Overview

URL 2016hairhouse.com/
IP199.34.228.159
ASNWEEBLY
Location United States
Report completed2022-09-01 12:14:09 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-01 2 cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1661890748 Malware
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (17)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-01 04:49:28 UTC 143.204.55.115
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-01 05:02:40 UTC 34.218.159.206
mnemonic passive DNS ocsp.pki.goog (13) 175 2017-06-14 07:23:31 UTC 2022-09-01 04:47:53 UTC 142.250.74.3
mnemonic passive DNS fonts.gstatic.com (5) 0 2014-08-29 13:43:22 UTC 2022-09-01 04:49:08 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS 2016hairhouse.com (1) 0 No data No data 199.34.228.159 Unknown ranking
mnemonic passive DNS ajax.googleapis.com (1) 12905 2019-10-15 17:52:08 UTC 2022-09-01 10:51:33 UTC 142.250.74.138
mnemonic passive DNS cdn2.editmysite.com (12) 11564 2012-10-02 18:27:39 UTC 2022-09-01 04:39:35 UTC 151.101.85.46
mnemonic passive DNS fonts.googleapis.com (6) 8877 2014-07-21 13:19:55 UTC 2022-09-01 05:48:13 UTC 142.250.74.10
mnemonic passive DNS ssl.google-analytics.com (1) 275 2012-10-03 00:55:57 UTC 2022-09-01 05:10:10 UTC 142.250.74.136
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-01 04:51:03 UTC 143.204.55.35
mnemonic passive DNS www.2016hairhouse.com (26) 0 2022-08-17 11:38:49 UTC 2022-08-17 11:38:49 UTC 199.34.228.159 Unknown ranking
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-01 05:48:00 UTC 93.184.220.29
mnemonic passive DNS img-getpocket.cdn.mozilla.net (4) 1631 2017-09-01 03:40:57 UTC 2022-09-01 04:41:03 UTC 34.120.237.76
mnemonic passive DNS ec.editmysite.com (2) 12806 2017-01-29 21:50:35 UTC 2022-09-01 06:25:11 UTC 44.238.88.40
mnemonic passive DNS r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-09-01 04:47:54 UTC 23.36.76.226
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-01 04:48:38 UTC 34.117.237.239
mnemonic passive DNS ocsp.sca1b.amazontrust.com (2) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 143.204.42.156


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 199.34.228.159

Date UQ / IDS / BL URL IP
2022-11-24 02:45:07 +0000
0 - 0 - 4 se-sv-facebook.com/ 199.34.228.159
2022-11-23 17:29:22 +0000
0 - 0 - 2 www.se-sv-facebook.com/529880417608/ 199.34.228.159
2022-11-22 10:19:50 +0000
0 - 0 - 18 prismofbrilliance.biz/ 199.34.228.159
2022-11-16 05:10:24 +0000
0 - 0 - 14 www.prepkitchenandmarket.com/ 199.34.228.159
2022-11-14 15:07:27 +0000
0 - 0 - 11 www.pl-app-facebook.com/ 199.34.228.159

Last 5 reports on ASN: WEEBLY

Date UQ / IDS / BL URL IP
2022-12-01 15:51:54 +0000
0 - 0 - 5 british-telecommunicationspay883.square.site/ 199.34.228.39
2022-12-01 15:49:36 +0000
0 - 0 - 20 yahoo-103657.square.site/ 199.34.228.39
2022-12-01 14:50:36 +0000
0 - 0 - 24 docusignsecureadminserveer.weebly.com/ 199.34.228.54
2022-12-01 14:06:55 +0000
0 - 0 - 16 bt-106724.weeblysite.com/ 199.34.228.97
2022-12-01 14:05:19 +0000
0 - 0 - 11 mail-102366.square.site/ 199.34.228.40

Last 1 reports on domain: 2016hairhouse.com

Date UQ / IDS / BL URL IP
2022-09-01 12:14:09 +0000
0 - 0 - 1 2016hairhouse.com/ 199.34.228.159

No other reports with similar screenshot



JavaScript

Executed Scripts (26)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (85)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 01 Sep 2022 11:19:23 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Zgqke9HTwa5p9obxZZUyCd_1NBlVmOJ-8ZI3FVP4_sGJrM6cckbSaw==
Age: 3274


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    91dd975a7b17b2922dd23c0e49314e40
Sha1:   57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
Sha256: 09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
                                        
                                            GET / HTTP/1.1 
Host: 2016hairhouse.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         199.34.228.159
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Thu, 01 Sep 2022 12:13:57 GMT
Server: Apache
Location: http://www.2016hairhouse.com/
Content-Length: 237
Keep-Alive: timeout=10, max=53
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   237
Md5:    e65ddfe76260d07240dc195ab6b6bdcf
Sha1:   993b26082d39622b766f570d188d278b6c719414
Sha256: 4b3c381493009a6520614de2e2aaa2a3536df7205f923cd5d279afd733875489
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "ECE269E8B9BE8A5839D75C1343823D68B96930C593C2E3E8D522999176EE3149"
Last-Modified: Mon, 29 Aug 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9055
Expires: Thu, 01 Sep 2022 14:44:52 GMT
Date: Thu, 01 Sep 2022 12:13:57 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
date: Thu, 01 Sep 2022 01:15:17 GMT
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
etag: "742edb4038f38bc533514982f3d2e861"
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: hiFdaQJCrNOSFCdZFP7B_zqQ2wbwFOVgtFli9XXGOcbMuUCgau-yDg==
age: 39521
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    742edb4038f38bc533514982f3d2e861
Sha1:   cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Thu, 01 Sep 2022 12:13:57 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET / HTTP/1.1 
Host: www.2016hairhouse.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         199.34.228.159
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 01 Sep 2022 12:13:58 GMT
Server: Apache
Set-Cookie: is_mobile=0; path=/; domain=www.2016hairhouse.com
Vary: X-W-SSL,User-Agent
Location: https://www.2016hairhouse.com/
X-Host: grn80.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 366
Keep-Alive: timeout=10, max=71
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   366
Md5:    e461602b0d3ad0b8d81f53043cec541d
Sha1:   859c99d2994218ac4239a059309b4d9ccd1e8d09
Sha256: d17392a9f39d04bdda7dc754bedde8bcb82938681770f31e52c0d5ea46b813ad
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.115
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Thu, 01 Sep 2022 11:57:05 GMT
Expires: Thu, 01 Sep 2022 12:57:00 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: acolXOIpFFePfO9S9w_Ea_mEY17QFpSiYuCLnVFmHjPNyK12hlt5SA==
Age: 1013


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6544
Cache-Control: 'max-age=158059'
Date: Thu, 01 Sep 2022 12:13:58 GMT
Last-Modified: Thu, 01 Sep 2022 10:24:54 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6E45E8E96B109BE734487DE13BB3A1F2D7727C1AB65078688ADA95444DADEE45"
Last-Modified: Thu, 01 Sep 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21572
Expires: Thu, 01 Sep 2022 18:13:30 GMT
Date: Thu, 01 Sep 2022 12:13:58 GMT
Connection: keep-alive

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: aBiE3/bkRjwWO4ektvwTsw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         34.218.159.206
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: IlXOV7GTDNsrJqLG9Rj05f28fJ4=

