vasellyude.info/
94.26.249.187301 Moved Permanently 0 B IP 94.26.249.187:0
ASN #49505 OOO Network of data-centers Selectel
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: vasellyude.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 06 Sep 2022 15:56:36 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate,post-check=0,pre-check=0
Expires: 0
Last-Modified: Tue, 06 Sep 2022 15:56:36 GMT
Location: https://vasellyude.info/
Pragma: no-cache
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 06 Sep 2022 15:04:19 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Zrwp-N4AN-aKVOq-_GnTXDE4lP6sQ8KYGYaE7KMl1ZDe0Gg8OwsWLw==
Age: 3138
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d931e0142ef5ffe9cdb4c4c6bfcb9bc9
d9c4caf525e8926b042a14f38d374cc4033ed768
f610984fb0a75b3a31424faa860cbc8172c7f21804df1dc14fbb685b7c456f29
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F610984FB0A75B3A31424FAA860CBC8172C7F21804DF1DC14FBB685B7C456F29"
Last-Modified: Sat, 03 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4454
Expires: Tue, 06 Sep 2022 17:10:51 GMT
Date: Tue, 06 Sep 2022 15:56:37 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 06 Sep 2022 01:15:18 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: RaAlqSSZ6PwR2cJkZ_8LA1eOr5OlixSyNRuxmNEyyae-qbUfX2-SHg==
age: 52880
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 36e9cba34dfc00b46529b0aaa8871f0d
302bc5de40a2622e17d192bdcaa950c9de4025f1
2ce9fc22ae04ed28e346a2a973136c494a0038a98afbacc4296323d5bd87e8a0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2CE9FC22AE04ED28E346A2A973136C494A0038A98AFBACC4296323D5BD87E8A0"
Last-Modified: Sun, 04 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1323
Expires: Tue, 06 Sep 2022 16:18:40 GMT
Date: Tue, 06 Sep 2022 15:56:37 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 15:56:37 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Tue, 06 Sep 2022 15:38:18 GMT
Expires: Tue, 06 Sep 2022 16:34:52 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ZUaTrXKi4DHiaYOYuRKcmKxg6BwHA8hgWNpv6ohETbHs7LsIzI2wYg==
Age: 1099
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e8952752ad4a452a575522a7eb737217
c5554fa2af05d7a7117032b0f99352de08988346
8c182bed7bbd843774a2136823b30a4cb707e2a5386f71d01640aa3558888bf7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6308
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 15:56:37 GMT
Last-Modified: Tue, 06 Sep 2022 14:11:29 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.80.131.74101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.80.131.74:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: A0GlC/Aal14OxUK7yZbPZQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: xJ+sO6hTKzGUC10Ne5vOgV+upkE=
vasellyude.info/
94.26.249.187200 OK 8.2 kB IP 94.26.249.187:0
ASN #49505 OOO Network of data-centers Selectel
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (853), with CRLF line terminators
Hash 9503baff540c55169cc2594206a39a03
a9f250b9d60d0bde393f870320a38d5c9464d32e
20989638c2db87fa948337f3e62c3e245147aee230268c0bff91ea8d03dabd6a
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: vasellyude.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Sep 2022 15:56:38 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate,post-check=0,pre-check=0
Content-Encoding: gzip
Expires: 0
Last-Modified: Tue, 06 Sep 2022 15:56:37 GMT
Pragma: no-cache
Set-Cookie: _subid=376l60j15f8pe;Expires=Friday, 07-Oct-2022 15:56:37 GMT;Max-Age=2678400;Path=/
dc0a9=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjE0NjRcIjoxNjYyNDc5Nzk3fSxcImNhbXBhaWduc1wiOntcIjg4OVwiOjE2NjI0Nzk3OTd9LFwidGltZVwiOjE2NjI0Nzk3OTd9In0.eCe0rfrUwO9NfTU8A8GaMP7JEQl7JBT6HKkkRXpTI6Q;Expires=Tuesday, 14-May-2075 07:53:14 GMT;Max-Age=1662566197;Path=/
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 521428b0e694b41561bc2ed785219929
45bf3b914325f9d646879bd16bb01feb8f29f2d4
9e2c58593cb9b9baae14e338253ca44b199d965e106ddc70c700f66f0203465a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 15:56:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 521428b0e694b41561bc2ed785219929
45bf3b914325f9d646879bd16bb01feb8f29f2d4
9e2c58593cb9b9baae14e338253ca44b199d965e106ddc70c700f66f0203465a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 15:56:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/angularjs/1.8.2/angular-cookies.js
142.250.74.106200 OK 2.6 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/angularjs/1.8.2/angular-cookies.js
IP 142.250.74.106:0
Hash e9e3dde1ee3968daccc810a4b8ae054d
932f2d26310339218b4c0a59e24e6243465bcd16
8ca5ab2a38256bf56124f4b0b27f002964c07319bd20a90a1916dc43679304f2
GET /ajax/libs/angularjs/1.8.2/angular-cookies.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vasellyude.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 2631
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Sep 2022 07:07:10 GMT
expires: Sun, 03 Sep 2023 07:07:10 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 290968
last-modified: Tue, 27 Oct 2020 18:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/angularjs/1.8.2/angular-sanitize.js
142.250.74.106200 OK 9.7 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/angularjs/1.8.2/angular-sanitize.js
IP 142.250.74.106:0
File type HTML document text\012- HTML document, ASCII text
Hash 280e451565e144865d1b28897e4b445a
77013b58305546f01acf7d8c3a0d9d54c62c4461
3c47e136563dda66fe7c36dc6267966cfe453977571f93ed50ff7ee49a3f85a9
GET /ajax/libs/angularjs/1.8.2/angular-sanitize.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vasellyude.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 9730
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Sep 2022 12:43:31 GMT
expires: Sun, 03 Sep 2023 12:43:31 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 270787
last-modified: Tue, 27 Oct 2020 18:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
chat-cloud2.bizvu.co.uk/js/bizchatClient.js
46.17.94.242200 OK 2.7 kB URL HTTP/2 chat-cloud2.bizvu.co.uk/js/bizchatClient.js
IP 46.17.94.242:0
ASN #15510 Compuweb Communications Services Limited
File type Unicode text, UTF-8 (with BOM) text, with very long lines (536), with CRLF line terminators
Hash d787f4dd5668f0430ba41014f2abfb35
19a955a824272486ddb3d15582508e3c32663ee7
a0c08e807431fff61b00e8687b15190457229cef83910bd91977fc16125e2f94
GET /js/bizchatClient.js HTTP/1.1
Host: chat-cloud2.bizvu.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vasellyude.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Tue, 07 Jun 2022 13:14:42 GMT
accept-ranges: bytes
etag: "0cd868c707ad81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-content-type-options: nosniff
date: Tue, 06 Sep 2022 15:56:37 GMT
content-length: 2676
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 521428b0e694b41561bc2ed785219929
45bf3b914325f9d646879bd16bb01feb8f29f2d4
9e2c58593cb9b9baae14e338253ca44b199d965e106ddc70c700f66f0203465a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 15:56:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 48aed5d1563ce2fdaff88e49cbad9970
2e12b88eb2214b378f28fa660da739b3139cca2f
88ed2d02e371df0efc339971b6570e3350ae711984855f3b74c177782c76ebf6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1839
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 15:56:38 GMT
Last-Modified: Tue, 06 Sep 2022 15:25:59 GMT
Server: ECS (amb/6B95)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 48aed5d1563ce2fdaff88e49cbad9970
2e12b88eb2214b378f28fa660da739b3139cca2f
88ed2d02e371df0efc339971b6570e3350ae711984855f3b74c177782c76ebf6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3842
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 15:56:38 GMT
Last-Modified: Tue, 06 Sep 2022 14:52:37 GMT
Server: ECS (amb/6BA9)
X-Cache: HIT
Content-Length: 471
www.thepfs.org/assets/custom-cii.css?V=55.16987.0.0
46.236.39.194200 OK 1.8 kB URL HTTP/1.1 www.thepfs.org/assets/custom-cii.css?V=55.16987.0.0
IP 46.236.39.194:0
ASN #12703 Pulsant (Scotland) Ltd
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 7f5d936549c3cfd1bb2b79ed39c6bdd3
f5aaa2c46d38ea127154889ab23709ed88b2d046
79f34e58d3ff44f9fcce10990c062b561d63757b0adcb5cbb1f2da2a965ec866
GET /assets/custom-cii.css?V=55.16987.0.0 HTTP/1.1
Host: www.thepfs.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vasellyude.info/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Wed, 31 Aug 2022 13:50:26 GMT
Accept-Ranges: bytes
ETag: "0fd8f9f40bdd81:0"
Vary: Accept-Encoding
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: https://shop.ciigroup.org
Access-Control-Allow-Methods: GET
