Report - app.hnry.io/invoices/daec3f7de2a5ea6f1edf93c020d28414?hnry

Report Overview

Submitted URL
app.hnry.io/invoices/daec3f7de2a5ea6f1edf93c020d28414?hnry_referrer=hnry.co.nz&ref=c
IP
3.105.118.3
ASN
#16509 AMAZON-02
Submitted
2022-10-06 08:45:47
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	54.230.111.35
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	54.230.111.64
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	64 kB	34.120.237.76
app.hnry.io	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	19 kB	2.4 MB	13.54.215.11
www.facebook.com	99	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	368 B	392 B	31.13.72.36
cdn.amplitude.com	2911	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	21 kB	54.230.245.120
stats.g.doubleclick.net	96	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	595 B	706 B	173.194.73.157
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	987 B	2.2 kB	93.184.220.29
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.6 kB	5.6 kB	142.250.74.3
region1.google-analytics.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	699 B	558 B	216.239.32.36
www.google.no	25607	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	1.5 kB	142.250.74.3
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	365 B	1.2 kB	142.250.74.168
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	22 kB	142.250.74.174
connect.facebook.net	139	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	357 B	28 kB	31.13.72.12
api2.amplitude.com	2106	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	899 B	640 B	44.240.15.61
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	23.36.77.32
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	338 B	865 B	54.230.245.118
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	44.242.3.166
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	360 B	16 kB	142.250.74.164
googleads.g.doubleclick.net	42	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	829 B	2.0 kB	142.250.74.98
ocsp.comodoca.com	1696	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	658 B	2.0 kB	172.64.155.188
jagmaysg.hnry.io	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	1.4 kB	54.230.111.33

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (23)

	URL	Size	First Seen	Last Seen
	jagmaysg.hnry.io/script.js	85 kB	2023-03-08	2023-03-08
Pretty URL jagmaysg.hnry.io/script.js IP 54.230.111.33 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:08:42 Last Seen2023-03-08 07:08:42 Times Seen1 Hash 3056299d79e3e5bce86503f633f75b0d a779c1affdcb5d37c63401673736fd07d4b2d6c9 1b520ccbbf4360b5af269f0e0ea2d1490ae8bd1b33aef3981fe872a908c82c2a Loading...

	app.hnry.io/invoices/daec3f7de2a5ea6f1edf93c020d28414?hnry_referrer=hnry.co.nz&ref=c	469 B	2023-03-08	2023-03-08
Pretty URL app.hnry.io/invoices/daec3f7de2a5ea6f1edf93c020d28414?hnry_referrer=hnry.co.nz&ref=c IP 13.54.215.11 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:08:42 Last Seen2023-03-08 07:08:42 Times Seen1 Hash a65783e84a1b6392218c7f0b8e3f2c03 70ea2911764924fb73182e20bc1b6a85decb1207 9a46a68194ec8e5608e17b84fc7bfcd163364f8590aa00753e017e4e9554ce06 Loading...

	app.hnry.io/invoices/daec3f7de2a5ea6f1edf93c020d28414?hnry_referrer=hnry.co.nz&ref=c	557 B	2023-03-08	2023-03-08
Pretty URL app.hnry.io/invoices/daec3f7de2a5ea6f1edf93c020d28414?hnry_referrer=hnry.co.nz&ref=c IP 13.54.215.11 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:08:42 Last Seen2023-03-08 07:08:42 Times Seen1 Hash 98c987180069c9b57074459ed1f0db0c 69bebc6ca3daf4c2348960432b4f008bf4e4adce 0ecdbde6ee4a98a27d293ebd5b26d437b9aa897d02937cf46559ce95f34ba330 Loading...

	www.googletagmanager.com/gtag/js?id=AW-856879262	171 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtag/js?id=AW-856879262 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:08:42 Last Seen2023-03-08 07:08:42 Times Seen1 Hash 0aa0d1d4d9bb5a3393c60ac9980921aa 4aa4659b04a5b8e08ac373b9d3d91b06ef3c2e70 faa602daaeec5a14c68c5ed45ece3d22a3ad1cf968f020d869aa25b39d49b65b Loading...

	www.googletagmanager.com/gtag/js?id=DC-10233155	109 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtag/js?id=DC-10233155 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:08:42 Last Seen2023-03-08 07:08:42 Times Seen1 Hash e528d0917ebf50fc506ebccb619709c1 83a302dff997da20998cb0082a34b1d3ab700679 c2f444593f8083f2cc246e67c763b666eb6e2ac5d8f8bc0af7e523639f2ae583 Loading...

	www.googletagmanager.com/gtag/js?id=G-LZ62PBZVJK&l=dataLayer&cx=c	215 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtag/js?id=G-LZ62PBZVJK&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:08:42 Last Seen2023-03-08 07:08:42 Times Seen1 Hash 38ab5c738bf3394e8252598993911610 5d8454564a2b99d460f114c7e26bee4244eea708 bff72e21efd57b598282234dc7d7153b8535df9010fd429b59ad31f55dd305bb Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-04-24
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-04-24 18:41:20 Times Seen1526 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	connect.facebook.net/en_US/fbevents.js	103 kB	2023-03-08	2023-11-10
Pretty URL connect.facebook.net/en_US/fbevents.js IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 00:45:46 Last Seen2023-11-10 23:06:10 Times Seen10 Hash d78a7caef2779bec7d3e91de3eb77eeb 5af31c112f3bcd8f2866d4bf89e8455438b1e382 00a92494627ed8f758972b7dc47b3af186497c0637ea867a33fdb604c1548674 Loading...

	connect.facebook.net/signals/config/1908242782783043?v=2.9.84&r=stable	300 kB	2023-03-08	2023-03-08
Pretty URL connect.facebook.net/signals/config/1908242782783043?v=2.9.84&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:08:42 Last Seen2023-03-08 07:08:42 Times Seen1 Hash 48ace61a537b6767c792d8bf0767b4a1 b4f920b84056f8e20353cb6bb22982c1697f3571 ca0fb85bc78bc2ca20afd8a96523f6914f28bfd56ba00f10f41d70c599c483c3 Loading...

	googleads.g.doubleclick.net/pagead/viewthroughconversion/856879262/?random=1665045940832&cv=9&fst=1665045940832&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oaa50&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fapp.hnry.io%2Finvoices%2Fdaec3f7de2a5ea6f1edf93c020d28414%3Fhnry_referrer%3Dhnry.co.nz%26ref%3Dc&tiba=Invoice%20-%20Hnry&auid=755873957.1665045940&hn=www.google.com&async=1&rfmt=3&fmt=4	2.4 kB	2023-03-08	2023-03-08
Pretty URL googleads.g.doubleclick.net/pagead/viewthroughconversion/856879262/?random=1665045940832&cv=9&fst=1665045940832&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oaa50&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fapp.hnry.io%2Finvoices%2Fdaec3f7de2a5ea6f1edf93c020d28414%3Fhnry_referrer%3Dhnry.co.nz%26ref%3Dc&tiba=Invoice%20-%20Hnry&auid=755873957.1665045940&hn=www.google.com&async=1&rfmt=3&fmt=4 IP 142.250.74.98 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:08:42 Last Seen2023-03-08 07:08:42 Times Seen1 Hash 7bfc832311fc8b881c1c08f6f7aa0d6b 57029fb41db1012838cd2a6212c7752ce50651c8 27b5150f027faacb00940a3f68a981966fe4c130601b376827d21aeefc41bd58 Loading...

	app.hnry.io/packs/js/views-25480b600edc603cab99.js	115 kB	2023-03-08	2023-03-08
Pretty URL app.hnry.io/packs/js/views-25480b600edc603cab99.js IP 13.54.215.11 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:08:42 Last Seen2023-03-08 07:08:42 Times Seen1 Hash 1ff6339c8af05e0e863242019e9e1cc2 215b1385c1ba02af6ee8d2f1a129f16d6ef1d19e deebd34bb0725f5f613ad89e1e29ed5ecc8a8c8fc833ce5125359a2f80d0b5f2 Loading...

	app.hnry.io/invoices/daec3f7de2a5ea6f1edf93c020d28414?hnry_referrer=hnry.co.nz&ref=c	1.7 kB	2023-03-08	2023-03-08
Pretty URL app.hnry.io/invoices/daec3f7de2a5ea6f1edf93c020d28414?hnry_referrer=hnry.co.nz&ref=c IP 13.54.215.11 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:08:42 Last Seen2023-03-08 07:08:42 Times Seen1 Hash b30bc71d1a8331cf02403a163175889c adcd5050dbe0ed4f2205b828027811b5aabef72f 969cdd31eb482600cd62812ac8b572a78295509d5cfa23751eade0957e3b7225 Loading...

	app.hnry.io/invoices/daec3f7de2a5ea6f1edf93c020d28414?hnry_referrer=hnry.co.nz&ref=c	3.3 kB	2023-03-08	2023-03-08
Pretty URL app.hnry.io/invoices/daec3f7de2a5ea6f1edf93c020d28414?hnry_referrer=hnry.co.nz&ref=c IP 13.54.215.11 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:08:42 Last Seen2023-03-08 07:08:42 Times Seen1 Hash 83b2789da222df50b87f5e787a821469 b9e065a4bd7ba3651c5136824971fcb8f42dc9e3 ee1d8b01d748c7d46ffb1507180853783acdb9c9c77ec42ec04b5cc565c84078 Loading...

	app.hnry.io/invoices/daec3f7de2a5ea6f1edf93c020d28414?hnry_referrer=hnry.co.nz&ref=c	130 B	2023-03-08	2023-03-08
Pretty URL app.hnry.io/invoices/daec3f7de2a5ea6f1edf93c020d28414?hnry_referrer=hnry.co.nz&ref=c IP 13.54.215.11 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:08:42 Last Seen2023-03-08 07:08:42 Times Seen1 Hash cef1d717e5ac625a3bc6127f02eb8d4c 5032cba4eaaa946b3a8ea2c056cb71b87c64c311 05a733f4e01513f5af2117565568bbfc4a3dff74812769b118322ae1720ff6ce Loading...

	app.hnry.io/invoices/daec3f7de2a5ea6f1edf93c020d28414?hnry_referrer=hnry.co.nz&ref=c	129 B	2023-03-08	2023-03-08
Pretty URL app.hnry.io/invoices/daec3f7de2a5ea6f1edf93c020d28414?hnry_referrer=hnry.co.nz&ref=c IP 13.54.215.11 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:08:42 Last Seen2023-03-08 07:08:42 Times Seen1 Hash 314d49a204265825144a122c8aa168f0 00853c70d29aa9987aae84032de6385e32a8022e 88b43ce1f7a9170fa8b7978a0f6e9f117905924e24ce243fc574aa7e23961730 Loading...

	cdn.amplitude.com/libs/analytics-browser-1.1.1-min.js.gz	65 kB	2023-03-08	2023-03-11
Pretty URL cdn.amplitude.com/libs/analytics-browser-1.1.1-min.js.gz IP 54.230.245.120 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:07:30 Last Seen2023-03-11 20:35:31 Times Seen1 Hash 44bb2f2b1bf955ece02a8f8dbe8f204c 2dd0a4f2c63109dd85cd19b4a52b033f76a4aad7 34b1045cab2a2d2271465fb8d821f5fdd84aa2b2b0823cc00ee42a93dd30df3a Loading...

	app.hnry.io/packs/js/channels-32eda80e863d1b7cc814.js	12 kB	2023-03-08	2023-03-08
Pretty URL app.hnry.io/packs/js/channels-32eda80e863d1b7cc814.js IP 13.54.215.11 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:08:42 Last Seen2023-03-08 07:08:42 Times Seen1 Hash 8a8b803bb715ad39799e0e1be27ef1ca 1e6bc36b37eb17e53254db81da81d89a12d80f14 94c90a0ad74bc7fd1f49690831828ca6413571b286a99cf2fb50ce23a7138e71 Loading...

	app.hnry.io/packs/js/utilities-401ce3b8898fb5462fe3.js	356 kB	2023-03-08	2023-03-08
Pretty URL app.hnry.io/packs/js/utilities-401ce3b8898fb5462fe3.js IP 13.54.215.11 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:08:42 Last Seen2023-03-08 07:08:42 Times Seen1 Hash 5c60704d93c1f148c1bfc93c5291b052 8457e5dc7fbb84bc217d984cd18cece7564e146c 50e02197a27fb656797ea59be7cdc374853d72a7b58abbd0bdec1408ee2e79f8 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-MH96N7Z	274 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-MH96N7Z IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:08:42 Last Seen2023-03-08 07:08:42 Times Seen1 Hash aea013f382615c79cda7f83ebbd82ea6 478ced6a32d776c5d7fadedb8514a35e6012381a 7863ab33a351a1746d9e0823732daab49efa658779b979b5acab58cab296b269 Loading...

	www.google.com/pagead/conversion_async.js	42 kB	2023-03-08	2023-03-10
Pretty URL www.google.com/pagead/conversion_async.js IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 03:10:58 Last Seen2023-03-10 12:05:33 Times Seen1 Hash 7ebf0fce2f7b7c5a547d76da320bd16f cf5575cac6328d1538893b09ddcc0e1d9ece0bd2 a355dc6fd53a94ca23cff781b3cf5f19d3851d899687b32bdfb4ecf6adb0ecb3 Loading...

	connect.facebook.net/signals/plugins/identity.js?v=2.9.84	65 kB	2023-03-08	2023-10-31
Pretty URL connect.facebook.net/signals/plugins/identity.js?v=2.9.84 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 00:47:10 Last Seen2023-10-31 18:18:05 Times Seen6 Hash 3db1d62e0f7e350997486f47458484bf 1fec0c1504d1b5afd937c7d8829c7ca76907c5d9 e3b9d52f002201be697fbc0ebf4bdcc61d6c01d0bb1359213e62c67e21850047 Loading...

	app.hnry.io/invoices/daec3f7de2a5ea6f1edf93c020d28414?hnry_referrer=hnry.co.nz&ref=c	730 B	2023-03-08	2023-03-08
Pretty URL app.hnry.io/invoices/daec3f7de2a5ea6f1edf93c020d28414?hnry_referrer=hnry.co.nz&ref=c IP 13.54.215.11 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:08:42 Last Seen2023-03-08 07:08:42 Times Seen1 Hash 36251a14692ca41481b14a1216ad72b3 28d045f7b3c19e06f950c3e36996c30a4d3152fa 6fabbbe5e5283890b2ef79b010b434468d021f4d8161ccc6215e357f8d44527d Loading...

	app.hnry.io/invoices/daec3f7de2a5ea6f1edf93c020d28414?hnry_referrer=hnry.co.nz&ref=c	393 B	2023-03-08	2023-03-08
Pretty URL app.hnry.io/invoices/daec3f7de2a5ea6f1edf93c020d28414?hnry_referrer=hnry.co.nz&ref=c IP 13.54.215.11 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:08:42 Last Seen2023-03-08 07:08:42 Times Seen1 Hash a65af3b76e77c6bcc1c58f49dc0cb1a1 70bffed4a122634cdf236609acbd96b3891d04e3 d57fcaa4d3208211dab6c85bfbd4ef441eacb92054444eccfef4576e7d31aad6 Loading...