                                        
                                            GET / HTTP/1.1 
Host: www.2016hairhouse.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         199.34.228.159
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 01 Sep 2022 12:13:58 GMT
Server: Apache
Vary: X-W-SSL,Accept-Encoding,User-Agent
Set-Cookie: is_mobile=0; path=/; domain=www.2016hairhouse.com language=en; expires=Thu, 15-Sep-2022 12:13:58 GMT; Max-Age=1209600; path=/
Cache-Control: private
ETag: W/"4c2088dcda0601789ebb8779ada62b90-gzip"
Content-Encoding: gzip
X-Host: blu67.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 8211
Keep-Alive: timeout=10, max=70
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2235), with CRLF, LF line terminators
Size:   8211
Md5:    25a3186908deae85fbaa6d4c208f8952
Sha1:   9158167b20a39d181428142c4aeeef35c4322363
Sha256: f3e6d10c9d36d34f996bfb03ca174d17a3e349e7d64ceee88a7b95445bc989c9
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Sep 2022 12:13:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Sep 2022 12:13:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /ajax/libs/jquery/1.8.3/jquery.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.2016hairhouse.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.138
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33593
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 07:47:50 GMT
expires: Thu, 31 Aug 2023 07:47:50 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
age: 102369
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65483)
Size:   33593
Md5:    a54a444f20643b131117dc2112cca05f
Sha1:   074964746b12ff1d30f7656310d6154ae1cc98b5
Sha256: aa3ca8485dd777d4d880b38c1cf3bc2fc290d28a79ba3e3e43cba1f653132830
                                        
                                            GET /js/old/slideshow-jq.js?buildTime=1661890748 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.2016hairhouse.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
last-modified: Tue, 30 Aug 2022 19:50:41 GMT
etag: "630e6a11-9e0b"
expires: Tue, 13 Sep 2022 20:20:30 GMT
cache-control: max-age=1209600
x-host: blu42.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 01 Sep 2022 12:13:59 GMT
age: 143608
x-served-by: cache-sjc10047-SJC, cache-bma1636-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 2
x-timer: S1662034439.022731,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 13265
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32013)
Size:   13265
Md5:    da04d4da36c827437eb064334cf40561
Sha1:   b54b259c2dce4a00e265deddf2ee0941dda6ed40
Sha256: 0064ed54b2f6244cda5252037026ceb744b58067811265aa1a10c3f7cd937b3a
                                        
                                            GET /js/site/theme-plugins.js?buildTime=1661890748 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.2016hairhouse.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
last-modified: Tue, 30 Aug 2022 19:50:41 GMT
etag: "630e6a11-314e"
expires: Tue, 13 Sep 2022 20:20:30 GMT
cache-control: max-age=1209600
x-host: blu126.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 01 Sep 2022 12:13:59 GMT
age: 143608
x-served-by: cache-sjc10071-SJC, cache-bma1636-BMA
x-cache: HIT, HIT
x-cache-hits: 3, 1
x-timer: S1662034439.022725,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 3747
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (12622), with no line terminators
Size:   3747
Md5:    326fac3bf2f5a48ddb695ce00260efd8
Sha1:   824134c8f3cbfc5b0ce818dcb0befc99842e4fa6
Sha256: 8fa81dbf4afb7142ee09f89d14e23fd44928c782bced6ef6c44fe9515429af50
                                        
                                            GET /css/old/slideshow/slideshow.css?1661890748 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.2016hairhouse.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
last-modified: Tue, 30 Aug 2022 19:50:38 GMT
etag: W/"630e6a0e-1cb9"
expires: Tue, 13 Sep 2022 20:20:30 GMT
cache-control: max-age=1209600
x-host: blu56.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 01 Sep 2022 12:13:59 GMT
age: 143608
x-served-by: cache-sjc10036-SJC, cache-bma1636-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 2
x-timer: S1662034439.027770,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 1488
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (7352)
Size:   1488
Md5:    ba9bbd4df86b5b255f5ef44658e52130
Sha1:   3970cecb6939475f95556c2d32d17de0d1645f32
Sha256: 244b7b062e6e558009c622e46008d5542604b9163315220199a2ac50868ff3e5
                                        
                                            GET /css/old/fancybox.css?1661890748 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.2016hairhouse.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
last-modified: Tue, 30 Aug 2022 19:50:23 GMT
etag: "630e69ff-f47"
expires: Tue, 13 Sep 2022 20:23:27 GMT
cache-control: max-age=1209600
x-host: blu137.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 01 Sep 2022 12:13:59 GMT
age: 143431
x-served-by: cache-sjc10064-SJC, cache-bma1636-BMA
x-cache: HIT, HIT
x-cache-hits: 3, 267
x-timer: S1662034439.034555,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 1218
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3910)
Size:   1218
Md5:    b644e92258f4c7c0b4270047652d1e60
Sha1:   93734d52ee9e86a768159e514076051813c39cd9
Sha256: 29199496fb817668f887938571046abcdfb49063d0207d571b361f221f467907
                                        
                                            GET /js/site/main-customer-accounts-site.js?buildTime=1661890748 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.2016hairhouse.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
last-modified: Tue, 30 Aug 2022 19:50:41 GMT
etag: "630e6a11-8250f"
expires: Tue, 13 Sep 2022 20:20:19 GMT
cache-control: max-age=1209600
x-host: blu42.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 01 Sep 2022 12:13:59 GMT
age: 143620
x-served-by: cache-sjc10034-SJC, cache-bma1636-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 2
x-timer: S1662034439.022698,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 158930
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32007)
Size:   158930
Md5:    f740fdfbcf394f270a9b176029fa6f37
Sha1:   5f20c49627104282744508eb0278d7185128532e
Sha256: 3021f0f944c9bd7c6e995601f25b3d970e0bd41f9a411f08b2871bb5415a8707

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /css/sites.css?buildTime=1661890748 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.2016hairhouse.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
last-modified: Tue, 30 Aug 2022 19:50:18 GMT
etag: W/"630e69fa-347ac"
expires: Tue, 13 Sep 2022 20:20:18 GMT
cache-control: max-age=1209600
x-host: grn141.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 01 Sep 2022 12:13:59 GMT
age: 143621
x-served-by: cache-sjc10070-SJC, cache-bma1636-BMA
x-cache: HIT, HIT
x-cache-hits: 6, 262
x-timer: S1662034439.029662,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 29746
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   29746
Md5:    d10158b22b553f723d99dc78eaee6390
Sha1:   80f2d6670cfb0d01cd20c471cf8e3e6465ddd3f6
Sha256: 939c7a8e1ad74a44e0c847e38533e69e36454b6805d25acf3fb0cb5c472d245e
                                        
                                            GET /js/lang/zh_TW/stl.js?buildTime=1661890748& HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.2016hairhouse.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
last-modified: Tue, 30 Aug 2022 19:49:58 GMT
etag: "630e69e6-2c15a"
expires: Tue, 13 Sep 2022 20:23:48 GMT
cache-control: max-age=1209600
x-host: grn89.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 01 Sep 2022 12:13:59 GMT
age: 143410
x-served-by: cache-sjc10058-SJC, cache-bma1636-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 1
x-timer: S1662034439.027781,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 37480
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, Unicode text, UTF-8 text, with very long lines (54085)
Size:   37480
Md5:    4d8bcbb2bb897a772fd7c54b67a13da2
Sha1:   ba8c9cccbe99af3436104bc2ccac4b1841e7dc08
Sha256: 6a64105639cab4d83f319751338dc8bbb3f4a2cfb5d3c8f6e61780a3c813e5f1
                                        