Access-Control-Allow-Credentials: true
Date: Tue, 06 Sep 2022 15:56:38 GMT
Content-Length: 1762
www.thepfs.org/assets/wwwthepfsorg.css
46.236.39.194200 OK 544 B URL HTTP/1.1 www.thepfs.org/assets/wwwthepfsorg.css
IP 46.236.39.194:0
ASN #12703 Pulsant (Scotland) Ltd
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 55e92d64911a5e24febb182d7d27f0c3
1d892e7a121752b672986c2c1292f5626077238e
f2a4638969f3b82ad99f7bffb275dd4486b1090c8d1919a503b6d2f11d73a7c4
GET /assets/wwwthepfsorg.css HTTP/1.1
Host: www.thepfs.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vasellyude.info/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Last-Modified: Tue, 19 Oct 2021 12:22:14 GMT
Accept-Ranges: bytes
ETag: "0dfbff2e3c4d71:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: https://shop.ciigroup.org
Access-Control-Allow-Methods: GET
Access-Control-Allow-Credentials: true
Date: Tue, 06 Sep 2022 15:56:38 GMT
Content-Length: 544
www.thepfs.org/scripts/clipboard.min.js
46.236.39.194200 OK 3.4 kB URL HTTP/1.1 www.thepfs.org/scripts/clipboard.min.js
IP 46.236.39.194:0
ASN #12703 Pulsant (Scotland) Ltd
File type Unicode text, UTF-8 text, with very long lines (10360), with CRLF line terminators
Hash 09d35f382fac3ce2d0bdbf7c695700f1
8f20a3c6dd8617f5648d337811e9e8116928ccb8
6c8cc48af853cceb414cbb2bc6955c84958e728519830318ca10ff287627c660
GET /scripts/clipboard.min.js HTTP/1.1
Host: www.thepfs.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vasellyude.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Mon, 15 Mar 2021 10:04:48 GMT
Accept-Ranges: bytes
ETag: "0a0b2a18219d71:0"
Vary: Accept-Encoding
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: https://shop.ciigroup.org
Access-Control-Allow-Methods: GET
Access-Control-Allow-Credentials: true
Date: Tue, 06 Sep 2022 15:56:38 GMT
Content-Length: 3360
www.thepfs.org/Assets/moment.min.js
46.236.39.194200 OK 17 kB URL HTTP/1.1 www.thepfs.org/Assets/moment.min.js
IP 46.236.39.194:0
ASN #12703 Pulsant (Scotland) Ltd
File type ASCII text, with very long lines (51746), with no line terminators
Hash d003cd051638b3ee3ea5f605f8a0fdb5
79a8539bf0ad2b29ae1b25656c593d5a426f173b
d1ebe0e74c551f6555a450b5cb2429cff50cb02e3d1577c90528aa13c7deb8ef
GET /Assets/moment.min.js HTTP/1.1
Host: www.thepfs.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vasellyude.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Wed, 18 Nov 2020 20:02:48 GMT
Accept-Ranges: bytes
ETag: "06483c9e5bdd61:0"
Vary: Accept-Encoding
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: https://shop.ciigroup.org
Access-Control-Allow-Methods: GET
Access-Control-Allow-Credentials: true
Date: Tue, 06 Sep 2022 15:56:38 GMT
Content-Length: 16812
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 48aed5d1563ce2fdaff88e49cbad9970
2e12b88eb2214b378f28fa660da739b3139cca2f
88ed2d02e371df0efc339971b6570e3350ae711984855f3b74c177782c76ebf6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 15:56:38 GMT
Server: ECS (amb/6B7A)
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 48aed5d1563ce2fdaff88e49cbad9970
2e12b88eb2214b378f28fa660da739b3139cca2f
88ed2d02e371df0efc339971b6570e3350ae711984855f3b74c177782c76ebf6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 15:56:38 GMT
Server: ECS (amb/6B84)
Content-Length: 471
www.thepfs.org/assets/script.js?V=55.16987.0.0
46.236.39.194200 OK 142 kB URL HTTP/1.1 www.thepfs.org/assets/script.js?V=55.16987.0.0
IP 46.236.39.194:0
ASN #12703 Pulsant (Scotland) Ltd
File type ASCII text, with very long lines (65536), with no line terminators
Size 142 kB (141829 bytes)
Hash 896d90d41f75be366f26fa6a91059aec
372effffaa7e874eaf7908738d7762cb4f1aa13c
7f586d59e29dd7c7ab6f9b039d9030a36dda63548a4ea78121ab98003226c6c0
GET /assets/script.js?V=55.16987.0.0 HTTP/1.1
Host: www.thepfs.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vasellyude.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Wed, 31 Aug 2022 13:50:28 GMT
Accept-Ranges: bytes
ETag: "02ac1a040bdd81:0"
Vary: Accept-Encoding
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: https://shop.ciigroup.org
Access-Control-Allow-Methods: GET
Access-Control-Allow-Credentials: true
Date: Tue, 06 Sep 2022 15:56:38 GMT
Content-Length: 141829
www.thepfs.org/Assets/angular-1.8.2.min.js
46.236.39.194200 OK 62 kB URL HTTP/1.1 www.thepfs.org/Assets/angular-1.8.2.min.js
IP 46.236.39.194:0
ASN #12703 Pulsant (Scotland) Ltd
File type Unicode text, UTF-8 (with BOM) text, with very long lines (647), with CRLF line terminators
Hash 7349aa0080e12357f4121c826a3a4527
3a187ff1e613cf170760634e108cf6f90311ffc6
2837fa47dc018bff88da236700911b9c9a2c067f6503d124878e1ebacccb493a
GET /Assets/angular-1.8.2.min.js HTTP/1.1
Host: www.thepfs.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vasellyude.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Tue, 13 Jul 2021 12:57:38 GMT
Accept-Ranges: bytes
ETag: "0d45a8e677d71:0"
Vary: Accept-Encoding
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: https://shop.ciigroup.org
Access-Control-Allow-Methods: GET
Access-Control-Allow-Credentials: true
Date: Tue, 06 Sep 2022 15:56:38 GMT
Content-Length: 62246
www.thepfs.org/assets/jquery-3.6.0.min.js
46.236.39.194200 OK 31 kB URL HTTP/1.1 www.thepfs.org/assets/jquery-3.6.0.min.js
IP 46.236.39.194:0
ASN #12703 Pulsant (Scotland) Ltd
File type ASCII text, with very long lines (65446), with CRLF line terminators
Hash 7e911744734815b246e20ef603be4e58
8115911f14d3d7110f289fc51665b049aa67e5e6
6162494309a160755ccc82297438eac39ed176831f1d6fd7dab90edb22105423
GET /assets/jquery-3.6.0.min.js HTTP/1.1
Host: www.thepfs.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vasellyude.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Tue, 15 Mar 2022 16:29:30 GMT
Accept-Ranges: bytes
ETag: "0116bd88938d81:0"
Vary: Accept-Encoding
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: https://shop.ciigroup.org
Access-Control-Allow-Methods: GET
Access-Control-Allow-Credentials: true
Date: Tue, 06 Sep 2022 15:56:38 GMT
Content-Length: 30987
www.thepfs.org/assets/style.css?V=55.16987.0.0
46.236.39.194200 OK 327 kB URL HTTP/1.1 www.thepfs.org/assets/style.css?V=55.16987.0.0
IP 46.236.39.194:0
ASN #12703 Pulsant (Scotland) Ltd
File type ASCII text, with very long lines (685), with CRLF line terminators
Size 327 kB (326642 bytes)
Hash 14e8286ca21957753a8a105a93b2b308
0e31f04340fa858a76aaedf7b1e6c32e9686bdaa
9087edb035fb289186900240076cec30745d91eb6b3966154ea47df81e8d004d
GET /assets/style.css?V=55.16987.0.0 HTTP/1.1
Host: www.thepfs.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vasellyude.info/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Wed, 31 Aug 2022 13:50:28 GMT
Accept-Ranges: bytes
ETag: "02ac1a040bdd81:0"
Vary: Accept-Encoding
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: https://shop.ciigroup.org
Access-Control-Allow-Methods: GET
Access-Control-Allow-Credentials: true
Date: Tue, 06 Sep 2022 15:56:38 GMT
Content-Length: 326642
cloud.typography.com/6626596/7686812/css/fonts.css
23.14.4.143403 Forbidden 146 B URL HTTP/1.1 cloud.typography.com/6626596/7686812/css/fonts.css
IP 23.14.4.143:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash bfb5c79eb1ead7b710cc38f95ff4f30e
ddda6c54f45b871a51e7fe20eca7e3ae1a15b82c
2cf1bb309d429fa4e99f311a284b152424f8ff2c4fb5f09737f3c36965052af7
GET /6626596/7686812/css/fonts.css HTTP/1.1
Host: cloud.typography.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vasellyude.info/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 403 Forbidden
Server: AkamaiNetStorage
Content-Length: 146
Content-Type: text/html
X-hfj-bad-referrer: https://vasellyude.info/
ETag: "98542fa30ee1a9eea48b6f4c8e8d9439:1539166315"
Cache-Control: max-age=300
Date: Tue, 06 Sep 2022 15:56:39 GMT
Connection: keep-alive
www.thepfs.org/assets/icons/cookie-jar.svg
46.236.39.194200 OK 12 kB URL HTTP/1.1 www.thepfs.org/assets/icons/cookie-jar.svg
IP 46.236.39.194:0
ASN #12703 Pulsant (Scotland) Ltd
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 03bd57599281d9845de5ef313b6350d4
c6a6a2ea2f57228e4b53e91ae361cde8f7bbc9c3
26398fb72af562049d72b4d1eb49d265e8f07ecb7a6b5adfbc95a08be3633e81
GET /assets/icons/cookie-jar.svg HTTP/1.1
Host: www.thepfs.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vasellyude.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Content-Encoding: gzip
Last-Modified: Wed, 18 Nov 2020 20:02:48 GMT
Accept-Ranges: bytes
ETag: "06483c9e5bdd61:0"
Vary: Accept-Encoding
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: https://shop.ciigroup.org
Access-Control-Allow-Methods: GET
Access-Control-Allow-Credentials: true
