Report - www.esv.org/verses/Rom.%201:20/

Report Overview

Submitted URL
www.esv.org/verses/Rom.%201:20/
IP
34.231.140.119
ASN
#14618 AMAZON-AES
Submitted
2023-02-07 23:39:24
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
2
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
www.esv.org	241475	2012-10-19T07:44:53Z	2023-02-27T21:38:01Z	822 B	6.0 kB	34.231.140.119
pagestates-tracking.crazyegg.com	3647	2020-10-26T20:42:04Z	2023-03-13T05:27:09Z	400 B	648 B	54.230.111.22
tracking.crazyegg.com	3633	2020-03-10T08:15:05Z	2023-03-13T05:27:09Z	529 B	221 B	52.212.178.69
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	55 kB	34.120.237.76
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
cloud.typography.com	5721	2012-06-18T09:30:30Z	2023-03-13T05:12:54Z	394 B	600 B	95.100.15.14
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	1.4 kB	2.8 kB	93.184.220.29
script.crazyegg.com	1992	2014-10-23T19:42:31Z	2023-03-13T05:27:09Z	1.3 kB	32 kB	104.19.147.8
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-13T07:36:03Z	1.3 kB	21 kB	142.250.74.46
assets-tracking.crazyegg.com	3651	2021-01-26T16:34:24Z	2023-03-13T05:27:09Z	396 B	648 B	54.230.111.63
static.crossway.org	375598	2012-10-10T15:21:28Z	2023-02-23T21:37:06Z	399 B	514 B	54.230.111.48
d23iz4esrwkib6.cloudfront.net	unknown	2022-07-17T12:41:35Z	2023-03-13T08:25:52Z	596 B	530 B	54.230.245.225
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
dch8lckz6x8ar.cloudfront.net	unknown	2021-05-03T12:28:43Z	2023-02-21T05:48:37Z	4.5 kB	29 kB	54.230.245.61
ocsp.sca1b.amazontrust.com	1015	2017-03-03T16:20:51Z	2019-03-27T05:05:54Z	350 B	1.0 kB	54.230.245.39
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	3.0 kB	8.0 kB	23.36.76.226
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	34.214.84.191
connect.facebook.net	139	2012-05-22T04:51:28Z	2023-03-13T05:09:29Z	369 B	29 kB	31.13.72.12
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	1.4 kB	2.8 kB	142.250.74.131
stats.g.doubleclick.net	96	2013-06-10T22:21:11Z	2023-03-13T08:02:41Z	595 B	587 B	142.250.150.157
www.facebook.com	99	2012-05-21T02:23:41Z	2021-02-04T00:31:35Z	3.3 kB	698 B	157.240.221.35

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-02-07 23:40:04	medium	54.230.245.225	Client IP	ET POLICY Executable served from Amazon S3
2023-02-07 23:40:04	high	54.230.245.225	Client IP	ET POLICY PE EXE or DLL Windows file download HTTP

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (10)

	URL	Size	First Seen	Last Seen
	www.esv.org/verses/Rom.%201:20/	1.3 kB	2023-03-13	2023-03-13
Pretty URL www.esv.org/verses/Rom.%201:20/ IP 34.231.140.119 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 19:19:20 Last Seen2023-03-13 19:19:20 Times Seen1 Hash d423b537fc9ea497d78be837dbcd3d31 9440e4e34cf946a2f5b03a3a5b5ea68bedb98b92 6fa104a495c38b604a3674ec1f2bbcf4692a64287cf8b8ef35b1bdd9fcb852cf Loading...

	www.esv.org/verses/Rom.%201:20/	2.3 kB	2023-03-13	2023-03-13
Pretty URL www.esv.org/verses/Rom.%201:20/ IP 34.231.140.119 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 19:19:20 Last Seen2023-03-13 19:19:20 Times Seen1 Hash 4233f94ab34b064984eb7f40caae3c27 814a79e98c913bfceef811893aed4f51e7aaa6f4 53ce837aebad0f127e6d850f87a5b518a28eaad0cd449aaad75297d82c720174 Loading...

	script.crazyegg.com/pages/scripts/0067/1474.js	6.1 kB	2023-03-13	2023-03-13
Pretty URL script.crazyegg.com/pages/scripts/0067/1474.js IP 104.19.147.8 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 19:19:20 Last Seen2023-03-13 19:19:20 Times Seen1 Hash d3d8ffc5d51bdfa3c5b237d9da1eedbb 802e939ddb7d59d6658f1bb65aea0cc0fbcb6b22 59569d6cacfb1f2a5de289814edda5ff4ed3ad74fed05d17b220898cd626a5be Loading...

	dch8lckz6x8ar.cloudfront.net/static/js/output.35ad959d5457.js	152 kB	2023-03-13	2023-03-13
Pretty URL dch8lckz6x8ar.cloudfront.net/static/js/output.35ad959d5457.js IP 54.230.245.61 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 19:19:20 Last Seen2023-03-13 19:19:20 Times Seen1 Hash c8bb9e1cd5c72d16f4e286b9f111093f 1f1cef624001092e4f6394b160f90b8eb9e443b2 35ad959d5457e9c0f0eb77b16577462876cb2073602d1dc2f8bbf598a3bd6988 Loading...

	www.esv.org/verses/Rom.%201:20/	454 B	2023-03-13	2023-03-13
Pretty URL www.esv.org/verses/Rom.%201:20/ IP 34.231.140.119 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 19:19:20 Last Seen2023-03-13 19:19:20 Times Seen1 Hash 6cfe4b5e2d644795d79c90eb965caa60 59b877c5ef7cec5aa6aceff6e32e10e3ecd7ffbe 9d64a39de613cce0ba937140eebf4c5cd81fc61a423287813880fb02cd83cfa5 Loading...

	www.esv.org/verses/Rom.%201:20/	616 B	2023-03-13	2023-03-13
Pretty URL www.esv.org/verses/Rom.%201:20/ IP 34.231.140.119 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 19:19:20 Last Seen2023-03-13 19:19:20 Times Seen1 Hash 371e9a479cacbec78d8897990e6454c8 9ae871efdf8fa64c65777d1ded5ced885f85f7c9 0afb2853fba06f6947b0348fe47b12e4876e7d4b721d703b75384cc1f951163e Loading...

	connect.facebook.net/en_US/fbevents.js	109 kB	2023-03-13	2023-11-17
Pretty URL connect.facebook.net/en_US/fbevents.js IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 12:47:19 Last Seen2023-11-17 16:32:25 Times Seen5 Hash beca88e7d9125b63f58be285031b0930 08cda009ebdf601f0ffe06b0ee3065fff2fb105b c1e56ad863615fc191d80d7807852db95e57579f6535186d83d04ecdebef5236 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-12	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.46 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:46:21 Last Seen2024-04-15 18:54:35 Times Seen35101 Hash 54e51056211dda674100cc5b323a58ad 26dc5034cb6c7f3bbe061edd37c7fc6006cb835b 5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de Loading...

	script.crazyegg.com/pages/versioned/common-scripts/2e2da7d3b3b2d712690eb56715b4f237.js	79 kB	2023-03-13	2023-03-14
Pretty URL script.crazyegg.com/pages/versioned/common-scripts/2e2da7d3b3b2d712690eb56715b4f237.js IP 104.19.147.8 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 14:41:32 Last Seen2023-03-14 09:41:20 Times Seen1 Hash f30c5cdc89037c4f916d2247ad0f5afe 845925fdb38889e102bbb14e5708bb8ad105d3ac c8fbf8f0bba40d99a2dfe95009f71cb34bf640d3c71ff0abcd57cc41b4262831 Loading...

	connect.facebook.net/signals/config/506435969522616?v=2.9.95&r=stable	388 kB	2023-03-13	2023-03-13
Pretty URL connect.facebook.net/signals/config/506435969522616?v=2.9.95&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 19:19:20 Last Seen2023-03-13 19:19:20 Times Seen1 Hash 022b3223bf3489ac4679d303bcf728ce 5437cf13f0918a516940ad0ead29e0b24169f128 537c8e8799056349b281e92e28b8d4c52f6f7b73be20034a77989bd25f58c5df Loading...