                                            GET /js/site/main.js?buildTime=1661890748 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.2016hairhouse.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
last-modified: Tue, 30 Aug 2022 19:50:41 GMT
etag: "630e6a11-74804"
expires: Tue, 13 Sep 2022 20:20:19 GMT
cache-control: max-age=1209600
x-host: grn116.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 01 Sep 2022 12:13:59 GMT
age: 143620
x-served-by: cache-sjc10066-SJC, cache-bma1636-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 2
x-timer: S1662034439.023033,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 146400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32147)
Size:   146400
Md5:    81b8673c5d3aa3ab8c0574f2a8f0e3b4
Sha1:   2e0661bc7907d9e2703b3347c3fec579f0aef5d6
Sha256: 0e981f4de6287406ce261fddea24aa05ded4b6a8c4c07283c363c1502071cf40
                                        
                                            GET /files/main_style.css?1662014973 HTTP/1.1 
Host: www.2016hairhouse.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.2016hairhouse.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.159
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Thu, 01 Sep 2022 12:13:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: blu134.sf2p.intern.weebly.net
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (785)
Size:   5710
Md5:    e130f028af44e456b2c42b56db11ea40
Sha1:   516dc3c3ef124291f2ef4778200ae75dbd348b58
Sha256: 6f50b0b4b65bc7f21f77c3301412e1439643b993b3861faa1b28b9fd2769fdf9
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Sep 2022 12:13:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Sep 2022 12:13:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Sep 2022 12:13:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Sep 2022 12:13:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Sep 2022 12:13:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /files/theme/plugins.js?1536078196 HTTP/1.1 
Host: www.2016hairhouse.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.2016hairhouse.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.159
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 01 Sep 2022 12:13:59 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 02 Apr 2022 08:42:51 GMT
x-rgw-object-type: Normal
ETag: W/"4cf5477130f7311a5f0af1ecaf425ee4"
x-amz-request-id: tx000000000000001b567cc-0062847da0-b9fbc7f-sfo1
X-Storage-Bucket: zb83c
X-Storage-Object: b83c1bdb86ae601a4a54799c364306dd922e98d5fddc177d404611bf1a2706f3
X-Host: grn84.sf2p.intern.weebly.net
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text
Size:   18996
Md5:    80b977ddf918a1ff63f2350225772ca6
Sha1:   6fbc6b952295c565f67ea251eeb7a4c0cccd1c6a
Sha256: ca0e7374161e8f72ba8d049e4392e8785c6038763b1cba40726d15a87557d38d
                                        
                                            GET /files/templateArtifacts.js?1662014973 HTTP/1.1 
Host: www.2016hairhouse.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.2016hairhouse.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.159
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx
Date: Thu, 01 Sep 2022 12:13:59 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: grn84.sf2p.intern.weebly.net
Content-Encoding: gzip


--- Additional Info ---
Magic:  exported SGML document, ASCII text, with very long lines (1630)
Size:   1632
Md5:    e0836e8203c22b8e4086f27e91e86f5a
Sha1:   28235e77f5a895c8cd411aff4a6ef4e6f7d419c2
Sha256: 32dbc4a2eeca39a57d35670f00e2cf59e03c279521e47506c56c5c36d8b664b6
                                        
                                            GET /files/theme/mobile.js?1536078196 HTTP/1.1 
Host: www.2016hairhouse.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.2016hairhouse.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.159
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 01 Sep 2022 12:13:59 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 04 Jan 2021 20:41:48 GMT
ETag: W/"3ea9513d9ec2d29696fe868fc83ba655"
x-amz-request-id: tx000000000000002163f2d-006165ad77-1ff9432-las
X-Storage-Bucket: zc64f
X-Storage-Object: c64f925bf80e6f3fe7c613726e8c011334a61fbe3a6071c77966c812cfacf269
X-Host: blu14.sf2p.intern.weebly.net
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text
Size:   3045
Md5:    b591482ea0b0fdad23bef9816cfc63c0
Sha1:   80ba3cc9c5dd2338252246ac5ea7dc1ae812c6a9
Sha256: b8bf5d0afa35ff9dadc13577e08f1286d41508ba4e2b7bd84b356c1d2242e71b
                                        
                                            GET /files/theme/custom.js?1536078196 HTTP/1.1 
Host: www.2016hairhouse.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.2016hairhouse.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.159
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx
Date: Thu, 01 Sep 2022 12:13:59 GMT
Content-Length: 3281
Connection: keep-alive
Last-Modified: Wed, 17 Feb 2021 18:05:21 GMT
ETag: "2b0353c06ab40e57f33edb8b523665a4"
x-amz-request-id: tx00000000000012e32e407-0060b5a632-15b3dc2-las
X-Storage-Bucket: z09eb
X-Storage-Object: 09ebc712b649d3d4598207980101cd648cc6020ee0bfbb7ee38774318cdef3a6
X-Host: grn29.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text
Size:   3281
Md5:    2b0353c06ab40e57f33edb8b523665a4
Sha1:   2753dcfff0b2bf9406b53e98c2292786e448caf8
Sha256: 09ebc712b649d3d4598207980101cd648cc6020ee0bfbb7ee38774318cdef3a6
                                        
                                            GET /js/wsnbn/snowday262.js HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.2016hairhouse.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
last-modified: Tue, 30 Aug 2022 19:50:08 GMT
etag: "630e69f0-124fe"
expires: Thu, 15 Sep 2022 08:38:41 GMT
cache-control: max-age=1209600
x-host: grn123.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 01 Sep 2022 12:13:59 GMT
age: 12918
x-served-by: cache-sjc10034-SJC, cache-bma1636-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 219
x-timer: S1662034440.737551,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 25752
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2512)
Size:   25752
Md5:    234327230add9a5a5d61a48829ea4565
Sha1:   7966cc0e4bd76f88ff193c8a99a067de804b7129
Sha256: bb696c58d9ae5fa635b3ff22efdf60de9ac2f8ef9df5e2f2d58dd5f8dc99df75
                                        
                                            GET /fonts/wSocial/wsocial.woff?ts=1661889018203 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.2016hairhouse.com
Connection: keep-alive
Referer: https://cdn2.editmysite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: font/woff
                                        
server: nginx
last-modified: Tue, 30 Aug 2022 14:34:37 GMT
etag: "630e1ffd-a4c"
expires: Tue, 13 Sep 2022 20:23:27 GMT
cache-control: max-age=1209600
x-host: grn82.sf2p.intern.weebly.net
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 01 Sep 2022 12:13:59 GMT
age: 143432
x-served-by: cache-sjc10047-SJC, cache-bma1636-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 30
x-timer: S1662034440.769971,VS0,VE0
access-control-allow-origin: *
content-length: 2636
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 2636, version 1.0\012- data
Size:   2636
Md5:    0e88795b66eeac48b209209aa0179411
Sha1:   983e16566390f9167c6c4fbbdb052623fc01a631
Sha256: e8106b06fab14948098cae97983eafbe1a60643ac725b2a029e4da57d43854df
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Sep 2022 12:13:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Sep 2022 12:13:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Sep 2022 12:13:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/adventpro/v18/V8mDoQfxVT4Dvddr_yOwjZGPPbF4Cw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.2016hairhouse.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17128
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 13:11:21 GMT
expires: Thu, 31 Aug 2023 13:11:21 GMT
cache-control: public, max-age=31536000
age: 82958
last-modified: Tue, 19 Apr 2022 19:48:31 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 17128, version 1.0\012- data
Size:   17128
Md5:    920814d980a1896e3bf283fe4e0057e7
Sha1:   59bc99c85d58a738798979c93eb6f1826109e463
Sha256: fa13b34d88ad4a10f31262096ec6ce0e5a96d6d06e787782cbdbe8eccbb42db2
                                        