Date: Tue, 06 Sep 2022 15:56:38 GMT
Content-Length: 11738
www.thepfs.org/assets/icons/search-icon-mobile.svg
46.236.39.194200 OK 1.2 kB URL HTTP/1.1 www.thepfs.org/assets/icons/search-icon-mobile.svg
IP 46.236.39.194:0
ASN #12703 Pulsant (Scotland) Ltd
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (624), with CRLF line terminators
Hash c4a02d3ebbf0020810ff4e1a2da23194
e3e9776d3075b0057c045982feca8bfa1ece97a9
ad476c3986d467eae4bfdf9cd204ebfe839a823dc1aa96957d49cc53d351516e
GET /assets/icons/search-icon-mobile.svg HTTP/1.1
Host: www.thepfs.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vasellyude.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Last-Modified: Wed, 18 Nov 2020 20:02:48 GMT
Accept-Ranges: bytes
ETag: "06483c9e5bdd61:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: https://shop.ciigroup.org
Access-Control-Allow-Methods: GET
Access-Control-Allow-Credentials: true
Date: Tue, 06 Sep 2022 15:56:38 GMT
Content-Length: 1232
www.thepfs.org/assets/icons/cross-mobile.svg
46.236.39.194200 OK 1.4 kB URL HTTP/1.1 www.thepfs.org/assets/icons/cross-mobile.svg
IP 46.236.39.194:0
ASN #12703 Pulsant (Scotland) Ltd
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 4b2abdde89ad6fcea52ea26df130ee0e
836c4dcd2712568e96f06497a58c9d082d6fb82c
886265bfe647462a72449dabe17ee5550caf634ee0049246fa301559cd021fbc
GET /assets/icons/cross-mobile.svg HTTP/1.1
Host: www.thepfs.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vasellyude.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Last-Modified: Wed, 18 Nov 2020 20:02:48 GMT
Accept-Ranges: bytes
ETag: "06483c9e5bdd61:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: https://shop.ciigroup.org
Access-Control-Allow-Methods: GET
Access-Control-Allow-Credentials: true
Date: Tue, 06 Sep 2022 15:56:38 GMT
Content-Length: 1421
www.thepfs.org/media/10126275/efpa-logo_pfs-website-footer-1.png
46.236.39.194200 OK 10 kB URL HTTP/1.1 www.thepfs.org/media/10126275/efpa-logo_pfs-website-footer-1.png
IP 46.236.39.194:0
ASN #12703 Pulsant (Scotland) Ltd
File type PNG image data, 508 x 110, 8-bit/color RGBA, non-interlaced\012- data
Hash 4c990ef53ee0ee97159b5ca2aae839ef
e5d4292b9038ea542d8f60969fcb679c0abcd1dd
b9a1ef4117e965903ac2bda6b0d6ffb0f1f11d072d6d8855b4454c7ae1102b7c
GET /media/10126275/efpa-logo_pfs-website-footer-1.png HTTP/1.1
Host: www.thepfs.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vasellyude.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 21 Apr 2021 15:26:11 GMT
Accept-Ranges: bytes
ETag: "5ec6d1a8c236d71:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: https://shop.ciigroup.org
Access-Control-Allow-Methods: GET
Access-Control-Allow-Credentials: true
Date: Tue, 06 Sep 2022 15:56:38 GMT
Content-Length: 10180
www.ciigroup.org/api/lastseen?site=PFS
46.236.39.194200 OK 43 B URL HTTP/1.1 www.ciigroup.org/api/lastseen?site=PFS
IP 46.236.39.194:0
ASN #12703 Pulsant (Scotland) Ltd
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /api/lastseen?site=PFS HTTP/1.1
Host: www.ciigroup.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vasellyude.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: must-revalidate, no-cache, max-age=-60
Content-Length: 43
Content-Type: image/gif
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
Set-Cookie: lastSeen=PFS; expires=Fri, 06-Sep-2024 15:56:39 GMT; path=/; secure; SameSite=None
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: https://shop.ciigroup.org
Access-Control-Allow-Methods: GET
Access-Control-Allow-Credentials: true
Date: Tue, 06 Sep 2022 15:56:38 GMT
chat-cloud2.bizvu.co.uk/chatPopup.aspx
46.17.94.242302 Found 132 B URL HTTP/2 chat-cloud2.bizvu.co.uk/chatPopup.aspx
IP 46.17.94.242:0
ASN #15510 Compuweb Communications Services Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 94c5216b6587619aae17e05a9fe46e22
b171dfd4812280771637505ce8877d980b6e5bf6
e80d65f1c2e0032e36224e7400e9eb995cccd8619fd0fce0e644b7b970c3772f
GET /chatPopup.aspx HTTP/1.1
Host: chat-cloud2.bizvu.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vasellyude.info/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: private
content-type: text/html; charset=utf-8
location: /erropPage.aspx
server: Microsoft-IIS/10.0
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-content-type-options: nosniff
date: Tue, 06 Sep 2022 15:56:38 GMT
content-length: 132
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 62c739a1335c5cf0fd4e783db6cdf14b
4f4a2acf32a7b7d8d86f7d0b037cdd16d59704ff
de1d42a2f47b8a7f1fed1880f1b485f63a5e07ede87fee3194cabeab056cf6f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 15:56:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
chat-cloud2.bizvu.co.uk/erropPage.aspx
46.17.94.242200 OK 1.4 kB URL HTTP/2 chat-cloud2.bizvu.co.uk/erropPage.aspx
IP 46.17.94.242:0
ASN #15510 Compuweb Communications Services Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash e7224629806ede20dda7464c183bc133
08fd5388c3c3ca8a1a8dd32858c130081b762781
ee57c31a2e74f7507fb0ca9d64827ac488c5c388dadf65a6077bc034b2a0f423
GET /erropPage.aspx HTTP/1.1
Host: chat-cloud2.bizvu.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vasellyude.info/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private
content-type: text/html; charset=utf-8
content-encoding: gzip
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-content-type-options: nosniff
date: Tue, 06 Sep 2022 15:56:38 GMT
content-length: 1360
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13759
Expires: Tue, 06 Sep 2022 19:45:58 GMT
Date: Tue, 06 Sep 2022 15:56:39 GMT
Connection: keep-alive
www.googletagmanager.com/gtm.js?id=GTM-MK9NKRQ
142.250.74.72200 OK 77 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-MK9NKRQ
IP 142.250.74.72:0
File type ASCII text, with very long lines (14537)
Hash f8e2a62a45f7d4de25e95e229b4a4311
70e773030625fafebd85165e19b8bf403b5ad2e6
d9d9c3dfa3388f53a196e07a4be5244ae09013f51096000c1050ed94500c3b9f
GET /gtm.js?id=GTM-MK9NKRQ HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vasellyude.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 06 Sep 2022 15:56:39 GMT
expires: Tue, 06 Sep 2022 15:56:39 GMT
cache-control: private, max-age=900
last-modified: Tue, 06 Sep 2022 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 77317
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13759
Expires: Tue, 06 Sep 2022 19:45:58 GMT
Date: Tue, 06 Sep 2022 15:56:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13759
Expires: Tue, 06 Sep 2022 19:45:58 GMT
Date: Tue, 06 Sep 2022 15:56:39 GMT
Connection: keep-alive
www.thepfs.org/assets/icons/basket.svg
46.236.39.194200 OK 1.3 kB URL HTTP/1.1 www.thepfs.org/assets/icons/basket.svg
IP 46.236.39.194:0
ASN #12703 Pulsant (Scotland) Ltd
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document, ASCII text, with very long lines (1677), with CRLF line terminators
Hash 574f684886972dafedb03bcf1fff6c54
95ed7e8536db7b7c0e0f6d8e230aace747bff553
a1daba82d0863e9b5a27d8a6cf25b57d5dede85f0a717fcf9bf90c6518dd616e
GET /assets/icons/basket.svg HTTP/1.1
Host: www.thepfs.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.thepfs.org/assets/style.css?V=55.16987.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Content-Encoding: gzip
Last-Modified: Wed, 18 Nov 2020 20:02:48 GMT
Accept-Ranges: bytes
ETag: "06483c9e5bdd61:0"
Vary: Accept-Encoding
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: https://shop.ciigroup.org
Access-Control-Allow-Methods: GET
Access-Control-Allow-Credentials: true
Date: Tue, 06 Sep 2022 15:56:38 GMT
Content-Length: 1250
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13759
Expires: Tue, 06 Sep 2022 19:45:58 GMT
Date: Tue, 06 Sep 2022 15:56:39 GMT
Connection: keep-alive
www.thepfs.org/assets/icons/search-icon.svg
46.236.39.194200 OK 1.3 kB URL HTTP/1.1 www.thepfs.org/assets/icons/search-icon.svg
IP 46.236.39.194:0
ASN #12703 Pulsant (Scotland) Ltd
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (350), with CRLF line terminators
Hash 1a0c4f42f7f4dd565a23f94b8e10967d
d8982e4721f9097589f3542e9e55f37adaa01d3d
8340d7474f60f4b140f441eff661c1117727eeab2e6adefe9584a1a658aba6cf
GET /assets/icons/search-icon.svg HTTP/1.1
Host: www.thepfs.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.thepfs.org/assets/style.css?V=55.16987.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Last-Modified: Wed, 18 Nov 2020 20:02:48 GMT
Accept-Ranges: bytes
ETag: "06483c9e5bdd61:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: https://shop.ciigroup.org
Access-Control-Allow-Methods: GET
Access-Control-Allow-Credentials: true