HTTP Transactions (56)

URL IP Response Size

www.esv.org/verses/Rom.%201:20/

34.231.140.119

301 Moved Permanently

178 B

URL HTTP/1.1
www.esv.org/verses/Rom.%201:20/
IP
34.231.140.119:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
178 B (178 bytes)
Hash
cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d

HTTP Headers

GET /verses/Rom.%201:20/ HTTP/1.1
Host: www.esv.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 07 Feb 2023 23:39:12 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: https://www.esv.org/verses/Rom.%201:20/
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
507011ccb9124dcd57e84a90a0965cc4
1a6575d0ac979c7184490cc9836ac4812ad2afd1
01626c18e1e68507aa33ef7448dbc3311901ab6f29adc2f51d449409b0680dce

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "01626C18E1E68507AA33EF7448DBC3311901AB6F29ADC2F51D449409B0680DCE"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9425
Expires: Wed, 08 Feb 2023 02:16:17 GMT
Date: Tue, 07 Feb 2023 23:39:12 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
565c1bbc5c1c40be1988b3bf6fd9dc1a
cfdba5bc597130461dd67bf6cda53183be592493
60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D"
Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3493
Expires: Wed, 08 Feb 2023 00:37:25 GMT
Date: Tue, 07 Feb 2023 23:39:12 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Backoff, Alert, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 07 Feb 2023 23:34:10 GMT
content-type: application/json
age: 302
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cc14b0d2f7c451f6431dc87ba54d1d60
bab8bfda6fa3e2f17125353f5147211787dc25d0
b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD"
Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9352
Expires: Wed, 08 Feb 2023 02:15:04 GMT
Date: Tue, 07 Feb 2023 23:39:12 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: Tqeml28bwMMErV/DUDyKeshjFogxjzWsaq77C9AVLiSxNpO2LzuYlj3xW1nsLaER/3WpXLLZB4o=
x-amz-request-id: Q81P1J213HEC3NKD
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 07 Feb 2023 22:45:44 GMT
age: 3208
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 07 Feb 2023 23:39:12 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

www.esv.org/verses/Rom.%201:20/

34.231.140.119

200 OK

4.8 kB

URL HTTP/1.1
www.esv.org/verses/Rom.%201:20/
IP
34.231.140.119:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1874)
Size
4.8 kB (4759 bytes)
Hash
b2e751f795e1773d1d2503b7f74d3311
109bd80ade1191bc977e75f2fde9f105b42b0699
e52a813bda1275d27a0db20d6d0ee1dedd591559486bc1246a0f853d7224b259

HTTP Headers

GET /verses/Rom.%201:20/ HTTP/1.1
Host: www.esv.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 Feb 2023 23:39:12 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"2c5ba1c7ee3e9d3dd49df04184058c33"
Vary: Accept-Encoding, Cookie
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
Content-Security-Policy: default-src *.crazyegg.com https:; script-src 'unsafe-inline' blob: https: 'unsafe-eval' *.crazyegg.com https://crossway.my.salesforce.com; style-src 'unsafe-inline' https: *.crazyegg.com; font-src https: data:; media-src http: https:; img-src http: https: data: *.crazyegg.com
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Content-Encoding: gzip

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Retry-After, Content-Length, Content-Type, ETag, Cache-Control, Alert, Pragma, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 07 Feb 2023 22:51:19 GMT
age: 2873
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

cloud.typography.com/7934312/734366/css/fonts.css

95.100.15.14

302 Moved Temporarily

154 B

URL HTTP/1.1
cloud.typography.com/7934312/734366/css/fonts.css
IP
95.100.15.14:0
ASN
#16625 AKAMAI-AS

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
154 B (154 bytes)
Hash
52558d05355ee6e9d14ff3cf8a5a3ef0
52cfd7dd3859dc0578849a7b1c91bb8f91ad84c2
bac5546ea0f819f461c9023592ec2398a45a6c3aab78e55fed8b7c908dce6060

HTTP Headers

GET /7934312/734366/css/fonts.css HTTP/1.1
Host: cloud.typography.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.esv.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Moved Temporarily
Server: AkamaiNetStorage
Content-Length: 154
Content-Type: text/html
Location: https://static.crossway.org/fonts/804418/7F6F9F78268A647DA.css
X-HCo-pid: 16
Expires: Tue, 07 February 2023 23:39:12 GMT
ETag: "243b28b41317c94603d26e845887cdea:1664805769.413518"
Last-Modified: Thu, 10 Dec 2020 15:00:52 GMT
Cache-Control: must-revalidate, private
Date: Tue, 07 Feb 2023 23:39:12 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9b88bae61bca33aba8aa99f6128db8d9
a07b61fb2458917699613fcae68710941b595416
54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA"
Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7019
Expires: Wed, 08 Feb 2023 01:36:11 GMT
Date: Tue, 07 Feb 2023 23:39:12 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
bcc2279a4f429844a992ce9c4259b4f6
9f264fdbfeb684a1e8d78b310e831347341966c3
899505045ba5501d28abcfd72969775aa1dd47666899995959568e0003ff2485

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 23:39:12 GMT
Last-Modified: Tue, 07 Feb 2023 23:39:09 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

34.214.84.191

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.214.84.191:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: lO4pgD6BO0FgzNp5B00K+A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: n50TA9T/H3Pbvekn4rtxpsax9SU=

dch8lckz6x8ar.cloudfront.net/static/img/logo.15c3f5a870ee.svg?3423b4b8874d

54.230.245.61

200 OK

1.2 kB

URL HTTP/2
dch8lckz6x8ar.cloudfront.net/static/img/logo.15c3f5a870ee.svg?3423b4b8874d
IP
54.230.245.61:0
ASN
#16509 AMAZON-02

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (2227), with no line terminators
Size
1.2 kB (1161 bytes)
Hash
56e84aaeab2af9570561d807ac39bb3a
93b3219a8a42e21037b46715191918bcdb586b67
2024ba77ca591bc38a4c7846117a1ac8e4811e4ce0b919387af17a29e520cc5d

HTTP Headers

GET /static/img/logo.15c3f5a870ee.svg?3423b4b8874d HTTP/1.1
Host: dch8lckz6x8ar.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dch8lckz6x8ar.cloudfront.net/static/css/output.922ec3683f60.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
content-length: 1161
server: nginx
date: Tue, 27 Sep 2022 05:10:50 GMT
cache-control: max-age=315360000, public, immutable
access-control-allow-origin: *
last-modified: Tue, 28 May 2019 22:53:41 GMT
etag: "5cee0245-8b3"
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: default-src *.crazyegg.com https:; script-src 'unsafe-inline' blob: https: 'unsafe-eval' *.crazyegg.com https://crossway.my.salesforce.com; style-src 'unsafe-inline' https: *.crazyegg.com; font-src https: data:; media-src http: https:; img-src http: https: data: *.crazyegg.com
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: A71wFewwv3ka5xbYFvmtlz8UwoMPPAzxiYLlJcSAADyDpKXr9DLa3w==
age: 11557703
X-Firefox-Spdy: h2

dch8lckz6x8ar.cloudfront.net/static/img/android.a32d4c101283.svg

54.230.245.61

200 OK

923 B

URL HTTP/2
dch8lckz6x8ar.cloudfront.net/static/img/android.a32d4c101283.svg
IP
54.230.245.61:0
ASN
#16509 AMAZON-02

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2098)
Size
923 B (923 bytes)
Hash
c054731f1baa0c466dc448e2816092eb
8491e5ed6403a9a7727484b2371b86272024500a
2656f81696f1c471acaf5253a30f968d7ec2abc95617ab19c2b4e2bdc881baa2