                                            GET /s/molengo/v16/I_uuMpWeuBzZNBtQXbNakw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.2016hairhouse.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14016
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 22:28:51 GMT
expires: Tue, 29 Aug 2023 22:28:51 GMT
cache-control: public, max-age=31536000
age: 222308
last-modified: Tue, 26 Apr 2022 15:27:44 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 14016, version 1.0\012- data
Size:   14016
Md5:    eca165efaa8a5c693fcf7b3a26cef43b
Sha1:   b5b486f83648089b2653aacdcab3d4516a6aee98
Sha256: 31addde7fb28b34660534c075be0623c663561d371279da1ab9689761db6c7da
                                        
                                            GET /s/actor/v17/wEOzEBbCkc5cO0ejVSk.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.2016hairhouse.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 Aug 2022 22:34:37 GMT
expires: Wed, 30 Aug 2023 22:34:37 GMT
cache-control: public, max-age=31536000
age: 135562
last-modified: Tue, 19 Apr 2022 19:22:29 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 21976, version 1.0\012- data
Size:   21976
Md5:    7ee7f470152787952958d6adfa07b2ac
Sha1:   14a09075b2cbec9ff65302de9d634f9011f70e53
Sha256: b31aaefa522d67846638fa4181bbb22375bd0cb1beb37d514609c3821953161a
                                        
                                            GET /s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.2016hairhouse.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13036
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:26:57 GMT
expires: Thu, 31 Aug 2023 19:26:57 GMT
cache-control: public, max-age=31536000
age: 60422
last-modified: Wed, 27 Apr 2022 16:04:42 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 13036, version 1.0\012- data
Size:   13036
Md5:    0ad032b3d07aaf33b160ac4799dda40f
Sha1:   06b931e0d0bf37f5037d9e66d6feedfddd21c0ba
Sha256: c124c88ca4fcb4336e97617647ef0d32441329371120c8eabaea0fea226560b0
                                        
                                            GET /s/cabin/v26/u-4i0qWljRw-PfU81xCKCpdpbgZJl6Xvqdns.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.2016hairhouse.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 26100
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 18:22:32 GMT
expires: Thu, 31 Aug 2023 18:22:32 GMT
cache-control: public, max-age=31536000
age: 64287
last-modified: Fri, 24 Jun 2022 18:41:34 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 26100, version 1.0\012- data
Size:   26100
Md5:    312bcfa92b0b0a09c3f404b2c662a0b6
Sha1:   5398ff9ee3c10bffc54e3a9f7e5e7506a822b38a
Sha256: 979caf94add5b00ec59d8abde43d200523745c2f4b105c2906f4d9dda4afaeec
                                        
                                            GET /images/old/slideshow/control_icons.gif HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn2.editmysite.com/css/old/slideshow/slideshow.css?1661890748
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: image/gif
                                        
x-guploader-uploadid: ADPycduaocO0AE51t-7YP295IG9trj3YomORVYpk4sPUpbMAAmx6sSMpEFhsC2xFzoxFbSdmQJOJHdl52j01ttYrCbCOSw
cache-control: public, max-age=86400, s-maxage=259200
expires: Fri, 19 Aug 2022 04:07:54 GMT
last-modified: Thu, 25 May 2017 18:53:05 GMT
etag: "88041de02e278ceedcd7de52bcdb8156"
x-goog-generation: 1495738385881388
x-goog-metageneration: 6
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 187
x-goog-hash: crc32c=P9yuOw==, md5=iAQd4C4njO7c195SvNuBVg==
x-goog-storage-class: STANDARD
server: UploadServer
accept-ranges: bytes
date: Thu, 01 Sep 2022 12:13:59 GMT
via: 1.1 varnish
age: 115285
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 173
x-timer: S1662034440.833751,VS0,VE0
access-control-allow-origin: *
content-length: 187
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 25 x 13\012- data
Size:   187
Md5:    88041de02e278ceedcd7de52bcdb8156
Sha1:   775bf1f3464e006b3f644512e52477ecc9385222
Sha256: 00bd643d7b1cd928b72aa4b6d69df8d5838a8f07e26294fda69ab365fa454c3f
                                        
                                            GET /images/old/loading.gif HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn2.editmysite.com/css/old/slideshow/slideshow.css?1661890748
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         151.101.85.46
HTTP/2 200 OK
content-type: image/gif
                                        