HTTP Transactions (62)

	URL	IP	Response	Size
	firefox.settings.services.mozilla.com/v1/	54.230.111.35	200 OK	939 B
URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/ IP 54.230.111.35:0 ASN #16509 AMAZON-02 File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash 2d12f67fe57a87e7366b662d153a5582 d7b02d81cc74f24a251d9363e0f4b0a149264ec1 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551 HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: application/json Content-Length: 939 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert Cache-Control: max-age=259200 Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Date: Wed, 05 Oct 2022 15:47:18 GMT X-Content-Type-Options: nosniff X-Cache: Hit from cloudfront Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: p8SUewft8thEzUmKKoRt9bro0OkTXlhUjACbOhK17e0lmKBWBt10rQ== Age: 61098

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain	54.230.111.64	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain IP 54.230.111.64:0 ASN #16509 AMAZON-02 File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash 67d5a988edcda47bc3b3b3f65d32b4b6 d4f0e0da8b3690cc7da925026d3414b68c7d954f 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78 HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK content-type: binary/octet-stream content-length: 5348 last-modified: Fri, 30 Sep 2022 18:50:55 GMT content-disposition: attachment accept-ranges: bytes server: AmazonS3 date: Thu, 06 Oct 2022 04:02:33 GMT etag: "67d5a988edcda47bc3b3b3f65d32b4b6" x-cache: Hit from cloudfront via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: EkxB_jKTBrkVFJqCjpVUcvjWqpY4O3AWCvEp1IyP9GVU_5CqYTcXLA== age: 16984 X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash eabb7d9ffae717f7305d63c057755470 3b7f0baccfdbb8d9ffefa4a2215d4d6094be454a ab48f17e54075e1ecf034278e82bcacd2e3689773186cc84fba9b79aac907294 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "AB48F17E54075E1ECF034278E82BCACD2E3689773186CC84FBA9B79AAC907294" Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2430 Expires: Thu, 06 Oct 2022 09:26:06 GMT Date: Thu, 06 Oct 2022 08:45:36 GMT Connection: keep-alive`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Thu, 06 Oct 2022 08:45:36 GMT content-type: application/json content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	ocsp.sca1b.amazontrust.com/	54.230.245.118	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 54.230.245.118:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 385b42c5c60e9961b0d1083740e7003a 5dc1810f78007337dbd565547e427a9d598c1dc3 22b7128691faf79b45be0febe7cb3c2ab60ed9fbbe167bde63e343499838f211 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Cache-Control: 'max-age=158059' Date: Thu, 06 Oct 2022 08:45:36 GMT Server: ECS (dcb/7EED) X-Cache: Miss from cloudfront Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: Do28jjzlZjp0q7Sjm7_74oH7jYrSTfKXEfLSNqJ2SGRyY9O9lyeS4w==`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	54.230.111.35	200 OK	329 B
URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 54.230.111.35:0 ASN #16509 AMAZON-02 File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: application/json Content-Length: 329 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Pragma, Content-Length, Backoff, Last-Modified, Cache-Control, Content-Type, Retry-After, ETag, Expires, Alert Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT X-Content-Type-Options: nosniff Cache-Control: max-age=3600, max-age=3600 Date: Thu, 06 Oct 2022 08:29:41 GMT Expires: Thu, 06 Oct 2022 09:00:46 GMT ETag: "1648230346554" X-Cache: Hit from cloudfront Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: jt_ihASWROlt5W5HgG8Xr8MA78-GDob6DBUrbNkaBn0xaTw7P_J9_Q== Age: 955

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 1561c6be7c89d1357a80d12de47b6e74 9a705277922ecca583c867af58b3efce099f83bd e33dc034dbf4b3b627cd3c1af2d942e2ca5704ec9a4aad5c46ad39eb070e82ab HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 5765 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Thu, 06 Oct 2022 08:45:37 GMT Last-Modified: Thu, 06 Oct 2022 07:09:32 GMT Server: ECS (ska/F712) X-Cache: HIT Content-Length: 471`

	push.services.mozilla.com/	44.242.3.166	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 44.242.3.166:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: LFP7nprhh2hz9i9JTziY/A== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: YFREHL4c/1pyTXDhpU8eRg5vIWI=`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 08127d072a0ccdaff55563a5dbd9a3c9 18053d4da42d50c2a9d16a94a3b3da32c738efe9 3c4af1f56ad2a8ac80b81e2b1538f8f65d9b0fee36be3cd65fa37de34303ef69 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "3C4AF1F56AD2A8AC80B81E2B1538F8F65D9B0FEE36BE3CD65FA37DE34303EF69" Last-Modified: Wed, 05 Oct 2022 10:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8167 Expires: Thu, 06 Oct 2022 11:01:45 GMT Date: Thu, 06 Oct 2022 08:45:38 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 55331c1dc7e7ebbf456220986278469d d69a62ee47b03fde68db666512417dda2ae5ad13 a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5" Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2542 Expires: Thu, 06 Oct 2022 09:28:00 GMT Date: Thu, 06 Oct 2022 08:45:38 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 55331c1dc7e7ebbf456220986278469d d69a62ee47b03fde68db666512417dda2ae5ad13 a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5" Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2542 Expires: Thu, 06 Oct 2022 09:28:00 GMT Date: Thu, 06 Oct 2022 08:45:38 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 55331c1dc7e7ebbf456220986278469d d69a62ee47b03fde68db666512417dda2ae5ad13 a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5" Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2542 Expires: Thu, 06 Oct 2022 09:28:00 GMT Date: Thu, 06 Oct 2022 08:45:38 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 55331c1dc7e7ebbf456220986278469d d69a62ee47b03fde68db666512417dda2ae5ad13 a09c835aa140c7b4220194e940f54de09ca3b7ea470feb7c4c5be574643086d5 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "A09C835AA140C7B4220194E940F54DE09CA3B7EA470FEB7C4C5BE574643086D5" Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2542 Expires: Thu, 06 Oct 2022 09:28:00 GMT Date: Thu, 06 Oct 2022 08:45:38 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feda182b7-6bc8-4aea-82c3-d9fa08748b61.jpeg	34.120.237.76	200 OK	7.4 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feda182b7-6bc8-4aea-82c3-d9fa08748b61.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.4 kB (7385 bytes) Hash e5a5ee14d41747f46e71f04782e1a3d3 b0205176a58913f57056b91674097bfb58046e97 b3bae0b56b50374cb85fc7fe4c9b551383d1969bf31e7adccb867e3467c59269 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feda182b7-6bc8-4aea-82c3-d9fa08748b61.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 7385 x-amzn-requestid: f3b30c95-2f19-4d70-b358-ff7e1e1c56f6 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ZjO6uHJrIAMF3WA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-633df844-5211c3087ea4f0023b32b284;Sampled=0 x-amzn-remapped-date: Wed, 05 Oct 2022 21:33:56 GMT x-amz-cf-pop: HIO50-C1, SEA73-P2 x-cache: Hit from cloudfront x-amz-cf-id: uka14Zb4NhZEmseL9817VqWrplnl8Yrmnp3oTVs6OeMjdCLI89QoVg== via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 b47618c03bd47cf085f27b1e215f76cc.cloudfront.net (CloudFront), 1.1 google date: Wed, 05 Oct 2022 21:36:41 GMT age: 40137 etag: "b0205176a58913f57056b91674097bfb58046e97" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0916782d-815c-4b19-b89a-acc67a745ebc.jpeg	34.120.237.76	200 OK	12 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0916782d-815c-4b19-b89a-acc67a745ebc.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 12 kB (11478 bytes) Hash a2e00e7f6054a915275111712ae68feb 016d84f56f97f1ab12c4046177e3e809aa861729 d042df692c87770504eaa80dae07601163a3b330061b5b9ec7b66a2bec759150 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0916782d-815c-4b19-b89a-acc67a745ebc.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 11478 x-amzn-requestid: d058c900-2b03-4373-aa5b-0d91128de0e8 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ZjQiMGXDIAMFbVg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-633dfada-743a7dda1804ecb76ae96592;Sampled=0 x-amzn-remapped-date: Wed, 05 Oct 2022 21:44:58 GMT x-amz-cf-pop: SFO5-P2, SEA73-P2 x-cache: Miss from cloudfront x-amz-cf-id: Geyupd7DZO0XRtj6uKJM-il3wOu82I2N26-vLgJCxYlid1Csm-fYxQ== via: 1.1 58f9a50682bb94842197f3e957919c60.cloudfront.net (CloudFront), 1.1 76dcc62b68091cc715d50b5017be77fc.cloudfront.net (CloudFront), 1.1 google date: Wed, 05 Oct 2022 22:01:17 GMT age: 38661 etag: "016d84f56f97f1ab12c4046177e3e809aa861729" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb35f200a-4b30-4eca-b738-7597a7594fb0.jpeg	34.120.237.76	200 OK	12 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb35f200a-4b30-4eca-b738-7597a7594fb0.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 12 kB (12156 bytes) Hash af17f003b33d854fd024dcd3980fea27 1282572af57f7d04cae3f736a9b9fcb378efdf70 5e0112558b9196f1025a354f4b69fb02321d9a345c2d302e523001a56b51cc31 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb35f200a-4b30-4eca-b738-7597a7594fb0.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 12156 x-amzn-requestid: 0640ef42-f082-43cb-9fbb-ba509f7ec1ec x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ZXYcIFhmIAMFeVw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63393ab3-2fbc1cf648993ee1346ec9b2;Sampled=0 x-amzn-remapped-date: Sun, 02 Oct 2022 07:16:03 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: LZZWZlT3DnlbEyrOaNR-emsGas3uCB6VaQYdTQ76-W0XL7_Yq3BAJw== via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google date: Wed, 05 Oct 2022 09:27:45 GMT age: 83873 etag: "1282572af57f7d04cae3f736a9b9fcb378efdf70" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ecef3b6-b278-4a22-86dd-6a19875e1cc1.jpeg	34.120.237.76	200 OK	7.5 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ecef3b6-b278-4a22-86dd-6a19875e1cc1.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.5 kB (7511 bytes) Hash 9e520f87cae411cfc2ed1c8a14184385 69ad212cb7ae309d4f02019552887135bfae67da 723b10bfbcde201b5811e3bd0560f02f90775e4d18b28d19e6c814899f2da71a HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ecef3b6-b278-4a22-86dd-6a19875e1cc1.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 7511 x-amzn-requestid: 995b51dd-5484-4b4c-ad40-550f7fd85930 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ZjO6uG70IAMFjBw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-633df844-70f17f6f24dce0003d03902a;Sampled=0 x-amzn-remapped-date: Wed, 05 Oct 2022 21:33:56 GMT x-amz-cf-pop: HIO50-C1, SEA73-P2 x-cache: Hit from cloudfront x-amz-cf-id: 3lKuGlFCBN2wEsp9-Oa3ysQg62py090H30jy6_bR02Ufs0KGPrVC4w== via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 d8d9c12d1a621129f4bc739038e7c72e.cloudfront.net (CloudFront), 1.1 google date: Wed, 05 Oct 2022 21:36:41 GMT age: 40137 etag: "69ad212cb7ae309d4f02019552887135bfae67da" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb1f9d9-58f2-4af5-b299-6a59b5768aba.jpeg	34.120.237.76	200 OK	8.7 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb1f9d9-58f2-4af5-b299-6a59b5768aba.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.7 kB (8651 bytes) Hash 2d101e6535dfc8ea8c193d3e97c07e1d d839f3aa41455d818da9a794b0688b1144b3a03a d73e79f203ef50354e078de30fcb52d298e14ad53924e0387ab586a9cb4376a2 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb1f9d9-58f2-4af5-b299-6a59b5768aba.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8651 x-amzn-requestid: 8bbdbc11-92fe-4cdf-8469-1c1ffac9e65b x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ZjPLIGG0IAMFehw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-633df8ad-132ee26478d791850dd14462;Sampled=0 x-amzn-remapped-date: Wed, 05 Oct 2022 21:35:41 GMT x-amz-cf-pop: HIO50-C1, SEA73-P2 x-cache: Miss from cloudfront x-amz-cf-id: KBuHj1vlNgk4oflp8uIxuxuPoWh7B7O0SWrMrNP-lAhnp2m53ttPMw== via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 e77661e211afe9242e85e573f12d5534.cloudfront.net (CloudFront), 1.1 google date: Wed, 05 Oct 2022 22:01:22 GMT age: 38656 etag: "d839f3aa41455d818da9a794b0688b1144b3a03a" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg	34.120.237.76	200 OK	10 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 10 kB (10158 bytes) Hash 4fc2ddd86450d64d3fb659ab4e78be58 bbe71936b78a8c34d03ab87948dc840b35c6948f 84a760397a5912bd05f61bc8a953c13a88a677e2d17fbbf74bdf7d7ff4d3942f HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ca20164-9b52-49c5-9e63-1fc0ae719f45.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10158 x-amzn-requestid: def1fc7e-8008-466f-9271-20fa1ab0fa5a x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ZaqZCH7doAMFcPQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-633a8aa0-7fd2fb1249366f2277d719d6;Sampled=0 x-amzn-remapped-date: Mon, 03 Oct 2022 07:09:20 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: szhtD9f4RuQaDKXe7LElSR0yOKo9cYa1i2YMeG3eSpBXP8ePcdzQig== via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google date: Thu, 06 Oct 2022 03:56:07 GMT age: 17371 etag: "bbe71936b78a8c34d03ab87948dc840b35c6948f" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	app.hnry.io/packs/js/channels-32eda80e863d1b7cc814.js	13.54.215.11	200 OK	3.9 kB
URL HTTP/2 app.hnry.io/packs/js/channels-32eda80e863d1b7cc814.js IP 13.54.215.11:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (12385) Size 3.9 kB (3876 bytes) Hash 2328ee38e1dbb0f3e29ab76312241b41 6b2d789f291a35f64b7b540adb0740e486929def 8fb6fd5c5ead2429d908bf3c31804a182d60ac7b89880dd8982e8b5aca2f124c HTTP Headers GET /packs/js/channels-32eda80e863d1b7cc814.js HTTP/1.1 Host: app.hnry.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://app.hnry.io/invoices/daec3f7de2a5ea6f1edf93c020d28414?hnry_referrer=hnry.co.nz&ref=c Connection: keep-alive Cookie: AWSALB=3EkpGk01LcBkiEMhsmpSEmuYiyn7BCRpYClCD/uB6tKmBaYfwywI+RXVVt5hrZKBCgK3lOuLOPJaoQcIZmEWMa6TyWwMOGeSXfgRmD2biSgFs8/0+q33Q1adAlS7; AWSALBCORS=3EkpGk01LcBkiEMhsmpSEmuYiyn7BCRpYClCD/uB6tKmBaYfwywI+RXVVt5hrZKBCgK3lOuLOPJaoQcIZmEWMa6TyWwMOGeSXfgRmD2biSgFs8/0+q33Q1adAlS7; referral_source=hnry.co.nz; _hnry_session=LOgXGZ3zYxFOMPzt202UL%2Fl4KfCbhjWOqkfelgmP4ZeNnYOkKi%2Fa0%2BHFGgmiIcTNu01SBnVeZ6%2FpsJIxPeYXswHK1GCd2E748nPLCJt7H4UHnAnW%2BO%2BB4fKEibSX9tsZxe0xvXy%2BY2sdUp7kruRImuG8WFBATDk80pR8DSmezR%2Fr5wLPFpz7aHZz6ONvED3%2B0PdsiZuFwC4edtCGuh6L3o309kVqu0Gxv6p0j6xvJdeHPtfXO3pbCKyILUHmHrDWaYBwPZTUD1BmZVIESLEZMytAWBJGu229LnzYpi6oJgO8u8E8GqRCQgGk3Eze%2BggzCA%3D%3D--oaFSfG3v%2Fde3LKoA--aMysoF5azZoBHlZiaSAoqQ%3D%3D Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 06 Oct 2022 08:45:38 GMT content-type: application/javascript; charset=utf-8 content-length: 3876 set-cookie: AWSALB=F47VM0aJrfDmJMdfP+tVjPMS/6THkAIL3SYXRqoHTL6btWsB7oHOUIHnHm6N3RzK9h+ykcCuYSYcU4G6lCHeyfx6cQkn2gckz/GquGpxMSVZ3z3Fdn1gAUQDWVBq; Expires=Thu, 13 Oct 2022 08:45:38 GMT; Path=/ AWSALBCORS=F47VM0aJrfDmJMdfP+tVjPMS/6THkAIL3SYXRqoHTL6btWsB7oHOUIHnHm6N3RzK9h+ykcCuYSYcU4G6lCHeyfx6cQkn2gckz/GquGpxMSVZ3z3Fdn1gAUQDWVBq; Expires=Thu, 13 Oct 2022 08:45:38 GMT; Path=/; SameSite=None; Secure server: nginx last-modified: Thu, 06 Oct 2022 03:29:24 GMT content-encoding: gzip vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains access-control-allow-origin: * access-control-allow-headers: * access-control-allow-methods: GET, HEAD, OPTIONS access-control-max-age: 31536000 access-control-expose-headers: Content-Length, Content-Encoding, ETag cache-control: public, max-age=31536000, immutable X-Firefox-Spdy: h2