HTTP Headers

GET /static/img/android.a32d4c101283.svg HTTP/1.1
Host: dch8lckz6x8ar.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.esv.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
content-length: 923
server: nginx
date: Sun, 22 Jan 2023 21:34:29 GMT
cache-control: max-age=315360000, public, immutable
access-control-allow-origin: *
last-modified: Mon, 12 Sep 2022 17:06:41 GMT
etag: "631fad71-89a"
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: default-src *.crazyegg.com https:; script-src 'unsafe-inline' blob: https: 'unsafe-eval' *.crazyegg.com https://crossway.my.salesforce.com; style-src 'unsafe-inline' https: *.crazyegg.com; font-src https: data:; media-src http: https:; img-src http: https: data: *.crazyegg.com
x-frame-options: DENY, DENY
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 41YXJ741tT4vhVwCEelmFOYqFTtEEI8o5FwM_qVZ6xvPGVNxC4yFJw==
age: 1389884
X-Firefox-Spdy: h2

dch8lckz6x8ar.cloudfront.net/static/img/ios.45a182b31462.svg

54.230.245.61

200 OK

628 B

URL HTTP/2
dch8lckz6x8ar.cloudfront.net/static/img/ios.45a182b31462.svg
IP
54.230.245.61:0
ASN
#16509 AMAZON-02

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (995)
Size
628 B (628 bytes)
Hash
bca90956cad7d0c58c036bdc0505579f
94c907120734b81b68cea734931f0da3a3fc2985
ce8bd135eb2533b06b96c82bbe2854cc30c23591ba853969deb218218df9b471

HTTP Headers

GET /static/img/ios.45a182b31462.svg HTTP/1.1
Host: dch8lckz6x8ar.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.esv.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
content-length: 628
server: nginx
date: Wed, 11 Jan 2023 06:08:19 GMT
cache-control: max-age=315360000, public, immutable
access-control-allow-origin: *
last-modified: Mon, 12 Sep 2022 17:06:41 GMT
etag: "631fad71-44b"
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: default-src *.crazyegg.com https:; script-src 'unsafe-inline' blob: https: 'unsafe-eval' *.crazyegg.com https://crossway.my.salesforce.com; style-src 'unsafe-inline' https: *.crazyegg.com; font-src https: data:; media-src http: https:; img-src http: https: data: *.crazyegg.com
x-frame-options: DENY, DENY
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Xkr3jcEeags6UYwnKu3HihdI-DIqQarjSTGstr_pZEGHM1rkcWPUOw==
age: 2395854
X-Firefox-Spdy: h2

dch8lckz6x8ar.cloudfront.net/static/img/personal.2a1bd2c11bd2.svg?3423b4b8874d

54.230.245.61

200 OK

289 B

URL HTTP/2
dch8lckz6x8ar.cloudfront.net/static/img/personal.2a1bd2c11bd2.svg?3423b4b8874d
IP
54.230.245.61:0
ASN
#16509 AMAZON-02

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (417), with no line terminators
Size
289 B (289 bytes)
Hash
b849e2537507c5d450d298861977c76b
b5b98b81ad2986f8ef8e8f503beda24a7fd844bc
796d01f1671781911414a324cfdde5381a5ff9afd8c12d88df98ec2c0d75c33b

HTTP Headers

GET /static/img/personal.2a1bd2c11bd2.svg?3423b4b8874d HTTP/1.1
Host: dch8lckz6x8ar.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dch8lckz6x8ar.cloudfront.net/static/css/output.922ec3683f60.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
content-length: 289
server: nginx
date: Mon, 14 Nov 2022 08:47:27 GMT
cache-control: max-age=315360000, public, immutable
access-control-allow-origin: *
last-modified: Tue, 28 May 2019 22:53:41 GMT
etag: "5cee0245-1a1"
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: default-src *.crazyegg.com https:; script-src 'unsafe-inline' blob: https: 'unsafe-eval' *.crazyegg.com https://crossway.my.salesforce.com; style-src 'unsafe-inline' https: *.crazyegg.com; font-src https: data:; media-src http: https:; img-src http: https: data: *.crazyegg.com
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 85ieSLiJTw_QkHqXrR2kd3HbKBklIxyQzh2wA6i7KdAcmmXHgzk2Bg==
age: 7397506
X-Firefox-Spdy: h2

dch8lckz6x8ar.cloudfront.net/static/img/search.7b13bdbf8b64.svg?3423b4b8874d

54.230.245.61

200 OK

198 B

URL HTTP/2
dch8lckz6x8ar.cloudfront.net/static/img/search.7b13bdbf8b64.svg?3423b4b8874d
IP
54.230.245.61:0
ASN
#16509 AMAZON-02

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Size
198 B (198 bytes)
Hash
1b816c45a7e2f1ac40eec93e697012a3
248183a48843587db87c3c0f8eb78fe5309b30b1
7660e08d79292a34dc2df07ef6f5eccb797e469b6f00d6f0d313fb9c084b6351

HTTP Headers

GET /static/img/search.7b13bdbf8b64.svg?3423b4b8874d HTTP/1.1
Host: dch8lckz6x8ar.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dch8lckz6x8ar.cloudfront.net/static/css/output.922ec3683f60.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
content-length: 198
server: nginx
date: Sun, 06 Nov 2022 06:24:35 GMT
cache-control: max-age=315360000, public, immutable
access-control-allow-origin: *
last-modified: Tue, 28 May 2019 22:53:41 GMT
etag: "5cee0245-f6"
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: default-src *.crazyegg.com https:; script-src 'unsafe-inline' blob: https: 'unsafe-eval' *.crazyegg.com https://crossway.my.salesforce.com; style-src 'unsafe-inline' https: *.crazyegg.com; font-src https: data:; media-src http: https:; img-src http: https: data: *.crazyegg.com
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bSpUXT2C-ilNxxx7_XTB5qS5wEjzeRyoMh1_eH9Wnj5wskzz8fZiAQ==
age: 8097278
X-Firefox-Spdy: h2

dch8lckz6x8ar.cloudfront.net/static/img/share.50e7574f08c9.svg?3423b4b8874d

54.230.245.61

200 OK

303 B

URL HTTP/2
dch8lckz6x8ar.cloudfront.net/static/img/share.50e7574f08c9.svg?3423b4b8874d
IP
54.230.245.61:0
ASN
#16509 AMAZON-02

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (465), with no line terminators
Size
303 B (303 bytes)
Hash
e9c0f7e521d817df96e9ddeeaf631441
efdc68fabb62dbc49077d3a4c24c38aebcb834f6
817f55ab7aca9371cd0ef68f451153dbc08a0b1f29a0369ac78000190f13e324

HTTP Headers

GET /static/img/share.50e7574f08c9.svg?3423b4b8874d HTTP/1.1
Host: dch8lckz6x8ar.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dch8lckz6x8ar.cloudfront.net/static/css/output.922ec3683f60.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
content-length: 303
server: nginx
date: Tue, 17 Jan 2023 16:21:13 GMT
cache-control: max-age=315360000, public, immutable
access-control-allow-origin: *
last-modified: Tue, 28 May 2019 22:53:41 GMT
etag: "5cee0245-1d1"
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: default-src *.crazyegg.com https:; script-src 'unsafe-inline' blob: https: 'unsafe-eval' *.crazyegg.com https://crossway.my.salesforce.com; style-src 'unsafe-inline' https: *.crazyegg.com; font-src https: data:; media-src http: https:; img-src http: https: data: *.crazyegg.com
x-frame-options: DENY, DENY
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 689f0bmihTOfFyd0_ZbVPEEjS7mNgbq3_8b_2MNE-gKeJHd2ubd_Jw==
age: 1840680
X-Firefox-Spdy: h2

dch8lckz6x8ar.cloudfront.net/static/img/favicon.7e14cbe1912e.ico

54.230.245.61

200 OK

2.1 kB

URL HTTP/2
dch8lckz6x8ar.cloudfront.net/static/img/favicon.7e14cbe1912e.ico
IP
54.230.245.61:0
ASN
#16509 AMAZON-02