x-guploader-uploadid: ADPycdtVWhRmpQElawWKq6ABZSNlvJ-DkJiG1b8HSnt4G-cnM4tWoZIpyFUc3GCi9hgukI7qKfsK-iHSXZSY399biNcy4pv5nSOu
cache-control: public, max-age=86400, s-maxage=259200
expires: Fri, 19 Aug 2022 23:56:30 GMT
last-modified: Thu, 25 May 2017 18:45:50 GMT
etag: "0b0212ec4e07451700c88a335ebba854"
x-goog-generation: 1495737950396999
x-goog-metageneration: 6
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 2964
x-goog-hash: crc32c=F+8alw==, md5=CwIS7E4HRRcAyIozXruoVA==
x-goog-storage-class: STANDARD
server: UploadServer
accept-ranges: bytes
date: Thu, 01 Sep 2022 12:13:59 GMT
via: 1.1 varnish
age: 43786
x-served-by: cache-bma1636-BMA
x-cache: HIT
x-cache-hits: 58
x-timer: S1662034440.847157,VS0,VE0
access-control-allow-origin: *
content-length: 2964
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 30 x 30\012- data
Size:   2964
Md5:    0b0212ec4e07451700c88a335ebba854
Sha1:   e62e40bbd31145dc64c0a555991a5dc5696d1943
Sha256: 37f5bf015ade9651005d72bcfdbb48838014c1c357f848585df731bc7eaff120
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Sep 2022 12:13:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6334
Expires: Thu, 01 Sep 2022 13:59:33 GMT
Date: Thu, 01 Sep 2022 12:13:59 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6334
Expires: Thu, 01 Sep 2022 13:59:33 GMT
Date: Thu, 01 Sep 2022 12:13:59 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff48464b4-ee99-46c1-8a3e-aa01e1b670f8.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11031
x-amzn-requestid: bd49a4c9-205b-4553-90a3-308ebc6be818
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xv4hOHzVoAMFl8Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630fd46e-783de8c2461d7cb9167f734e;Sampled=0
x-amzn-remapped-date: Wed, 31 Aug 2022 21:36:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: fo9YF1JJrYUMp7y9uM7av78_409D9n4ZWSaeydPAH7HuQzd8vOPiRg==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 21:36:46 GMT
age: 52633
etag: "2082e9f809e97bbcaf6ff11846398aca472f9f0f"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11031
Md5:    494ba0180ab4b2b80ca11aeb67ae69ab
Sha1:   2082e9f809e97bbcaf6ff11846398aca472f9f0f
Sha256: c6a707e79315677912fa7cf6ab592abf4377aa76e51ae5149d4bae7e663d6801
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6334
Expires: Thu, 01 Sep 2022 13:59:33 GMT
Date: Thu, 01 Sep 2022 12:13:59 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bffab86-e623-4ccd-9297-981c9dc6e4cd.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9674
x-amzn-requestid: 79dc68ea-ea2e-4eab-bab9-1c89b0a955a2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XjMSvHJ-oAMF6Jw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630ac0de-2370cf5363d5f308121f0ca4;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 01:11:58 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 1oGbbOSjJza6WWt0IDMqwsZkCk07uevGo0wML4y5LiexzhqlcHt3lA==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 14:45:21 GMT
age: 77318
etag: "b691ef5e7a302e2678302818130a9637c3efbe3a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9674
Md5:    b0f6c541f6335bb709d2270147bd5aed
Sha1:   b691ef5e7a302e2678302818130a9637c3efbe3a
Sha256: e63922331a4463519e6df77ae7a1ad3316a36e54dd03c00ff6b119ee3fa684c5
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff4a31025-b077-4937-93a3-a0669697b0ee.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8044
x-amzn-requestid: 8ea16c8b-f0aa-4ce9-a99d-8e59c51ffb8d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xv3j7Ge9IAMFQBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630fd2e5-6762d09b569221944f9b7870;Sampled=0
x-amzn-remapped-date: Wed, 31 Aug 2022 21:30:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tZWKpWZnFUVhefoWK-AwAYKOsmAcMhTmPXEyWp0BJPKfhgooGpI6xQ==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 21:52:58 GMT
age: 51661
etag: "6d814e56d87e2579e51139759fa7dfb8195a6529"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8044
Md5:    043263cdba253c3eb4bfa33c95e8ca21
Sha1:   6d814e56d87e2579e51139759fa7dfb8195a6529
Sha256: 9c7cf679c9a6a0d0a2c75a85b13d8407a5e0fe2448d73fced51b45a3e701e9c1
                                        
                                            GET /css?family=Advent+Pro:400,300,200,700&subset=latin,latin-ext HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.2016hairhouse.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Sep 2022 12:13:59 GMT
date: Thu, 01 Sep 2022 12:13:59 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   17276
Md5:    ad95867d81d5308b4fb9b0912666234c
Sha1:   e87bfd729f8077bcc9acbd229426da28efb75dae
Sha256: 1844e86e29af9f1057c764ebf24a47485184392b6d62dde40f3e19d2093272f0
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6334
Expires: Thu, 01 Sep 2022 13:59:33 GMT
Date: Thu, 01 Sep 2022 12:13:59 GMT
Connection: keep-alive

                                        
                                            GET /css?family=Droid+Sans+Mono&subset=latin,latin-ext HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.2016hairhouse.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Sep 2022 12:13:59 GMT
date: Thu, 01 Sep 2022 12:13:59 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   8529
Md5:    89afc31dc46653dd800dc0dc7a2ebe61
Sha1:   c4fd7daf6479c6cc0fb214c468827780c0ca075d
Sha256: fbef3ee565a06e98c3221c066f5a17b6a7877abbafecde5ca7441c65d2e3f521
                                        
                                            GET /css?family=Molengo&subset=latin,latin-ext HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.2016hairhouse.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Sep 2022 12:13:59 GMT
date: Thu, 01 Sep 2022 12:13:59 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   5260
Md5:    f0337291fe746320edbfce110fc45ac2
Sha1:   67823ae51274f192d799fd5fddede0b928dbdf90
Sha256: a43189eea23f7b3a7263f4dd175eff74f012ea0d8156a932726d194ce065b62d
                                        
                                            GET /uploads/1/2/5/0/125078387/line-album-carry-220808-0.jpg HTTP/1.1 
Host: www.2016hairhouse.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.2016hairhouse.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.159
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 01 Sep 2022 12:13:59 GMT
Content-Length: 78538
Connection: keep-alive
Last-Modified: Mon, 15 Aug 2022 09:43:10 GMT
x-rgw-object-type: Normal
ETag: "6b9adad1391d4f29b1f088e0d535aae3"
x-amz-request-id: tx00000000000002cc5805e-00630724bf-bfe36ba-sfo1
X-Storage-Bucket: zd28a
X-Storage-Object: d28aadf23ef7b97326fd68159750f74efeaf2dcf30fa2d892980df702499b624
X-Host: grn79.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 533x800, components 3\012- data
Size:   78538
Md5:    6b9adad1391d4f29b1f088e0d535aae3
Sha1:   1c4c273bb04716d950c6031e6b46195c2ed94e9e
Sha256: d28aadf23ef7b97326fd68159750f74efeaf2dcf30fa2d892980df702499b624
                                        
                                            GET /uploads/1/2/5/0/125078387/line-album-em-220808-0.jpg HTTP/1.1 
Host: www.2016hairhouse.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.2016hairhouse.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.159
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 01 Sep 2022 12:13:59 GMT
Content-Length: 54685
Connection: keep-alive
Last-Modified: Mon, 15 Aug 2022 09:43:26 GMT
x-rgw-object-type: Normal
ETag: "df75ae7237ad8a538cdeb7ca6ce5a3f1"
x-amz-request-id: tx00000000000002d44cae0-006308ab31-c033918-sfo1
X-Storage-Bucket: z448c
X-Storage-Object: 448c76934233c9f5737044793d6657ff52e09fdb4ee86d52dd5fb887cc19174a
X-Host: blu25.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 533x800, components 3\012- data
Size:   54685
Md5:    df75ae7237ad8a538cdeb7ca6ce5a3f1
Sha1:   507f119accaae5b7cfc6a22a98c7be622c37df37
Sha256: 448c76934233c9f5737044793d6657ff52e09fdb4ee86d52dd5fb887cc19174a
                                        
                                            GET /uploads/1/2/5/0/125078387/s-61693969.jpg HTTP/1.1 
Host: www.2016hairhouse.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.2016hairhouse.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.159
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 01 Sep 2022 12:13:59 GMT
Content-Length: 82718
Connection: keep-alive
Last-Modified: Mon, 15 Aug 2022 10:50:11 GMT
x-rgw-object-type: Normal
ETag: "66899f876ee18316dc587c17525c80ba"
x-amz-request-id: tx000000000000030a04392-00630deb4f-c0351c8-sfo1
X-Storage-Bucket: z366f
X-Storage-Object: 366feb01bb33df2cd42d818e07e4ab006edc2de92fab3853210b8775f86bd62e
X-Host: grn46.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 452x800, components 3\012- data
Size:   82718
Md5:    66899f876ee18316dc587c17525c80ba
Sha1:   16a5211ef09c8765bda4e005bf82e279eebece57
Sha256: 366feb01bb33df2cd42d818e07e4ab006edc2de92fab3853210b8775f86bd62e
                                        