Date: Tue, 06 Sep 2022 15:56:38 GMT
Content-Length: 1250
www.thepfs.org/assets/icons/pfs_logo.svg
46.236.39.194200 OK 96 kB URL HTTP/1.1 www.thepfs.org/assets/icons/pfs_logo.svg
IP 46.236.39.194:0
ASN #12703 Pulsant (Scotland) Ltd
File type SVG Scalable Vector Graphics image\012- , Unicode text, UTF-8 text, with very long lines (62985), with CRLF line terminators
Hash 73af5f424c2b995354211d19c5e21229
2f71ae0f650160b971fe004839bdd5c13204ae7e
65f2d6f0765d1b5934a5404ecec427c4348d45bf4967d4903d0b3679a5e6155d
GET /assets/icons/pfs_logo.svg HTTP/1.1
Host: www.thepfs.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.thepfs.org/assets/wwwthepfsorg.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Last-Modified: Wed, 18 Nov 2020 20:02:48 GMT
Accept-Ranges: bytes
ETag: "06483c9e5bdd61:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: https://shop.ciigroup.org
Access-Control-Allow-Methods: GET
Access-Control-Allow-Credentials: true
Date: Tue, 06 Sep 2022 15:56:38 GMT
Content-Length: 95655
www.thepfs.org/assets/icons/dropdown-chevron.svg
46.236.39.194200 OK 762 B URL HTTP/1.1 www.thepfs.org/assets/icons/dropdown-chevron.svg
IP 46.236.39.194:0
ASN #12703 Pulsant (Scotland) Ltd
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 3d0b14c97fa8e856f3c7f4690fad4a5e
561338e2d8679f9fe7da13ec9d307ab0958e2e2c
849cdefd08dc58efb5e13f25eed0467dd34826e549d08d07d58c484ac6e666f4
GET /assets/icons/dropdown-chevron.svg HTTP/1.1
Host: www.thepfs.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.thepfs.org/assets/style.css?V=55.16987.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Last-Modified: Wed, 18 Nov 2020 20:02:48 GMT
Accept-Ranges: bytes
ETag: "06483c9e5bdd61:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: https://shop.ciigroup.org
Access-Control-Allow-Methods: GET
Access-Control-Allow-Credentials: true
Date: Tue, 06 Sep 2022 15:56:38 GMT
Content-Length: 762
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1756524-f0d1-4149-aa44-603b827f87d4.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1756524-f0d1-4149-aa44-603b827f87d4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 983e705542fa78b4d5c876e0c1eada7e
5fc951e5236edd282d4975853ca35dab2e55fb17
fa6e478fc213f6cb6c9f33c96c51105262c857bfe313b3d310755be30b1feeb3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1756524-f0d1-4149-aa44-603b827f87d4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6656
x-amzn-requestid: 2703eaf4-1a5a-41a6-859b-47255865efb0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAX-3F2ZIAMFpLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166d2b-6df026de5a9230ed429d08c1;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: FIIvB2jeQ_PBDzi8XRN0jnNxze3OwDbz8TBaIcadRvmQd2EFhCwX7Q==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:44:33 GMT
age: 65526
etag: "5fc951e5236edd282d4975853ca35dab2e55fb17"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79118911-9148-4daf-8809-5e20fe16c9eb.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79118911-9148-4daf-8809-5e20fe16c9eb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 21826f85e6f926272f6a770645040b4a
21aad3ec92f4e1a353601d0c5ab8b60f44ea418f
adb23b43d5f65606cfb5fc69c3d410f10df39575f69abc0d786cfbe564819cae
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79118911-9148-4daf-8809-5e20fe16c9eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11650
x-amzn-requestid: 83dd95be-9176-4798-94f9-c538bfcc8c49
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YBJxTE0GIAMF7SA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6316bcd4-4d5b7d8b28221944331a0f14;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 03:21:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: mFE-xzX9i8VCcgNNoNFHCJ6BRlFkqOg9VxEYo9v7QNHa2Yyjbb9ytQ==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 06:56:07 GMT
age: 32432
etag: "21aad3ec92f4e1a353601d0c5ab8b60f44ea418f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4b02d0f-9da0-42dc-a234-02e974e7d286.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4b02d0f-9da0-42dc-a234-02e974e7d286.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c23179b2131543088771e3fa84ff231
ae50ae4aecd962b698c19f2863857b51cea7fcec
660900ca69b1787a734c1dbe3d6b9b19656912b4bc4715964c4325edff57f008
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4b02d0f-9da0-42dc-a234-02e974e7d286.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7855
x-amzn-requestid: d7c8054c-d7d3-4b76-815d-36c3a2e1f6a4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAYn6FwzoAMF40g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166e32-3ededbf27f83503978e0d775;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:46:26 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: QFEoJOq9eyhQH3KTlAB_ctOvGWRfAkPMHiZUa34wae07KaezXFodBg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:57:14 GMT
age: 64765
etag: "ae50ae4aecd962b698c19f2863857b51cea7fcec"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.thepfs.org/assets/images/carousel-background-blue.png
46.236.39.194200 OK 3.5 kB URL HTTP/1.1 www.thepfs.org/assets/images/carousel-background-blue.png
IP 46.236.39.194:0
ASN #12703 Pulsant (Scotland) Ltd
File type PNG image data, 805 x 469, 8-bit/color RGBA, non-interlaced\012- data
Hash 8443257cb3713af408a2c72f89ea98f5
38a28acdda0dcfafddafb9a97ad1ed9fe92090b9
b2dc9272236c3fa88a8aad218c943018655faef56f93f55776ec632bad0172c7
GET /assets/images/carousel-background-blue.png HTTP/1.1
Host: www.thepfs.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.thepfs.org/assets/style.css?V=55.16987.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Tue, 18 Jan 2022 14:41:38 GMT
Accept-Ranges: bytes
ETag: "03dac7f79cd81:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: https://shop.ciigroup.org
Access-Control-Allow-Methods: GET
Access-Control-Allow-Credentials: true
Date: Tue, 06 Sep 2022 15:56:38 GMT
Content-Length: 3499
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13759
Expires: Tue, 06 Sep 2022 19:45:58 GMT
Date: Tue, 06 Sep 2022 15:56:39 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106059e1-95ed-4ffb-b6d2-7b4f160333ed.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106059e1-95ed-4ffb-b6d2-7b4f160333ed.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ec466c0d472e43c11d36bf6fce068205
720d3624a76d060b8e2699e9aa7a320e3efd4878
5553fc24713aae808f5ab81671551b0ae719435f3ced9f25df97d8edf6bfe86f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106059e1-95ed-4ffb-b6d2-7b4f160333ed.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12683
x-amzn-requestid: 6127e5b6-72f6-40df-b400-41a1f147f6da
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xz8XmEe0IAMFQDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63117430-2b27a2683d2d320172cef32e;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 03:10:40 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Mj_IT5g7hGu2AunKK7mvierv5BQ8cAxhnbGaUNsL6hRNu6MRAzIBDw==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 04:31:02 GMT
age: 41137
etag: "720d3624a76d060b8e2699e9aa7a320e3efd4878"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf271bbd-cebf-41d8-a0c3-8f16d4423a79.jpeg
34.120.237.76200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf271bbd-cebf-41d8-a0c3-8f16d4423a79.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8ce50dfa23e7f34ff68cc6426c2823f7
b1685694999272feb4d9fc39296418cd95480678
4df89827b1b34bb577f28f281ed85067a2e34dd48923b9bae1561e81f67be49b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf271bbd-cebf-41d8-a0c3-8f16d4423a79.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7152
x-amzn-requestid: 2571ff54-e2f8-4072-8a26-3d0dd4cd3523
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAWsfHz_IAMFaXQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166b1c-6a598849314cdc433f9f82f7;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:33:16 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: I6xmRiAaxHPKpBlCPaRWoMiISlrXRrltO57N3NayiuIvv3gCWTWCZQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:53:35 GMT
age: 64984
etag: "b1685694999272feb4d9fc39296418cd95480678"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.thepfs.org/media/10126274/pfs-logo.png
46.236.39.194200 OK 23 kB URL HTTP/1.1 www.thepfs.org/media/10126274/pfs-logo.png
IP 46.236.39.194:0
ASN #12703 Pulsant (Scotland) Ltd
File type PNG image data, 273 x 199, 8-bit/color RGBA, non-interlaced\012- data
Hash c60fadff5335d1c86f1fc91e50cc5e0b
23e938ed1b3cfb3eeb7e8a3dc34efdaf8190b597
9f80115d3bfc588284766613d686166092fc269d39d7bd2f1a063c29ab780459