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
2.1 kB (2058 bytes)
Hash
994c3a4f762393740227d89d836d7673
7e9cccf2455536876acb36fdb8b49e3f04e54c18
75cc64aaf0484e6dec3a6876db3ea677b23bbbf6adeb50ab23c3cb0e3cc26b52

HTTP Headers

GET /static/img/favicon.7e14cbe1912e.ico HTTP/1.1
Host: dch8lckz6x8ar.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.esv.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/x-icon
content-length: 2058
server: nginx
date: Fri, 02 Dec 2022 00:57:29 GMT
cache-control: max-age=315360000, public, immutable
access-control-allow-origin: *
last-modified: Tue, 28 May 2019 22:53:41 GMT
etag: "5cee0245-9c4"
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: default-src *.crazyegg.com https:; script-src 'unsafe-inline' blob: https: 'unsafe-eval' *.crazyegg.com https://crossway.my.salesforce.com; style-src 'unsafe-inline' https: *.crazyegg.com; font-src https: data:; media-src http: https:; img-src http: https: data: *.crazyegg.com
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: c31uN5EOYT-yvpWnOgub23FLddUjrqaqs9S0RnXKPxojclHI4ZaJsg==
age: 5870504
X-Firefox-Spdy: h2

dch8lckz6x8ar.cloudfront.net/static/img/apple-touch-icon.a1ed3d10db96.png

54.230.245.61

200 OK

13 kB

URL HTTP/2
dch8lckz6x8ar.cloudfront.net/static/img/apple-touch-icon.a1ed3d10db96.png
IP
54.230.245.61:0
ASN
#16509 AMAZON-02

File type
PNG image data, 400 x 400, 8-bit/color RGB, non-interlaced\012- data
Size
13 kB (13340 bytes)
Hash
a1ed3d10db967b50d2c8ac2d7681f0f3
60ed1d7f71045ca28a61d0dfbdd01b82124c3f87
16f164606b6b4b6018e455157f220ec752dc2975995a43d265acd4dd15d9c90e

HTTP Headers

GET /static/img/apple-touch-icon.a1ed3d10db96.png HTTP/1.1
Host: dch8lckz6x8ar.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.esv.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 13340
server: nginx
date: Thu, 24 Nov 2022 06:10:31 GMT
cache-control: max-age=315360000, public, immutable
access-control-allow-origin: *
last-modified: Tue, 28 May 2019 22:53:41 GMT
etag: "5cee0245-341c"
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: default-src *.crazyegg.com https:; script-src 'unsafe-inline' blob: https: 'unsafe-eval' *.crazyegg.com https://crossway.my.salesforce.com; style-src 'unsafe-inline' https: *.crazyegg.com; font-src https: data:; media-src http: https:; img-src http: https: data: *.crazyegg.com
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: PxM8Rvgw5v6WpfH4uruVHBSvicbPgn_7otsq1dZKRG_C_3fVTDbbdg==
age: 6542922
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
1d0f7de49fce42894547b92020ad06a8
6dfc7ab65e8fc5c89b1bc006ee5781fdb81d6c88
fd8bed83369b8c643a82d2737f871dc937653c19c93fd9086c05ab696b5b5a51

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1334
Cache-Control: max-age=125372
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 23:39:13 GMT
Etag: "63e222a7-116"
Expires: Thu, 09 Feb 2023 10:28:45 GMT
Last-Modified: Tue, 07 Feb 2023 10:06:31 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 278

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
c0251492cae08969a77cc1f8b4fa25e5
110161e230f81ac3a954dc1d5114c7401c1ecd93
6483e465b117e6af3950e659d8692acc4bb38f60c7dc312ec8c6824ac5f000ba

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5164
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 23:39:13 GMT
Last-Modified: Tue, 07 Feb 2023 22:13:09 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471

connect.facebook.net/en_US/fbevents.js

31.13.72.12

200 OK

28 kB

URL HTTP/2
connect.facebook.net/en_US/fbevents.js
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (64348)
Size
28 kB (27843 bytes)
Hash
dd1f85cc598419df61e254e53f9ec1ef
f86c0ee563f5b7a01e1d40b566f2bc184a32380f
c06f52b233c835b03292f39cb847507a03bb971066bf91341b58a580244398c0

HTTP Headers

GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.esv.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
origin-agent-cluster: ?0
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: CT1yA4rd1UcKJ4g0x0DthO/3cTPmwp5vqgVLTItREMkccZrMa3xw2uUVRQThtMt1HVknOY0T8WRkvq3MIcz8bA==
content-length: 27843
x-fb-trip-id: 1904183273
date: Tue, 07 Feb 2023 23:39:14 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8d5417d247d259e3c0186136b83d9f75
49fbcf99a352669aee2559579ef73fa60f46d38d
3c013921158ec27e44d5e80a5108557de80a27f38089ac3a52c6c1cf5636f585

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 23:39:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

script.crazyegg.com/pages/scripts/0067/1474.js

104.19.147.8

200 OK

3.8 kB

URL HTTP/2
script.crazyegg.com/pages/scripts/0067/1474.js
IP
104.19.147.8:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (10114), with no line terminators
Size
3.8 kB (3788 bytes)
Hash
053405666002f61871fa0c3df59c17ca
d366cad14952a4be28dc1f32c928829ecb46fa1b
f5ccd38760d96f3c34de28d8ae8e7c63053d46b9e99a59a679abd561a84302f5

HTTP Headers

GET /pages/scripts/0067/1474.js HTTP/1.1
Host: script.crazyegg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.esv.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 07 Feb 2023 23:39:13 GMT
content-type: text/javascript
access-control-allow-origin: *
access-control-expose-headers: CE-Version
ce-version: 11.5.22
cache-control: public, max-age=300, s-maxage=1209600
cf-bgj: minify
cf-polished: origSize=6088
last-modified: Fri, 03 Feb 2023 18:08:25 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 365448
vary: Accept-Encoding
server: cloudflare
cf-ray: 795ff6b2ea910b61-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

www.google-analytics.com/analytics.js

142.250.74.46

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.46:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1490)
Size
20 kB (20085 bytes)
Hash
ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.esv.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Tue, 07 Feb 2023 21:45:20 GMT
expires: Tue, 07 Feb 2023 23:45:20 GMT
cache-control: public, max-age=7200
age: 6834
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
c0251492cae08969a77cc1f8b4fa25e5
110161e230f81ac3a954dc1d5114c7401c1ecd93
6483e465b117e6af3950e659d8692acc4bb38f60c7dc312ec8c6824ac5f000ba

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5165
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 23:39:14 GMT
Last-Modified: Tue, 07 Feb 2023 22:13:09 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471

script.crazyegg.com/pages/versioned/common-scripts/2e2da7d3b3b2d712690eb56715b4f237.js

104.19.147.8

200 OK

27 kB

URL HTTP/2
script.crazyegg.com/pages/versioned/common-scripts/2e2da7d3b3b2d712690eb56715b4f237.js
IP
104.19.147.8:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (63889)
Size
27 kB (26903 bytes)
Hash
8c269a3051c6b4f1e949395d3c0f5ae9
f41642c95cb4add411815b00e0043aca0c423a3b
e188af07ab9cf1111775ac173b258f12086c2cb77581db6116e23839b4bad90d