                                            GET /uploads/1/2/5/0/125078387/s-61693971.jpg HTTP/1.1 
Host: www.2016hairhouse.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.2016hairhouse.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.159
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 01 Sep 2022 12:13:59 GMT
Content-Length: 80101
Connection: keep-alive
Last-Modified: Mon, 15 Aug 2022 10:50:34 GMT
x-rgw-object-type: Normal
ETag: "a1590ac99ce328ef25c45df5da890a94"
x-amz-request-id: tx000000000000030f7f299-00630deae5-c03521c-sfo1
X-Storage-Bucket: z662d
X-Storage-Object: 662d061860062746676110692997d45074ec12b8f97f6ebedf02c1877b4a2a7f
X-Host: blu49.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 489x800, components 3\012- data
Size:   80101
Md5:    a1590ac99ce328ef25c45df5da890a94
Sha1:   2a4ee7d9a0fb8c80cbc5cf2d7289bc233aa32ebe
Sha256: 662d061860062746676110692997d45074ec12b8f97f6ebedf02c1877b4a2a7f
                                        
                                            GET /files/theme/images/search.png?1662014973 HTTP/1.1 
Host: www.2016hairhouse.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.2016hairhouse.com/files/main_style.css?1662014973
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.159
HTTP/1.1 200 OK
Content-Type: image/png; charset=binary
                                        
Server: nginx
Date: Thu, 01 Sep 2022 12:14:00 GMT
Content-Length: 336
Connection: keep-alive
Last-Modified: Mon, 23 Mar 2020 03:05:44 GMT
ETag: "73961c5d56f2a3f06ea821b0e749206c"
x-amz-request-id: tx000000000000001925d55-005eaaf666-1100fc6-las
X-Storage-Bucket: za4eb
X-Storage-Object: a4eb3706e364405509ed18574a70a8836b3a2b334ed04df1d10ca33bf3421545
X-Host: grn32.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 14 x 13, 8-bit/color RGBA, non-interlaced\012- data
Size:   336
Md5:    73961c5d56f2a3f06ea821b0e749206c
Sha1:   378766d193d54b13c043cce64d919b31a2dbbb3e
Sha256: a4eb3706e364405509ed18574a70a8836b3a2b334ed04df1d10ca33bf3421545
                                        
                                            GET /uploads/1/2/5/0/125078387/timeline-20211123-182444.jpg HTTP/1.1 
Host: www.2016hairhouse.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.2016hairhouse.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.159
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 01 Sep 2022 12:13:59 GMT
Content-Length: 116550
Connection: keep-alive
Last-Modified: Mon, 15 Aug 2022 10:52:11 GMT
x-rgw-object-type: Normal
ETag: "0b80877e3b349fac5317652e4c2dc1c7"
x-amz-request-id: tx000000000000030ff766a-00630decc2-c0351b0-sfo1
X-Storage-Bucket: z79b2
X-Storage-Object: 79b22238bf7fa13887d66a61622e250a75f36bb2b6530436a373d9c17783a6ee
X-Host: blu71.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 600x800, components 3\012- data
Size:   116550
Md5:    0b80877e3b349fac5317652e4c2dc1c7
Sha1:   2aa7735672f06a3f52ac4bf24db714db993d94e3
Sha256: 79b22238bf7fa13887d66a61622e250a75f36bb2b6530436a373d9c17783a6ee
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.156
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 01 Sep 2022 12:14:00 GMT
Last-Modified: Thu, 01 Sep 2022 11:07:19 GMT
Server: ECS (nyb/1D0C)
X-Cache: Miss from cloudfront
Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: U9uZZinmYKe0REialIZE8srV5nWzpwlGAQQ3LMaZ3OIeyhHTrXxwvg==
Age: 4001

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.156
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 01 Sep 2022 12:14:00 GMT
Last-Modified: Thu, 01 Sep 2022 10:58:03 GMT
Server: ECS (nyb/1D24)
X-Cache: Miss from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: UsItNzjoYg12khyXDXmIK5r3ahgLKic-pcyFWW_hThSbGA6pk-9cVw==
Age: 4557

                                        
                                            OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1 
Host: ec.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.2016hairhouse.com/
Origin: https://www.2016hairhouse.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         44.238.88.40
HTTP/2 200 OK
                                        
date: Thu, 01 Sep 2022 12:14:00 GMT
content-length: 0
server: nginx
access-control-allow-origin: https://www.2016hairhouse.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, SP-Anonymous
access-control-max-age: 5
X-Firefox-Spdy: h2

                                        
                                            GET /uploads/1/2/5/0/125078387/line-album-dora-220808-7.jpg HTTP/1.1 
Host: www.2016hairhouse.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.2016hairhouse.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.159
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 01 Sep 2022 12:14:00 GMT
Content-Length: 76983
Connection: keep-alive
Last-Modified: Mon, 15 Aug 2022 09:43:39 GMT
x-rgw-object-type: Normal
ETag: "1215403769d2504aa73c6ff963071a20"
x-amz-request-id: tx00000000000002bbc3d9c-0063065d5d-c033918-sfo1
X-Storage-Bucket: zbb78
X-Storage-Object: bb78d6cb5ea9de84315ac8a152bf2cbe2b61602f5bcd33beb69ad8276833bbee
X-Host: blu49.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 533x800, components 3\012- data
Size:   76983
Md5:    1215403769d2504aa73c6ff963071a20
Sha1:   32d18b6d2cc5842b4add044d625c8c4b64a4e516
Sha256: bb78d6cb5ea9de84315ac8a152bf2cbe2b61602f5bcd33beb69ad8276833bbee
                                        
                                            GET /uploads/1/2/5/0/125078387/s-61693975.jpg HTTP/1.1 
Host: www.2016hairhouse.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.2016hairhouse.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.159
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 01 Sep 2022 12:14:00 GMT
Content-Length: 78308
Connection: keep-alive
Last-Modified: Mon, 15 Aug 2022 10:50:36 GMT
x-rgw-object-type: Normal
ETag: "d411758957e814ff5638d15894cd3e97"
x-amz-request-id: tx000000000000030a00270-00630deae6-c0351c8-sfo1
X-Storage-Bucket: z125e
X-Storage-Object: 125e8b19d275c764e9ed3da8b38b55db29849d81468582a8fab87a0ddb3d045a
X-Host: grn77.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 489x800, components 3\012- data
Size:   78308
Md5:    d411758957e814ff5638d15894cd3e97
Sha1:   fd7139a8cdce20fd2d17431366ce61929be79829
Sha256: 125e8b19d275c764e9ed3da8b38b55db29849d81468582a8fab87a0ddb3d045a
                                        
                                            GET /uploads/1/2/5/0/125078387/timeline-20210904-001126.jpg HTTP/1.1 
Host: www.2016hairhouse.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.2016hairhouse.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.159
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 01 Sep 2022 12:14:00 GMT
Content-Length: 82769
Connection: keep-alive
Last-Modified: Mon, 15 Aug 2022 10:52:37 GMT
x-rgw-object-type: Normal
ETag: "a1908da892484e92d61947442178a441"
x-amz-request-id: tx000000000000030a0441e-00630deb50-c0351c8-sfo1
X-Storage-Bucket: zadbc
X-Storage-Object: adbc57ac32d8d8d1be8896023b00818a056b1fdf0f6d5dffebe1caf281d5ffb2
X-Host: blu49.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 600x800, components 3\012- data
Size:   82769
Md5:    a1908da892484e92d61947442178a441
Sha1:   d5db6595184fa8dec7ffc6b08562c83ca574f130
Sha256: adbc57ac32d8d8d1be8896023b00818a056b1fdf0f6d5dffebe1caf281d5ffb2
                                        
                                            POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1 
Host: ec.editmysite.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 1792
Origin: https://www.2016hairhouse.com
Connection: keep-alive
Referer: https://www.2016hairhouse.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         44.238.88.40
HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
                                        
date: Thu, 01 Sep 2022 12:14:00 GMT
content-length: 2
server: nginx
set-cookie: sp=1cafa660-4fcf-4162-b9fc-83b433c3b905; Expires=Fri, 01 Sep 2023 12:14:00 GMT; Domain=; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://www.2016hairhouse.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   2
Md5:    444bcb3a3fcf8389296c49467f27e1d6
Sha1:   7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
Sha256: 2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
                                        
                                            GET /uploads/1/2/5/0/125078387/timeline-20210904-000630.jpg HTTP/1.1 
Host: www.2016hairhouse.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.2016hairhouse.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.159
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 01 Sep 2022 12:14:00 GMT
Content-Length: 92919
Connection: keep-alive
Last-Modified: Mon, 15 Aug 2022 10:52:22 GMT
x-rgw-object-type: Normal
ETag: "56d389b1474faf1ab11d7840cb3e3b8a"
x-amz-request-id: tx000000000000030a0150f-00630deb03-c0351c8-sfo1
X-Storage-Bucket: z73d5
X-Storage-Object: 73d50a9f8ef6b77233b6ffd6c5d5b3a0a9e31e46102c6d33071e1afcfdaf44d7
X-Host: grn77.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 600x800, components 3\012- data
Size:   92919
Md5:    56d389b1474faf1ab11d7840cb3e3b8a
Sha1:   38b0ab2d06314eeab58e47d3398335de88365654
Sha256: 73d50a9f8ef6b77233b6ffd6c5d5b3a0a9e31e46102c6d33071e1afcfdaf44d7
                                        
                                            GET /uploads/1/2/5/0/125078387/background-images/1380185591.jpg HTTP/1.1 
Host: www.2016hairhouse.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.2016hairhouse.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.159
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 01 Sep 2022 12:14:00 GMT
Content-Length: 381752
Connection: keep-alive
Last-Modified: Mon, 15 Aug 2022 09:41:18 GMT
x-rgw-object-type: Normal
ETag: "7b854a88a6aedb252ffa0a403be3bcd1"
x-amz-request-id: tx000000000000030a11ec8-00630dea2e-c033918-sfo1
X-Storage-Bucket: zc84c
X-Storage-Object: c84cdef5ae848e9c67203ce6a3a0b30efad88c6c03d3aeb4bbab34512f9ffbbf
X-Host: grn46.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 2000x1500, components 3\012- data
Size:   381752
Md5:    7b854a88a6aedb252ffa0a403be3bcd1
Sha1:   178d588f53d3c45c079a9af13d79c209be924a07
Sha256: c84cdef5ae848e9c67203ce6a3a0b30efad88c6c03d3aeb4bbab34512f9ffbbf
                                        
                                            GET /uploads/1/2/5/0/125078387/284183840-1708517752820692-8067792449834978230-n_orig.jpg HTTP/1.1 
Host: www.2016hairhouse.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.2016hairhouse.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.159
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 01 Sep 2022 12:14:00 GMT
Content-Length: 159232
Connection: keep-alive
Last-Modified: Wed, 17 Aug 2022 12:54:10 GMT
x-rgw-object-type: Normal
ETag: "f13207f2edc01b45fb7d1cce5af29698"
x-amz-request-id: tx000000000000030a01b32-00630deb0d-c0351c8-sfo1
X-Storage-Bucket: zcaa8
X-Storage-Object: caa8dd9c62293da7c44853eda881c87aead5d9a3df9e8df5b9a3c912648bec96
X-Host: blu49.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1067x800, components 3\012- data
Size:   159232
Md5:    f13207f2edc01b45fb7d1cce5af29698
Sha1:   91bbdc2523a356a53dcff2cabe4fbe72fb2c56da
Sha256: caa8dd9c62293da7c44853eda881c87aead5d9a3df9e8df5b9a3c912648bec96
                                        
                                            GET /uploads/1/2/5/0/125078387/284447685-1708517772820690-350887490226001079-n_orig.jpg HTTP/1.1 
Host: www.2016hairhouse.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.2016hairhouse.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.159
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 01 Sep 2022 12:14:00 GMT
Content-Length: 141728
Connection: keep-alive
Last-Modified: Mon, 15 Aug 2022 09:41:01 GMT
x-rgw-object-type: Normal
ETag: "abdd271dfe9117a857405cdee73985f9"
x-amz-request-id: tx000000000000030f93eeb-00630decf6-c03521c-sfo1
X-Storage-Bucket: ze660
X-Storage-Object: e6600f1e4f53c5973afd75fdd1b22ed7f35cfac939af1b5cf2ad14c9f53783f6
X-Host: blu49.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1067x800, components 3\012- data
Size:   141728
Md5:    abdd271dfe9117a857405cdee73985f9
Sha1:   73c4728b5076f0a02794d7ff66eb26e85151baf5
Sha256: e6600f1e4f53c5973afd75fdd1b22ed7f35cfac939af1b5cf2ad14c9f53783f6
                                        
                                            GET /uploads/1/2/5/0/125078387/282436500-1708517779487356-3437919857340127687-n_orig.jpg HTTP/1.1 
Host: www.2016hairhouse.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.2016hairhouse.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.159
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 01 Sep 2022 12:14:00 GMT
Content-Length: 122309
Connection: keep-alive
Last-Modified: Wed, 17 Aug 2022 12:54:13 GMT
x-rgw-object-type: Normal
ETag: "6e659f4321c437a344a0bf10da1807f6"
x-amz-request-id: tx000000000000031211481-00630deae8-bfe36ba-sfo1
X-Storage-Bucket: zd81d
X-Storage-Object: d81da815519f61d102c715ada837e46c6aa44539acda6ba3f07007f6c055f2da
X-Host: grn84.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1067x800, components 3\012- data
Size:   122309
Md5:    6e659f4321c437a344a0bf10da1807f6
Sha1:   990864415bcb8cf58319895ed2fa26e6f0eacdf7
Sha256: d81da815519f61d102c715ada837e46c6aa44539acda6ba3f07007f6c055f2da
                                        