GET /media/10126274/pfs-logo.png HTTP/1.1
Host: www.thepfs.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vasellyude.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 21 Apr 2021 15:25:51 GMT
Accept-Ranges: bytes
ETag: "a9e21c9dc236d71:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: https://shop.ciigroup.org
Access-Control-Allow-Methods: GET
Access-Control-Allow-Credentials: true
Date: Tue, 06 Sep 2022 15:56:38 GMT
Content-Length: 22618
www.thepfs.org/assets/icons/twitter-mobile-footer-icon.svg
46.236.39.194200 OK 1.3 kB URL HTTP/1.1 www.thepfs.org/assets/icons/twitter-mobile-footer-icon.svg
IP 46.236.39.194:0
ASN #12703 Pulsant (Scotland) Ltd
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1445), with CRLF line terminators
Hash f8e07fa19c2e6db56ae622917a39570c
e4b58f2e63c859c231ed39351cdd79e7e460aff4
9e99cc861a2f7467859b2273deb8b242c20a5a19de1ecc6c50c06cc20c22cc0e
GET /assets/icons/twitter-mobile-footer-icon.svg HTTP/1.1
Host: www.thepfs.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.thepfs.org/assets/style.css?V=55.16987.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Content-Encoding: gzip
Last-Modified: Wed, 18 Nov 2020 20:02:48 GMT
Accept-Ranges: bytes
ETag: "06483c9e5bdd61:0"
Vary: Accept-Encoding
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: https://shop.ciigroup.org
Access-Control-Allow-Methods: GET
Access-Control-Allow-Credentials: true
Date: Tue, 06 Sep 2022 15:56:38 GMT
Content-Length: 1278
www.thepfs.org/assets/images/carousel-background-orange.png
46.236.39.194200 OK 3.5 kB URL HTTP/1.1 www.thepfs.org/assets/images/carousel-background-orange.png
IP 46.236.39.194:0
ASN #12703 Pulsant (Scotland) Ltd
File type PNG image data, 805 x 469, 8-bit/color RGBA, non-interlaced\012- data
Hash b0cf33fbdb50fbf186c003776d11b587
fb9b53472bbcdd6411381f508ec20ee26ff3a4f6
447d4092d6b74d8b88dcd08c4f1ea736dbfedbfa2443208532b613f1a7662caf
GET /assets/images/carousel-background-orange.png HTTP/1.1
Host: www.thepfs.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.thepfs.org/assets/style.css?V=55.16987.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Tue, 18 Jan 2022 14:41:38 GMT
Accept-Ranges: bytes
ETag: "03dac7f79cd81:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: https://shop.ciigroup.org
Access-Control-Allow-Methods: GET
Access-Control-Allow-Credentials: true
Date: Tue, 06 Sep 2022 15:56:38 GMT
Content-Length: 3503
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed40d152-6303-4f00-ad80-054a81ea5425.webp
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed40d152-6303-4f00-ad80-054a81ea5425.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0efc32eccbf76ac0d89f324d09a7fd1f
f8589eb3907582137d8b9373af745d80eddbf1bb
ee0f5e56c97e50e1c20801ad0a5379982feef16a11137f784f404d14e9c65824
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed40d152-6303-4f00-ad80-054a81ea5425.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6482
x-amzn-requestid: 5e5b342b-0224-4916-8656-237b4c90ae66
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAX-5FaYIAMFzjw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166d2b-412f897b451130af70026eab;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: kD_wcIHwmUDV9M9Pl2NtUwRw0CElnHhX6NGZ5PQlnchvdxpLAZhm0w==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:46:42 GMT
etag: "f8589eb3907582137d8b9373af745d80eddbf1bb"
content-type: image/jpeg
age: 65397
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.thepfs.org/assets/icons/linkedin-mobile-footer-icon.svg
46.236.39.194200 OK 2.4 kB URL HTTP/1.1 www.thepfs.org/assets/icons/linkedin-mobile-footer-icon.svg
IP 46.236.39.194:0
ASN #12703 Pulsant (Scotland) Ltd
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (572), with CRLF line terminators
Hash 63b9f5e2e9784fea70835be43090ecd6
4403a6d203116eb1b8e5e8fafe8b4bdfaaa460b5
52ff419638307f5def1d4825015b789097d74a7a5f342fa24298d05d7ef37f84
GET /assets/icons/linkedin-mobile-footer-icon.svg HTTP/1.1
Host: www.thepfs.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.thepfs.org/assets/style.css?V=55.16987.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Last-Modified: Wed, 18 Nov 2020 20:02:48 GMT
Accept-Ranges: bytes
ETag: "06483c9e5bdd61:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: https://shop.ciigroup.org
Access-Control-Allow-Methods: GET
Access-Control-Allow-Credentials: true
Date: Tue, 06 Sep 2022 15:56:38 GMT
Content-Length: 2392
www.thepfs.org/assets/icons/membership-shortcut-icon.svg
46.236.39.194200 OK 4.4 kB URL HTTP/1.1 www.thepfs.org/assets/icons/membership-shortcut-icon.svg
IP 46.236.39.194:0
ASN #12703 Pulsant (Scotland) Ltd
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash d937206b2c2d13c3e48e61e4f5610bdb
a862c3c5db6df33021dd00e65466952fe168e6f1
18d3474c22245bad86b6a364b83998f59d158753ae65a15aa2953b1f41ebd55c
GET /assets/icons/membership-shortcut-icon.svg HTTP/1.1
Host: www.thepfs.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.thepfs.org/assets/style.css?V=55.16987.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Last-Modified: Wed, 18 Nov 2020 20:02:48 GMT
Accept-Ranges: bytes
ETag: "06483c9e5bdd61:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: https://shop.ciigroup.org
Access-Control-Allow-Methods: GET
Access-Control-Allow-Credentials: true
Date: Tue, 06 Sep 2022 15:56:38 GMT
Content-Length: 4392
www.thepfs.org/assets/icons/learning-shortcut-icon.svg
46.236.39.194200 OK 5.9 kB URL HTTP/1.1 www.thepfs.org/assets/icons/learning-shortcut-icon.svg
IP 46.236.39.194:0
ASN #12703 Pulsant (Scotland) Ltd
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document, ASCII text, with very long lines (1155), with CRLF line terminators
Hash d6acc948988d1a12c684c60713235889
1cb0d81070349b4259cd811e9464011fca8057db
b9c449cd831113c4d30a6b52b2d6b18b5291cad21cd54350071bc6fc1e81c414
GET /assets/icons/learning-shortcut-icon.svg HTTP/1.1
Host: www.thepfs.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.thepfs.org/assets/style.css?V=55.16987.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Last-Modified: Wed, 18 Nov 2020 20:02:48 GMT
Accept-Ranges: bytes
ETag: "06483c9e5bdd61:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: https://shop.ciigroup.org
Access-Control-Allow-Methods: GET
Access-Control-Allow-Credentials: true
Date: Tue, 06 Sep 2022 15:56:38 GMT
Content-Length: 5928
www.thepfs.org/media/10127591/homehero1960x400d.png
46.236.39.194200 OK 217 kB URL HTTP/1.1 www.thepfs.org/media/10127591/homehero1960x400d.png
IP 46.236.39.194:0
ASN #12703 Pulsant (Scotland) Ltd
File type PNG image data, 1200 x 400, 8-bit/color RGB, non-interlaced\012- data
Size 217 kB (216817 bytes)
Hash 4e8a2fec2789cf4d3b8ee0164799dcfd
d06758c3fcaead4e5345f5c032bc7058945d7d43
670694ab88121a2266c6635255fc2ff8823b5e389733c0a06cceff66b72e920f
GET /media/10127591/homehero1960x400d.png HTTP/1.1
Host: www.thepfs.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vasellyude.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Tue, 18 Jan 2022 13:53:54 GMT
Accept-Ranges: bytes
ETag: "f6f3abd472cd81:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: https://shop.ciigroup.org
Access-Control-Allow-Methods: GET
Access-Control-Allow-Credentials: true
Date: Tue, 06 Sep 2022 15:56:38 GMT
Content-Length: 216817
www.thepfs.org/assets/icons/top-stories-icon.svg
46.236.39.194200 OK 6.4 kB URL HTTP/1.1 www.thepfs.org/assets/icons/top-stories-icon.svg
IP 46.236.39.194:0
ASN #12703 Pulsant (Scotland) Ltd
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (630), with CRLF line terminators
Hash 871ac2198268dba093d191374668055d
71a53866145f76e073bf82102acbf8a7af09db7c
e3838a7aa80e155b574c392d410caae4acfc80219c90f39131cdb7665410a072
GET /assets/icons/top-stories-icon.svg HTTP/1.1
Host: www.thepfs.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.thepfs.org/assets/style.css?V=55.16987.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Last-Modified: Wed, 18 Nov 2020 20:02:48 GMT
Accept-Ranges: bytes
ETag: "06483c9e5bdd61:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: https://shop.ciigroup.org
Access-Control-Allow-Methods: GET
Access-Control-Allow-Credentials: true
Date: Tue, 06 Sep 2022 15:56:38 GMT
Content-Length: 6409
www.thepfs.org/assets/icons/insight-leadership-shortcut-icon.svg
46.236.39.194200 OK 6.6 kB URL HTTP/1.1 www.thepfs.org/assets/icons/insight-leadership-shortcut-icon.svg
IP 46.236.39.194:0
ASN #12703 Pulsant (Scotland) Ltd
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document, ASCII text, with very long lines (1035), with CRLF line terminators
Hash 3dc634232413177467c7a557a1af5e3f