HTTP Headers

GET /pages/versioned/common-scripts/2e2da7d3b3b2d712690eb56715b4f237.js HTTP/1.1
Host: script.crazyegg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.esv.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 07 Feb 2023 23:39:14 GMT
content-type: text/javascript
content-length: 26903
cache-control: public, max-age=31536000, s-maxage=31536000
timing-allow-origin: *
last-modified: Sun, 29 Jan 2023 09:50:22 GMT
content-encoding: gzip
access-control-allow-origin: *
cf-cache-status: HIT
age: 365848
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 795ff6b59c510b61-OSL
X-Firefox-Spdy: h2

www.google-analytics.com/j/collect?v=1&_v=j99&a=216337270&t=pageview&_s=1&dl=https%3A%2F%2Fwww.esv.org%2Fverses%2FRom.%25201%3A20%2F&ul=en-us&de=UTF-8&dt=Romans%201%3A20%20-%20For%20his%20invisible%20attributes%2C%20namely%2C%20his%20eternal%20power%20and%E2%80%A6%20%7C%20ESV.org&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=285814849&gjid=1073277508&cid=2078088029.1675813206&tid=UA-81419-28&_gid=1413020203.1675813206&_r=1&_slc=1&z=1423523699

142.250.74.46

200 OK

4 B

URL HTTP/2
www.google-analytics.com/j/collect?v=1&_v=j99&a=216337270&t=pageview&_s=1&dl=https%3A%2F%2Fwww.esv.org%2Fverses%2FRom.%25201%3A20%2F&ul=en-us&de=UTF-8&dt=Romans%201%3A20%20-%20For%20his%20invisible%20attributes%2C%20namely%2C%20his%20eternal%20power%20and%E2%80%A6%20%7C%20ESV.org&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=285814849&gjid=1073277508&cid=2078088029.1675813206&tid=UA-81419-28&_gid=1413020203.1675813206&_r=1&_slc=1&z=1423523699
IP
142.250.74.46:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
9e92e190700c1af4539b40c2171320a9
209bcdb79e6067b51091ce8586d4b977f25b67d8
aec60bc104db041b1512185839f18f52986df7e569e5445f740dd60f763fbca8

HTTP Headers

POST /j/collect?v=1&_v=j99&a=216337270&t=pageview&_s=1&dl=https%3A%2F%2Fwww.esv.org%2Fverses%2FRom.%25201%3A20%2F&ul=en-us&de=UTF-8&dt=Romans%201%3A20%20-%20For%20his%20invisible%20attributes%2C%20namely%2C%20his%20eternal%20power%20and%E2%80%A6%20%7C%20ESV.org&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=285814849&gjid=1073277508&cid=2078088029.1675813206&tid=UA-81419-28&_gid=1413020203.1675813206&_r=1&_slc=1&z=1423523699 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.esv.org
Connection: keep-alive
Referer: https://www.esv.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: https://www.esv.org
date: Tue, 07 Feb 2023 23:39:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8d5417d247d259e3c0186136b83d9f75
49fbcf99a352669aee2559579ef73fa60f46d38d
3c013921158ec27e44d5e80a5108557de80a27f38089ac3a52c6c1cf5636f585

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 23:39:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

script.crazyegg.com/pages/data-scripts/0067/1474/sampling/www.esv.org.json?t=465503

104.19.147.8

200 OK

145 B

URL HTTP/2
script.crazyegg.com/pages/data-scripts/0067/1474/sampling/www.esv.org.json?t=465503
IP
104.19.147.8:0
ASN
#13335 CLOUDFLARENET

File type
JSON data\012- , ASCII text, with no line terminators
Size
145 B (145 bytes)
Hash
e0577c69792adfcd077c71ad9243daa1
ec564fbbdcf0ac030a376419f9c6a8b97dfc30d6
3c4204bcaf44ae52b82efac0af12bc09f8c7005e9fb2f3fe278b787d1afe5ec9

HTTP Headers

GET /pages/data-scripts/0067/1474/sampling/www.esv.org.json?t=465503 HTTP/1.1
Host: script.crazyegg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.esv.org
Connection: keep-alive
Referer: https://www.esv.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 07 Feb 2023 23:39:14 GMT
content-type: application/json
content-length: 145
access-control-expose-headers: CE-Version
ce-version: 11.5.22
cache-control: public, max-age=300, s-maxage=1209600
timing-allow-origin: *
last-modified: Tue, 07 Feb 2023 19:15:07 GMT
content-encoding: gzip
access-control-allow-origin: *
cf-cache-status: HIT
age: 12932
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 795ff6b5e87f0b49-OSL
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
7ec32dff957003dae195c36ca9e3bd6c
6761a20819b0d5a48216d74782e3ea752af7257a
953a3a2d35250df7b506b42f7d1d8813301dd1f9f9bcc30d2d100bd0788e4c76

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 23:39:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

pagestates-tracking.crazyegg.com/healthcheck

54.230.111.22

200 OK

19 B

URL HTTP/2
pagestates-tracking.crazyegg.com/healthcheck
IP
54.230.111.22:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text
Size
19 B (19 bytes)
Hash
d06f04fccf68d0b228a5923187ce1afd
5de9df9fdd66a91eed06e31981553d4ab9ccf490
830e67bda2532cd5880ee86e3b33e69721082f8458bb0df0cd4edbb1577fd375

HTTP Headers

GET /healthcheck HTTP/1.1
Host: pagestates-tracking.crazyegg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.esv.org
Connection: keep-alive
Referer: https://www.esv.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/json
content-length: 19
date: Mon, 23 Jan 2023 11:43:55 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-expose-headers: Access-Control-Allow-Origin
access-control-max-age: 31536000
last-modified: Fri, 08 Jul 2022 22:25:51 GMT
etag: "d06f04fccf68d0b228a5923187ce1afd"
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: p3KiE2GsAlwmSNI_Dy3XUJQl4hiG8OnZALs7lFhWMTSI2y4sy0FdOA==
age: 1338920
X-Firefox-Spdy: h2

assets-tracking.crazyegg.com/healthcheck

54.230.111.63

200 OK

19 B

URL HTTP/2
assets-tracking.crazyegg.com/healthcheck
IP
54.230.111.63:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text
Size
19 B (19 bytes)
Hash
d06f04fccf68d0b228a5923187ce1afd
5de9df9fdd66a91eed06e31981553d4ab9ccf490
830e67bda2532cd5880ee86e3b33e69721082f8458bb0df0cd4edbb1577fd375

HTTP Headers

GET /healthcheck HTTP/1.1
Host: assets-tracking.crazyegg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.esv.org
Connection: keep-alive
Referer: https://www.esv.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/json
content-length: 19
date: Tue, 17 Jan 2023 03:56:02 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-expose-headers: Access-Control-Allow-Origin
access-control-max-age: 31536000
last-modified: Fri, 08 Jul 2022 22:25:51 GMT
etag: "d06f04fccf68d0b228a5923187ce1afd"
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0OoQ-8h_6UB8-f3zjTIKkMIexNsTpWFh3DWEci7oBMcyLdLPUe_JJA==
age: 1885393
X-Firefox-Spdy: h2

stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-81419-28&cid=2078088029.1675813206&jid=285814849&gjid=1073277508&_gid=1413020203.1675813206&_u=IEBAAEAAAAAAACAAI~&z=220914356

142.250.150.157

200 OK

1 B

URL HTTP/2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-81419-28&cid=2078088029.1675813206&jid=285814849&gjid=1073277508&_gid=1413020203.1675813206&_u=IEBAAEAAAAAAACAAI~&z=220914356
IP
142.250.150.157:0
ASN
#15169 GOOGLE