                                            GET /uploads/1/2/5/0/125078387/1528197263-3222574039-wn_orig.jpg HTTP/1.1 
Host: www.2016hairhouse.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.2016hairhouse.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.159
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 01 Sep 2022 12:14:00 GMT
Content-Length: 46325
Connection: keep-alive
Last-Modified: Wed, 17 Aug 2022 12:23:12 GMT
x-rgw-object-type: Normal
ETag: "a90f9ce9e1290a4887843c1678d0457b"
x-amz-request-id: tx00000000000003080d18a-00630dafb6-c033918-sfo1
X-Storage-Bucket: zd2a8
X-Storage-Object: d2a82ff32edca2a8c1e04fe068a385bddfbf4c850907cef1de70ea6ac8f5b0ae
X-Host: blu13.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, baseline, precision 8, 600x450, components 3\012- data
Size:   46325
Md5:    a90f9ce9e1290a4887843c1678d0457b
Sha1:   3d45ff89b27a5f54a9168141d9be9077fb7f0113
Sha256: d2a82ff32edca2a8c1e04fe068a385bddfbf4c850907cef1de70ea6ac8f5b0ae
                                        
                                            GET /uploads/1/2/5/0/125078387/285023699-1708517762820691-8617299910789765965-n_orig.jpg HTTP/1.1 
Host: www.2016hairhouse.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.2016hairhouse.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.159
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 01 Sep 2022 12:14:00 GMT
Content-Length: 140865
Connection: keep-alive
Last-Modified: Wed, 17 Aug 2022 12:54:14 GMT
x-rgw-object-type: Normal
ETag: "9d03cb5c55092db353bdbd8386f5071b"
x-amz-request-id: tx000000000000030a2d5f8-00630decf6-c033918-sfo1
X-Storage-Bucket: ze837
X-Storage-Object: e8370bc0b497bf93e4c5705520ac18c2fb033f9692ea54536837197860feb980
X-Host: blu27.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1067x800, components 3\012- data
Size:   140865
Md5:    9d03cb5c55092db353bdbd8386f5071b
Sha1:   5b72fed6a714cc299bbb5335e4a428a414ffc6b4
Sha256: e8370bc0b497bf93e4c5705520ac18c2fb033f9692ea54536837197860feb980
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Sep 2022 12:14:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /ga.js HTTP/1.1 
Host: ssl.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.2016hairhouse.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.136
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 17168
date: Thu, 01 Sep 2022 10:17:11 GMT
expires: Thu, 01 Sep 2022 12:17:11 GMT
cache-control: public, max-age=7200
age: 7010
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1305)
Size:   17168
Md5:    01d5892e6e243b52998310c2925b9f3a
Sha1:   58180151b6a6ee4af73583a214b68efb9e8844d4
Sha256: 7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Sep 2022 12:14:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.2016hairhouse.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.2016hairhouse.com/
Cookie: is_mobile=0; language=en; _snow_ses.1ae7=*; _snow_id.1ae7=a220321e-dc72-4020-ae40-c4638835e444.1662034440.1.1662034440.1662034440.408c0878-ec39-4b48-81b8-b14bfaaeca05
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.159
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Server: nginx
Date: Thu, 01 Sep 2022 12:14:01 GMT
Content-Length: 16958
Connection: keep-alive
Last-Modified: Wed, 17 Aug 2022 13:32:51 GMT
x-rgw-object-type: Normal
ETag: "ecf6d4776ebc696bc5eb42d1968dc0f3"
x-amz-request-id: tx00000000000002bc24d10-0063065d5e-bfe27ea-sfo1
X-Storage-Bucket: ze7a3
X-Storage-Object: e7a3086c591788f17ca933cc63868559f853fc24af9b571f91a7861d54b3029e
X-Host: grn79.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon, 64x64, 32 bits/pixel\012- data
Size:   16958
Md5:    ecf6d4776ebc696bc5eb42d1968dc0f3
Sha1:   572af9aeea318a1799e5916e73fb121c5da13703
Sha256: e7a3086c591788f17ca933cc63868559f853fc24af9b571f91a7861d54b3029e
                                        
                                            POST /ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails] HTTP/1.1 
Host: www.2016hairhouse.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 83
Origin: https://www.2016hairhouse.com
Connection: keep-alive
Referer: https://www.2016hairhouse.com/
Cookie: is_mobile=0; language=en; _snow_ses.1ae7=*; _snow_id.1ae7=a220321e-dc72-4020-ae40-c4638835e444.1662034440.1.1662034440.1662034440.408c0878-ec39-4b48-81b8-b14bfaaeca05
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.159
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Date: Thu, 01 Sep 2022 12:14:01 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: blu88.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 432
Keep-Alive: timeout=10, max=60
Connection: Keep-Alive


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (432), with no line terminators
Size:   432
Md5:    a4cf59767d4abb9a3423cf28b5009012
Sha1:   00c44553378b9d968f0262700ab2dd9c3897ea57
Sha256: 0644357b2162e2a1fb39fad3873bee9b33450c1155e8f1ea26e8ea4072fb8ad1
                                        
                                            GET /uploads/1/2/5/0/125078387/20190311-img-8173_orig.jpg HTTP/1.1 
Host: www.2016hairhouse.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.2016hairhouse.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

                                         
                                         199.34.228.159
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Thu, 01 Sep 2022 12:14:00 GMT
Content-Length: 176110
Connection: keep-alive
Last-Modified: Wed, 17 Aug 2022 12:54:22 GMT
x-rgw-object-type: Normal
ETag: "174734ec838947e601e72f37d135c1d6"
x-amz-request-id: tx000000000000031215b86-00630deb5b-bfe36ba-sfo1
X-Storage-Bucket: z20e7
X-Storage-Object: 20e7eb6f2c0112fd90a64c3e763ecbcfff46039793161516c793cb7fafd1b040
X-Host: blu14.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1067x800, components 3\012- data
Size:   176110
Md5:    174734ec838947e601e72f37d135c1d6
Sha1:   7ed0102ea1a11636e454e5317ad5dca2dfbe42d1
Sha256: 20e7eb6f2c0112fd90a64c3e763ecbcfff46039793161516c793cb7fafd1b040
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0198fd1f-b00c-442e-9184-8ce8ebf9593c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10777
x-amzn-requestid: 2e9a081f-2ae4-49b9-b9d4-79cae2b7eae9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xv3kRFiJIAMFgNA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630fd2e7-2f9eec0b239ceb6d617431b6;Sampled=0
x-amzn-remapped-date: Wed, 31 Aug 2022 21:30:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: w9ACDg_Mxbl2GSEDeDAqdMlKjkCiMyWExvCUa2jHquaQy6U-4EJtbQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 21:37:19 GMT
age: 52607
etag: "d97a8b0e4b4dbc60dfc9eb15ba28f68e8e3731ef"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10777
Md5:    ba98f63d9bef7deebb9a8d1b3126d396
Sha1:   d97a8b0e4b4dbc60dfc9eb15ba28f68e8e3731ef
Sha256: b8f6c1c6b34ec452a6aa3090c30ebf3a68cb3b4d45a7b134ed32e1959f4f0682
                                        
                                            GET /css?family=Actor&subset=latin,latin-ext HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.2016hairhouse.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Sep 2022 12:13:59 GMT
date: Thu, 01 Sep 2022 12:13:59 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /css?family=Cabin:400,700,400italic,700italic&subset=latin,latin-ext HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.2016hairhouse.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Sep 2022 12:13:59 GMT
date: Thu, 01 Sep 2022 12:13:59 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /css?family=Source+Sans+Pro:400,300,300italic,200,200italic,700,400italic,700italic&subset=latin,latin-ext HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.2016hairhouse.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Sep 2022 12:13:59 GMT
date: Thu, 01 Sep 2022 12:13:59 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---