse.ch/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 20 Mar 2023 06:21:55 GMT
expires: Mon, 20 Mar 2023 06:21:55 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 78735
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash f1619e65eeac4c79d93deb418bb1b740
b1c592a47ab71569364b05c87362caef4dea7c67
7c83a70b21133bb49f5e0f8e9abd1fecb1a814b754d6d26e598e7e4589564c04
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 06:21:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
abuse.ch/favicon.ico
151.101.2.49200 OK 543 B IP 151.101.2.49:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash a145fed52fe80d4b8a901509b71f8d1a
6c9bd6be23f1f17ae3b96272832f1f3465bcd471
084d92edbb50223c9eb883bc36adaa5d2a959cae6c79629019363bb6022b23f1
GET /favicon.ico HTTP/1.1
Host: abuse.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://abuse.ch/?p=3581
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache/2
strict-transport-security: max-age=31536000; includeSubDomains; preload
permissions-policy: accelerometer=(), ambient-light-sensor=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), speaker=(), usb=(), vr=()
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src 'self' https://fonts.gstatic.com https://www.gstatic.com:443; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://platform.twitter.com:443 https://www.gstatic.com:443 https://www.googletagmanager.com:443; style-src 'self' 'unsafe-inline' https://www.gstatic.com:443 https://fonts.googleapis.com; frame-src https://platform.twitter.com:443; img-src 'self' data: https://syndication.twitter.com:443; object-src 'none'
expect-ct: enforce, max-age=86400
last-modified: Mon, 13 Mar 2023 10:31:31 GMT
etag: "208-5f6c59d43ff2a"
cache-control: max-age=604800
expires: Tue, 21 Mar 2023 12:16:42 GMT
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
content-type: image/vnd.microsoft.icon
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 20 Mar 2023 06:21:55 GMT
age: 497008
x-served-by: cache-msp11851-MSP, cache-bma1683-BMA
x-cache: HIT, HIT
x-cache-hits: 94, 1
x-timer: S1679293316.753601,VS0,VE1
vary: Accept-Encoding
content-length: 543
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.218.147.141101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.218.147.141:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: d4Fou+PVIagy6NSBc6LuGw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: G3hagkOdwCm4kThpkzPT/RAFTF8=
abuse.ch/images/ch.jpg
151.101.2.49200 OK 798 kB IP 151.101.2.49:0
File type JPEG image data, JFIF standard 1.01, resolution (DPCM), density 118x118, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=3, software=GIMP 2.10.24, datetime=2021:05:22 09:46:49], progressive, precision 8, 4032x1893, components 3\012- data
Size 798 kB (798081 bytes)
Hash 2318ac272eb1b790ea0b65ac59eae232
743b7092b3bf5ee20d6dcb62dfbde11aba63de05
c48595754bb4eaa3eb5de43432ff7b3a568f0dead561e8ae491aa1e6c615538f
GET /images/ch.jpg HTTP/1.1
Host: abuse.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://abuse.ch/css/custom.css
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache/2
strict-transport-security: max-age=31536000; includeSubDomains; preload
permissions-policy: accelerometer=(), ambient-light-sensor=(), autoplay=(), camera=(), encrypted-media=(), fullscreen=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), picture-in-picture=(), speaker=(), usb=(), vr=()
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src 'self' https://fonts.gstatic.com https://www.gstatic.com:443; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://platform.twitter.com:443 https://www.gstatic.com:443 https://www.googletagmanager.com:443; style-src 'self' 'unsafe-inline' https://www.gstatic.com:443 https://fonts.googleapis.com; frame-src https://platform.twitter.com:443; img-src 'self' data: https://syndication.twitter.com:443; object-src 'none'
expect-ct: enforce, max-age=86400
last-modified: Mon, 13 Mar 2023 10:31:31 GMT
etag: "c2d81-5f6c59d46ed3e"
cache-control: max-age=604800
expires: Tue, 21 Mar 2023 07:17:01 GMT
x-content-type-options: nosniff
x-frame-options: sameorigin
x-xss-protection: 1; mode=block
content-type: image/jpeg