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b

HTTP Headers

POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-81419-28&cid=2078088029.1675813206&jid=285814849&gjid=1073277508&_gid=1413020203.1675813206&_u=IEBAAEAAAAAAACAAI~&z=220914356 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.esv.org
Connection: keep-alive
Referer: https://www.esv.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://www.esv.org
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 07 Feb 2023 23:39:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4919
Expires: Wed, 08 Feb 2023 01:01:14 GMT
Date: Tue, 07 Feb 2023 23:39:15 GMT
Connection: keep-alive

www.facebook.com/tr/?id=506435969522616&ev=PageView&dl=https%3A%2F%2Fwww.esv.org%2Fverses%2FRom.%25201%3A20%2F&rl=&if=false&ts=1675813206139&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&par[0]=%7B%22extractorID%22%3A%22820757069198298%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22USD%22%7D%7D%7D&par[1]=%7B%22extractorID%22%3A%221406332910119682%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22USD%22%7D%7D%7D&par[2]=%7B%22extractorID%22%3A%22808615456881320%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&par[3]=%7B%22extractorID%22%3A%222271871412993487%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&cs_est=true&fbp=fb.1.1675813206138.78556070&it=1675813205941&coo=false&rqm=GET

157.240.221.35

200 OK

0 B

URL HTTP/2
www.facebook.com/tr/?id=506435969522616&ev=PageView&dl=https%3A%2F%2Fwww.esv.org%2Fverses%2FRom.%25201%3A20%2F&rl=&if=false&ts=1675813206139&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&par[0]=%7B%22extractorID%22%3A%22820757069198298%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22USD%22%7D%7D%7D&par[1]=%7B%22extractorID%22%3A%221406332910119682%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22USD%22%7D%7D%7D&par[2]=%7B%22extractorID%22%3A%22808615456881320%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&par[3]=%7B%22extractorID%22%3A%222271871412993487%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&cs_est=true&fbp=fb.1.1675813206138.78556070&it=1675813205941&coo=false&rqm=GET
IP
157.240.221.35:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tr/?id=506435969522616&ev=PageView&dl=https%3A%2F%2Fwww.esv.org%2Fverses%2FRom.%25201%3A20%2F&rl=&if=false&ts=1675813206139&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&par[0]=%7B%22extractorID%22%3A%22820757069198298%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22USD%22%7D%7D%7D&par[1]=%7B%22extractorID%22%3A%221406332910119682%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22USD%22%7D%7D%7D&par[2]=%7B%22extractorID%22%3A%22808615456881320%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&par[3]=%7B%22extractorID%22%3A%222271871412993487%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&cs_est=true&fbp=fb.1.1675813206138.78556070&it=1675813205941&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.esv.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Tue, 07 Feb 2023 23:39:15 GMT
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4919
Expires: Wed, 08 Feb 2023 01:01:14 GMT
Date: Tue, 07 Feb 2023 23:39:15 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4919
Expires: Wed, 08 Feb 2023 01:01:14 GMT
Date: Tue, 07 Feb 2023 23:39:15 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F566ad678-65a7-4c74-8467-5fa73f0c1e16.jpeg

34.120.237.76

200 OK

9.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F566ad678-65a7-4c74-8467-5fa73f0c1e16.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.7 kB (9731 bytes)
Hash
bc4af7bd5bdcf67a4bac63e22b5d7ce8
5c457bf5021e9336d8582eed9e84e5279e08547c
0dac79971019d06657a1948f1cedaca02b3f9eca1eae52026ad9bdd0e4137b35

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F566ad678-65a7-4c74-8467-5fa73f0c1e16.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9731
x-amzn-requestid: 297af487-e8cf-4d0a-a30b-337cf1630f71
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_RImGLjoAMFnDg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c89d-3c4f6fa521885bd45e943d3b;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:54:37 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QgszcGhVatkK5TB5DXK4WVXz6OtG00uMKZ50sRGuoDom0MSVrrtbkw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:59:21 GMT
etag: "5c457bf5021e9336d8582eed9e84e5279e08547c"
content-type: image/jpeg
age: 5994
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.facebook.com/tr/?id=506435969522616&ev=Microdata&dl=https%3A%2F%2Fwww.esv.org%2Fverses%2FRom.%25201%3A20%2F&rl=&if=false&ts=1675813206643&cd[DataLayer]=%5B%5D&cd[Meta]=%7B%22title%22%3A%22%5Cn%20%20Romans%201%3A20%5Cn%20%20%20-%20For%20his%20invisible%20attributes%2C%20namely%2C%20his%20eternal%20power%20and%E2%80%A6%5Cn%20%7C%20ESV.org%22%2C%22meta%3Adescription%22%3A%22For%20his%20invisible%20attributes%2C%20namely%2C%20his%20eternal%20power%20and%20divine%20nature%2C%20have%20been%20clearly%20perceived%2C%20ever%20since%20the%20creation%20of%20the%20world%2C%20in%20the%20things%20that%20have%20been%20made.%20So%20they%20are%20without%20ex%E2%80%A6%22%7D&cd[OpenGraph]=%7B%22og%3Atype%22%3A%22website%22%2C%22og%3Asite_name%22%3A%22ESV%20Bible%22%2C%22og%3Aimage%22%3A%22https%3A%2F%2Fdch8lckz6x8ar.cloudfront.net%2Fstatic%2Fimg%2Flogo-facebook.dbab05d37e79.png%22%2C%22og%3Aimage%3Awidth%22%3A%22600%22%2C%22og%3Aimage%3Aheight%22%3A%22530%22%2C%22og%3Atitle%22%3A%22Romans%201%3A20%22%2C%22og%3Adescription%22%3A%22For%20his%20invisible%20attributes%2C%20namely%2C%20his%20eternal%20power%20and%20divine%20nature%2C%20have%20been%20clearly%20perceived%2C%20ever%20since%20the%20creation%20of%20the%20world%2C%20in%20the%20things%20that%20have%20been%20made.%20So%20they%20are%20without%20ex%E2%80%A6%22%7D&cd[Schema.org]=%5B%5D&cd[JSON-LD]=%5B%5D&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=30&fbp=fb.1.1675813206138.78556070&it=1675813205941&coo=false&es=automatic&tm=3&rqm=GET