c3f506cd629b3b988e99ee052750eeef74ec7d54
852c0356421de72a0092519810d29960ef2d49c6b6ae09415fc0d425c486d1e3
GET /assets/icons/insight-leadership-shortcut-icon.svg HTTP/1.1
Host: www.thepfs.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.thepfs.org/assets/style.css?V=55.16987.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Last-Modified: Wed, 18 Nov 2020 20:02:48 GMT
Accept-Ranges: bytes
ETag: "06483c9e5bdd61:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: https://shop.ciigroup.org
Access-Control-Allow-Methods: GET
Access-Control-Allow-Credentials: true
Date: Tue, 06 Sep 2022 15:56:38 GMT
Content-Length: 6643
www.thepfs.org/assets/images/shield-bg.png
46.236.39.194200 OK 122 kB URL HTTP/1.1 www.thepfs.org/assets/images/shield-bg.png
IP 46.236.39.194:0
ASN #12703 Pulsant (Scotland) Ltd
File type PNG image data, 439 x 760, 8-bit/color RGBA, non-interlaced\012- data
Size 122 kB (121605 bytes)
Hash 5ab140e51596930885540eb290dc049a
9b798157d53756fe98460c50cdb600a9303901f3
527a3b2368db9ffd5d4a1220fe130606ace56949810c9a733cad1daa7a688a42
GET /assets/images/shield-bg.png HTTP/1.1
Host: www.thepfs.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.thepfs.org/assets/style.css?V=55.16987.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Wed, 18 Nov 2020 20:02:48 GMT
Accept-Ranges: bytes
ETag: "06483c9e5bdd61:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: https://shop.ciigroup.org
Access-Control-Allow-Methods: GET
Access-Control-Allow-Credentials: true
Date: Tue, 06 Sep 2022 15:56:38 GMT
Content-Length: 121605
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 62c739a1335c5cf0fd4e783db6cdf14b
4f4a2acf32a7b7d8d86f7d0b037cdd16d59704ff
de1d42a2f47b8a7f1fed1880f1b485f63a5e07ede87fee3194cabeab056cf6f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 15:56:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.thepfs.org/media/10128009/festivallogo.jpg
46.236.39.194200 OK 466 kB URL HTTP/1.1 www.thepfs.org/media/10128009/festivallogo.jpg
IP 46.236.39.194:0
ASN #12703 Pulsant (Scotland) Ltd
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=800, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1400], baseline, precision 8, 1500x400, components 3\012- data
Size 466 kB (466176 bytes)
Hash c08a5c6c04b78c1ea125963b46965a46
614f8dd17bb7c40d73b3f719d3df378c8262613a
7311bc4d5e10b811e258de7a6a87d01d08e308b212b12afa71c24b6127dadeea
GET /media/10128009/festivallogo.jpg HTTP/1.1
Host: www.thepfs.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vasellyude.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/jpeg
Last-Modified: Tue, 22 Mar 2022 07:54:12 GMT
Accept-Ranges: bytes
ETag: "7c0fb4c23dd81:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: https://shop.ciigroup.org
Access-Control-Allow-Methods: GET
Access-Control-Allow-Credentials: true
Date: Tue, 06 Sep 2022 15:56:38 GMT
Content-Length: 466176
www.thepfs.org/assets/icons/youtube-mobile-footer-icon.svg
46.236.39.194200 OK 2.8 kB URL HTTP/1.1 www.thepfs.org/assets/icons/youtube-mobile-footer-icon.svg
IP 46.236.39.194:0
ASN #12703 Pulsant (Scotland) Ltd
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3002), with CRLF line terminators
Hash 73a333fd604262fe8b48fec17c0169b7
a34a31e9fded77ef68a93bc236824a66fdf2ebe1
a931c1da3f4afd1bbb7f2a35050b16986e72a8806efd294d817eaaff5bf09961
GET /assets/icons/youtube-mobile-footer-icon.svg HTTP/1.1
Host: www.thepfs.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.thepfs.org/assets/style.css?V=55.16987.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Content-Encoding: gzip
Last-Modified: Wed, 18 Nov 2020 20:02:48 GMT
Accept-Ranges: bytes
ETag: "06483c9e5bdd61:0"
Vary: Accept-Encoding
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: https://shop.ciigroup.org
Access-Control-Allow-Methods: GET
Access-Control-Allow-Credentials: true
Date: Tue, 06 Sep 2022 15:56:38 GMT
Content-Length: 2811
www.thepfs.org/assets/icons/search-icon-mobile.svg
46.236.39.194200 OK 1.2 kB URL HTTP/1.1 www.thepfs.org/assets/icons/search-icon-mobile.svg
IP 46.236.39.194:0
ASN #12703 Pulsant (Scotland) Ltd
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (624), with CRLF line terminators
Hash c4a02d3ebbf0020810ff4e1a2da23194
e3e9776d3075b0057c045982feca8bfa1ece97a9
ad476c3986d467eae4bfdf9cd204ebfe839a823dc1aa96957d49cc53d351516e
GET /assets/icons/search-icon-mobile.svg HTTP/1.1
Host: www.thepfs.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/xml, text/xml, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vasellyude.info
Connection: keep-alive
Referer: https://vasellyude.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Last-Modified: Wed, 18 Nov 2020 20:02:48 GMT
Accept-Ranges: bytes
ETag: "06483c9e5bdd61:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: https://shop.ciigroup.org
Access-Control-Allow-Methods: GET
Access-Control-Allow-Credentials: true
Date: Tue, 06 Sep 2022 15:56:38 GMT
Content-Length: 1232
www.thepfs.org/assets/icons/search-icon-mobile.svg
46.236.39.194200 OK 1.2 kB URL HTTP/1.1 www.thepfs.org/assets/icons/search-icon-mobile.svg
IP 46.236.39.194:0
ASN #12703 Pulsant (Scotland) Ltd
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (624), with CRLF line terminators
Hash c4a02d3ebbf0020810ff4e1a2da23194
e3e9776d3075b0057c045982feca8bfa1ece97a9
ad476c3986d467eae4bfdf9cd204ebfe839a823dc1aa96957d49cc53d351516e
GET /assets/icons/search-icon-mobile.svg HTTP/1.1
Host: www.thepfs.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/xml, text/xml, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vasellyude.info
Connection: keep-alive
Referer: https://vasellyude.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Last-Modified: Wed, 18 Nov 2020 20:02:48 GMT
Accept-Ranges: bytes
ETag: "06483c9e5bdd61:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: https://shop.ciigroup.org
Access-Control-Allow-Methods: GET
Access-Control-Allow-Credentials: true
Date: Tue, 06 Sep 2022 15:56:38 GMT
Content-Length: 1232
www.thepfs.org/assets/icons/search-icon-mobile.svg
46.236.39.194200 OK 1.2 kB URL HTTP/1.1 www.thepfs.org/assets/icons/search-icon-mobile.svg
IP 46.236.39.194:0
ASN #12703 Pulsant (Scotland) Ltd
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (624), with CRLF line terminators
Hash c4a02d3ebbf0020810ff4e1a2da23194
e3e9776d3075b0057c045982feca8bfa1ece97a9
ad476c3986d467eae4bfdf9cd204ebfe839a823dc1aa96957d49cc53d351516e
GET /assets/icons/search-icon-mobile.svg HTTP/1.1
Host: www.thepfs.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/xml, text/xml, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vasellyude.info
Connection: keep-alive
Referer: https://vasellyude.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Last-Modified: Wed, 18 Nov 2020 20:02:48 GMT
Accept-Ranges: bytes
ETag: "06483c9e5bdd61:0"
X-Powered-By: ASP.NET
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Origin: https://shop.ciigroup.org
Access-Control-Allow-Methods: GET
Access-Control-Allow-Credentials: true
Date: Tue, 06 Sep 2022 15:56:38 GMT
Content-Length: 1232
vasellyude.info/favicon.ico
94.26.249.187404 Not Found 162 B URL HTTP/1.1 vasellyude.info/favicon.ico
IP 94.26.249.187:0
ASN #49505 OOO Network of data-centers Selectel
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 70461da8b94c6ca5d2fda3260c5a8c3b
994bc667720c21257500e29038c1a5f61e25da1e
f33c27745f2bd87344be790465ef984a972fd539dc83bd4f61d4242c607ef1ee
GET /favicon.ico HTTP/1.1
Host: vasellyude.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vasellyude.info/
Cookie: _subid=376l60j15f8pe; dc0a9=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjE0NjRcIjoxNjYyNDc5Nzk3fSxcImNhbXBhaWduc1wiOntcIjg4OVwiOjE2NjI0Nzk3OTd9LFwidGltZVwiOjE2NjI0Nzk3OTd9In0.eCe0rfrUwO9NfTU8A8GaMP7JEQl7JBT6HKkkRXpTI6Q
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 06 Sep 2022 15:56:39 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
chat-cloud2.bizvu.co.uk/css/popupChat.css
46.17.94.242200 OK 9.1 kB URL HTTP/2 chat-cloud2.bizvu.co.uk/css/popupChat.css
IP 46.17.94.242:0
ASN #15510 Compuweb Communications Services Limited
File type Unicode text, UTF-8 (with BOM) text, with very long lines (353), with CRLF line terminators
Hash 3d3cdbcdcc148182a183a410509a3a08
e600f3605a344f387cb05225d69482db62c46c68
96d678eca487e3a58210fb39e9da826c127daf5954c5332c2c8062f9dda9e5b3
GET /css/popupChat.css HTTP/1.1
Host: chat-cloud2.bizvu.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chat-cloud2.bizvu.co.uk/erropPage.aspx
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: gzip
last-modified: Wed, 08 Jun 2022 11:45:22 GMT