	app.hnry.io/packs/js/views-25480b600edc603cab99.js	13.54.215.11	200 OK	38 kB
URL HTTP/2 app.hnry.io/packs/js/views-25480b600edc603cab99.js IP 13.54.215.11:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (65452) Size 38 kB (37684 bytes) Hash cbc57f562a9bc01ee64a9955b0369926 b5993b47aeb147f1b216bf987226d1128cd6cb12 2834266780fd19f4e98387926b31f2e09d04b761484bac37ab469b35b2dd759f HTTP Headers GET /packs/js/views-25480b600edc603cab99.js HTTP/1.1 Host: app.hnry.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://app.hnry.io/invoices/daec3f7de2a5ea6f1edf93c020d28414?hnry_referrer=hnry.co.nz&ref=c Connection: keep-alive Cookie: AWSALB=3EkpGk01LcBkiEMhsmpSEmuYiyn7BCRpYClCD/uB6tKmBaYfwywI+RXVVt5hrZKBCgK3lOuLOPJaoQcIZmEWMa6TyWwMOGeSXfgRmD2biSgFs8/0+q33Q1adAlS7; AWSALBCORS=3EkpGk01LcBkiEMhsmpSEmuYiyn7BCRpYClCD/uB6tKmBaYfwywI+RXVVt5hrZKBCgK3lOuLOPJaoQcIZmEWMa6TyWwMOGeSXfgRmD2biSgFs8/0+q33Q1adAlS7; referral_source=hnry.co.nz; _hnry_session=LOgXGZ3zYxFOMPzt202UL%2Fl4KfCbhjWOqkfelgmP4ZeNnYOkKi%2Fa0%2BHFGgmiIcTNu01SBnVeZ6%2FpsJIxPeYXswHK1GCd2E748nPLCJt7H4UHnAnW%2BO%2BB4fKEibSX9tsZxe0xvXy%2BY2sdUp7kruRImuG8WFBATDk80pR8DSmezR%2Fr5wLPFpz7aHZz6ONvED3%2B0PdsiZuFwC4edtCGuh6L3o309kVqu0Gxv6p0j6xvJdeHPtfXO3pbCKyILUHmHrDWaYBwPZTUD1BmZVIESLEZMytAWBJGu229LnzYpi6oJgO8u8E8GqRCQgGk3Eze%2BggzCA%3D%3D--oaFSfG3v%2Fde3LKoA--aMysoF5azZoBHlZiaSAoqQ%3D%3D Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 06 Oct 2022 08:45:38 GMT content-type: application/javascript; charset=utf-8 content-length: 37684 set-cookie: AWSALB=52qukRI+rxRSEnk0ZHYrL35aNbCiS8E3A9TjV7bBuES0CrqgnFBPLhkVTHVtNB/QAK/DcUI3XQpe4ueFw97/Rk22wJFvd/2K2LGJGWS0STZbWbgnAKNl4eXRJ5aT; Expires=Thu, 13 Oct 2022 08:45:38 GMT; Path=/ AWSALBCORS=52qukRI+rxRSEnk0ZHYrL35aNbCiS8E3A9TjV7bBuES0CrqgnFBPLhkVTHVtNB/QAK/DcUI3XQpe4ueFw97/Rk22wJFvd/2K2LGJGWS0STZbWbgnAKNl4eXRJ5aT; Expires=Thu, 13 Oct 2022 08:45:38 GMT; Path=/; SameSite=None; Secure server: nginx last-modified: Thu, 06 Oct 2022 03:29:24 GMT content-encoding: gzip vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains access-control-allow-origin: * access-control-allow-headers: * access-control-allow-methods: GET, HEAD, OPTIONS access-control-max-age: 31536000 access-control-expose-headers: Content-Length, Content-Encoding, ETag cache-control: public, max-age=31536000, immutable X-Firefox-Spdy: h2

	app.hnry.io/assets/application-bdf3a126dfee585a0314c201d5a53bc6468c5a8390f14404bf6c283a312f985f.css	13.54.215.11	200 OK	116 kB
URL HTTP/2 app.hnry.io/assets/application-bdf3a126dfee585a0314c201d5a53bc6468c5a8390f14404bf6c283a312f985f.css IP 13.54.215.11:0 ASN #16509 AMAZON-02 File type troff or preprocessor input, ASCII text, with very long lines (28078) Size 116 kB (115456 bytes) Hash 5a0e52852ed268dba9955f9b8db7f424 17ffbf9cf33e7326027bc02d6ebf1c3794203ca7 92bf4aac01245f9e39d4cdbd7beffbf11e4dbb48173452e7de4263b55deb893a HTTP Headers GET /assets/application-bdf3a126dfee585a0314c201d5a53bc6468c5a8390f14404bf6c283a312f985f.css HTTP/1.1 Host: app.hnry.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://app.hnry.io/invoices/daec3f7de2a5ea6f1edf93c020d28414?hnry_referrer=hnry.co.nz&ref=c Connection: keep-alive Cookie: AWSALB=3EkpGk01LcBkiEMhsmpSEmuYiyn7BCRpYClCD/uB6tKmBaYfwywI+RXVVt5hrZKBCgK3lOuLOPJaoQcIZmEWMa6TyWwMOGeSXfgRmD2biSgFs8/0+q33Q1adAlS7; AWSALBCORS=3EkpGk01LcBkiEMhsmpSEmuYiyn7BCRpYClCD/uB6tKmBaYfwywI+RXVVt5hrZKBCgK3lOuLOPJaoQcIZmEWMa6TyWwMOGeSXfgRmD2biSgFs8/0+q33Q1adAlS7; referral_source=hnry.co.nz; _hnry_session=LOgXGZ3zYxFOMPzt202UL%2Fl4KfCbhjWOqkfelgmP4ZeNnYOkKi%2Fa0%2BHFGgmiIcTNu01SBnVeZ6%2FpsJIxPeYXswHK1GCd2E748nPLCJt7H4UHnAnW%2BO%2BB4fKEibSX9tsZxe0xvXy%2BY2sdUp7kruRImuG8WFBATDk80pR8DSmezR%2Fr5wLPFpz7aHZz6ONvED3%2B0PdsiZuFwC4edtCGuh6L3o309kVqu0Gxv6p0j6xvJdeHPtfXO3pbCKyILUHmHrDWaYBwPZTUD1BmZVIESLEZMytAWBJGu229LnzYpi6oJgO8u8E8GqRCQgGk3Eze%2BggzCA%3D%3D--oaFSfG3v%2Fde3LKoA--aMysoF5azZoBHlZiaSAoqQ%3D%3D Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 06 Oct 2022 08:45:38 GMT content-type: text/css; charset=utf-8 content-length: 115456 set-cookie: AWSALB=qE0n7XKP3lnsKLsAewoHwkcF9V3R7/6g0wrH/Ij+5ukd7ymJ8MbNW3MPGSgaoWaZe+1BEqhoP6inywzDarBZ3lBtZoiKANC1ERJQuq9SMhR6Sgu1JAulQuRXxEJo; Expires=Thu, 13 Oct 2022 08:45:38 GMT; Path=/ AWSALBCORS=qE0n7XKP3lnsKLsAewoHwkcF9V3R7/6g0wrH/Ij+5ukd7ymJ8MbNW3MPGSgaoWaZe+1BEqhoP6inywzDarBZ3lBtZoiKANC1ERJQuq9SMhR6Sgu1JAulQuRXxEJo; Expires=Thu, 13 Oct 2022 08:45:38 GMT; Path=/; SameSite=None; Secure server: nginx last-modified: Thu, 06 Oct 2022 03:27:03 GMT content-encoding: gzip vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains access-control-allow-origin: * access-control-allow-headers: * access-control-allow-methods: GET, HEAD, OPTIONS access-control-max-age: 31536000 access-control-expose-headers: Content-Length, Content-Encoding, ETag cache-control: public, max-age=31536000, immutable X-Firefox-Spdy: h2

	app.hnry.io/assets/logos/logo-circle-blue-f0640c837adb59c9751d91b8e6cfd245742d1da7f1e6a08f28806ee0eceb82f1.png	13.54.215.11	200 OK	60 kB
URL HTTP/2 app.hnry.io/assets/logos/logo-circle-blue-f0640c837adb59c9751d91b8e6cfd245742d1da7f1e6a08f28806ee0eceb82f1.png IP 13.54.215.11:0 ASN #16509 AMAZON-02 File type PNG image data, 726 x 726, 8-bit/color RGBA, non-interlaced\012- data Size 60 kB (60365 bytes) Hash 4d28fe6271e64eb97d74c10a368517b7 d12c6c8d8930e76ca6412bfa9d94b6e57083ee64 44f1e6911609bee7170cef03c8b8c24feb3a9ae95eb761e99142e82bb4f6cfd5 HTTP Headers GET /assets/logos/logo-circle-blue-f0640c837adb59c9751d91b8e6cfd245742d1da7f1e6a08f28806ee0eceb82f1.png HTTP/1.1 Host: app.hnry.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://app.hnry.io/invoices/daec3f7de2a5ea6f1edf93c020d28414?hnry_referrer=hnry.co.nz&ref=c Connection: keep-alive Cookie: AWSALB=3EkpGk01LcBkiEMhsmpSEmuYiyn7BCRpYClCD/uB6tKmBaYfwywI+RXVVt5hrZKBCgK3lOuLOPJaoQcIZmEWMa6TyWwMOGeSXfgRmD2biSgFs8/0+q33Q1adAlS7; AWSALBCORS=3EkpGk01LcBkiEMhsmpSEmuYiyn7BCRpYClCD/uB6tKmBaYfwywI+RXVVt5hrZKBCgK3lOuLOPJaoQcIZmEWMa6TyWwMOGeSXfgRmD2biSgFs8/0+q33Q1adAlS7; referral_source=hnry.co.nz; _hnry_session=LOgXGZ3zYxFOMPzt202UL%2Fl4KfCbhjWOqkfelgmP4ZeNnYOkKi%2Fa0%2BHFGgmiIcTNu01SBnVeZ6%2FpsJIxPeYXswHK1GCd2E748nPLCJt7H4UHnAnW%2BO%2BB4fKEibSX9tsZxe0xvXy%2BY2sdUp7kruRImuG8WFBATDk80pR8DSmezR%2Fr5wLPFpz7aHZz6ONvED3%2B0PdsiZuFwC4edtCGuh6L3o309kVqu0Gxv6p0j6xvJdeHPtfXO3pbCKyILUHmHrDWaYBwPZTUD1BmZVIESLEZMytAWBJGu229LnzYpi6oJgO8u8E8GqRCQgGk3Eze%2BggzCA%3D%3D--oaFSfG3v%2Fde3LKoA--aMysoF5azZoBHlZiaSAoqQ%3D%3D Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 06 Oct 2022 08:45:38 GMT content-type: image/png content-length: 60365 set-cookie: AWSALB=okxkm05MEvLNPbJLslvrbAxBRkFcqXRpWKRshjevSSHW8Nuz2F/9c0n6QUrH5rckl5Qyg56ymErHMCAEE5PqrVbXcrW9E8oRuPRDeo9HwCgdiuUi/dvL8npr7Hoi; Expires=Thu, 13 Oct 2022 08:45:38 GMT; Path=/ AWSALBCORS=okxkm05MEvLNPbJLslvrbAxBRkFcqXRpWKRshjevSSHW8Nuz2F/9c0n6QUrH5rckl5Qyg56ymErHMCAEE5PqrVbXcrW9E8oRuPRDeo9HwCgdiuUi/dvL8npr7Hoi; Expires=Thu, 13 Oct 2022 08:45:38 GMT; Path=/; SameSite=None; Secure server: nginx last-modified: Thu, 06 Oct 2022 03:27:02 GMT strict-transport-security: max-age=31536000; includeSubDomains access-control-allow-origin: * access-control-allow-headers: * access-control-allow-methods: GET, HEAD, OPTIONS access-control-max-age: 31536000 access-control-expose-headers: Content-Length, Content-Encoding, ETag cache-control: public, max-age=31536000, immutable X-Firefox-Spdy: h2