157.240.221.35

200 OK

0 B

URL HTTP/2
www.facebook.com/tr/?id=506435969522616&ev=Microdata&dl=https%3A%2F%2Fwww.esv.org%2Fverses%2FRom.%25201%3A20%2F&rl=&if=false&ts=1675813206643&cd[DataLayer]=%5B%5D&cd[Meta]=%7B%22title%22%3A%22%5Cn%20%20Romans%201%3A20%5Cn%20%20%20-%20For%20his%20invisible%20attributes%2C%20namely%2C%20his%20eternal%20power%20and%E2%80%A6%5Cn%20%7C%20ESV.org%22%2C%22meta%3Adescription%22%3A%22For%20his%20invisible%20attributes%2C%20namely%2C%20his%20eternal%20power%20and%20divine%20nature%2C%20have%20been%20clearly%20perceived%2C%20ever%20since%20the%20creation%20of%20the%20world%2C%20in%20the%20things%20that%20have%20been%20made.%20So%20they%20are%20without%20ex%E2%80%A6%22%7D&cd[OpenGraph]=%7B%22og%3Atype%22%3A%22website%22%2C%22og%3Asite_name%22%3A%22ESV%20Bible%22%2C%22og%3Aimage%22%3A%22https%3A%2F%2Fdch8lckz6x8ar.cloudfront.net%2Fstatic%2Fimg%2Flogo-facebook.dbab05d37e79.png%22%2C%22og%3Aimage%3Awidth%22%3A%22600%22%2C%22og%3Aimage%3Aheight%22%3A%22530%22%2C%22og%3Atitle%22%3A%22Romans%201%3A20%22%2C%22og%3Adescription%22%3A%22For%20his%20invisible%20attributes%2C%20namely%2C%20his%20eternal%20power%20and%20divine%20nature%2C%20have%20been%20clearly%20perceived%2C%20ever%20since%20the%20creation%20of%20the%20world%2C%20in%20the%20things%20that%20have%20been%20made.%20So%20they%20are%20without%20ex%E2%80%A6%22%7D&cd[Schema.org]=%5B%5D&cd[JSON-LD]=%5B%5D&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=30&fbp=fb.1.1675813206138.78556070&it=1675813205941&coo=false&es=automatic&tm=3&rqm=GET
IP
157.240.221.35:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tr/?id=506435969522616&ev=Microdata&dl=https%3A%2F%2Fwww.esv.org%2Fverses%2FRom.%25201%3A20%2F&rl=&if=false&ts=1675813206643&cd[DataLayer]=%5B%5D&cd[Meta]=%7B%22title%22%3A%22%5Cn%20%20Romans%201%3A20%5Cn%20%20%20-%20For%20his%20invisible%20attributes%2C%20namely%2C%20his%20eternal%20power%20and%E2%80%A6%5Cn%20%7C%20ESV.org%22%2C%22meta%3Adescription%22%3A%22For%20his%20invisible%20attributes%2C%20namely%2C%20his%20eternal%20power%20and%20divine%20nature%2C%20have%20been%20clearly%20perceived%2C%20ever%20since%20the%20creation%20of%20the%20world%2C%20in%20the%20things%20that%20have%20been%20made.%20So%20they%20are%20without%20ex%E2%80%A6%22%7D&cd[OpenGraph]=%7B%22og%3Atype%22%3A%22website%22%2C%22og%3Asite_name%22%3A%22ESV%20Bible%22%2C%22og%3Aimage%22%3A%22https%3A%2F%2Fdch8lckz6x8ar.cloudfront.net%2Fstatic%2Fimg%2Flogo-facebook.dbab05d37e79.png%22%2C%22og%3Aimage%3Awidth%22%3A%22600%22%2C%22og%3Aimage%3Aheight%22%3A%22530%22%2C%22og%3Atitle%22%3A%22Romans%201%3A20%22%2C%22og%3Adescription%22%3A%22For%20his%20invisible%20attributes%2C%20namely%2C%20his%20eternal%20power%20and%20divine%20nature%2C%20have%20been%20clearly%20perceived%2C%20ever%20since%20the%20creation%20of%20the%20world%2C%20in%20the%20things%20that%20have%20been%20made.%20So%20they%20are%20without%20ex%E2%80%A6%22%7D&cd[Schema.org]=%5B%5D&cd[JSON-LD]=%5B%5D&sw=1280&sh=1024&v=2.9.95&r=stable&ec=1&o=30&fbp=fb.1.1675813206138.78556070&it=1675813205941&coo=false&es=automatic&tm=3&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.esv.org/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Tue, 07 Feb 2023 23:39:15 GMT
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce53bc9b-2505-4efd-9151-fa75ed70138a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.7 kB (8703 bytes)
Hash
be9f475292d4b5b0502d4381ccdf455b
ecb943b48c822b086ea699d802f8f1bb5ee26651
ed22a5102709dc7a067107a6c0cde26931f7781065de9cee49e22de6b9086e31

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce53bc9b-2505-4efd-9151-fa75ed70138a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8703
x-amzn-requestid: 6456aa7d-11f7-4066-a833-9ac5312c0c24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_O7JGLTIAMFqdQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c513-0679a75676cdc19251c81bdd;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:39:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: DLVp9hiUjE2w5BiukFfUMALWxvcobbJcJRO-7CdXj3cy6rAdFhPRFQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:44:01 GMT
age: 6914
etag: "ecb943b48c822b086ea699d802f8f1bb5ee26651"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4919
Expires: Wed, 08 Feb 2023 01:01:14 GMT
Date: Tue, 07 Feb 2023 23:39:15 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4919
Expires: Wed, 08 Feb 2023 01:01:14 GMT
Date: Tue, 07 Feb 2023 23:39:15 GMT
Connection: keep-alive

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (13160 bytes)
Hash
003fc35e140a75a12b7795c3986426ec
da002b22e2a01f48a545b369d4403eabb17a10d5
bb0754411aa7d0a5036b86b282d0e93d13227765ca9ccaf3a34e8e486cb413d1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6de3153-62d2-494b-8acf-6d3ac8adba7d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13160
x-amzn-requestid: 34aa6dfe-7f14-48d0-89b2-90548621be79
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fzVxSHh7IAMFjAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63de033b-49587fff75aebe96136137be;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 07:03:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qwSN-ztVJgRfu3bFIjYaVYV8Cnx77j1ugkRjqhRtRXdPju7AhEMg-A==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 07:15:46 GMT
age: 59009
etag: "da002b22e2a01f48a545b369d4403eabb17a10d5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbee0b552-d236-4fa2-b702-1571b09d3fd6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.1 kB (6060 bytes)
Hash
db6e81972b8835dc48a0dae751ffde5f
826e2195cc52905cfed0bc4f01646290261113b6
720e6105b2ccc9cbc8fd005d53873ced5467a852c7a5041ce2ef96785c0d92f7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbee0b552-d236-4fa2-b702-1571b09d3fd6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6060
x-amzn-requestid: 80cbc454-e1b4-4e53-a3b6-3a5ac11920c7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_PPQEPNIAMFkqA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c594-4539ebb17f27d88a47100a82;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:41:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 50lUvmFMZ01J2FrO3AId_U87zBmCWLFQSDsly_Cd9xF_hVIOWbf3JA==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 22:14:43 GMT
age: 5072
etag: "826e2195cc52905cfed0bc4f01646290261113b6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
7ec32dff957003dae195c36ca9e3bd6c
6761a20819b0d5a48216d74782e3ea752af7257a
953a3a2d35250df7b506b42f7d1d8813301dd1f9f9bcc30d2d100bd0788e4c76

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 07 Feb 2023 23:39:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

34.120.237.76

200 OK

6.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f728fd1-646b-418a-ab1a-194a7bf42969.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.8 kB (6805 bytes)
Hash
c8f31c82179856e39ee5fc43d7f0b685
5b37f807a19ffc80c0b9334e6d24d5bb717496ce
c099c91c6f2125a8a89ee6e9dc0e37e2c2c9914adadb2c8b77795063baa62037

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f728fd1-646b-418a-ab1a-194a7bf42969.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6805
x-amzn-requestid: 9f067f0c-2991-41ae-8dd0-5719a5438abc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_PHwEn4IAMFvFg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c564-730d01807c13643373d64897;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:40:52 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: eSU1CSydRTodwnN5DNTXbYD3d3kYFCHiCvPRq5DZTTDSTH2L-GV_1g==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 22:19:17 GMT
age: 4798
etag: "5b37f807a19ffc80c0b9334e6d24d5bb717496ce"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6ac124e-27b8-4818-9240-77708d007004.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.2 kB (4168 bytes)
Hash
845e4e4051f1162b20d3df5f208e8d3e
076462f67531c60b31ec768a275c96317292306d
40996d8929ab92f342328fc018518d6131c6222b0ec23051775eda276a602026

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6ac124e-27b8-4818-9240-77708d007004.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4168
x-amzn-requestid: 24814225-0063-49fb-86ff-e78869538b3c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_OjQFS_IAMFtLQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c47b-67307c42182089b3096e98b5;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:36:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: f90qZAgSmdYFuW_BDTZVivBlk_c5SrirTSeJmvoysOmCcOjxtFZrbA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:42:03 GMT
age: 7032
etag: "076462f67531c60b31ec768a275c96317292306d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

54.230.245.39

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.39:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
1b1adca513a3cea3ed7a2c897af393ac
2abac37397b7b2a6cbf25959f2569e27e4767e09
18f42f5b8efab3901b5ae5ef3ca78202f5a1e0b3bde5ded2967c3f77fbdc2832

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=148082
Date: Tue, 07 Feb 2023 23:39:15 GMT
Etag: "63e2690b-1d7"
Expires: Thu, 09 Feb 2023 16:47:17 GMT
Last-Modified: Tue, 07 Feb 2023 15:06:51 GMT
Server: ECS (nyb/1D28)
X-Cache: Miss from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: cuX_V75vSl1dQsMSVSX3LXHcfQCTCabUDYo-CJlKzEQAwGEec40orA==
Age: 6026

tracking.crazyegg.com/clock?t=1675813206815&tk=b56a5f7e2a340e24cb9d50b7fbebf81b&s=398768&p=%2Fverses%2FRom.%25201%3A20%2F&u=671474&v=963725e584dd8fd8fe599bbef355aa1cd23a1eba

52.212.178.69

200 OK

26 B

URL HTTP/2
tracking.crazyegg.com/clock?t=1675813206815&tk=b56a5f7e2a340e24cb9d50b7fbebf81b&s=398768&p=%2Fverses%2FRom.%25201%3A20%2F&u=671474&v=963725e584dd8fd8fe599bbef355aa1cd23a1eba
IP
52.212.178.69:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
26 B (26 bytes)
Hash
cf998160d5664049464ccdaedc24c734
1257728c619732988145ab7f9714b9c9903ff271
22baecb1251fb7d30993afbee9b6ac922121f3331c268bd8ef00f015efa4ba49

HTTP Headers

GET /clock?t=1675813206815&tk=b56a5f7e2a340e24cb9d50b7fbebf81b&s=398768&p=%2Fverses%2FRom.%25201%3A20%2F&u=671474&v=963725e584dd8fd8fe599bbef355aa1cd23a1eba HTTP/1.1
Host: tracking.crazyegg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.esv.org
Connection: keep-alive
Referer: https://www.esv.org/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: awselb/2.0
date: Tue, 07 Feb 2023 23:39:15 GMT
content-type: text/plain
content-length: 26
cache-control: no-store
access-control-allow-origin: *
X-Firefox-Spdy: h2

dch8lckz6x8ar.cloudfront.net/static/css/output.922ec3683f60.css

54.230.245.61

200 OK

0 B

URL HTTP/2
dch8lckz6x8ar.cloudfront.net/static/css/output.922ec3683f60.css
IP
54.230.245.61:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/css/output.922ec3683f60.css HTTP/1.1
Host: dch8lckz6x8ar.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.esv.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset="utf-8"
server: nginx
date: Mon, 19 Sep 2022 19:36:34 GMT
cache-control: max-age=315360000, public, immutable
access-control-allow-origin: *
last-modified: Mon, 19 Sep 2022 19:36:19 GMT
etag: W/"63290b03-1179f"
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: default-src *.crazyegg.com https:; script-src 'unsafe-inline' blob: https: 'unsafe-eval' *.crazyegg.com https://crossway.my.salesforce.com; style-src 'unsafe-inline' https: *.crazyegg.com; font-src https: data:; media-src http: https:; img-src http: https: data: *.crazyegg.com
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: o3dwKTbayzL7aIXnC5K0wHTIWuDxitx8c_H9s7oVBVxAMCYZxncDjQ==
age: 12196958
X-Firefox-Spdy: h2

dch8lckz6x8ar.cloudfront.net/static/js/output.35ad959d5457.js

54.230.245.61

200 OK

0 B

URL HTTP/2
dch8lckz6x8ar.cloudfront.net/static/js/output.35ad959d5457.js
IP
54.230.245.61:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /static/js/output.35ad959d5457.js HTTP/1.1
Host: dch8lckz6x8ar.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.esv.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/javascript; charset="utf-8"
server: nginx
date: Wed, 14 Dec 2022 06:07:42 GMT
cache-control: max-age=315360000, public, immutable
access-control-allow-origin: *
last-modified: Mon, 12 Dec 2022 21:40:45 GMT
etag: W/"6397f43d-2531e"
strict-transport-security: max-age=63072000; includeSubDomains; preload
content-security-policy: default-src *.crazyegg.com https:; script-src 'unsafe-inline' blob: https: 'unsafe-eval' *.crazyegg.com https://crossway.my.salesforce.com; style-src 'unsafe-inline' https: *.crazyegg.com; font-src https: data:; media-src http: https:; img-src http: https: data: *.crazyegg.com
x-frame-options: DENY, DENY
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block, 1; mode=block
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: b0vUjFj2New5Un3GG103W_QjtUSOhz47rE-MtmvQQ1Tj0-cvdrz51A==
age: 4815090
X-Firefox-Spdy: h2

static.crossway.org/fonts/804418/7F6F9F78268A647DA.css

54.230.111.48

200 OK

0 B

URL HTTP/2
static.crossway.org/fonts/804418/7F6F9F78268A647DA.css
IP
54.230.111.48:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /fonts/804418/7F6F9F78268A647DA.css HTTP/1.1
Host: static.crossway.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.esv.org/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css
date: Sat, 29 Oct 2022 07:10:12 GMT
last-modified: Wed, 09 Dec 2020 16:34:44 GMT
etag: W/"88ebcb7fb9dcedb79964fa8c6ef8cab4"
cache-control: max-age=315360000, public, immutable
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Wyj_h74WK6-Vs6DPL-ahDtpwYb0oyHMzeUC9h9UmKQS0lbsE0GGmmg==
age: 8785741
X-Firefox-Spdy: h2

d23iz4esrwkib6.cloudfront.net/lu/depot/cdbu/logioptions/update_check/full/9.70/files.latest/logioptions_logitech.exe?/logitech/controldevices/logioptions/8.10/logioptions/8.10.154/w10/64/logioptions.exe?dlu.uv=7.00.99999&dlu.han=logioptions&dlu.hav=8.10&dlu.hpn=logioptions&dlu.hpv=8.10.154&dlu.hpe=exe&dlu.uos=w10&dlu.ubi=64&dlu.uid=024425cde4fbd11fb7729a7613300cf5&hcd1=6b01b

54.230.245.225

200 OK

0 B

URL HTTP/1.1
d23iz4esrwkib6.cloudfront.net/lu/depot/cdbu/logioptions/update_check/full/9.70/files.latest/logioptions_logitech.exe?/logitech/controldevices/logioptions/8.10/logioptions/8.10.154/w10/64/logioptions.exe?dlu.uv=7.00.99999&dlu.han=logioptions&dlu.hav=8.10&dlu.hpn=logioptions&dlu.hpv=8.10.154&dlu.hpe=exe&dlu.uos=w10&dlu.ubi=64&dlu.uid=024425cde4fbd11fb7729a7613300cf5&hcd1=6b01b
IP
54.230.245.225:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

Detections

NIDS	Severity	Alert
suricata	medium	ET POLICY Executable served from Amazon S3
suricata	high	ET POLICY PE EXE or DLL Windows file download HTTP

HTTP Headers

GET /lu/depot/cdbu/logioptions/update_check/full/9.70/files.latest/logioptions_logitech.exe?/logitech/controldevices/logioptions/8.10/logioptions/8.10.154/w10/64/logioptions.exe?dlu.uv=7.00.99999&dlu.han=logioptions&dlu.hav=8.10&dlu.hpn=logioptions&dlu.hpv=8.10.154&dlu.hpe=exe&dlu.uos=w10&dlu.ubi=64&dlu.uid=024425cde4fbd11fb7729a7613300cf5&hcd1=6b01b HTTP/1.1
Host: d23iz4esrwkib6.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 200 OK
Content-Type: application/x-msdownload
Content-Length: 292165944
Connection: keep-alive
Date: Tue, 07 Feb 2023 23:38:59 GMT
Last-Modified: Thu, 28 Jul 2022 08:07:12 GMT
ETag: "a6ad5d074ac65c5c279a38e2e2aa6fa4"
x-amz-version-id: uBxgFUWBOZP87M6R7UUmx36CczgF9nvV
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: irMYE6RW3xbu8tdPSDHtkVroPNAxve3PZ8wkUoVMlreFEU4feUKMLA==
Age: 14

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (10)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML