| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash1cdc095521e9ee2606059be447d1fdd5 02b5d0a5b5823e2338daf7e144700babe2a213af 8bda3aabcf331c2bfcc4c7023cd797c760fd301dc353641bb95048e072f66c66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8BDA3AABCF331C2BFCC4C7023CD797C760FD301DC353641BB95048E072F66C66"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8243
Expires: Sun, 05 Feb 2023 12:37:17 GMT
Date: Sun, 05 Feb 2023 10:19:54 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashc21ba65e44ac95470c314e068e49a9eb 17a13b13738993d889d4afa3d848dc63bf6eba64 9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16764
Expires: Sun, 05 Feb 2023 14:59:18 GMT
Date: Sun, 05 Feb 2023 10:19:54 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashfb7b6b46e708ad73eaaa3c21e74569ae 950663c025acad81556af5aa3022ecc9d55097fe 763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4983
Expires: Sun, 05 Feb 2023 11:42:57 GMT
Date: Sun, 05 Feb 2023 10:19:54 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashff250d3ef3fa45322bf05039a0122a9f b3e7a2c383bce1bab807dbe1a03c375258b51f1d d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 05 Feb 2023 09:33:54 GMT
content-type: application/json
age: 2760
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash7b922915ebf1fa3639b333f994c74f24 144a3f80b98fd0652d4614f24cf6cbbee40f8938 adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: eNCjtkRXRdwYa7myiRBO0/ysWm2bL0QHAdxc3ZvtP91ZTGrBADleTMSxiY8xTB7U0i/8jpp318Y=
x-amz-request-id: Z3YYNWNS452N164V
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 05 Feb 2023 09:53:13 GMT
age: 1601
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 10:19:54 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| kb.cloudhelpdesk.pw/ | 207.180.212.249 | 302 Found | 0 B |
IP207.180.212.249:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS | Severity | Alert | suricata | low | ET INFO HTTP Request to a *.pw domain |
GET / HTTP/1.1
Host: kb.cloudhelpdesk.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Server: nginx
Date: Sun, 05 Feb 2023 10:19:54 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: ppwp_wp_session=aa849bc92d9750bf070c81471ba82805%7C%7C1675594194%7C%7C1675593834; expires=Sun, 05-Feb-2023 10:49:54 GMT; Max-Age=1800; path=/
X-Redirect-By: WordPress
Location: https://kb.cloudhelpdesk.pw/wp-login.php?redirect_to=%2F
X-Powered-By: PHP/7.4.33, PleskLin
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 05 Feb 2023 10:07:20 GMT
age: 754
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashdedf9c519ac38c4bece9c5bc895787d7 4911175c3f8a435978c5301c33c7a99a5e00a1d5 bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13807
Expires: Sun, 05 Feb 2023 14:10:01 GMT
Date: Sun, 05 Feb 2023 10:19:54 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash3a5d09f9eae31b6e055f2538fcf8f9c1 ddd05fb626edfb067cf4af20fc891729a60d6207 0b3094208475fddded1e0afff3b4b098796c0c6385a21d94e8f23d48d68f16f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0B3094208475FDDDED1E0AFFF3B4B098796C0C6385A21D94E8F23D48D68F16F1"
Last-Modified: Fri, 03 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sun, 05 Feb 2023 16:19:54 GMT
Date: Sun, 05 Feb 2023 10:19:54 GMT
Connection: keep-alive
|
|
| push.services.mozilla.com/ | 52.39.93.175 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP52.39.93.175:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: yv9FCSwIDH2FIoA2I8nySQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 48LWMNMfQw30TNzQDpmnKPnNhcM=
|
|
| kb.cloudhelpdesk.pw/wp-includes/css/dashicons.min.css?ver=5.8.6 | 207.180.212.249 | 200 OK | 37 kB |
URL HTTP/2kb.cloudhelpdesk.pw/wp-includes/css/dashicons.min.css?ver=5.8.6 IP207.180.212.249:0