	app.hnry.io/packs/js/utilities-401ce3b8898fb5462fe3.js	13.54.215.11	200 OK	114 kB
URL HTTP/2 app.hnry.io/packs/js/utilities-401ce3b8898fb5462fe3.js IP 13.54.215.11:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (65448) Size 114 kB (113700 bytes) Hash 73cabce01276643cd2d81c56d86ac90e f84e27aab5793a7197585132c929b4c30b43fccb aeb24edddc9dc493b27843c0bc8e734f6d38579077167cf2495071422ed961ae HTTP Headers GET /packs/js/utilities-401ce3b8898fb5462fe3.js HTTP/1.1 Host: app.hnry.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://app.hnry.io/invoices/daec3f7de2a5ea6f1edf93c020d28414?hnry_referrer=hnry.co.nz&ref=c Connection: keep-alive Cookie: AWSALB=3EkpGk01LcBkiEMhsmpSEmuYiyn7BCRpYClCD/uB6tKmBaYfwywI+RXVVt5hrZKBCgK3lOuLOPJaoQcIZmEWMa6TyWwMOGeSXfgRmD2biSgFs8/0+q33Q1adAlS7; AWSALBCORS=3EkpGk01LcBkiEMhsmpSEmuYiyn7BCRpYClCD/uB6tKmBaYfwywI+RXVVt5hrZKBCgK3lOuLOPJaoQcIZmEWMa6TyWwMOGeSXfgRmD2biSgFs8/0+q33Q1adAlS7; referral_source=hnry.co.nz; _hnry_session=LOgXGZ3zYxFOMPzt202UL%2Fl4KfCbhjWOqkfelgmP4ZeNnYOkKi%2Fa0%2BHFGgmiIcTNu01SBnVeZ6%2FpsJIxPeYXswHK1GCd2E748nPLCJt7H4UHnAnW%2BO%2BB4fKEibSX9tsZxe0xvXy%2BY2sdUp7kruRImuG8WFBATDk80pR8DSmezR%2Fr5wLPFpz7aHZz6ONvED3%2B0PdsiZuFwC4edtCGuh6L3o309kVqu0Gxv6p0j6xvJdeHPtfXO3pbCKyILUHmHrDWaYBwPZTUD1BmZVIESLEZMytAWBJGu229LnzYpi6oJgO8u8E8GqRCQgGk3Eze%2BggzCA%3D%3D--oaFSfG3v%2Fde3LKoA--aMysoF5azZoBHlZiaSAoqQ%3D%3D Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 06 Oct 2022 08:45:38 GMT content-type: application/javascript; charset=utf-8 content-length: 113700 set-cookie: AWSALB=fTHij9ygsvDPXV8S9ORJxgr84yJoEcuL3N77Y86lPZR/ypgfaquuKQZLDEmXnw/hHEiwHtc9f7NIrLJu6dwXEEp1in9zZKNXenP/1gaNbTgojNddR6OJIZaLSkqE; Expires=Thu, 13 Oct 2022 08:45:38 GMT; Path=/ AWSALBCORS=fTHij9ygsvDPXV8S9ORJxgr84yJoEcuL3N77Y86lPZR/ypgfaquuKQZLDEmXnw/hHEiwHtc9f7NIrLJu6dwXEEp1in9zZKNXenP/1gaNbTgojNddR6OJIZaLSkqE; Expires=Thu, 13 Oct 2022 08:45:38 GMT; Path=/; SameSite=None; Secure server: nginx last-modified: Thu, 06 Oct 2022 03:29:24 GMT content-encoding: gzip vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains access-control-allow-origin: * access-control-allow-headers: * access-control-allow-methods: GET, HEAD, OPTIONS access-control-max-age: 31536000 access-control-expose-headers: Content-Length, Content-Encoding, ETag cache-control: public, max-age=31536000, immutable X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash f763a685d14b05b6ced9792151da30b8 b25be5359245be857ffa1bddcb197cb771a36a45 505ad6dc6417d58207f0d68862c4423f4611660ccc6afe165fd3ec2ccb1c893d HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 06 Oct 2022 08:45:39 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	app.hnry.io/invoices/daec3f7de2a5ea6f1edf93c020d28414?hnry_referrer=hnry.co.nz&ref=c	13.54.215.11	200 OK	652 kB
URL HTTP/2 app.hnry.io/invoices/daec3f7de2a5ea6f1edf93c020d28414?hnry_referrer=hnry.co.nz&ref=c IP 13.54.215.11:0 ASN #16509 AMAZON-02 File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (47404) Size 652 kB (651526 bytes) Hash 8a8e61abcc96783945028c7baca5b264 fbf6760d091408c2528616e391bb823b7d1e74f2 25305068b3618dec665c1b4ad9a552d72c9e57e5a35780c388ca64ced224cffd HTTP Headers `GET /invoices/daec3f7de2a5ea6f1edf93c020d28414?hnry_referrer=hnry.co.nz&ref=c HTTP/1.1 Host: app.hnry.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` HTTP/2 200 OK date: Thu, 06 Oct 2022 08:45:37 GMT content-type: text/html; charset=utf-8 set-cookie: AWSALB=3EkpGk01LcBkiEMhsmpSEmuYiyn7BCRpYClCD/uB6tKmBaYfwywI+RXVVt5hrZKBCgK3lOuLOPJaoQcIZmEWMa6TyWwMOGeSXfgRmD2biSgFs8/0+q33Q1adAlS7; Expires=Thu, 13 Oct 2022 08:45:37 GMT; Path=/ AWSALBCORS=3EkpGk01LcBkiEMhsmpSEmuYiyn7BCRpYClCD/uB6tKmBaYfwywI+RXVVt5hrZKBCgK3lOuLOPJaoQcIZmEWMa6TyWwMOGeSXfgRmD2biSgFs8/0+q33Q1adAlS7; Expires=Thu, 13 Oct 2022 08:45:37 GMT; Path=/; SameSite=None; Secure referral_source=hnry.co.nz; domain=.hnry.io; path=/; expires=Sun, 06 Oct 2024 08:45:37 GMT; secure _hnry_session=LOgXGZ3zYxFOMPzt202UL%2Fl4KfCbhjWOqkfelgmP4ZeNnYOkKi%2Fa0%2BHFGgmiIcTNu01SBnVeZ6%2FpsJIxPeYXswHK1GCd2E748nPLCJt7H4UHnAnW%2BO%2BB4fKEibSX9tsZxe0xvXy%2BY2sdUp7kruRImuG8WFBATDk80pR8DSmezR%2Fr5wLPFpz7aHZz6ONvED3%2B0PdsiZuFwC4edtCGuh6L3o309kVqu0Gxv6p0j6xvJdeHPtfXO3pbCKyILUHmHrDWaYBwPZTUD1BmZVIESLEZMytAWBJGu229LnzYpi6oJgO8u8E8GqRCQgGk3Eze%2BggzCA%3D%3D--oaFSfG3v%2Fde3LKoA--aMysoF5azZoBHlZiaSAoqQ%3D%3D; path=/; secure; HttpOnly server: nginx vary: Accept-Encoding x-frame-options: SAMEORIGIN x-xss-protection: 1; mode=block x-content-type-options: nosniff x-download-options: noopen x-permitted-cross-domain-policies: none referrer-policy: strict-origin-when-cross-origin etag: W/"e8b51d04137fb47623b5a9decc8f6204" cache-control: max-age=0, private, must-revalidate x-request-id: 8d414488-3ce9-4c21-bf11-dfce3a313118 x-runtime: 0.756303 strict-transport-security: max-age=31536000; includeSubDomains content-encoding: gzip X-Firefox-Spdy: h2

	www.googletagmanager.com/gtm.js?id=GTM-MH96N7Z	142.250.74.168	200 OK	471 B
URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-MH96N7Z IP 142.250.74.168:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash f763a685d14b05b6ced9792151da30b8 b25be5359245be857ffa1bddcb197cb771a36a45 505ad6dc6417d58207f0d68862c4423f4611660ccc6afe165fd3ec2ccb1c893d HTTP Headers `GET /gtm.js?id=GTM-MH96N7Z HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://app.hnry.io/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Thu, 06 Oct 2022 08:45:39 GMT expires: Thu, 06 Oct 2022 08:45:39 GMT cache-control: private, max-age=900 last-modified: Thu, 06 Oct 2022 06:00:00 GMT strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 87909 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash b3791fae35fa0754166a153c17b4d33c 2416c0ebeb59a5dbb874c88a747242fa03e32bb6 6ed8a41c16f75035977b43d3574fc577c3473b46db106480c4a64ca72462458a HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 6364 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Thu, 06 Oct 2022 08:45:40 GMT Last-Modified: Thu, 06 Oct 2022 06:59:36 GMT Server: ECS (ska/F712) X-Cache: HIT Content-Length: 471`

	app.hnry.io/assets/application-d093c671dffebbd98b23554d233b2d7e3e6ca14fa6101ee47fc85cb3295e3f5b.js	13.54.215.11	200 OK	1.3 MB
URL HTTP/2 app.hnry.io/assets/application-d093c671dffebbd98b23554d233b2d7e3e6ca14fa6101ee47fc85cb3295e3f5b.js IP 13.54.215.11:0 ASN #16509 AMAZON-02 File type ASCII text Size 1.3 MB (1266556 bytes) Hash 2e3edebd9311fb685bc64e655f9d6c2c d58406ea1d9ce6079b9eb9e483fc2c81c7761715 d04b692b913a3ad21fd5a9802fefd445716fd5500b24da8644775456ae9d4cc4 HTTP Headers GET /assets/application-d093c671dffebbd98b23554d233b2d7e3e6ca14fa6101ee47fc85cb3295e3f5b.js HTTP/1.1 Host: app.hnry.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://app.hnry.io/invoices/daec3f7de2a5ea6f1edf93c020d28414?hnry_referrer=hnry.co.nz&ref=c Connection: keep-alive Cookie: AWSALB=3EkpGk01LcBkiEMhsmpSEmuYiyn7BCRpYClCD/uB6tKmBaYfwywI+RXVVt5hrZKBCgK3lOuLOPJaoQcIZmEWMa6TyWwMOGeSXfgRmD2biSgFs8/0+q33Q1adAlS7; AWSALBCORS=3EkpGk01LcBkiEMhsmpSEmuYiyn7BCRpYClCD/uB6tKmBaYfwywI+RXVVt5hrZKBCgK3lOuLOPJaoQcIZmEWMa6TyWwMOGeSXfgRmD2biSgFs8/0+q33Q1adAlS7; referral_source=hnry.co.nz; _hnry_session=LOgXGZ3zYxFOMPzt202UL%2Fl4KfCbhjWOqkfelgmP4ZeNnYOkKi%2Fa0%2BHFGgmiIcTNu01SBnVeZ6%2FpsJIxPeYXswHK1GCd2E748nPLCJt7H4UHnAnW%2BO%2BB4fKEibSX9tsZxe0xvXy%2BY2sdUp7kruRImuG8WFBATDk80pR8DSmezR%2Fr5wLPFpz7aHZz6ONvED3%2B0PdsiZuFwC4edtCGuh6L3o309kVqu0Gxv6p0j6xvJdeHPtfXO3pbCKyILUHmHrDWaYBwPZTUD1BmZVIESLEZMytAWBJGu229LnzYpi6oJgO8u8E8GqRCQgGk3Eze%2BggzCA%3D%3D--oaFSfG3v%2Fde3LKoA--aMysoF5azZoBHlZiaSAoqQ%3D%3D Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 06 Oct 2022 08:45:38 GMT content-type: application/javascript; charset=utf-8 content-length: 1266556 set-cookie: AWSALB=Q3g7ODcwdjpK6/QNJ/npE9xKbVqsU2Yjcz2CIS4nrZcw7CnMKPds2zZz8cMI2oTca497JQOkg1CpiYKBZzqDWyYhUMIY4l2Chf5czwn/Ou1GhvzGruDhoBd30gV6; Expires=Thu, 13 Oct 2022 08:45:38 GMT; Path=/ AWSALBCORS=Q3g7ODcwdjpK6/QNJ/npE9xKbVqsU2Yjcz2CIS4nrZcw7CnMKPds2zZz8cMI2oTca497JQOkg1CpiYKBZzqDWyYhUMIY4l2Chf5czwn/Ou1GhvzGruDhoBd30gV6; Expires=Thu, 13 Oct 2022 08:45:38 GMT; Path=/; SameSite=None; Secure server: nginx last-modified: Thu, 06 Oct 2022 03:27:03 GMT content-encoding: gzip vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains access-control-allow-origin: * access-control-allow-headers: * access-control-allow-methods: GET, HEAD, OPTIONS access-control-max-age: 31536000 access-control-expose-headers: Content-Length, Content-Encoding, ETag cache-control: public, max-age=31536000, immutable X-Firefox-Spdy: h2

	www.facebook.com/tr/?id=	31.13.72.36	200 OK	0 B
URL HTTP/2 www.facebook.com/tr/?id= IP 31.13.72.36:0 ASN #32934 FACEBOOK File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /tr/?id= HTTP/1.1 Host: www.facebook.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://app.hnry.io/ Origin: https://app.hnry.io Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK content-type: text/plain access-control-allow-origin: https://app.hnry.io access-control-allow-credentials: true strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin content-length: 0 server: proxygen-bolt alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 date: Thu, 06 Oct 2022 08:45:40 GMT X-Firefox-Spdy: h2`