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 20 Mar 2023 06:21:56 GMT
age: 514991
x-served-by: cache-msp11876-MSP, cache-bma1683-BMA
x-cache: HIT, MISS
x-cache-hits: 1811, 0
x-timer: S1679293316.581545,VS0,VE678
content-length: 798081
X-Firefox-Spdy: h2
platform.twitter.com/js/button.3ccb64e61d4c01fae12cd2b0ed9b2bab.js
93.184.220.66200 OK 4.3 kB URL HTTP/1.1 platform.twitter.com/js/button.3ccb64e61d4c01fae12cd2b0ed9b2bab.js
IP 93.184.220.66:0
File type ASCII text, with very long lines (4293), with no line terminators
Hash 292cdc4d9283337cbb7fa4f59f2c7b43
9dbccff811bd7201dfbc0efce010ec423596c72e
90af9690f655708652ebd34d65cabec93fb7e18fefc53c027d540446d5f284e8
GET /js/button.3ccb64e61d4c01fae12cd2b0ed9b2bab.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://abuse.ch/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Mon, 20 Mar 2023 06:21:57 GMT
Etag: "292cdc4d9283337cbb7fa4f59f2c7b43"
Last-Modified: Wed, 23 Aug 2017 17:11:31 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: AmazonS3
Server-Timing: x-cache;desc= ,x-tw-cdn;desc=VZ
x-tw-cdn: VZ
Content-Length: 4293
platform.twitter.com/widgets/follow_button.f8c8d971a6ac545cf416e3c1ad4bbc65.en.html
93.184.220.66200 OK 13 kB URL HTTP/1.1 platform.twitter.com/widgets/follow_button.f8c8d971a6ac545cf416e3c1ad4bbc65.en.html
IP 93.184.220.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (20007)
Hash abac4b43e790a98df433b9383632377d
d7c4d403e663868b4831f7da4f15e4ccac62cd5a
435e27768a154118280fb27bd0bdfa496369264af8241bd554a66affcf99dd81
GET /widgets/follow_button.f8c8d971a6ac545cf416e3c1ad4bbc65.en.html HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://abuse.ch/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 238557
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Mon, 20 Mar 2023 06:21:56 GMT
Etag: "695eb9e3dcc510acd923a9526a9a99df+gzip"
Last-Modified: Wed, 23 Aug 2017 17:11:33 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71E)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 12963
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 55ad4123e19b3babc18ece16b13ff042
97d003194e3a29a4f64596b981b5a4a730e263c9
3dc00b98beb78092083878847d238f0784a7e720f82e524bde4fa115cbf34078
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 06:21:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/charts/50/loader.js
142.250.74.35200 OK 16 kB URL HTTP/2 www.gstatic.com/charts/50/loader.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (1846)
Hash e07f76717f0292113a356a485fda521c
ba871315bd762260a844e897d0a1971368457278
f2f904b5d946969521dd86308354940b8c7f15fa311a5e6e11bfc2dc02d9c443
GET /charts/50/loader.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://abuse.ch/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-credentials: true
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gviz
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gviz"
report-to: {"group":"gviz","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gviz"}]}
content-length: 15558
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 15 Mar 2023 13:05:48 GMT
expires: Thu, 23 Mar 2023 13:05:48 GMT
cache-control: public, max-age=691200
last-modified: Tue, 30 Mar 2021 22:32:45 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 407768
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/charts/50/css/core/tooltip.css
142.250.74.35200 OK 533 B URL HTTP/2 www.gstatic.com/charts/50/css/core/tooltip.css
IP 142.250.74.35:0
Hash b93b114a68eb1ccc380211c620ac65b4
2cd6c5d9d6d79955116d380546e9c0beb52f660d
27027dec155c8e899177100607901da9ef2da5229d0b64c8254039686744802e
GET /charts/50/css/core/tooltip.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://abuse.ch/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-credentials: true
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gviz
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gviz"
report-to: {"group":"gviz","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gviz"}]}
content-length: 533
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 15 Mar 2023 12:53:19 GMT
expires: Thu, 23 Mar 2023 12:53:19 GMT
cache-control: public, max-age=691200
last-modified: Tue, 30 Mar 2021 22:40:04 GMT
content-type: text/css
vary: Accept-Encoding, Origin
age: 408517
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/charts/50/css/util/util.css
142.250.74.35200 OK 3.2 kB URL HTTP/2 www.gstatic.com/charts/50/css/util/util.css
IP 142.250.74.35:0
Hash bede3d09b6f269255cc7b97e2e0af855
d23f07e80811c56b8c473899399d6c35794fc40a
50072a67c7b231ef7a0d46a38fb54d7df3042ac3f460f47dd0f85eac8d3a46dc
GET /charts/50/css/util/util.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://abuse.ch/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-credentials: true
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gviz
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gviz"
report-to: {"group":"gviz","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gviz"}]}
content-length: 3203
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 15 Mar 2023 22:34:26 GMT
expires: Thu, 23 Mar 2023 22:34:26 GMT
cache-control: public, max-age=691200
last-modified: Tue, 30 Mar 2021 22:40:04 GMT
content-type: text/css
vary: Accept-Encoding, Origin
age: 373650
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 55ad4123e19b3babc18ece16b13ff042
97d003194e3a29a4f64596b981b5a4a730e263c9
3dc00b98beb78092083878847d238f0784a7e720f82e524bde4fa115cbf34078
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 06:21:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/charts/50/js/jsapi_compiled_default_module.js
142.250.74.35200 OK 84 kB URL HTTP/2 www.gstatic.com/charts/50/js/jsapi_compiled_default_module.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (2093)
Hash d9f155c0cbaafba4ba3a1d6d647ff0af
a4db55bc55e9dfea8e87e692ad5f6163d22becab
acc96f61186aaea65d5771d59fef04d653a9f6f6c1b28414072a0060d25dc971
GET /charts/50/js/jsapi_compiled_default_module.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://abuse.ch/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-credentials: true
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gviz
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gviz"
report-to: {"group":"gviz","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gviz"}]}
content-length: 83533
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 15 Mar 2023 09:00:01 GMT
expires: Thu, 23 Mar 2023 09:00:01 GMT
cache-control: public, max-age=691200
last-modified: Tue, 30 Mar 2021 22:33:05 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 422515
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/charts/50/js/jsapi_compiled_graphics_module.js
142.250.74.35200 OK 17 kB URL HTTP/2 www.gstatic.com/charts/50/js/jsapi_compiled_graphics_module.js
IP 142.250.74.35:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (3447)
Hash f300e7f1f1d16313a96d6ed8b7522f63
cdc1c9e104d321118864adf431dded92c622eb63
f044458006cb1ebefbbb41d905714439ef1bf01ef371e850802a7d6508ed6862
GET /charts/50/js/jsapi_compiled_graphics_module.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://abuse.ch/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-credentials: true
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gviz
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gviz"
report-to: {"group":"gviz","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gviz"}]}
content-length: 16965
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Mar 2023 03:20:57 GMT
expires: Fri, 24 Mar 2023 03:20:57 GMT
cache-control: public, max-age=691200
last-modified: Tue, 30 Mar 2021 22:33:05 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 356459
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/charts/50/js/jsapi_compiled_corechart_module.js
142.250.74.35200 OK 1.6 kB URL HTTP/2 www.gstatic.com/charts/50/js/jsapi_compiled_corechart_module.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (514)
Hash 4ed15a05b9525b6fedac6f7bfc840416
d0a4d29b79df22855bb5b5711b0d3958f02ce1ca
48f021ec825f12029438345ac189b761b44c622e2c5fb871c02811a020e11e69
GET /charts/50/js/jsapi_compiled_corechart_module.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://abuse.ch/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-credentials: true
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gviz
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gviz"
report-to: {"group":"gviz","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gviz"}]}
content-length: 1597
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 15 Mar 2023 19:39:09 GMT
expires: Thu, 23 Mar 2023 19:39:09 GMT
cache-control: public, max-age=691200
last-modified: Tue, 30 Mar 2021 22:33:05 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 384167
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/charts/50/js/jsapi_compiled_fw_module.js
142.250.74.35200 OK 26 kB URL HTTP/2 www.gstatic.com/charts/50/js/jsapi_compiled_fw_module.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (1798)
Hash efb2468b6d6bad44609c283052885844
6a0c3f6d3817ac0c32064379339660fdc3973543
c846a991660cd55a1eb94339a1dfb2175e67692014c5f42c0633e9afcc8af042
GET /charts/50/js/jsapi_compiled_fw_module.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://abuse.ch/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-credentials: true
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gviz
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gviz"
report-to: {"group":"gviz","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gviz"}]}
content-length: 25699
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 15 Mar 2023 18:48:23 GMT
expires: Thu, 23 Mar 2023 18:48:23 GMT
cache-control: public, max-age=691200
last-modified: Tue, 30 Mar 2021 22:33:05 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 387213
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/charts/50/third_party/dygraphs/dygraph-tickers-combined.js
142.250.74.35200 OK 6.0 kB URL HTTP/2 www.gstatic.com/charts/50/third_party/dygraphs/dygraph-tickers-combined.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (18532)
Hash 5874b0f568bd33a153ef309c7e5ac3e3
e0fe49db1533ce46e29f4cc8fbdb2cd1ac38ccb4
1a2127a2116f17c49575d9c6fbf6c20de06f515af9ddfc5bbee4c2f599007792
GET /charts/50/third_party/dygraphs/dygraph-tickers-combined.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://abuse.ch/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-credentials: true
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gviz
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gviz"
report-to: {"group":"gviz","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gviz"}]}
content-length: 6003
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Mar 2023 12:03:32 GMT
expires: Fri, 24 Mar 2023 12:03:32 GMT
cache-control: public, max-age=691200
last-modified: Tue, 10 Nov 2020 04:18:38 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 325104
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/charts/50/third_party/webfontloader/webfont.js
142.250.74.35200 OK 6.7 kB URL HTTP/2 www.gstatic.com/charts/50/third_party/webfontloader/webfont.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (1221)
Hash 8f5511f23c6158b39b1780856275a536
2e8c4c57cab4b18c23d5289f475831cb49a4afc4
d8d3a081556291968d12fe0b4ea382417c3662fbfdfb45638895f21f7cc4a662
GET /charts/50/third_party/webfontloader/webfont.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://abuse.ch/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-credentials: true
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gviz
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gviz"
report-to: {"group":"gviz","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gviz"}]}
content-length: 6672
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 15 Mar 2023 13:42:27 GMT
expires: Thu, 23 Mar 2023 13:42:27 GMT
cache-control: public, max-age=691200
last-modified: Thu, 01 Apr 2021 05:20:33 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 405569
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/charts/50/js/jsapi_compiled_line_module.js
142.250.74.35200 OK 1.0 kB URL HTTP/2 www.gstatic.com/charts/50/js/jsapi_compiled_line_module.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (825)
Hash eb0a3a15cff9b8f2d442ae599487c4ae
c11a2c8e0419b537928f82ce55f95b2c25cb944b
9d8b60320831d981222107b512a2c8cd0792037e33937284b3e2a45b425abdb6
GET /charts/50/js/jsapi_compiled_line_module.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://abuse.ch/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-credentials: true
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gviz
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gviz"
report-to: {"group":"gviz","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gviz"}]}
content-length: 1025
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 15 Mar 2023 21:13:58 GMT
expires: Thu, 23 Mar 2023 21:13:58 GMT
cache-control: public, max-age=691200
last-modified: Tue, 30 Mar 2021 22:33:05 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 378478
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/charts/50/js/jsapi_compiled_bar_module.js
142.250.74.35200 OK 3.1 kB URL HTTP/2 www.gstatic.com/charts/50/js/jsapi_compiled_bar_module.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (805)
Hash 41c641f784346a80f31f8d1a0c64b447
bd236a2d9b72a2db52698e760923e50cdbd48b57
10c6fb5d1afa82f35df6fd062c0ee2861cbe8af48deae820703bc643e4224143
GET /charts/50/js/jsapi_compiled_bar_module.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://abuse.ch/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-credentials: true
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gviz
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gviz"
report-to: {"group":"gviz","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gviz"}]}
content-length: 3056
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Mar 2023 05:48:40 GMT
expires: Fri, 24 Mar 2023 05:48:40 GMT
cache-control: public, max-age=691200
last-modified: Tue, 30 Mar 2021 22:33:05 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 347596
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash de95776582936b8e129e876cf6d80fa8
0233251e1cf0123f1260d980d7c8ef92718723f9
49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36"
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4364
Expires: Mon, 20 Mar 2023 07:34:40 GMT
Date: Mon, 20 Mar 2023 06:21:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash de95776582936b8e129e876cf6d80fa8
0233251e1cf0123f1260d980d7c8ef92718723f9
49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36"
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4364
Expires: Mon, 20 Mar 2023 07:34:40 GMT
Date: Mon, 20 Mar 2023 06:21:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash de95776582936b8e129e876cf6d80fa8
0233251e1cf0123f1260d980d7c8ef92718723f9
49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36"
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4364
Expires: Mon, 20 Mar 2023 07:34:40 GMT
Date: Mon, 20 Mar 2023 06:21:56 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1f3dbde-5603-4fc9-9c5b-c8735230fcb3.jpeg
34.120.237.76200 OK 5.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1f3dbde-5603-4fc9-9c5b-c8735230fcb3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 59a97c7842690d7acd0ff07d949b1ef3
8719d7d6866855fdfba87e06128fb1969d857732
203b0e030b9bf84a8a2731c1b46d57e60ee50a53cc925845e7b20cbd60362136
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1f3dbde-5603-4fc9-9c5b-c8735230fcb3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5456
x-amzn-requestid: 545d20a4-ed22-4be4-98aa-23383209dae2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CDDUKFC9IAMF4pw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64177f4d-3e927ea45de99d4b286fcfc8;Sampled=0
x-amzn-remapped-date: Sun, 19 Mar 2023 21:31:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: qXn3EwgagFD2MH4PzDYxxVd1eXOQQxHDkNdxXGxwuS-tmPNxWXYukA==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 5c7981a979abd51ba7e5ca7d464fd048.cloudfront.net (CloudFront), 1.1 google
date: Sun, 19 Mar 2023 21:50:21 GMT
age: 30695
etag: "8719d7d6866855fdfba87e06128fb1969d857732"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8afa2cdb-a5f3-4c78-a2ab-132c8b752b4b.png
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8afa2cdb-a5f3-4c78-a2ab-132c8b752b4b.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 78453ba98b72eff3879ef163b59c86ed
80519bb3726ee1f9f211344cd433cefaed3a7f2e
61adfeff11af9583355ac7d1500e8a8d97357b2846f151f2421001994fb06655
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8afa2cdb-a5f3-4c78-a2ab-132c8b752b4b.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10338
x-amzn-requestid: 9f880b5b-056c-44bb-a811-36ea27c232aa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BvSgFGENoAMFuVw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640f9799-2318d444248f7610300c658f;Sampled=0
x-amzn-remapped-date: Mon, 13 Mar 2023 21:37:29 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: bka10YWXvoKBRkwgvJNMzm1SSv_J1USzdugO9lPduHxe2uYFYkXh4w==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 e11ee4e3208082d534c251b36bbee268.cloudfront.net (CloudFront), 1.1 google
date: Mon, 20 Mar 2023 04:25:44 GMT
age: 6972
etag: "80519bb3726ee1f9f211344cd433cefaed3a7f2e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F293aad0e-d254-4102-8ca1-1d087ced63b8.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F293aad0e-d254-4102-8ca1-1d087ced63b8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7ea524ec1c4872538976b2c938664631
216bae08ee1ad9cfb689f3b57648b03f01dedc72
98c0a5e7ef665235295ff6957f02e76ed53fd988a41b036a6f7c3aa95ebe0010
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F293aad0e-d254-4102-8ca1-1d087ced63b8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11652
x-amzn-requestid: 50ac8f17-1571-4e7f-8f19-90d83ef4b096
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CDDVCHdxIAMFvhA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64177f53-78a08fd11712c6416979a6c7;Sampled=0
x-amzn-remapped-date: Sun, 19 Mar 2023 21:32:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: ygWegirCFrGYvi16JqG3KRhpHzWQqngZNQJWXIjP6LTnn3ZHSCC07w==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 29a825d8a219984d47bec4350779b558.cloudfront.net (CloudFront), 1.1 google
date: Sun, 19 Mar 2023 22:07:27 GMT
age: 29669
etag: "216bae08ee1ad9cfb689f3b57648b03f01dedc72"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F11b9c000-8304-4b46-b5c2-572e5a9ac294.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F11b9c000-8304-4b46-b5c2-572e5a9ac294.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7b8d564e57c415adf4736684c271dab1
cee94b98882ac041c7863d9f4c7ac8f216288759
803908f441ff44a4925c5ac411399ac61365160880cda2ef10962584103189dd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F11b9c000-8304-4b46-b5c2-572e5a9ac294.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7627
x-amzn-requestid: 747a6f33-8cb6-42e5-9b2d-b1d9712131f5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CDDneEqVoAMFaVA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64177fc9-7ee25a494fdc9d3902fa1dd0;Sampled=0
x-amzn-remapped-date: Sun, 19 Mar 2023 21:34:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: oAriFKiFexpvefiqshsNWiAiw6ahPOQmCqFxC2bFxGW5oyof7zH3Yw==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 5292c0d5844327feadb38f1efe42ebc6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 19 Mar 2023 22:05:41 GMT
age: 29775
etag: "cee94b98882ac041c7863d9f4c7ac8f216288759"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff51415b3-9b9b-4c87-86bb-6211280ffae8.webp
34.120.237.76200 OK 7.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff51415b3-9b9b-4c87-86bb-6211280ffae8.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d6c3dea68b3ee7187c38f853de3ccda5
6a8be512ea4566f35efeef7ee86cc04efdf8e0ca
46f62e71ffd933e29368a1593cb201472a3ce7bd253f1a9d2f46a51582e31dfe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff51415b3-9b9b-4c87-86bb-6211280ffae8.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7132
x-amzn-requestid: 747493fa-4975-4519-bb98-2ae2042387c5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CDEeYHfKoAMF0lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64178128-63e48b102a1c203831346345;Sampled=0
x-amzn-remapped-date: Sun, 19 Mar 2023 21:39:52 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: WHZGkKyE12FBQAhLTolB-DaQfHB-i6aRRACOLN6YCJhSPmm-1BbJMw==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 3f3347264bcaae7af741e2a2f692c6a0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 19 Mar 2023 21:56:35 GMT
age: 30321
etag: "6a8be512ea4566f35efeef7ee86cc04efdf8e0ca"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1c8c491-aa6d-4268-a72a-1f4233962425.jpeg
34.120.237.76200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1c8c491-aa6d-4268-a72a-1f4233962425.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4e5aa79770d71507827e79149031b5cf
338ee74f53fac2b19a90981bc4b02a3c3722a1fa
81df6f2312df6e488ae91c172ecf872d694497ffe80500f71eb97e6c06ff5f5f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1c8c491-aa6d-4268-a72a-1f4233962425.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7249
x-amzn-requestid: dfaf4924-b8c3-4b6b-a079-7c3903fdf4fb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CDDVjGJyIAMFS9w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64177f56-6379351b215dc2d9638de9ea;Sampled=0
x-amzn-remapped-date: Sun, 19 Mar 2023 21:32:06 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: 6SrsIy07rGzqwuej2lpFFp0PdFnuWcen4ItGcBrNd_AXSWlU1vObSg==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 28fdf6e146f70e7372911f118404fb20.cloudfront.net (CloudFront), 1.1 google
date: Sun, 19 Mar 2023 21:46:54 GMT
age: 30902
etag: "338ee74f53fac2b19a90981bc4b02a3c3722a1fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 313 B IP 192.229.221.95:0
Hash 4257d4a8e9ede6898aed88869ac3cee1
823a6c5925c96bfc2482456330d7a03aac896771
d0bdbfff2b450254d800dc7fe24105293f563e53ff13bd2db9965a70769e12c4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 668
Cache-Control: max-age=163224
Content-Type: application/ocsp-response
Date: Mon, 20 Mar 2023 06:21:56 GMT
Etag: "6417d380-139"
Expires: Wed, 22 Mar 2023 03:42:20 GMT
Last-Modified: Mon, 20 Mar 2023 03:31:12 GMT
Server: ECAcc (ska/F6D2)
X-Cache: HIT
Content-Length: 313
syndication.twitter.com/i/jot?l=%7B%22widget_origin%22%3A%22https%3A%2F%2Fabuse.ch%2F%3Fp%3D3581%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22l%3Awithcount%3A%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1679293316735%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22cc42777%3A1503469368429%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22follow%22%2C%22action%22%3A%22impression%22%7D%7D
104.244.42.200200 OK 43 B URL HTTP/2 syndication.twitter.com/i/jot?l=%7B%22widget_origin%22%3A%22https%3A%2F%2Fabuse.ch%2F%3Fp%3D3581%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22l%3Awithcount%3A%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1679293316735%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22cc42777%3A1503469368429%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22follow%22%2C%22action%22%3A%22impression%22%7D%7D
IP 104.244.42.200:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/jot?l=%7B%22widget_origin%22%3A%22https%3A%2F%2Fabuse.ch%2F%3Fp%3D3581%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22l%3Awithcount%3A%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1679293316735%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22cc42777%3A1503469368429%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22follow%22%2C%22action%22%3A%22impression%22%7D%7D HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://abuse.ch/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 20 Mar 2023 06:21:56 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Mon, 20 Mar 2023 06:21:57 GMT
content-length: 43
x-transaction-id: b8f0262e38b985b6
strict-transport-security: max-age=631138519
x-response-time: 106
x-connection-hash: bdb9be33fa8c87060e72be948d928e3943d3e1ef261f4026fd83fd1cb29db9da
X-Firefox-Spdy: h2
www.gstatic.com/charts/50/js/jsapi_compiled_ui_module.js
142.250.74.35200 OK 0 B URL HTTP/2 www.gstatic.com/charts/50/js/jsapi_compiled_ui_module.js
IP 142.250.74.35:0
GET /charts/50/js/jsapi_compiled_ui_module.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://abuse.ch/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-credentials: true
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gviz
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gviz"
report-to: {"group":"gviz","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gviz"}]}
content-length: 167151
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 16 Mar 2023 10:37:57 GMT
expires: Fri, 24 Mar 2023 10:37:57 GMT
cache-control: public, max-age=691200
last-modified: Tue, 30 Mar 2021 22:33:05 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 330239
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2