accept-ranges: bytes
etag: "075213c2d7bd81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-content-type-options: nosniff
date: Tue, 06 Sep 2022 15:56:38 GMT
content-length: 9130
X-Firefox-Spdy: h2
chat-cloud2.bizvu.co.uk/js/lib/jquery-2.1.3.min.js
46.17.94.242200 OK 32 kB URL HTTP/2 chat-cloud2.bizvu.co.uk/js/lib/jquery-2.1.3.min.js
IP 46.17.94.242:0
ASN #15510 Compuweb Communications Services Limited
File type Unicode text, UTF-8 (with BOM) text, with very long lines (38644), with CRLF line terminators
Hash a63e518fb1d7dcd3a941f61d6d8e14f7
edfabc6357fa6e6c24b71f4a6ca43a7cc0a6208f
ab09227f359a7a1fb319ac77fe2d5ca1818aa83efe6e8276058cd6360ddd4d67
GET /js/lib/jquery-2.1.3.min.js HTTP/1.1
Host: chat-cloud2.bizvu.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chat-cloud2.bizvu.co.uk/erropPage.aspx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 20 Aug 2020 11:10:46 GMT
accept-ranges: bytes
etag: "03f578de276d61:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-content-type-options: nosniff
date: Tue, 06 Sep 2022 15:56:38 GMT
content-length: 31585
X-Firefox-Spdy: h2
chat-cloud2.bizvu.co.uk/js/errorHandler.js?id=7.2.4
46.17.94.242200 OK 893 B URL HTTP/2 chat-cloud2.bizvu.co.uk/js/errorHandler.js?id=7.2.4
IP 46.17.94.242:0
ASN #15510 Compuweb Communications Services Limited
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash d841d52543a90f23f4b659b63bd4e2e1
913d12bb1ec8fb8ccd0529f6cae56f9f8ed1daa8
8f7bf2ac99112f122a3b4694650a404730e50958a4928ad1806199f322f73673
GET /js/errorHandler.js?id=7.2.4 HTTP/1.1
Host: chat-cloud2.bizvu.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://chat-cloud2.bizvu.co.uk/erropPage.aspx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Fri, 25 Mar 2022 14:07:56 GMT
accept-ranges: bytes
etag: "677fcb95140d81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
x-content-type-options: nosniff
date: Tue, 06 Sep 2022 15:56:38 GMT
content-length: 893
X-Firefox-Spdy: h2
snap.licdn.com/li.lms-analytics/insight.min.js
23.36.76.121200 OK 3.1 kB URL HTTP/2 snap.licdn.com/li.lms-analytics/insight.min.js
IP 23.36.76.121:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (7751)
Hash 57efbbeb3e1d23c82b677511c67c8b0e
f927ba115ef4be362694c22850ddbdd1c1b054d1
873b38d80c8ff1ffcac23ecdb7fb2d17413ae3c217236d8e1e24574b1c4707c6
GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vasellyude.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Fri, 12 Aug 2022 20:23:36 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=41695
date: Tue, 06 Sep 2022 15:56:39 GMT
content-length: 3063
x-cdn: AKAM
X-Firefox-Spdy: h2
extend.vimeocdn.com/ga/7202580.js
151.101.86.109200 OK 5.6 kB URL HTTP/2 extend.vimeocdn.com/ga/7202580.js
IP 151.101.86.109:0
File type Unicode text, UTF-8 text, with very long lines (16858)
Hash 83eba8b0e75ce00d93d7044d0c3a9851
37daa8e5ded997f29c16bfe8fee8bf22ce7ab563
9216d6f8c1b56658ddb12c7e3ea1003b81aead850e2a8c99c014a2bcf5112d34
GET /ga/7202580.js HTTP/1.1
Host: extend.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vasellyude.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
last-modified: Thu, 01 Sep 2022 18:23:26 GMT
etag: "421e-5e7a1b598e380-gzip"
expires: Sun, 29 Aug 2032 19:32:03 GMT
content-encoding: gzip
x-bapp-server: assets-67ff759c65-v5tqh
x-vimeo-dc: ge
timing-allow-origin: *
content-type: text/javascript; charset=utf-8
accept-ranges: bytes
date: Tue, 06 Sep 2022 15:56:39 GMT
via: 1.1 varnish
age: 419077
x-served-by: cache-bma1641-BMA
x-cache: HIT
x-cache-hits: 17605
x-timer: S1662479800.891879,VS0,VE0
vary: Accept-Encoding
cache-control: max-age=86400
content-length: 5579
X-Firefox-Spdy: h2
script.hotjar.com/modules.d5eb3c97b67a0b8958ff.js
143.204.55.96200 OK 66 kB URL HTTP/2 script.hotjar.com/modules.d5eb3c97b67a0b8958ff.js
IP 143.204.55.96:0
File type Unicode text, UTF-8 text, with very long lines (48715)
Hash 5a03435fb2b1019b1b00d7bc5c267f72
6d9116f703cb7fced1cfb7eba229302f4950e4b0
555555e6799149ac64f285eb30f78583dfa52fc0d23dbb75c357897873b8cb97
GET /modules.d5eb3c97b67a0b8958ff.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vasellyude.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 65509
date: Fri, 02 Sep 2022 09:50:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "5a03435fb2b1019b1b00d7bc5c267f72"
last-modified: Fri, 02 Sep 2022 09:49:47 GMT
strict-transport-security: max-age=86400; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: ohGaI1G5poLJ4VSrLtd8kFbmUj9HgXmZ0anTtUI0-l7ubK-s8xEdGA==
age: 367593
X-Firefox-Spdy: h2
vars.hotjar.com/box-1ada912494ba7fc7aca15fcef1c2a7ae.html
143.204.55.105200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-1ada912494ba7fc7aca15fcef1c2a7ae.html
IP 143.204.55.105:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2431), with no line terminators
Hash 0b3d3f4206ab84d8861a8cc4b2ddbe66
4561b7c0419b65db5c1314be2143bd1734e88d89
ec42652b198c82469afbe5e6e69312a25425c1fd38d379cf3761b328ecd48e4a
GET /box-1ada912494ba7fc7aca15fcef1c2a7ae.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vasellyude.info/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1044
date: Wed, 13 Jul 2022 08:33:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "0b3d3f4206ab84d8861a8cc4b2ddbe66"
last-modified: Wed, 13 Jul 2022 08:32:20 GMT
strict-transport-security: max-age=86400; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 0ADXHC_RQjbaHHAhDJvuqrTB6eTgP7gUTpPfXAPaafT4Gt3-sKiapg==
age: 4778613
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vasellyude.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Tue, 06 Sep 2022 14:41:12 GMT
expires: Tue, 06 Sep 2022 16:41:12 GMT
cache-control: public, max-age=7200
age: 4527
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 8806f7ce565af1530efafb651b2e8a35
608bccc6a3939255a804bfc115b455c38f649df7
50f63773b0f936c5105b7c01cee4b064c771a6d454adb61dcdb5f85d8a185e58
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 06 Sep 2022 15:56:39 GMT
Last-Modified: Tue, 06 Sep 2022 14:23:15 GMT
Server: ECS (nyb/1D20)
X-Cache: Miss from cloudfront
Via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: YWE9urgC71AvLR9EI1ApvpG0XhmRbFDnfcMc0J4IPcoJOOzYEh04gw==
Age: 5604
www.google-analytics.com/plugins/ua/linkid.js
142.250.74.174200 OK 859 B URL HTTP/2 www.google-analytics.com/plugins/ua/linkid.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1335)
Hash 904463ce35aee800847ab85ec948aaf6
904e4d2647466c7f7e0f7412019984e3b2ccfb24
057b4d29359dfe2536a2ec40243bdfa7b151222efcc1eb358608994a14c34237
GET /plugins/ua/linkid.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vasellyude.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 859
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Sep 2022 15:12:34 GMT
expires: Tue, 06 Sep 2022 16:12:34 GMT
cache-control: public, max-age=3600
age: 2645
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=1979857&time=1662479794201&url=https%3A%2F%2Fvasellyude.info%2F
13.107.42.14302 Found 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=1979857&time=1662479794201&url=https%3A%2F%2Fvasellyude.info%2F
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=1979857&time=1662479794201&url=https%3A%2F%2Fvasellyude.info%2F HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vasellyude.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D1979857%26time%3D1662479794201%26url%3Dhttps%253A%252F%252Fvasellyude.info%252F%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQL6CoEC85ZamwAAAYMThJbA06TrXx5AhsvhG4GT8dzVYRMPcV00fzPdtA45VYn23IDv-F-DoIuU8Q; Max-Age=2592000; Expires=Thu, 06 Oct 2022 15:56:40 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQJ6GZxQGyx0JAAAAYMThJbBBttvhMwUJkZZal6CpnaPdTr-fJ5WrMZpJX-GoBeP6D_GBYyv9Gv_Ci_uLsoH2Q; Max-Age=2592000; Expires=Thu, 06 Oct 2022 15:56:40 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&91a59c70-8f88-4e34-8942-01433fdf62bd"; domain=.linkedin.com; Path=/; Secure; Expires=Wed, 06-Sep-2023 15:56:39 GMT; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2374:u=1:x=1:i=1662479800:t=1662566200:v=2:sig=AQEXeTSe4sjGZgv0pir9YB8AN91aPYmz"; Expires=Wed, 07 Sep 2022 15:56:40 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXoBD3soDnh0FAAc/ey5A==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 176DD3C7F4AE4A7FB34E15E7BF8E1B57 Ref B: OSL30EDGE0522 Ref C: 2022-09-06T15:56:39Z
date: Tue, 06 Sep 2022 15:56:39 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 8806f7ce565af1530efafb651b2e8a35
608bccc6a3939255a804bfc115b455c38f649df7
50f63773b0f936c5105b7c01cee4b064c771a6d454adb61dcdb5f85d8a185e58
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 06 Sep 2022 15:56:40 GMT
Last-Modified: Tue, 06 Sep 2022 14:25:34 GMT
Server: ECS (nyb/1D13)
X-Cache: Miss from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: qAPHwMKn9QU0s2nLUNO-QD7hLNxrnHWH4fO5fzAer4R06zD0S0vAQg==
Age: 5466
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 8806f7ce565af1530efafb651b2e8a35
608bccc6a3939255a804bfc115b455c38f649df7
50f63773b0f936c5105b7c01cee4b064c771a6d454adb61dcdb5f85d8a185e58
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 06 Sep 2022 15:56:40 GMT
Last-Modified: Tue, 06 Sep 2022 14:12:20 GMT
Server: ECS (nyb/1D2D)
X-Cache: Miss from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: keLXZvK2SDcL_NidfUTIKtXfGFXJ1jRchzShQrHN5uyVJ18PENvGqw==
Age: 6260
vc.hotjar.io/sessions/3025371?s=0.25&r=0.1277406006931796
54.230.111.8204 No Content 0 B URL HTTP/2 vc.hotjar.io/sessions/3025371?s=0.25&r=0.1277406006931796
IP 54.230.111.8:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sessions/3025371?s=0.25&r=0.1277406006931796 HTTP/1.1
Host: vc.hotjar.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vasellyude.info
Connection: keep-alive
Referer: https://vasellyude.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-origin: *
cache-control: no-store
date: Tue, 06 Sep 2022 15:56:40 GMT
server: Python/3.7 aiohttp/3.5.4
x-cache: Miss from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: sG2VkFHnu28ytnAlgnF87YENQVJ_6oyCmza8RGpxUvNP1WSZgIZxtA==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 10585eccdd73117e0bc71ecaf1cd02cb
7bda7ff7308cac8c8824a5a558097a15a2325f5e
6303f8b80751e64006c77524615f10709b136b0606695feb0f51b964e0c2163d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 15:56:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-5877180-25&cid=957770383.1662479794&jid=1834529160&gjid=1681940674&_gid=28855174.1662479794&_u=aGBAgEAjAAAAAE~&z=471490875
142.251.1.155200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-5877180-25&cid=957770383.1662479794&jid=1834529160&gjid=1681940674&_gid=28855174.1662479794&_u=aGBAgEAjAAAAAE~&z=471490875
IP 142.251.1.155:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-5877180-25&cid=957770383.1662479794&jid=1834529160&gjid=1681940674&_gid=28855174.1662479794&_u=aGBAgEAjAAAAAE~&z=471490875 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://vasellyude.info
Connection: keep-alive
Referer: https://vasellyude.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://vasellyude.info
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 06 Sep 2022 15:56:40 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 10585eccdd73117e0bc71ecaf1cd02cb
7bda7ff7308cac8c8824a5a558097a15a2325f5e
6303f8b80751e64006c77524615f10709b136b0606695feb0f51b964e0c2163d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 15:56:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 7d045c482677b591fc7df51ede10f7a5
5f3af22bd5a7444b2f39c4ff02f49a74be66d492
a9080f835ee737875dbb453141a4d14a893eb5f98690dc8a0eab148d84173ccb
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 06 Sep 2022 15:56:40 GMT
Last-Modified: Tue, 06 Sep 2022 15:45:09 GMT
Server: ECS (dcb/7F84)
X-Cache: Miss from cloudfront
Via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: EDUy63DxAhYGYf3UgknJe_0zXB8tt0jA9I9I5ZVEAGnw3dW8Vd55og==
Age: 691
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D1979857%26time%3D1662479794201%26url%3Dhttps%253A%252F%252Fvasellyude.info%252F%26liSync%3Dtrue
13.107.42.14302 Found 0 B URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D1979857%26time%3D1662479794201%26url%3Dhttps%253A%252F%252Fvasellyude.info%252F%26liSync%3Dtrue
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D1979857%26time%3D1662479794201%26url%3Dhttps%253A%252F%252Fvasellyude.info%252F%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vasellyude.info/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=1979857&time=1662479794201&url=https%3A%2F%2Fvasellyude.info%2F&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&7143eafe-f708-48b0-8a36-9645f36f2e7e"; Domain=.linkedin.com; Expires=Wed, 06-Sep-2023 15:56:40 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&202209061556403cd6e5df-b21f-4c83-81f9-b969ecc54599AQFsQU9QxV5d2GB3Ij9gxALNfjvWnhvN"; Domain=.www.linkedin.com; Expires=Wed, 06-Sep-2023 15:56:40 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NjI0Nzk4MDA7MjswMjFqNcw4gRBAt4chfVPY8ES/uEdVEOv5xbLTJ9zBNIYYqA==; Domain=.linkedin.com; Expires=Sun, 05 Mar 2023 15:56:40 GMT; Path=/; Secure; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2338:u=1:x=1:i=1662479800:t=1662566200:v=2:sig=AQGC2uZ6R9emFOzbmsnfM_FdLwgPwkLO"; Expires=Wed, 07 Sep 2022 15:56:40 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' https://media-src.linkedin.com/media/ www.linkedin.com s.c.lnkd.licdn.com m.c.lnkd.licdn.com wss://*.linkedin.com dms.licdn.com https://dpm.demdex.net/id lnkd.demdex.net blob: https://accounts.google.com/gsi/status https://linkedin.sc.omtrdc.net/b/ss/ www.google-analytics.com https://*.qualtrics.com static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com media.licdn.com media-exp1.licdn.com media-exp2.licdn.com media-exp3.licdn.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'report-sample' 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com www.google-analytics.com ssl.google-analytics.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com https://snap.licdn.com/li.lms-analytics/ platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; child-src blob: lnkd-communities: voyager: *; frame-ancestors 'self'; report-uri /security/csp?e=p&f=t
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXoBD3vYeeT/ZmmedHS+Q==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 7ED6D36C43CD4027BE54C475B9E33EB7 Ref B: OSL30EDGE0522 Ref C: 2022-09-06T15:56:40Z
date: Tue, 06 Sep 2022 15:56:39 GMT
content-length: 0
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=1979857&time=1662479794201&url=https%3A%2F%2Fvasellyude.info%2F&liSync=true
13.107.42.14200 OK 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=1979857&time=1662479794201&url=https%3A%2F%2Fvasellyude.info%2F&liSync=true
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=1979857&time=1662479794201&url=https%3A%2F%2Fvasellyude.info%2F&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vasellyude.info/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&c4f5c41a-e7a4-4b5f-8e69-0a7ab94ba2dc"; domain=.linkedin.com; Path=/; Secure; Expires=Wed, 06-Sep-2023 15:56:40 GMT; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2338:u=1:x=1:i=1662479800:t=1662566200:v=2:sig=AQGC2uZ6R9emFOzbmsnfM_FdLwgPwkLO"; Expires=Wed, 07 Sep 2022 15:56:40 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXoBD3yd70tDwPPYTPqoA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 4AD145341D074F6EAD2560B59756CFD5 Ref B: OSL30EDGE0522 Ref C: 2022-09-06T15:56:40Z
date: Tue, 06 Sep 2022 15:56:39 GMT
content-length: 0
X-Firefox-Spdy: h2
chat-cloud2.bizvu.co.uk/Services/chatService.asmx/ValidateChatClient
46.17.94.242200 OK 123 B URL HTTP/2 chat-cloud2.bizvu.co.uk/Services/chatService.asmx/ValidateChatClient
IP 46.17.94.242:0
ASN #15510 Compuweb Communications Services Limited
File type JSON data\012- , ASCII text, with no line terminators
Hash bdcdbf91e9d3b1ceca9bf86f0e08a0e5
7d4841d255eff9e4fac4b60f1925b0f6544cbe97
ca910cfdb43332b84daed30081947401ed4f11ebea5749f62d1534326235e3d7
POST /Services/chatService.asmx/ValidateChatClient HTTP/1.1
Host: chat-cloud2.bizvu.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=utf-8
X-Requested-With: XMLHttpRequest
Content-Length: 39
Origin: https://chat-cloud2.bizvu.co.uk
Connection: keep-alive
Referer: https://chat-cloud2.bizvu.co.uk/erropPage.aspx
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: private, max-age=0
content-type: application/json; charset=utf-8
server: Microsoft-IIS/10.0
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-content-type-options: nosniff
date: Tue, 06 Sep 2022 15:56:41 GMT
content-length: 123
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-3025371.js?sv=7
54.230.111.113200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-3025371.js?sv=7
IP 54.230.111.113:0
GET /c/hotjar-3025371.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vasellyude.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=604800; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Tue, 06 Sep 2022 15:56:26 GMT
cache-control: max-age=60
etag: W/05aab183acf028c92b3454eeed5bb54f
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: U9L6xNsb2TjIjZ6cGJXUF0WOdFnRI2zkXSKu20kESXq1taUBnkUcAg==
age: 13
X-Firefox-Spdy: h2