File typeASCII text, with very long lines (58981) Hashddf6e740f5f9aca8a30d1a78db295529 1c94cb3a0b9f3b9906a2d00d14b0915f3102a53b 5d2445073da090912b52bb202f0c1519d262c1e86c5c37b063ce5214ea9e3ebe
GET /wp-includes/css/dashicons.min.css?ver=5.8.6 HTTP/1.1
Host: kb.cloudhelpdesk.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kb.cloudhelpdesk.pw/wp-login.php?redirect_to=%2F
Cookie: ppwp_wp_session=e70f4968960625371c5533fdd53d76c9%7C%7C1675594195%7C%7C1675593835; wordpress_test_cookie=WP%20Cookie%20check
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 10:19:55 GMT
content-type: text/css
last-modified: Thu, 15 Apr 2021 23:03:01 GMT
etag: W/"6078c625-e688"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| kb.cloudhelpdesk.pw/wp-content/uploads/2017/02/cropped-itservice1-192x192.png | 207.180.212.249 | 200 OK | 28 kB |
URL HTTP/2kb.cloudhelpdesk.pw/wp-content/uploads/2017/02/cropped-itservice1-192x192.png IP207.180.212.249:0
File typePNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data Hash8659aeef1358663009e77fe5b64678fe b7fef071e9af5d138999c9aef5e5806026e816ba 009b75b696138ea817bdd81bb6be9d98613ce110e0a83bd7a008764af5362790
GET /wp-content/uploads/2017/02/cropped-itservice1-192x192.png HTTP/1.1
Host: kb.cloudhelpdesk.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kb.cloudhelpdesk.pw/wp-login.php?redirect_to=%2F
Connection: keep-alive
Cookie: ppwp_wp_session=e70f4968960625371c5533fdd53d76c9%7C%7C1675594195%7C%7C1675593835; wordpress_test_cookie=WP%20Cookie%20check
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 10:19:55 GMT
content-type: image/png
content-length: 27858
last-modified: Mon, 07 May 2018 21:10:12 GMT
etag: "5af0c0b4-6cd2"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| kb.cloudhelpdesk.pw/wp-admin/css/forms.min.css?ver=5.8.6 | 207.180.212.249 | 200 OK | 8.1 kB |
URL HTTP/2kb.cloudhelpdesk.pw/wp-admin/css/forms.min.css?ver=5.8.6 IP207.180.212.249:0
File typeASCII text, with very long lines (25326) Hasha2b19b9fddbc463746b35eb524a115cb b6b4836e58133e7b6a5b433c79c9d7d42bcdea5c cafddf4bcf2efd90d2e9d632efa486a56a10981f890c7cd907377e95c581647c
GET /wp-admin/css/forms.min.css?ver=5.8.6 HTTP/1.1
Host: kb.cloudhelpdesk.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kb.cloudhelpdesk.pw/wp-login.php?redirect_to=%2F
Cookie: ppwp_wp_session=e70f4968960625371c5533fdd53d76c9%7C%7C1675594195%7C%7C1675593835; wordpress_test_cookie=WP%20Cookie%20check
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 10:19:55 GMT
content-type: text/css
last-modified: Sat, 31 Jul 2021 17:53:48 GMT
etag: W/"61058e2c-6311"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash1b25bf82638deaab60981e1315ee0849 e3bd912fd1a890e64ee6746a78a674db7ff77039 a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8124
Expires: Sun, 05 Feb 2023 12:35:20 GMT
Date: Sun, 05 Feb 2023 10:19:56 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash1b25bf82638deaab60981e1315ee0849 e3bd912fd1a890e64ee6746a78a674db7ff77039 a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8124
Expires: Sun, 05 Feb 2023 12:35:20 GMT
Date: Sun, 05 Feb 2023 10:19:56 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash1b25bf82638deaab60981e1315ee0849 e3bd912fd1a890e64ee6746a78a674db7ff77039 a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8124
Expires: Sun, 05 Feb 2023 12:35:20 GMT
Date: Sun, 05 Feb 2023 10:19:56 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash1b25bf82638deaab60981e1315ee0849 e3bd912fd1a890e64ee6746a78a674db7ff77039 a99b0dfa9ca7176b21cc2d65963a1b6eb6d534b3767d02ef06cc207a63331ebf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A99B0DFA9CA7176B21CC2D65963A1B6EB6D534B3767D02EF06CC207A63331EBF"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8124
Expires: Sun, 05 Feb 2023 12:35:20 GMT