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash b3791fae35fa0754166a153c17b4d33c 2416c0ebeb59a5dbb874c88a747242fa03e32bb6 6ed8a41c16f75035977b43d3574fc577c3473b46db106480c4a64ca72462458a HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 6364 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Thu, 06 Oct 2022 08:45:40 GMT Last-Modified: Thu, 06 Oct 2022 06:59:36 GMT Server: ECS (ska/F712) X-Cache: HIT Content-Length: 471`

	www.google-analytics.com/analytics.js	142.250.74.174	200 OK	20 kB
URL HTTP/2 www.google-analytics.com/analytics.js IP 142.250.74.174:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (1325) Size 20 kB (20039 bytes) Hash 47e6f374ca946fddd5b59871b325736c baa9282efc8785e84d247c3bff518eaa45f101c4 16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e HTTP Headers `GET /analytics.js HTTP/1.1 Host: www.google-analytics.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://app.hnry.io/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK strict-transport-security: max-age=10886400; includeSubDomains; preload x-content-type-options: nosniff vary: Accept-Encoding content-encoding: gzip cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 20039 date: Thu, 06 Oct 2022 08:41:09 GMT expires: Thu, 06 Oct 2022 10:41:09 GMT cache-control: public, max-age=7200 age: 271 last-modified: Tue, 27 Sep 2022 22:01:05 GMT content-type: text/javascript alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	www.google-analytics.com/collect?	142.250.74.174	200 OK	35 B
URL HTTP/2 www.google-analytics.com/collect? IP 142.250.74.174:0 ASN #15169 GOOGLE File type GIF image data, version 89a, 1 x 1\012- data Size 35 B (35 bytes) Hash 28d6814f309ea289f847c69cf91194c6 0f4e929dd5bb2564f7ab9c76338e04e292a42ace 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015 HTTP Headers `GET /collect? HTTP/1.1 Host: www.google-analytics.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://app.hnry.io/ Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK access-control-allow-origin: * pragma: no-cache x-content-type-options: nosniff cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 35 date: Wed, 05 Oct 2022 20:13:46 GMT expires: Mon, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate age: 45114 last-modified: Sun, 17 May 1998 03:00:00 GMT content-type: image/gif alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	www.google-analytics.com/collect?	142.250.74.174	200 OK	35 B
URL HTTP/2 www.google-analytics.com/collect? IP 142.250.74.174:0 ASN #15169 GOOGLE File type GIF image data, version 89a, 1 x 1\012- data Size 35 B (35 bytes) Hash 28d6814f309ea289f847c69cf91194c6 0f4e929dd5bb2564f7ab9c76338e04e292a42ace 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015 HTTP Headers `POST /collect? HTTP/1.1 Host: www.google-analytics.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://app.hnry.io/ Origin: https://app.hnry.io Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Content-Length: 0` HTTP/2 200 OK access-control-allow-origin: https://app.hnry.io date: Thu, 06 Oct 2022 08:45:40 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate last-modified: Sun, 17 May 1998 03:00:00 GMT x-content-type-options: nosniff access-control-allow-credentials: true content-type: image/gif cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 35 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	cdn.amplitude.com/libs/analytics-browser-1.1.1-min.js.gz	54.230.245.120	200 OK	20 kB
URL HTTP/2 cdn.amplitude.com/libs/analytics-browser-1.1.1-min.js.gz IP 54.230.245.120:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (64081) Size 20 kB (19906 bytes) Hash c656942edcf1208cd5f2a9eb306b3f69 5a8a34906c8ec7419d1b5254596457943d45ad3f 4299321e3afe2d3e151d6984a634b091557881007c987db34b5f9b0071b5b513 HTTP Headers `GET /libs/analytics-browser-1.1.1-min.js.gz HTTP/1.1 Host: cdn.amplitude.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://app.hnry.io/ Origin: https://app.hnry.io Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript content-length: 19906 date: Sat, 01 Oct 2022 09:40:43 GMT access-control-allow-origin: * access-control-allow-methods: GET, HEAD access-control-max-age: 3000 last-modified: Sat, 30 Jul 2022 01:07:46 GMT etag: "c656942edcf1208cd5f2a9eb306b3f69" x-amz-server-side-encryption: AES256 cache-control: max-age=31536000 content-encoding: gzip x-amz-version-id: wf2MnqBiN.fvPIIKnBkdKrl26STkR8Ec accept-ranges: bytes server: AmazonS3 vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method x-cache: Hit from cloudfront via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: 0JThzI99DmgJjOnXbAkW55ixtOsJvHwr2UckaGXTaubdzZTrUsGGAA== age: 428698 X-Firefox-Spdy: h2

	connect.facebook.net/en_US/fbevents.js	31.13.72.12	200 OK	27 kB
URL HTTP/2 connect.facebook.net/en_US/fbevents.js IP 31.13.72.12:0 ASN #32934 FACEBOOK File type ASCII text, with very long lines (64348) Size 27 kB (26840 bytes) Hash e1327a02d76346c7e23d114e4e508b30 195b8ad875ab8f7a7adf735f1f70aa02b3a2e1a3 331e67b451c6559915b12ab2df810ccdba73b3971c5301b2010b54dd6d391de2 HTTP Headers `GET /en_US/fbevents.js HTTP/1.1 Host: connect.facebook.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://app.hnry.io/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK vary: Accept-Encoding content-encoding: gzip content-type: application/x-javascript; charset=utf-8 content-security-policy: default-src facebook.net .facebook.net fbcdn.net .fbcdn.net fbsbx.com .fbsbx.com data: blob: 'self';script-src .fbcdn.net .facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net .facebook.net fbcdn.net .fbcdn.net fbsbx.com .fbsbx.com;connect-src .fbcdn.net .facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0; x-fb-rlafr: 0 document-policy: force-load-at-top cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups pragma: public cache-control: public, max-age=1200 expires: Sat, 01 Jan 2000 00:00:00 GMT x-content-type-options: nosniff x-xss-protection: 0 x-frame-options: DENY strict-transport-security: max-age=31536000; preload; includeSubDomains x-fb-debug: cgiT9sMo3e3ay1C6V5Xad9nS+VlfAqMULgeReqhccciluoZq1LIir0Fjp6H3DIm4ubnXtK4KZwFo4kOUTmMIEQ== content-length: 26840 x-fb-trip-id: 2074150462 date: Thu, 06 Oct 2022 08:45:40 GMT alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 40a4de06678d96242b71d5318f2fd4ef 546a7d1d92df81916f14155943427b5453ae3924 aed9af25ae57c181702a137d48cb00f5b30297180161451de3b628359dc9ec6f HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 06 Oct 2022 08:45:40 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.google.com/pagead/conversion_async.js	142.250.74.164	200 OK	15 kB
URL HTTP/2 www.google.com/pagead/conversion_async.js IP 142.250.74.164:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (1654) Size 15 kB (15187 bytes) Hash 8766c5a801f08afceca9b66ff9097e6a ce7640d1d166eddeb9d40be642ec34652f790713 f448f99b4ad9a9b50daa9c38054cf16ab2b9fcb5d83ddad60571fb6a8a432a99 HTTP Headers `GET /pagead/conversion_async.js HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://app.hnry.io/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin vary: Accept-Encoding date: Thu, 06 Oct 2022 08:45:40 GMT expires: Thu, 06 Oct 2022 08:45:40 GMT cache-control: private, max-age=3600 content-type: text/javascript; charset=UTF-8 etag: 17557423932572341828 x-content-type-options: nosniff content-disposition: attachment; filename="f.txt" content-encoding: br server: cafe content-length: 15187 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash f9371f81e2eeeead7fe351a49f3b1c40 ae23d6c6c57dd7cf568c3a74594c377b7bb7df43 03c4ba0faa3199d061d1bb37df5d48ba6d81f77a83e243922075efc4d4acf456 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 06 Oct 2022 08:45:40 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	app.hnry.io/assets/home_screen_icons/icon144-f8222e7fe935a171e9809e12126a7be599ec1b1bb9628344ce58dc6eabd003a9.png	13.54.215.11	200 OK	3.3 kB
URL HTTP/2 app.hnry.io/assets/home_screen_icons/icon144-f8222e7fe935a171e9809e12126a7be599ec1b1bb9628344ce58dc6eabd003a9.png IP 13.54.215.11:0 ASN #16509 AMAZON-02 File type PNG image data, 144 x 144, 8-bit/color RGBA, non-interlaced\012- data Size 3.3 kB (3315 bytes) Hash a6f1ba71c7a59d482414c7b736446473 8c43e11f5194e9f46cab92a84031f6f3cb7f3552 41d014091d9cf62f73510e27332547b720ff333175c6fd0c5b362ac011f903d5 HTTP Headers GET /assets/home_screen_icons/icon144-f8222e7fe935a171e9809e12126a7be599ec1b1bb9628344ce58dc6eabd003a9.png HTTP/1.1 Host: app.hnry.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://app.hnry.io/invoices/daec3f7de2a5ea6f1edf93c020d28414?hnry_referrer=hnry.co.nz&ref=c Connection: keep-alive Cookie: AWSALB=HcnzqLVOUTumurXnx5qDwsMjIJWKFu8p/nJ1t8J4coV1qYygqpYBAI4CrW1GYn7FASB2Sr8EgUM6aNOD8N15u4JGxAmZkDBWPJ7uOgEmvCrgn8xigWU8G6lKJ0l2; AWSALBCORS=HcnzqLVOUTumurXnx5qDwsMjIJWKFu8p/nJ1t8J4coV1qYygqpYBAI4CrW1GYn7FASB2Sr8EgUM6aNOD8N15u4JGxAmZkDBWPJ7uOgEmvCrgn8xigWU8G6lKJ0l2; referral_source=hnry.co.nz; _hnry_session=LOgXGZ3zYxFOMPzt202UL%2Fl4KfCbhjWOqkfelgmP4ZeNnYOkKi%2Fa0%2BHFGgmiIcTNu01SBnVeZ6%2FpsJIxPeYXswHK1GCd2E748nPLCJt7H4UHnAnW%2BO%2BB4fKEibSX9tsZxe0xvXy%2BY2sdUp7kruRImuG8WFBATDk80pR8DSmezR%2Fr5wLPFpz7aHZz6ONvED3%2B0PdsiZuFwC4edtCGuh6L3o309kVqu0Gxv6p0j6xvJdeHPtfXO3pbCKyILUHmHrDWaYBwPZTUD1BmZVIESLEZMytAWBJGu229LnzYpi6oJgO8u8E8GqRCQgGk3Eze%2BggzCA%3D%3D--oaFSfG3v%2Fde3LKoA--aMysoF5azZoBHlZiaSAoqQ%3D%3D; _rm=d6e60cf4-8325-4bd9-ac1f-db4dfe0b614c; _gcl_au=1.1.755873957.1665045940; initialTrafficSource=utmcsr=(direct)\|utmcmd=(none)\|utmccn=(not set)\|timestamp=1665045939985; __utmzzses=1; _ga_LZ62PBZVJK=GS1.1.1665045940.1.0.1665045940.0.0.0; _ga=GA1.1.1937819616.1665045940 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 06 Oct 2022 08:45:40 GMT content-type: image/png content-length: 3315 set-cookie: AWSALB=U4g7AzZ7/W+ILDbhlJaFxi+UmUhCQXZxM5pREIH7C87R+L3sVhVYHlcMleCApulQdtmLhqqiDrvW6j99VAFEDdDJANGJy/q6ripZSdBTbFHby2y8HJQz49G/V0XE; Expires=Thu, 13 Oct 2022 08:45:40 GMT; Path=/ AWSALBCORS=U4g7AzZ7/W+ILDbhlJaFxi+UmUhCQXZxM5pREIH7C87R+L3sVhVYHlcMleCApulQdtmLhqqiDrvW6j99VAFEDdDJANGJy/q6ripZSdBTbFHby2y8HJQz49G/V0XE; Expires=Thu, 13 Oct 2022 08:45:40 GMT; Path=/; SameSite=None; Secure server: nginx last-modified: Thu, 06 Oct 2022 03:27:02 GMT strict-transport-security: max-age=31536000; includeSubDomains access-control-allow-origin: * access-control-allow-headers: * access-control-allow-methods: GET, HEAD, OPTIONS access-control-max-age: 31536000 access-control-expose-headers: Content-Length, Content-Encoding, ETag cache-control: public, max-age=31536000, immutable X-Firefox-Spdy: h2

	region1.google-analytics.com/g/collect?v=2&tid=G-LZ62PBZVJK&gtm=2oea50&_p=1061216912&cid=1937819616.1665045940&ul=en-us&sr=1280x1024&_s=1&sid=1665045940&sct=1&seg=0&dl=https%3A%2F%2Fapp.hnry.io%2Finvoices%2Fdaec3f7de2a5ea6f1edf93c020d28414%3Fhnry_referrer%3Dhnry.co.nz%26ref%3Dc&dt=Invoice%20-%20Hnry&en=page_view&_fv=1&_nsi=1&_ss=2	216.239.32.36	204 No Content	0 B
URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-LZ62PBZVJK&gtm=2oea50&_p=1061216912&cid=1937819616.1665045940&ul=en-us&sr=1280x1024&_s=1&sid=1665045940&sct=1&seg=0&dl=https%3A%2F%2Fapp.hnry.io%2Finvoices%2Fdaec3f7de2a5ea6f1edf93c020d28414%3Fhnry_referrer%3Dhnry.co.nz%26ref%3Dc&dt=Invoice%20-%20Hnry&en=page_view&_fv=1&_nsi=1&_ss=2 IP 216.239.32.36:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /g/collect?v=2&tid=G-LZ62PBZVJK&gtm=2oea50&_p=1061216912&cid=1937819616.1665045940&ul=en-us&sr=1280x1024&_s=1&sid=1665045940&sct=1&seg=0&dl=https%3A%2F%2Fapp.hnry.io%2Finvoices%2Fdaec3f7de2a5ea6f1edf93c020d28414%3Fhnry_referrer%3Dhnry.co.nz%26ref%3Dc&dt=Invoice%20-%20Hnry&en=page_view&_fv=1&_nsi=1&_ss=2 HTTP/1.1 Host: region1.google-analytics.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://app.hnry.io/ Origin: https://app.hnry.io Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Content-Length: 0 HTTP/2 204 No Content access-control-allow-origin: https://app.hnry.io date: Thu, 06 Oct 2022 08:45:41 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate access-control-allow-credentials: true content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	app.hnry.io/assets/Oxygen-Light-bc3e191bc9657634f5629acfa0aa65067c9bc5b48ea7c3368ca1f11de88db9ce.ttf	13.54.215.11	200 OK	42 kB
URL HTTP/2 app.hnry.io/assets/Oxygen-Light-bc3e191bc9657634f5629acfa0aa65067c9bc5b48ea7c3368ca1f11de88db9ce.ttf IP 13.54.215.11:0 ASN #16509 AMAZON-02 File type TrueType Font data, 17 tables, 1st "GDEF", 8 names, Microsoft, language 0x409, Copyright (c) 2012, Vernon Adams (vern@newtypography.co.uk), with Reserved Font Names 'Oxygen'Ox\012- data Size 42 kB (41612 bytes) Hash 922ed94b88c919460a7c10d39d6fdb8a 659d8ec1182bb3fc9e5489a3d977f4df624ac981 f7d7defa859fc7ff5fa3756c64e274af4b97131e40bd90521123e625c70fb417 HTTP Headers GET /assets/Oxygen-Light-bc3e191bc9657634f5629acfa0aa65067c9bc5b48ea7c3368ca1f11de88db9ce.ttf HTTP/1.1 Host: app.hnry.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.hnry.io/assets/application-bdf3a126dfee585a0314c201d5a53bc6468c5a8390f14404bf6c283a312f985f.css Cookie: AWSALB=HcnzqLVOUTumurXnx5qDwsMjIJWKFu8p/nJ1t8J4coV1qYygqpYBAI4CrW1GYn7FASB2Sr8EgUM6aNOD8N15u4JGxAmZkDBWPJ7uOgEmvCrgn8xigWU8G6lKJ0l2; AWSALBCORS=HcnzqLVOUTumurXnx5qDwsMjIJWKFu8p/nJ1t8J4coV1qYygqpYBAI4CrW1GYn7FASB2Sr8EgUM6aNOD8N15u4JGxAmZkDBWPJ7uOgEmvCrgn8xigWU8G6lKJ0l2; referral_source=hnry.co.nz; _hnry_session=LOgXGZ3zYxFOMPzt202UL%2Fl4KfCbhjWOqkfelgmP4ZeNnYOkKi%2Fa0%2BHFGgmiIcTNu01SBnVeZ6%2FpsJIxPeYXswHK1GCd2E748nPLCJt7H4UHnAnW%2BO%2BB4fKEibSX9tsZxe0xvXy%2BY2sdUp7kruRImuG8WFBATDk80pR8DSmezR%2Fr5wLPFpz7aHZz6ONvED3%2B0PdsiZuFwC4edtCGuh6L3o309kVqu0Gxv6p0j6xvJdeHPtfXO3pbCKyILUHmHrDWaYBwPZTUD1BmZVIESLEZMytAWBJGu229LnzYpi6oJgO8u8E8GqRCQgGk3Eze%2BggzCA%3D%3D--oaFSfG3v%2Fde3LKoA--aMysoF5azZoBHlZiaSAoqQ%3D%3D; _rm=d6e60cf4-8325-4bd9-ac1f-db4dfe0b614c; _gcl_au=1.1.755873957.1665045940; initialTrafficSource=utmcsr=(direct)\|utmcmd=(none)\|utmccn=(not set)\|timestamp=1665045939985; __utmzzses=1; _ga_LZ62PBZVJK=GS1.1.1665045940.1.0.1665045940.0.0.0; _ga=GA1.1.1937819616.1665045940 Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 06 Oct 2022 08:45:40 GMT content-type: application/octet-stream content-length: 41612 set-cookie: AWSALB=3mhJJpyyXpkkzuD4otsEE/vZCmIxkp5x3ihYLYW3IXElhA3fZw0JYxc6a3PRxRTDFezxfV6hyMi19c5NVKvqhn+auNJYb4NwVNmZkOg2zdUTMpsefaTpajLJ7e4P; Expires=Thu, 13 Oct 2022 08:45:40 GMT; Path=/ AWSALBCORS=3mhJJpyyXpkkzuD4otsEE/vZCmIxkp5x3ihYLYW3IXElhA3fZw0JYxc6a3PRxRTDFezxfV6hyMi19c5NVKvqhn+auNJYb4NwVNmZkOg2zdUTMpsefaTpajLJ7e4P; Expires=Thu, 13 Oct 2022 08:45:40 GMT; Path=/; SameSite=None; Secure server: nginx last-modified: Thu, 06 Oct 2022 03:27:03 GMT strict-transport-security: max-age=31536000; includeSubDomains access-control-allow-origin: * access-control-allow-headers: * access-control-allow-methods: GET, HEAD, OPTIONS access-control-max-age: 31536000 access-control-expose-headers: Content-Length, Content-Encoding, ETag cache-control: public, max-age=31536000, immutable X-Firefox-Spdy: h2

	app.hnry.io/packs/media/images/visa-logo-1bda3185.jpg	13.54.215.11	200 OK	11 kB
URL HTTP/2 app.hnry.io/packs/media/images/visa-logo-1bda3185.jpg IP 13.54.215.11:0 ASN #16509 AMAZON-02 File type RIFF (little-endian) data, Web/P image, VP8 encoding, 800x450, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size 11 kB (10592 bytes) Hash 99ea184e5bf7246470e10b969b89a9ce 32bc4582fc4f8249267ee0f7c05ebdfaafab412e 65977b8da4e9bb43c8da6730824562f2bac08c72a7fe58ea42d5730e6d4ad276 HTTP Headers GET /packs/media/images/visa-logo-1bda3185.jpg HTTP/1.1 Host: app.hnry.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://app.hnry.io/invoices/daec3f7de2a5ea6f1edf93c020d28414?hnry_referrer=hnry.co.nz&ref=c Connection: keep-alive Cookie: AWSALB=HcnzqLVOUTumurXnx5qDwsMjIJWKFu8p/nJ1t8J4coV1qYygqpYBAI4CrW1GYn7FASB2Sr8EgUM6aNOD8N15u4JGxAmZkDBWPJ7uOgEmvCrgn8xigWU8G6lKJ0l2; AWSALBCORS=HcnzqLVOUTumurXnx5qDwsMjIJWKFu8p/nJ1t8J4coV1qYygqpYBAI4CrW1GYn7FASB2Sr8EgUM6aNOD8N15u4JGxAmZkDBWPJ7uOgEmvCrgn8xigWU8G6lKJ0l2; referral_source=hnry.co.nz; _hnry_session=LOgXGZ3zYxFOMPzt202UL%2Fl4KfCbhjWOqkfelgmP4ZeNnYOkKi%2Fa0%2BHFGgmiIcTNu01SBnVeZ6%2FpsJIxPeYXswHK1GCd2E748nPLCJt7H4UHnAnW%2BO%2BB4fKEibSX9tsZxe0xvXy%2BY2sdUp7kruRImuG8WFBATDk80pR8DSmezR%2Fr5wLPFpz7aHZz6ONvED3%2B0PdsiZuFwC4edtCGuh6L3o309kVqu0Gxv6p0j6xvJdeHPtfXO3pbCKyILUHmHrDWaYBwPZTUD1BmZVIESLEZMytAWBJGu229LnzYpi6oJgO8u8E8GqRCQgGk3Eze%2BggzCA%3D%3D--oaFSfG3v%2Fde3LKoA--aMysoF5azZoBHlZiaSAoqQ%3D%3D; _rm=d6e60cf4-8325-4bd9-ac1f-db4dfe0b614c; _gcl_au=1.1.755873957.1665045940; initialTrafficSource=utmcsr=(direct)\|utmcmd=(none)\|utmccn=(not set)\|timestamp=1665045939985; __utmzzses=1; _ga_LZ62PBZVJK=GS1.1.1665045940.1.0.1665045940.0.0.0; _ga=GA1.2.1937819616.1665045940; _gid=GA1.2.1010246060.1665045941; _gat_UA-96195992-1=1; AMP_576072e336=JTdCJTIyb3B0T3V0JTIyJTNBZmFsc2UlMkMlMjJkZXZpY2VJZCUyMiUzQSUyMjllZGIzZmNmLTQ4MzgtNDgxZC1hZGNmLTQ0ZWRiMmQyNjk5MiUyMiUyQyUyMnNlc3Npb25JZCUyMiUzQTE2NjUwNDU5NDA3NjUlMkMlMjJ1c2VySWQlMjIlM0ElMjIxOTQxMyUyMiU3RA== Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 06 Oct 2022 08:45:40 GMT content-type: image/jpeg content-length: 10592 set-cookie: AWSALB=TYof3kLVCTY71DdVTVg118HHYZnX5YBgsbVrcTNQZmvoIhXUrI/td45s36vXymW/QHiOR+dHTjv1mSqYOHfwfF6HGhFOWqyoVu4cTnGeQLKpLXTV291QwDXOJJsJ; Expires=Thu, 13 Oct 2022 08:45:40 GMT; Path=/ AWSALBCORS=TYof3kLVCTY71DdVTVg118HHYZnX5YBgsbVrcTNQZmvoIhXUrI/td45s36vXymW/QHiOR+dHTjv1mSqYOHfwfF6HGhFOWqyoVu4cTnGeQLKpLXTV291QwDXOJJsJ; Expires=Thu, 13 Oct 2022 08:45:40 GMT; Path=/; SameSite=None; Secure server: nginx last-modified: Thu, 06 Oct 2022 03:29:24 GMT strict-transport-security: max-age=31536000; includeSubDomains access-control-allow-origin: * access-control-allow-headers: * access-control-allow-methods: GET, HEAD, OPTIONS access-control-max-age: 31536000 access-control-expose-headers: Content-Length, Content-Encoding, ETag cache-control: public, max-age=31536000, immutable X-Firefox-Spdy: h2