Date: Sun, 05 Feb 2023 10:19:56 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a9d301-2b38-4046-91c2-941ed351597a.jpeg | 34.120.237.76 | 200 OK | 3.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a9d301-2b38-4046-91c2-941ed351597a.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashd7a466d89c75ff3459b7328591db52cf c3f29f9c2fbdc1fa2aef7a9e79ca796b28394afb e73243be3d01d12a224c4e9826c4f52610cf7722eee69f62755278d7550705f1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a9d301-2b38-4046-91c2-941ed351597a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3474
x-amzn-requestid: 5846c080-9f25-4590-863c-8af2126cdbe1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f1WXEEbnoAMFRdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ded0f9-1bd490125feadc14366e7ca0;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 21:41:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: d8aQmkW-aqLFpb79RynlJG2vY1GTDbjLNY0Qukgg_WIjdI6cmbVKFw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 21:51:26 GMT
age: 44910
etag: "c3f29f9c2fbdc1fa2aef7a9e79ca796b28394afb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3f52758-d976-47aa-a47d-f0d6026514dc.jpeg | 34.120.237.76 | 200 OK | 7.7 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3f52758-d976-47aa-a47d-f0d6026514dc.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashf28ffcf384ce958b6302d05b6690c088 e5d4cbfc7482d35ee2ca03a7178426f3e2e97010 725d42a020d496f596074794cc2abdaca8a9b821e1a3502eee26056d0f528506
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3f52758-d976-47aa-a47d-f0d6026514dc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7665
x-amzn-requestid: 001ba86d-ebc8-4819-89f7-1604bc059cd8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPGibFeqIAMFqMA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf8475-076d982b5fccf2b931a05976;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:10:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Y5yw5NZcyU6jkDXFaCeTuevp7YSZ42oJ1FhYyQHVvPlYWhpm1SwZLA==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 22:23:59 GMT
age: 42957
etag: "e5d4cbfc7482d35ee2ca03a7178426f3e2e97010"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| kb.cloudhelpdesk.pw/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 | 207.180.212.249 | 200 OK | 11 kB |
URL HTTP/2kb.cloudhelpdesk.pw/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP207.180.212.249:0
File typeASCII text, with very long lines (11126) Hash8034d4abd17fedd04e70387c61110fea 87da0743f873812f5828fe0412b217ea1890dfe7 1cac201b8a6ff2003c86f7a8c38aa39b277e5874f5ff037db87e3ba5be8e5e77
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: kb.cloudhelpdesk.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kb.cloudhelpdesk.pw/wp-login.php?redirect_to=%2F
Connection: keep-alive
Cookie: ppwp_wp_session=e70f4968960625371c5533fdd53d76c9%7C%7C1675594195%7C%7C1675593835; wordpress_test_cookie=WP%20Cookie%20check
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 10:19:55 GMT
content-type: application/javascript
last-modified: Thu, 21 Jan 2021 11:21:13 GMT
etag: W/"600963a9-2bd8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| kb.cloudhelpdesk.pw/wp-includes/js/zxcvbn-async.min.js?ver=1.0 | 207.180.212.249 | 200 OK | 9.8 kB |
URL HTTP/2kb.cloudhelpdesk.pw/wp-includes/js/zxcvbn-async.min.js?ver=1.0 IP207.180.212.249:0
File typeASCII text, with very long lines (316) Hashb5a593e36aa21cce9fc26afbb611f255 ab1ca289c542f3127fdade8af5c2b32e6b7613b7 748aabd661dc0eb763427c06459d4f4e6ab01dbe78385a357a5366a79a8d5c84
GET /wp-includes/js/zxcvbn-async.min.js?ver=1.0 HTTP/1.1
Host: kb.cloudhelpdesk.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kb.cloudhelpdesk.pw/wp-login.php?redirect_to=%2F
Connection: keep-alive
Cookie: ppwp_wp_session=e70f4968960625371c5533fdd53d76c9%7C%7C1675594195%7C%7C1675593835; wordpress_test_cookie=WP%20Cookie%20check
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 10:19:55 GMT
content-type: application/javascript
last-modified: Tue, 16 Mar 2021 12:01:06 GMT
etag: W/"60509e02-15f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| kb.cloudhelpdesk.pw/wp-admin/js/user-profile.min.js?ver=5.8.6 | 207.180.212.249 | 200 OK | 7.1 kB |
URL HTTP/2kb.cloudhelpdesk.pw/wp-admin/js/user-profile.min.js?ver=5.8.6 IP207.180.212.249:0
File typeASCII text, with very long lines (6045) Hashcc172da440be765db8fe76c7c772bdc8 4ada76dbcd7c9392a6138f576d8648623744e40e 5285abd914242503740168ba95ca561f788e5b99f09719924afc51bd2890c5e1
GET /wp-admin/js/user-profile.min.js?ver=5.8.6 HTTP/1.1
Host: kb.cloudhelpdesk.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kb.cloudhelpdesk.pw/wp-login.php?redirect_to=%2F
Connection: keep-alive
Cookie: ppwp_wp_session=e70f4968960625371c5533fdd53d76c9%7C%7C1675594195%7C%7C1675593835; wordpress_test_cookie=WP%20Cookie%20check
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 10:19:55 GMT
content-type: application/javascript
last-modified: Sat, 31 Jul 2021 17:53:48 GMT
etag: W/"61058e2c-17c0"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg | 34.120.237.76 | 200 OK | 13 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash8e0be7db14d930d6227443314bcd1747 4e42e2ad289dfe5bd9a55d34fd768f7532bdf71d baedfbdb08a67f9ff4c698f7e65b08d7e4c5078d0a4233e6bff529b44812735a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6718344-fcb4-4366-9239-8921034a7114.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12967
x-amzn-requestid: 013fa296-a431-410b-b3fb-7417b3e877eb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fpIQAFCMIAMF0Sw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9ed99-2e1daa8b75977de07c48b8fc;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 04:42:01 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: UzQGDCYe_8AuYYLaLSAWzHQhwJMpzpXWbjE5AwukevW6G6SLDxDjmA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 03:42:59 GMT
age: 23817
etag: "4e42e2ad289dfe5bd9a55d34fd768f7532bdf71d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| kb.cloudhelpdesk.pw/wp-admin/js/password-strength-meter.min.js?ver=5.8.6 | 207.180.212.249 | 200 OK | 0 B |
URL HTTP/2kb.cloudhelpdesk.pw/wp-admin/js/password-strength-meter.min.js?ver=5.8.6 IP207.180.212.249:0
GET /wp-admin/js/password-strength-meter.min.js?ver=5.8.6 HTTP/1.1
Host: kb.cloudhelpdesk.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kb.cloudhelpdesk.pw/wp-login.php?redirect_to=%2F
Connection: keep-alive
Cookie: ppwp_wp_session=e70f4968960625371c5533fdd53d76c9%7C%7C1675594195%7C%7C1675593835; wordpress_test_cookie=WP%20Cookie%20check
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 10:19:55 GMT
content-type: application/javascript
last-modified: Tue, 16 Mar 2021 12:01:05 GMT
etag: W/"60509e01-463"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| kb.cloudhelpdesk.pw/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.7 | 207.180.212.249 | 200 OK | 0 B |
URL HTTP/2kb.cloudhelpdesk.pw/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.7 IP207.180.212.249:0
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.7 HTTP/1.1
Host: kb.cloudhelpdesk.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kb.cloudhelpdesk.pw/wp-login.php?redirect_to=%2F
Connection: keep-alive
Cookie: ppwp_wp_session=e70f4968960625371c5533fdd53d76c9%7C%7C1675594195%7C%7C1675593835; wordpress_test_cookie=WP%20Cookie%20check
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 10:19:55 GMT
content-type: application/javascript
last-modified: Sat, 31 Jul 2021 17:53:49 GMT
etag: W/"61058e2d-1906"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| kb.cloudhelpdesk.pw/wp-includes/js/dist/hooks.min.js?ver=a7edae857aab69d69fa10d5aef23a5de | 207.180.212.249 | 200 OK | 0 B |
URL HTTP/2kb.cloudhelpdesk.pw/wp-includes/js/dist/hooks.min.js?ver=a7edae857aab69d69fa10d5aef23a5de IP207.180.212.249:0
GET /wp-includes/js/dist/hooks.min.js?ver=a7edae857aab69d69fa10d5aef23a5de HTTP/1.1
Host: kb.cloudhelpdesk.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kb.cloudhelpdesk.pw/wp-login.php?redirect_to=%2F
Connection: keep-alive
Cookie: ppwp_wp_session=e70f4968960625371c5533fdd53d76c9%7C%7C1675594195%7C%7C1675593835; wordpress_test_cookie=WP%20Cookie%20check
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 10:19:55 GMT
content-type: application/javascript
last-modified: Sat, 31 Jul 2021 17:53:49 GMT
etag: W/"61058e2d-1540"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| kb.cloudhelpdesk.pw/wp-includes/css/buttons.min.css?ver=5.8.6 | 207.180.212.249 | 200 OK | 0 B |
URL HTTP/2kb.cloudhelpdesk.pw/wp-includes/css/buttons.min.css?ver=5.8.6 IP207.180.212.249:0
GET /wp-includes/css/buttons.min.css?ver=5.8.6 HTTP/1.1
Host: kb.cloudhelpdesk.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kb.cloudhelpdesk.pw/wp-login.php?redirect_to=%2F
Cookie: ppwp_wp_session=e70f4968960625371c5533fdd53d76c9%7C%7C1675594195%7C%7C1675593835; wordpress_test_cookie=WP%20Cookie%20check
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 10:19:55 GMT
content-type: text/css
last-modified: Tue, 16 Mar 2021 12:01:07 GMT
etag: W/"60509e03-16de"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| kb.cloudhelpdesk.pw/wp-admin/css/login.min.css?ver=5.8.6 | 207.180.212.249 | 200 OK | 0 B |
URL HTTP/2kb.cloudhelpdesk.pw/wp-admin/css/login.min.css?ver=5.8.6 IP207.180.212.249:0
GET /wp-admin/css/login.min.css?ver=5.8.6 HTTP/1.1
Host: kb.cloudhelpdesk.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kb.cloudhelpdesk.pw/wp-login.php?redirect_to=%2F
Cookie: ppwp_wp_session=e70f4968960625371c5533fdd53d76c9%7C%7C1675594195%7C%7C1675593835; wordpress_test_cookie=WP%20Cookie%20check
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 10:19:55 GMT
content-type: text/css
last-modified: Sat, 31 Jul 2021 17:53:48 GMT
etag: W/"61058e2c-1654"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| kb.cloudhelpdesk.pw/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 | 207.180.212.249 | 200 OK | 0 B |
URL HTTP/2kb.cloudhelpdesk.pw/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 IP207.180.212.249:0
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: kb.cloudhelpdesk.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kb.cloudhelpdesk.pw/wp-login.php?redirect_to=%2F
Connection: keep-alive
Cookie: ppwp_wp_session=e70f4968960625371c5533fdd53d76c9%7C%7C1675594195%7C%7C1675593835; wordpress_test_cookie=WP%20Cookie%20check
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 10:19:55 GMT
content-type: application/javascript
last-modified: Sat, 31 Jul 2021 17:53:49 GMT
etag: W/"61058e2d-15db1"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| kb.cloudhelpdesk.pw/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 | 207.180.212.249 | 200 OK | 0 B |
URL HTTP/2kb.cloudhelpdesk.pw/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 IP207.180.212.249:0
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: kb.cloudhelpdesk.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kb.cloudhelpdesk.pw/wp-login.php?redirect_to=%2F
Connection: keep-alive
Cookie: ppwp_wp_session=e70f4968960625371c5533fdd53d76c9%7C%7C1675594195%7C%7C1675593835; wordpress_test_cookie=WP%20Cookie%20check
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 10:19:55 GMT
content-type: application/javascript
last-modified: Sat, 31 Jul 2021 17:53:49 GMT
etag: W/"61058e2d-4056"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| kb.cloudhelpdesk.pw/wp-includes/js/dist/i18n.min.js?ver=5f1269854226b4dd90450db411a12b79 | 207.180.212.249 | 200 OK | 0 B |
URL HTTP/2kb.cloudhelpdesk.pw/wp-includes/js/dist/i18n.min.js?ver=5f1269854226b4dd90450db411a12b79 IP207.180.212.249:0
GET /wp-includes/js/dist/i18n.min.js?ver=5f1269854226b4dd90450db411a12b79 HTTP/1.1
Host: kb.cloudhelpdesk.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kb.cloudhelpdesk.pw/wp-login.php?redirect_to=%2F
Connection: keep-alive
Cookie: ppwp_wp_session=e70f4968960625371c5533fdd53d76c9%7C%7C1675594195%7C%7C1675593835; wordpress_test_cookie=WP%20Cookie%20check
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 10:19:55 GMT
content-type: application/javascript
last-modified: Sat, 31 Jul 2021 17:53:49 GMT
etag: W/"61058e2d-268a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| kb.cloudhelpdesk.pw/wp-includes/js/underscore.min.js?ver=1.13.1 | 207.180.212.249 | 200 OK | 0 B |
URL HTTP/2kb.cloudhelpdesk.pw/wp-includes/js/underscore.min.js?ver=1.13.1 IP207.180.212.249:0
GET /wp-includes/js/underscore.min.js?ver=1.13.1 HTTP/1.1
Host: kb.cloudhelpdesk.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kb.cloudhelpdesk.pw/wp-login.php?redirect_to=%2F
Connection: keep-alive
Cookie: ppwp_wp_session=e70f4968960625371c5533fdd53d76c9%7C%7C1675594195%7C%7C1675593835; wordpress_test_cookie=WP%20Cookie%20check
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 10:19:55 GMT
content-type: application/javascript
last-modified: Sat, 31 Jul 2021 17:53:49 GMT
etag: W/"61058e2d-4a84"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| kb.cloudhelpdesk.pw/wp-login.php?redirect_to=%2F | 207.180.212.249 | 200 OK | 0 B |
URL HTTP/2kb.cloudhelpdesk.pw/wp-login.php?redirect_to=%2F IP207.180.212.249:0
GET /wp-login.php?redirect_to=%2F HTTP/1.1
Host: kb.cloudhelpdesk.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 10:19:55 GMT
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
set-cookie: ppwp_wp_session=e70f4968960625371c5533fdd53d76c9%7C%7C1675594195%7C%7C1675593835; expires=Sun, 05-Feb-2023 10:49:55 GMT; Max-Age=1800; path=/
wordpress_test_cookie=WP%20Cookie%20check; path=/; secure
x-frame-options: SAMEORIGIN
x-powered-by: PHP/7.4.33, PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| kb.cloudhelpdesk.pw/wp-admin/css/l10n.min.css?ver=5.8.6 | 207.180.212.249 | 200 OK | 0 B |
URL HTTP/2kb.cloudhelpdesk.pw/wp-admin/css/l10n.min.css?ver=5.8.6 IP207.180.212.249:0
GET /wp-admin/css/l10n.min.css?ver=5.8.6 HTTP/1.1
Host: kb.cloudhelpdesk.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kb.cloudhelpdesk.pw/wp-login.php?redirect_to=%2F
Cookie: ppwp_wp_session=e70f4968960625371c5533fdd53d76c9%7C%7C1675594195%7C%7C1675593835; wordpress_test_cookie=WP%20Cookie%20check
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 10:19:55 GMT
content-type: text/css
last-modified: Thu, 13 Dec 2018 11:58:11 GMT
etag: W/"5c124953-9ad"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|
| kb.cloudhelpdesk.pw/wp-includes/js/wp-util.min.js?ver=5.8.6 | 207.180.212.249 | 200 OK | 0 B |
URL HTTP/2kb.cloudhelpdesk.pw/wp-includes/js/wp-util.min.js?ver=5.8.6 IP207.180.212.249:0
GET /wp-includes/js/wp-util.min.js?ver=5.8.6 HTTP/1.1
Host: kb.cloudhelpdesk.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kb.cloudhelpdesk.pw/wp-login.php?redirect_to=%2F
Connection: keep-alive
Cookie: ppwp_wp_session=e70f4968960625371c5533fdd53d76c9%7C%7C1675594195%7C%7C1675593835; wordpress_test_cookie=WP%20Cookie%20check
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 10:19:55 GMT
content-type: application/javascript
last-modified: Sat, 31 Jul 2021 17:53:49 GMT
etag: W/"61058e2d-53c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
|
|