	app.hnry.io/packs/media/images/logo-payment-aa42e5c1.svg	13.54.215.11	200 OK	84 kB
URL HTTP/2 app.hnry.io/packs/media/images/logo-payment-aa42e5c1.svg IP 13.54.215.11:0 ASN #16509 AMAZON-02 File type data Size 84 kB (83613 bytes) Hash 450490ba3041669c20e6b6ded8243835 fd18da55c4c7e92b8801fa13f0062ea85ffcdbd4 592ae54556765b66609f229d81e6da319aee99b24ada8b78823b62abd6900d52 HTTP Headers GET /packs/media/images/logo-payment-aa42e5c1.svg HTTP/1.1 Host: app.hnry.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://app.hnry.io/invoices/daec3f7de2a5ea6f1edf93c020d28414?hnry_referrer=hnry.co.nz&ref=c Connection: keep-alive Cookie: AWSALB=HcnzqLVOUTumurXnx5qDwsMjIJWKFu8p/nJ1t8J4coV1qYygqpYBAI4CrW1GYn7FASB2Sr8EgUM6aNOD8N15u4JGxAmZkDBWPJ7uOgEmvCrgn8xigWU8G6lKJ0l2; AWSALBCORS=HcnzqLVOUTumurXnx5qDwsMjIJWKFu8p/nJ1t8J4coV1qYygqpYBAI4CrW1GYn7FASB2Sr8EgUM6aNOD8N15u4JGxAmZkDBWPJ7uOgEmvCrgn8xigWU8G6lKJ0l2; referral_source=hnry.co.nz; _hnry_session=LOgXGZ3zYxFOMPzt202UL%2Fl4KfCbhjWOqkfelgmP4ZeNnYOkKi%2Fa0%2BHFGgmiIcTNu01SBnVeZ6%2FpsJIxPeYXswHK1GCd2E748nPLCJt7H4UHnAnW%2BO%2BB4fKEibSX9tsZxe0xvXy%2BY2sdUp7kruRImuG8WFBATDk80pR8DSmezR%2Fr5wLPFpz7aHZz6ONvED3%2B0PdsiZuFwC4edtCGuh6L3o309kVqu0Gxv6p0j6xvJdeHPtfXO3pbCKyILUHmHrDWaYBwPZTUD1BmZVIESLEZMytAWBJGu229LnzYpi6oJgO8u8E8GqRCQgGk3Eze%2BggzCA%3D%3D--oaFSfG3v%2Fde3LKoA--aMysoF5azZoBHlZiaSAoqQ%3D%3D; _rm=d6e60cf4-8325-4bd9-ac1f-db4dfe0b614c; _gcl_au=1.1.755873957.1665045940; initialTrafficSource=utmcsr=(direct)\|utmcmd=(none)\|utmccn=(not set)\|timestamp=1665045939985; __utmzzses=1; _ga_LZ62PBZVJK=GS1.1.1665045940.1.0.1665045940.0.0.0; _ga=GA1.2.1937819616.1665045940; _gid=GA1.2.1010246060.1665045941; _gat_UA-96195992-1=1; AMP_576072e336=JTdCJTIyb3B0T3V0JTIyJTNBZmFsc2UlMkMlMjJkZXZpY2VJZCUyMiUzQSUyMjllZGIzZmNmLTQ4MzgtNDgxZC1hZGNmLTQ0ZWRiMmQyNjk5MiUyMiUyQyUyMnNlc3Npb25JZCUyMiUzQTE2NjUwNDU5NDA3NjUlMkMlMjJ1c2VySWQlMjIlM0ElMjIxOTQxMyUyMiU3RA== Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 06 Oct 2022 08:45:40 GMT content-type: image/svg+xml set-cookie: AWSALB=voMo4aomrrzA9a5yKE63g/nLZjkE2/rGRovxDlX5H7QxiHQeOnsa1dwPxDO5eX4JCor02KelEUWWEEm0BXxISW1uEfE8mPq7Fimy1hssA4yNEb9u6+MSw9V8whOf; Expires=Thu, 13 Oct 2022 08:45:40 GMT; Path=/ AWSALBCORS=voMo4aomrrzA9a5yKE63g/nLZjkE2/rGRovxDlX5H7QxiHQeOnsa1dwPxDO5eX4JCor02KelEUWWEEm0BXxISW1uEfE8mPq7Fimy1hssA4yNEb9u6+MSw9V8whOf; Expires=Thu, 13 Oct 2022 08:45:40 GMT; Path=/; SameSite=None; Secure server: nginx vary: Accept-Encoding last-modified: Thu, 06 Oct 2022 03:29:24 GMT strict-transport-security: max-age=31536000; includeSubDomains access-control-allow-origin: * access-control-allow-headers: * access-control-allow-methods: GET, HEAD, OPTIONS access-control-max-age: 31536000 access-control-expose-headers: Content-Length, Content-Encoding, ETag cache-control: public, max-age=31536000, immutable content-encoding: gzip X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash eac86f868b3967f1946c7f5fc712b25f e2ae8eb09715a0af0791c085eb35bf66e0548e30 bceb14e7a478c0e34a0f1d8286eb954566c62051e996bc36189de922a76a6e06 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 06 Oct 2022 08:45:41 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	googleads.g.doubleclick.net/pagead/viewthroughconversion/856879262/?random=1665045940832&cv=9&fst=1665045940832&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oaa50&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fapp.hnry.io%2Finvoices%2Fdaec3f7de2a5ea6f1edf93c020d28414%3Fhnry_referrer%3Dhnry.co.nz%26ref%3Dc&tiba=Invoice%20-%20Hnry&auid=755873957.1665045940&hn=www.google.com&async=1&rfmt=3&fmt=4	142.250.74.98	200 OK	1.1 kB
URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/856879262/?random=1665045940832&cv=9&fst=1665045940832&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oaa50&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fapp.hnry.io%2Finvoices%2Fdaec3f7de2a5ea6f1edf93c020d28414%3Fhnry_referrer%3Dhnry.co.nz%26ref%3Dc&tiba=Invoice%20-%20Hnry&auid=755873957.1665045940&hn=www.google.com&async=1&rfmt=3&fmt=4 IP 142.250.74.98:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (2386), with no line terminators Size 1.1 kB (1085 bytes) Hash 676258e56fe4cd155f10e6540e31ce99 57be185046aada2ca4f0b59b3c80396952d2617c 4541bdb217010194af21ed15aee50fdd82984c2c85612913f1e568958d88d707 HTTP Headers GET /pagead/viewthroughconversion/856879262/?random=1665045940832&cv=9&fst=1665045940832&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oaa50&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fapp.hnry.io%2Finvoices%2Fdaec3f7de2a5ea6f1edf93c020d28414%3Fhnry_referrer%3Dhnry.co.nz%26ref%3Dc&tiba=Invoice%20-%20Hnry&auid=755873957.1665045940&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1 Host: googleads.g.doubleclick.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://app.hnry.io/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 200 OK p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Thu, 06 Oct 2022 08:45:41 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, must-revalidate content-type: text/javascript; charset=UTF-8 x-content-type-options: nosniff content-disposition: attachment; filename="f.txt" content-encoding: gzip server: cafe content-length: 1085 x-xss-protection: 0 set-cookie: test_cookie=CheckForPermission; expires=Thu, 06-Oct-2022 09:00:41 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-96195992-1&cid=1937819616.1665045940&jid=1457550737&uid=19413&gjid=65065746&_gid=1010246060.1665045941&_u=YCDACEAABAAAACAAI~&z=1504143020	173.194.73.157	200 OK	4 B
URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-96195992-1&cid=1937819616.1665045940&jid=1457550737&uid=19413&gjid=65065746&_gid=1010246060.1665045941&_u=YCDACEAABAAAACAAI~&z=1504143020 IP 173.194.73.157:0 ASN #15169 GOOGLE File type ASCII text, with no line terminators Size 4 B (4 bytes) Hash 48c0473b7821185d937e685216e2168b 3743e47f8a429a5e87b86cb582d78940733d9d2e 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a HTTP Headers POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-96195992-1&cid=1937819616.1665045940&jid=1457550737&uid=19413&gjid=65065746&_gid=1010246060.1665045941&_u=YCDACEAABAAAACAAI~&z=1504143020 HTTP/1.1 Host: stats.g.doubleclick.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://app.hnry.io/ Content-Type: text/plain Content-Length: 0 Origin: https://app.hnry.io Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK access-control-allow-origin: https://app.hnry.io strict-transport-security: max-age=10886400; includeSubDomains; preload date: Thu, 06 Oct 2022 08:45:41 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate last-modified: Sun, 17 May 1998 03:00:00 GMT access-control-allow-credentials: true x-content-type-options: nosniff content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 4 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash eac86f868b3967f1946c7f5fc712b25f e2ae8eb09715a0af0791c085eb35bf66e0548e30 bceb14e7a478c0e34a0f1d8286eb954566c62051e996bc36189de922a76a6e06 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 06 Oct 2022 08:45:41 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 1d4c3917173bd92c4b3208cdf2c7c345 726a9aa16eef5844afde825f9faf1b505d31e69b 572eebfaf735eb8aa1b3563d0317d52f5d22e9e83e5f5b6723f65da83fb15f22 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 06 Oct 2022 08:45:41 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 1d4c3917173bd92c4b3208cdf2c7c345 726a9aa16eef5844afde825f9faf1b505d31e69b 572eebfaf735eb8aa1b3563d0317d52f5d22e9e83e5f5b6723f65da83fb15f22 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 06 Oct 2022 08:45:41 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.google.no/pagead/1p-user-list/856879262/?random=1665045940832&cv=9&fst=1665043200000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oaa50&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fapp.hnry.io%2Finvoices%2Fdaec3f7de2a5ea6f1edf93c020d28414%3Fhnry_referrer%3Dhnry.co.nz%26ref%3Dc&tiba=Invoice%20-%20Hnry&async=1&fmt=3&is_vtc=1&random=903748472&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y	142.250.74.3	200 OK	42 B
URL HTTP/2 www.google.no/pagead/1p-user-list/856879262/?random=1665045940832&cv=9&fst=1665043200000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oaa50&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fapp.hnry.io%2Finvoices%2Fdaec3f7de2a5ea6f1edf93c020d28414%3Fhnry_referrer%3Dhnry.co.nz%26ref%3Dc&tiba=Invoice%20-%20Hnry&async=1&fmt=3&is_vtc=1&random=903748472&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y IP 142.250.74.3:0 ASN #15169 GOOGLE File type GIF image data, version 89a, 1 x 1\012- data Size 42 B (42 bytes) Hash d89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629 HTTP Headers GET /pagead/1p-user-list/856879262/?random=1665045940832&cv=9&fst=1665043200000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oaa50&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fapp.hnry.io%2Finvoices%2Fdaec3f7de2a5ea6f1edf93c020d28414%3Fhnry_referrer%3Dhnry.co.nz%26ref%3Dc&tiba=Invoice%20-%20Hnry&async=1&fmt=3&is_vtc=1&random=903748472&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1 Host: www.google.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://app.hnry.io/ Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 200 OK p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Thu, 06 Oct 2022 08:45:41 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate content-type: image/gif content-security-policy: script-src 'none'; object-src 'none' x-content-type-options: nosniff server: cafe content-length: 42 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-96195992-1&cid=1937819616.1665045940&jid=1457550737&_u=YCDACEAABAAAACAAI~&z=106945911	142.250.74.3	200 OK	42 B
URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-96195992-1&cid=1937819616.1665045940&jid=1457550737&_u=YCDACEAABAAAACAAI~&z=106945911 IP 142.250.74.3:0 ASN #15169 GOOGLE File type GIF image data, version 89a, 1 x 1\012- data Size 42 B (42 bytes) Hash d89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629 HTTP Headers `GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-96195992-1&cid=1937819616.1665045940&jid=1457550737&_u=YCDACEAABAAAACAAI~&z=106945911 HTTP/1.1 Host: www.google.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://app.hnry.io/ Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Thu, 06 Oct 2022 08:45:41 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate content-type: image/gif x-content-type-options: nosniff server: cafe content-length: 42 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 1d4c3917173bd92c4b3208cdf2c7c345 726a9aa16eef5844afde825f9faf1b505d31e69b 572eebfaf735eb8aa1b3563d0317d52f5d22e9e83e5f5b6723f65da83fb15f22 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 06 Oct 2022 08:45:41 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.comodoca.com/	172.64.155.188	200 OK	471 B
URL HTTP/1.1 ocsp.comodoca.com/ IP 172.64.155.188:0 ASN #13335 CLOUDFLARENET File type data Size 471 B (471 bytes) Hash 9f002335490b9ef4545bdbff38d361bb cb3b2481ee3374164d971b6dc9ec3f537264d140 fecb048c58f4d8e3f67ca890133ab00c2d67ff2495801aead2d401d5474a74c4 HTTP Headers `POST / HTTP/1.1 Host: ocsp.comodoca.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Date: Thu, 06 Oct 2022 08:45:42 GMT Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Last-Modified: Wed, 05 Oct 2022 03:38:20 GMT Expires: Wed, 12 Oct 2022 03:38:19 GMT Etag: "cb3b2481ee3374164d971b6dc9ec3f537264d140" Cache-Control: max-age=602531,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb5 X-Frame-Options: SAMEORIGIN CF-Cache-Status: HIT Age: 76 Accept-Ranges: bytes Vary: Accept-Encoding Server: cloudflare CF-RAY: 755d1f52e9370afe-OSL

	ocsp.comodoca.com/	172.64.155.188	200 OK	471 B
URL HTTP/1.1 ocsp.comodoca.com/ IP 172.64.155.188:0 ASN #13335 CLOUDFLARENET File type data Size 471 B (471 bytes) Hash 9f002335490b9ef4545bdbff38d361bb cb3b2481ee3374164d971b6dc9ec3f537264d140 fecb048c58f4d8e3f67ca890133ab00c2d67ff2495801aead2d401d5474a74c4 HTTP Headers `POST / HTTP/1.1 Host: ocsp.comodoca.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Date: Thu, 06 Oct 2022 08:45:42 GMT Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Last-Modified: Wed, 05 Oct 2022 03:38:20 GMT Expires: Wed, 12 Oct 2022 03:38:19 GMT Etag: "cb3b2481ee3374164d971b6dc9ec3f537264d140" Cache-Control: max-age=602531,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb5 X-Frame-Options: SAMEORIGIN CF-Cache-Status: HIT Age: 76 Accept-Ranges: bytes Vary: Accept-Encoding Server: cloudflare CF-RAY: 755d1f52e9b0b52d-OSL

	api2.amplitude.com/2/httpapi	44.240.15.61	200 OK	0 B
URL HTTP/2 api2.amplitude.com/2/httpapi IP 44.240.15.61:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `OPTIONS /2/httpapi HTTP/1.1 Host: api2.amplitude.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type Referer: https://app.hnry.io/ Origin: https://app.hnry.io Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK date: Thu, 06 Oct 2022 08:45:42 GMT content-length: 0 access-control-allow-origin: * access-control-allow-methods: GET, POST access-control-allow-headers: content-type strict-transport-security: max-age=15768000 X-Firefox-Spdy: h2`

	api2.amplitude.com/2/httpapi	44.240.15.61	200 OK	93 B
URL HTTP/2 api2.amplitude.com/2/httpapi IP 44.240.15.61:0 ASN #16509 AMAZON-02 File type JSON data\012- , ASCII text Size 93 B (93 bytes) Hash 91f5330ee23ee25ce0415682a0b9253b dbc0b6da050ef39f934d2349b29efef6a8299966 1a4d9bea65daa1a02d1e762b38ad96e6f39e65e2549e5f7c6244b3c0302a20e8 HTTP Headers `POST /2/httpapi HTTP/1.1 Host: api2.amplitude.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://app.hnry.io/ Content-Type: application/json Origin: https://app.hnry.io Content-Length: 890 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK date: Thu, 06 Oct 2022 08:45:42 GMT content-type: application/json content-length: 93 access-control-allow-origin: * access-control-allow-methods: GET, POST trace-id: Root=1-633e95b6-7b3d378c7604cdc853ff3581 strict-transport-security: max-age=15768000 X-Firefox-Spdy: h2`

	jagmaysg.hnry.io/image.gif	54.230.111.33	200 OK	7 B
URL HTTP/2 jagmaysg.hnry.io/image.gif IP 54.230.111.33:0 ASN #16509 AMAZON-02 File type GIF image data, version 89a,\012- data Size 7 B (7 bytes) Hash 1f2d8b41aba487921856cacd6c0d52e8 6b0bd0238861923bd2e9ee98ff1f8412521d7c9c f82624464e9e95dfae29e0e54c360aff84dda3c419fc8c3bd10ef668bbe7df9e HTTP Headers GET /image.gif HTTP/1.1 Host: jagmaysg.hnry.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://app.hnry.io/ Connection: keep-alive Cookie: referral_source=hnry.co.nz; _rm=d6e60cf4-8325-4bd9-ac1f-db4dfe0b614c; _gcl_au=1.1.755873957.1665045940; initialTrafficSource=utmcsr=(direct)\|utmcmd=(none)\|utmccn=(not set)\|timestamp=1665045939985; __utmzzses=1; _ga_LZ62PBZVJK=GS1.1.1665045940.1.0.1665045940.0.0.0; _ga=GA1.2.1937819616.1665045940; _gid=GA1.2.1010246060.1665045941; _gat_UA-96195992-1=1; AMP_576072e336=JTdCJTIyb3B0T3V0JTIyJTNBZmFsc2UlMkMlMjJkZXZpY2VJZCUyMiUzQSUyMjllZGIzZmNmLTQ4MzgtNDgxZC1hZGNmLTQ0ZWRiMmQyNjk5MiUyMiUyQyUyMmxhc3RFdmVudFRpbWUlMjIlM0ExNjY1MDQ1OTQwODU5JTJDJTIyc2Vzc2lvbklkJTIyJTNBMTY2NTA0NTk0MDc2NSUyQyUyMnVzZXJJZCUyMiUzQSUyMjE5NDEzJTIyJTdE; _fbp=fb.1.1665045941234.1607577419; AMP_MKTG_576072e336=JTdCJTdE Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 200 OK content-type: image/gif content-length: 7 server: awselb/2.0 date: Thu, 06 Oct 2022 08:45:45 GMT set-cookie: _rm__fbp=fb.1.1665045941234.1607577419; Domain=hnry.io; Path=/; Expires=Sun, 06 Oct 2024 08:45:45 GMT; SameSite=None; Secure; _rm__gcl_au=1.1.755873957.1665045940; Domain=hnry.io; Path=/; Expires=Sun, 06 Oct 2024 08:45:45 GMT; SameSite=None; Secure; _rm__ga=GA1.2.1937819616.1665045940; Domain=hnry.io; Path=/; Expires=Sun, 06 Oct 2024 08:45:45 GMT; SameSite=None; Secure; _rm=d6e60cf4-8325-4bd9-ac1f-db4dfe0b614c; Domain=hnry.io; Path=/; Expires=Sun, 06 Oct 2024 08:45:45 GMT; SameSite=None; Secure; cache-control: no-cache x-cache: Miss from cloudfront via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: 7tFxY9aoBvxzkKauAnYQCybulTO1aGf4xAhejiwXwFb2twEvAdgJBg== X-Firefox-Spdy: h2

	app.hnry.io/packs/media/images/mc_vrt_pos-9768a2ae.svg	13.54.215.11	200 OK	0 B
URL HTTP/2 app.hnry.io/packs/media/images/mc_vrt_pos-9768a2ae.svg IP 13.54.215.11:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers GET /packs/media/images/mc_vrt_pos-9768a2ae.svg HTTP/1.1 Host: app.hnry.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://app.hnry.io/invoices/daec3f7de2a5ea6f1edf93c020d28414?hnry_referrer=hnry.co.nz&ref=c Connection: keep-alive Cookie: AWSALB=HcnzqLVOUTumurXnx5qDwsMjIJWKFu8p/nJ1t8J4coV1qYygqpYBAI4CrW1GYn7FASB2Sr8EgUM6aNOD8N15u4JGxAmZkDBWPJ7uOgEmvCrgn8xigWU8G6lKJ0l2; AWSALBCORS=HcnzqLVOUTumurXnx5qDwsMjIJWKFu8p/nJ1t8J4coV1qYygqpYBAI4CrW1GYn7FASB2Sr8EgUM6aNOD8N15u4JGxAmZkDBWPJ7uOgEmvCrgn8xigWU8G6lKJ0l2; referral_source=hnry.co.nz; _hnry_session=LOgXGZ3zYxFOMPzt202UL%2Fl4KfCbhjWOqkfelgmP4ZeNnYOkKi%2Fa0%2BHFGgmiIcTNu01SBnVeZ6%2FpsJIxPeYXswHK1GCd2E748nPLCJt7H4UHnAnW%2BO%2BB4fKEibSX9tsZxe0xvXy%2BY2sdUp7kruRImuG8WFBATDk80pR8DSmezR%2Fr5wLPFpz7aHZz6ONvED3%2B0PdsiZuFwC4edtCGuh6L3o309kVqu0Gxv6p0j6xvJdeHPtfXO3pbCKyILUHmHrDWaYBwPZTUD1BmZVIESLEZMytAWBJGu229LnzYpi6oJgO8u8E8GqRCQgGk3Eze%2BggzCA%3D%3D--oaFSfG3v%2Fde3LKoA--aMysoF5azZoBHlZiaSAoqQ%3D%3D; _rm=d6e60cf4-8325-4bd9-ac1f-db4dfe0b614c; _gcl_au=1.1.755873957.1665045940; initialTrafficSource=utmcsr=(direct)\|utmcmd=(none)\|utmccn=(not set)\|timestamp=1665045939985; __utmzzses=1; _ga_LZ62PBZVJK=GS1.1.1665045940.1.0.1665045940.0.0.0; _ga=GA1.2.1937819616.1665045940; _gid=GA1.2.1010246060.1665045941; _gat_UA-96195992-1=1; AMP_576072e336=JTdCJTIyb3B0T3V0JTIyJTNBZmFsc2UlMkMlMjJkZXZpY2VJZCUyMiUzQSUyMjllZGIzZmNmLTQ4MzgtNDgxZC1hZGNmLTQ0ZWRiMmQyNjk5MiUyMiUyQyUyMnNlc3Npb25JZCUyMiUzQTE2NjUwNDU5NDA3NjUlMkMlMjJ1c2VySWQlMjIlM0ElMjIxOTQxMyUyMiU3RA== Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 06 Oct 2022 08:45:40 GMT content-type: image/svg+xml set-cookie: AWSALB=upkPy4JnQBthV0UNDrNiIO8Wws0w0QugkhbIfm1WjFNvHw1gNYLS69ngAdNcJaqkKhssWN/tJ0jkunBTl/8yW90Lx+1aW67GASgn+KGcMtSz3FbAt/4MvaPTohOo; Expires=Thu, 13 Oct 2022 08:45:40 GMT; Path=/ AWSALBCORS=upkPy4JnQBthV0UNDrNiIO8Wws0w0QugkhbIfm1WjFNvHw1gNYLS69ngAdNcJaqkKhssWN/tJ0jkunBTl/8yW90Lx+1aW67GASgn+KGcMtSz3FbAt/4MvaPTohOo; Expires=Thu, 13 Oct 2022 08:45:40 GMT; Path=/; SameSite=None; Secure server: nginx vary: Accept-Encoding last-modified: Thu, 06 Oct 2022 03:29:24 GMT strict-transport-security: max-age=31536000; includeSubDomains access-control-allow-origin: * access-control-allow-headers: * access-control-allow-methods: GET, HEAD, OPTIONS access-control-max-age: 31536000 access-control-expose-headers: Content-Length, Content-Encoding, ETag cache-control: public, max-age=31536000, immutable content-encoding: gzip X-Firefox-Spdy: h2

	app.hnry.io/assets/favicon-b2b3dc62692ea0f625e11ee78bc876e8a918ddc5f6bc8434098637adacbbfa0f.svg	13.54.215.11	200 OK	0 B
URL HTTP/2 app.hnry.io/assets/favicon-b2b3dc62692ea0f625e11ee78bc876e8a918ddc5f6bc8434098637adacbbfa0f.svg IP 13.54.215.11:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers GET /assets/favicon-b2b3dc62692ea0f625e11ee78bc876e8a918ddc5f6bc8434098637adacbbfa0f.svg HTTP/1.1 Host: app.hnry.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://app.hnry.io/invoices/daec3f7de2a5ea6f1edf93c020d28414?hnry_referrer=hnry.co.nz&ref=c Connection: keep-alive Cookie: AWSALB=HcnzqLVOUTumurXnx5qDwsMjIJWKFu8p/nJ1t8J4coV1qYygqpYBAI4CrW1GYn7FASB2Sr8EgUM6aNOD8N15u4JGxAmZkDBWPJ7uOgEmvCrgn8xigWU8G6lKJ0l2; AWSALBCORS=HcnzqLVOUTumurXnx5qDwsMjIJWKFu8p/nJ1t8J4coV1qYygqpYBAI4CrW1GYn7FASB2Sr8EgUM6aNOD8N15u4JGxAmZkDBWPJ7uOgEmvCrgn8xigWU8G6lKJ0l2; referral_source=hnry.co.nz; _hnry_session=LOgXGZ3zYxFOMPzt202UL%2Fl4KfCbhjWOqkfelgmP4ZeNnYOkKi%2Fa0%2BHFGgmiIcTNu01SBnVeZ6%2FpsJIxPeYXswHK1GCd2E748nPLCJt7H4UHnAnW%2BO%2BB4fKEibSX9tsZxe0xvXy%2BY2sdUp7kruRImuG8WFBATDk80pR8DSmezR%2Fr5wLPFpz7aHZz6ONvED3%2B0PdsiZuFwC4edtCGuh6L3o309kVqu0Gxv6p0j6xvJdeHPtfXO3pbCKyILUHmHrDWaYBwPZTUD1BmZVIESLEZMytAWBJGu229LnzYpi6oJgO8u8E8GqRCQgGk3Eze%2BggzCA%3D%3D--oaFSfG3v%2Fde3LKoA--aMysoF5azZoBHlZiaSAoqQ%3D%3D; _rm=d6e60cf4-8325-4bd9-ac1f-db4dfe0b614c; _gcl_au=1.1.755873957.1665045940; initialTrafficSource=utmcsr=(direct)\|utmcmd=(none)\|utmccn=(not set)\|timestamp=1665045939985; __utmzzses=1; _ga_LZ62PBZVJK=GS1.1.1665045940.1.0.1665045940.0.0.0; _ga=GA1.1.1937819616.1665045940 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 06 Oct 2022 08:45:40 GMT content-type: image/svg+xml set-cookie: AWSALB=fkaSQf2MqHum4gvt1+E8Bjh1c5TuXn6O5XYa3De+EhsFoCyefCbUPtbcl8h4UfJ129AVfiL+P0GMLyiMmi9d1BayhCaDS4wC9n5wzwX5MYgIgSA+0uPw2NGe1ha2; Expires=Thu, 13 Oct 2022 08:45:40 GMT; Path=/ AWSALBCORS=fkaSQf2MqHum4gvt1+E8Bjh1c5TuXn6O5XYa3De+EhsFoCyefCbUPtbcl8h4UfJ129AVfiL+P0GMLyiMmi9d1BayhCaDS4wC9n5wzwX5MYgIgSA+0uPw2NGe1ha2; Expires=Thu, 13 Oct 2022 08:45:40 GMT; Path=/; SameSite=None; Secure server: nginx vary: Accept-Encoding last-modified: Thu, 06 Oct 2022 03:27:02 GMT strict-transport-security: max-age=31536000; includeSubDomains access-control-allow-origin: * access-control-allow-headers: * access-control-allow-methods: GET, HEAD, OPTIONS access-control-max-age: 31536000 access-control-expose-headers: Content-Length, Content-Encoding, ETag cache-control: public, max-age=31536000, immutable content-encoding: gzip X-Firefox-Spdy: h2

	jagmaysg.hnry.io/script.js	54.230.111.33	200 OK	0 B
URL HTTP/2 jagmaysg.hnry.io/script.js IP 54.230.111.33:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /script.js HTTP/1.1 Host: jagmaysg.hnry.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://app.hnry.io/ Connection: keep-alive Cookie: referral_source=hnry.co.nz Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site` HTTP/2 200 OK content-type: text/javascript last-modified: Wed, 28 Sep 2022 01:32:02 GMT server: AmazonS3 content-encoding: br date: Thu, 06 Oct 2022 07:49:52 GMT cache-control: public, max-age=3600, s-max-age=86400 etag: W/"3056299d79e3e5bce86503f633f75b0d" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: GmDhOgCHl5G_Zpbcag6NNHvhcrOLvEe-wS7PXXTF71py8moY7nRHpw== age: 3347 X-Firefox-Spdy: h2

	app.hnry.io/packs/media/images/paystation_logo-80c05c90.svg	13.54.215.11	200 OK	0 B
URL HTTP/2 app.hnry.io/packs/media/images/paystation_logo-80c05c90.svg IP 13.54.215.11:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers GET /packs/media/images/paystation_logo-80c05c90.svg HTTP/1.1 Host: app.hnry.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://app.hnry.io/invoices/daec3f7de2a5ea6f1edf93c020d28414?hnry_referrer=hnry.co.nz&ref=c Connection: keep-alive Cookie: AWSALB=HcnzqLVOUTumurXnx5qDwsMjIJWKFu8p/nJ1t8J4coV1qYygqpYBAI4CrW1GYn7FASB2Sr8EgUM6aNOD8N15u4JGxAmZkDBWPJ7uOgEmvCrgn8xigWU8G6lKJ0l2; AWSALBCORS=HcnzqLVOUTumurXnx5qDwsMjIJWKFu8p/nJ1t8J4coV1qYygqpYBAI4CrW1GYn7FASB2Sr8EgUM6aNOD8N15u4JGxAmZkDBWPJ7uOgEmvCrgn8xigWU8G6lKJ0l2; referral_source=hnry.co.nz; _hnry_session=LOgXGZ3zYxFOMPzt202UL%2Fl4KfCbhjWOqkfelgmP4ZeNnYOkKi%2Fa0%2BHFGgmiIcTNu01SBnVeZ6%2FpsJIxPeYXswHK1GCd2E748nPLCJt7H4UHnAnW%2BO%2BB4fKEibSX9tsZxe0xvXy%2BY2sdUp7kruRImuG8WFBATDk80pR8DSmezR%2Fr5wLPFpz7aHZz6ONvED3%2B0PdsiZuFwC4edtCGuh6L3o309kVqu0Gxv6p0j6xvJdeHPtfXO3pbCKyILUHmHrDWaYBwPZTUD1BmZVIESLEZMytAWBJGu229LnzYpi6oJgO8u8E8GqRCQgGk3Eze%2BggzCA%3D%3D--oaFSfG3v%2Fde3LKoA--aMysoF5azZoBHlZiaSAoqQ%3D%3D; _rm=d6e60cf4-8325-4bd9-ac1f-db4dfe0b614c; _gcl_au=1.1.755873957.1665045940; initialTrafficSource=utmcsr=(direct)\|utmcmd=(none)\|utmccn=(not set)\|timestamp=1665045939985; __utmzzses=1; _ga_LZ62PBZVJK=GS1.1.1665045940.1.0.1665045940.0.0.0; _ga=GA1.2.1937819616.1665045940; _gid=GA1.2.1010246060.1665045941; _gat_UA-96195992-1=1; AMP_576072e336=JTdCJTIyb3B0T3V0JTIyJTNBZmFsc2UlMkMlMjJkZXZpY2VJZCUyMiUzQSUyMjllZGIzZmNmLTQ4MzgtNDgxZC1hZGNmLTQ0ZWRiMmQyNjk5MiUyMiUyQyUyMnNlc3Npb25JZCUyMiUzQTE2NjUwNDU5NDA3NjUlMkMlMjJ1c2VySWQlMjIlM0ElMjIxOTQxMyUyMiU3RA== Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Thu, 06 Oct 2022 08:45:40 GMT content-type: image/svg+xml set-cookie: AWSALB=G3r0SojHZ1zvqV6eK7SvEPw0GpxwjFb4odwW3IoeJCaP5/97ChvTuWxqcjfFRYRZJitgheSAcXQkuXeYrBFLHm4OnPyT3DN/NsM6h9yPs+KS48CzV4VgdKFhAI4u; Expires=Thu, 13 Oct 2022 08:45:40 GMT; Path=/ AWSALBCORS=G3r0SojHZ1zvqV6eK7SvEPw0GpxwjFb4odwW3IoeJCaP5/97ChvTuWxqcjfFRYRZJitgheSAcXQkuXeYrBFLHm4OnPyT3DN/NsM6h9yPs+KS48CzV4VgdKFhAI4u; Expires=Thu, 13 Oct 2022 08:45:40 GMT; Path=/; SameSite=None; Secure server: nginx vary: Accept-Encoding last-modified: Thu, 06 Oct 2022 03:29:24 GMT strict-transport-security: max-age=31536000; includeSubDomains access-control-allow-origin: * access-control-allow-headers: * access-control-allow-methods: GET, HEAD, OPTIONS access-control-max-age: 31536000 access-control-expose-headers: Content-Length, Content-Encoding, ETag cache-control: public, max-age=31536000, immutable content-encoding: gzip X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (23)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations