track.saison-arbeitskraefte.com/stat/d8cd4f8ef85d9ff3415caba111728916/proc/aHR0cHM6Ly93d3cuYXJiZWl0c2FnZW50dXIuZGUvdW50ZXJuZWhtZW4vYXJiZWl0c2tyYWVmdGUvYXVzbGFlbmRpc2NoZS1zdHVkaWVyZW5kZQ==
78.41.200.8200 OK 108 B URL HTTP/1.1 track.saison-arbeitskraefte.com/stat/d8cd4f8ef85d9ff3415caba111728916/proc/aHR0cHM6Ly93d3cuYXJiZWl0c2FnZW50dXIuZGUvdW50ZXJuZWhtZW4vYXJiZWl0c2tyYWVmdGUvYXVzbGFlbmRpc2NoZS1zdHVkaWVyZW5kZQ==
IP 78.41.200.8:0
File type HTML document, ASCII text, with no line terminators
Hash 5cd033c0c11285e60371d81c938866ab
bce205a8f4960b10aab291a3c13b0f193a127276
9f270fc4d1d1443efaa63573a5f1914bbf04dc591e0a07d922671252842f8b45
Analyzer Verdict Alert fortinet Phishing
GET /stat/d8cd4f8ef85d9ff3415caba111728916/proc/aHR0cHM6Ly93d3cuYXJiZWl0c2FnZW50dXIuZGUvdW50ZXJuZWhtZW4vYXJiZWl0c2tyYWVmdGUvYXVzbGFlbmRpc2NoZS1zdHVkaWVyZW5kZQ== HTTP/1.1
Host: track.saison-arbeitskraefte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Mon, 12 Dec 2022 19:15:53 GMT
Server: Apache/2.4.18 (Ubuntu)
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 108
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43ad67f241ee3692a9c9c1da080dae58
6a024f7d71eeee257edc91ba9273416f634aaae5
636635b57f9e6d2ad9b1b949298ee7d3b5b7e251a63516ff68bfb1eceded5688
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "636635B57F9E6D2AD9B1B949298EE7D3B5B7E251A63516FF68BFB1ECEDED5688"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4623
Expires: Mon, 12 Dec 2022 20:32:56 GMT
Date: Mon, 12 Dec 2022 19:15:53 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 430f1651125c14bfa4924aa1f1a392e9
304141c5fe7ac8b370a67912b2592f9622de9600
315d77a9956f34b1615e38f5f1971dd05146980f8a36b35a8108d47ebba7e8e5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "315D77A9956F34B1615E38F5F1971DD05146980F8A36B35A8108D47EBBA7E8E5"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5369
Expires: Mon, 12 Dec 2022 20:45:22 GMT
Date: Mon, 12 Dec 2022 19:15:53 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Backoff, Content-Length, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 12 Dec 2022 19:08:38 GMT
content-type: application/json
age: 436
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dbd022fec0a71226daaf29b7563a8896
c37d14dc7b3849a4bb815fa325fb5e70fae54039
22da5e6e3f9507688fc8cb02183d52cf38f4adf8b2c6c52eaf5f88182471efeb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22DA5E6E3F9507688FC8CB02183D52CF38F4ADF8B2C6C52EAF5F88182471EFEB"
Last-Modified: Sun, 11 Dec 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8624
Expires: Mon, 12 Dec 2022 21:39:38 GMT
Date: Mon, 12 Dec 2022 19:15:54 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 12 Dec 2022 19:15:54 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: aI7Rp/CRc3szoJgqxAdokBk+7PzBNRIIQTYaKgk6NABVD/yQRuua0ybn0qiudXur3hAVArsI1ls=
x-amz-request-id: 6T0D1S57VH3R3GA8
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 12 Dec 2022 18:51:36 GMT
age: 1458
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
track.saison-arbeitskraefte.com/stat/d8cd4f8ef85d9ff3415caba111728916/proc/aHR0cHM6Ly93d3cuYXJiZWl0c2FnZW50dXIuZGUvdW50ZXJuZWhtZW4vYXJiZWl0c2tyYWVmdGUvYXVzbGFlbmRpc2NoZS1zdHVkaWVyZW5kZQ==/width/1280/height/1024
78.41.200.8302 Found 0 B URL HTTP/1.1 track.saison-arbeitskraefte.com/stat/d8cd4f8ef85d9ff3415caba111728916/proc/aHR0cHM6Ly93d3cuYXJiZWl0c2FnZW50dXIuZGUvdW50ZXJuZWhtZW4vYXJiZWl0c2tyYWVmdGUvYXVzbGFlbmRpc2NoZS1zdHVkaWVyZW5kZQ==/width/1280/height/1024
IP 78.41.200.8:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /stat/d8cd4f8ef85d9ff3415caba111728916/proc/aHR0cHM6Ly93d3cuYXJiZWl0c2FnZW50dXIuZGUvdW50ZXJuZWhtZW4vYXJiZWl0c2tyYWVmdGUvYXVzbGFlbmRpc2NoZS1zdHVkaWVyZW5kZQ==/width/1280/height/1024 HTTP/1.1
Host: track.saison-arbeitskraefte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://track.saison-arbeitskraefte.com/stat/d8cd4f8ef85d9ff3415caba111728916/proc/aHR0cHM6Ly93d3cuYXJiZWl0c2FnZW50dXIuZGUvdW50ZXJuZWhtZW4vYXJiZWl0c2tyYWVmdGUvYXVzbGFlbmRpc2NoZS1zdHVkaWVyZW5kZQ==
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Mon, 12 Dec 2022 19:15:54 GMT
Server: Apache/2.4.18 (Ubuntu)
Location: https://sendpulse.ua/url-disabled
Content-Length: 0
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b593f27210c82de44cb820ef4a6237eb
571d24bcba21b1de247fda1c658f143300a28b3d
10a7eee270a267635ab2c6abb612bbf59369c7c794fd1242517b34d5daad567a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "10A7EEE270A267635AB2C6ABB612BBF59369C7C794FD1242517B34D5DAAD567A"
Last-Modified: Sat, 10 Dec 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8671
Expires: Mon, 12 Dec 2022 21:40:25 GMT
Date: Mon, 12 Dec 2022 19:15:54 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Backoff, Content-Length, Pragma, Alert, Expires, Last-Modified, Retry-After, ETag, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 12 Dec 2022 19:07:56 GMT
age: 478
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
sendpulse.ua/url-disabled
94.130.16.227200 OK 23 kB URL HTTP/1.1 sendpulse.ua/url-disabled
IP 94.130.16.227:0
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (7497), with CRLF, CR, LF line terminators
Hash 346ccb8341b9b52aa3cacb4af9005218
bb731ba13aa10474b0e8d45fae7f5b25f52a796e
ae42482b2ce90fc56ab05fedeafadd210ae0a4756334f72bedbda33048611e0b
GET /url-disabled HTTP/1.1
Host: sendpulse.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://track.saison-arbeitskraefte.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.10.3 (Ubuntu)
Date: Mon, 12 Dec 2022 19:15:54 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
Set-Cookie: 18505184b99e41a758f25f62983abbb8=nqgj6ve128sanmhhrhvl1of20k; path=/; HttpOnly
pseudo_id=0b57aa6c8d7c22ca1cc7bac2026d5d4d9ebab9d38630649bf4528a4e096e7441; expires=Fri, 12-Dec-2025 07:15:00 GMT; Max-Age=94651146; path=/; domain=.sendpulse.com
f31ff57f6fc658ce2fba5b882fe44c4a=uk-UA; expires=Tue, 12-Dec-2023 19:15:54 GMT; Max-Age=31536000; path=/; HttpOnly
X-Logged-In: False
X-Content-Powered-By: K2 v2.10.3 (by JoomlaWorks)
X-Accel-Expires: 3600
Permissions-Policy: interest-cohort=()
Expires: Mon, 12 Dec 2022 19:30:54 GMT
Vary: Accept-Encoding, Accept-Encoding,Origin
Referrer-Policy: no-referrer-when-downgrade
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy: connect-src *
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
Content-Encoding: gzip
cdnjs.cloudflare.com/ajax/libs/intl-tel-input/10.0.8/css/intlTelInput.css
104.17.25.14200 OK 2.0 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/intl-tel-input/10.0.8/css/intlTelInput.css
IP 104.17.25.14:0
File type ASCII text, with very long lines (21681)
Hash 242efbb6c8e3bc438064e816dfbf0755
e5e984afcdbc36cbb360ace6368c95f50b9e01b2
89039c5320a6e7f146bf6106bc09cacde5e98576218aaeb03be7bc482932e8a3
GET /ajax/libs/intl-tel-input/10.0.8/css/intlTelInput.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sendpulse.ua/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 12 Dec 2022 19:15:54 GMT
content-type: text/css; charset=utf-8
content-length: 2013
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ea6-54b2"
last-modified: Mon, 04 May 2020 16:11:18 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 16322037
expires: Sat, 02 Dec 2023 19:15:54 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mqlyJHpKPEF8kNGH4KdEmpsMCDq1mF4eI6N8nw8OqNQVspv%2BkPoW7Q3y%2FhsynUqGwf6IvnNejiYuQ5Gs3eVwJG90Z1TJIsFzjKt4zdp5JF6Jack5YQs7FgMWEUm%2B7YFDybNvTYo1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7788ca9c3d7eb527-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/bootstrap-select/1.12.4/css/bootstrap-select.min.css
104.17.25.14200 OK 1.3 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/bootstrap-select/1.12.4/css/bootstrap-select.min.css
IP 104.17.25.14:0
File type ASCII text, with very long lines (6433), with CRLF line terminators
Hash 98f3f12cd23319c083e39ee892304d59
98449008bf9b865df4d620fe867d97b8f1d8ee3f
5643d4b9ada3acf7608d873c15d770e661b3bec28e129fab9e0cd5278fcd7049
GET /ajax/libs/bootstrap-select/1.12.4/css/bootstrap-select.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sendpulse.ua/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 12 Dec 2022 19:15:54 GMT
content-type: text/css; charset=utf-8
content-length: 1315
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03d8e-19ff"
last-modified: Mon, 04 May 2020 16:06:38 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 20162757
expires: Sat, 02 Dec 2023 19:15:54 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iQ%2FWMMq7VQsJI1SRTnBZu9IxTeMtku6q9tY0yYkvo6C7JQ3CMOQdRoBlURtNLv72NoOdQxCTyd6j%2B0Wf5fRQx9vAeLD5%2B%2FJ%2BHNt%2BcMbPtri560gFrresvbF1Bhd3FrkK8q5mWXyA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7788ca9c4d7fb527-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/intl-tel-input/10.0.8/js/intlTelInput.min.js
104.17.25.14200 OK 7.7 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/intl-tel-input/10.0.8/js/intlTelInput.min.js
IP 104.17.25.14:0
File type Unicode text, UTF-8 text, with very long lines (22012)
Hash c2c78b571fff1039f692894079d3619e
9ce737ce81a8e87cd9497ec368be040243b9822e
97777529972ca03e70cb84676da2b9357c0eb468070a3b264b3843e2f4be59d6
GET /ajax/libs/intl-tel-input/10.0.8/js/intlTelInput.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sendpulse.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 12 Dec 2022 19:15:54 GMT
content-type: application/javascript; charset=utf-8
content-length: 7692
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ea6-5929"
last-modified: Mon, 04 May 2020 16:11:18 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 13093645
expires: Sat, 02 Dec 2023 19:15:54 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=W7TeGOViOQ6unqiU%2FkO4zU%2FA1qjOtqZv76i642o6yCemYXmHyaDujzcc%2FCuf%2B%2F0PiAmEUt30S3rcQb0eyfqhoAzb8596lYPY2poOR4kEwEtQOtMCwUTmvESHnpYeoELGHm16IXC4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7788ca9c5d91b527-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/bootstrap-select/1.12.4/js/bootstrap-select.min.js
104.17.25.14200 OK 8.7 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/bootstrap-select/1.12.4/js/bootstrap-select.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (32004)
Hash 1b444a291b27ff5ef4a14f49505946cf
e606ad6b35dcd69aa7c137cba11afafeeaea3e8f
6c6137ed92e435221c3310950fa25ff94731c619ce0b090163296bcdc77d2e01
GET /ajax/libs/bootstrap-select/1.12.4/js/bootstrap-select.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sendpulse.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 12 Dec 2022 19:15:54 GMT
content-type: application/javascript; charset=utf-8
content-length: 8703
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03d8e-8263"
last-modified: Mon, 04 May 2020 16:06:38 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 16316180
expires: Sat, 02 Dec 2023 19:15:54 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9jLWtMUXghgOvEI2NRwHBxpXSOeUe2rslnLRmgsl%2B8AEolDuqqJMg4GbZsHkFvjnEZ5%2BRiQKMzLcWlwNuWj1c3IjfgeumCXLu7YEYyMUnOz%2Bs%2F8bEmkb7y%2B3kd80XSeK%2B07kcliy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7788ca9c5d94b527-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/bootstrap-icons@1.8.3/font/bootstrap-icons.css
151.101.65.229200 OK 11 kB URL HTTP/2 cdn.jsdelivr.net/npm/bootstrap-icons@1.8.3/font/bootstrap-icons.css
IP 151.101.65.229:0
Hash 96ad3ed8f2fcc9a84e42daea191a66b1
b5a346fe04d3788842694b5ef90247e80013e8e3
58a96f486a91f01a990991b49197874333e83a073c08d8bb9cde20d7b623a2f7
GET /npm/bootstrap-icons@1.8.3/font/bootstrap-icons.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sendpulse.ua/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 1.8.3
x-jsd-version-type: version
etag: W/"13a95-GT7jENNppf/cnpgQOlL+nX8dUxI"
content-encoding: gzip
accept-ranges: bytes
date: Mon, 12 Dec 2022 19:15:54 GMT
age: 4538843
x-served-by: cache-fra-eddf8230065-FRA, cache-bma1637-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 11411
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ee19f96e42a0eca99d00c8d91f977c35
3bf8dbf8b8ce6ea7adadf7bb92cae2f9502fbee9
6d8adcb1494bfe2ca73cd6b77eb57b2d08e07b05eb892fea98a1fde0bfb2ea12
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1404
Cache-Control: max-age=137661
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 19:15:54 GMT
Etag: "6396ef2b-1d7"
Expires: Wed, 14 Dec 2022 09:30:15 GMT
Last-Modified: Mon, 12 Dec 2022 09:06:51 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
sendpulse.ua/templates/sendpulsev1/fonts/nunito-sans/nunitosans-regular.woff2
94.130.16.227200 OK 31 kB URL HTTP/1.1 sendpulse.ua/templates/sendpulsev1/fonts/nunito-sans/nunitosans-regular.woff2
IP 94.130.16.227:0
ASN #24940 Hetzner Online GmbH
File type Web Open Font Format (Version 2), TrueType, length 30620, version 2.-32637\012- data
Hash fdf0cee7ec2bced7d782c89879367c7c
2598d49f22675855a0540300391b12abcd85156e
878adc25278872933f004783f0ebbe092cebb3f9161aa30cffb2b9a8a07db040
GET /templates/sendpulsev1/fonts/nunito-sans/nunitosans-regular.woff2 HTTP/1.1
Host: sendpulse.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sendpulse.ua/url-disabled
Connection: keep-alive
Cookie: 18505184b99e41a758f25f62983abbb8=nqgj6ve128sanmhhrhvl1of20k; f31ff57f6fc658ce2fba5b882fe44c4a=uk-UA
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.10.3 (Ubuntu)
Date: Mon, 12 Dec 2022 19:15:54 GMT
Content-Type: application/font-woff2
Content-Length: 30620
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
ETag: "779c-590b08641db4e"
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Tue, 12 Dec 2023 19:15:54 GMT
Vary: Accept-Encoding,Origin
Referrer-Policy: no-referrer-when-downgrade
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy: connect-src *
Pragma: public
Link: <https://sendpulse.ua/templates/sendpulsev1/fonts/nunito-sans/nunitosans-regular.woff2>; rel="canonical"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP 104.18.21.226:0
Hash 789fd03a3ae89046962e8228cb908c82
b4e796df804b8f81b1f807a94b692322df9b0ddf
00e85cd55cae2d13f771ebcdccd6ef92ce44ecad3814b8248bb0f7a0a387eb6c
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 12 Dec 2022 19:15:55 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "0F0820A044D4315D10700159B4766F2E00F723E8"
Expires: Tue, 13 Dec 2022 06:00:00 GMT
Last-Modified: Mon, 12 Dec 2022 18:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 287
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7788ca9d2e94b4f7-OSL
sendpulse.ua/templates/sendpulsev1/fonts/glyphicons-halflings-regular.woff2
94.130.16.227200 OK 18 kB URL HTTP/1.1 sendpulse.ua/templates/sendpulsev1/fonts/glyphicons-halflings-regular.woff2
IP 94.130.16.227:0
ASN #24940 Hetzner Online GmbH
File type Web Open Font Format (Version 2), TrueType, length 18028, version 1.589\012- data
Hash 448c34a56d699c29117adc64c43affeb
ca35b697d99cae4d1b60f2d60fcd37771987eb07
fe185d11a49676890d47bb783312a0cda5a44c4039214094e7957b4c040ef11c
GET /templates/sendpulsev1/fonts/glyphicons-halflings-regular.woff2 HTTP/1.1
Host: sendpulse.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sendpulse.ua/url-disabled
Connection: keep-alive
Cookie: 18505184b99e41a758f25f62983abbb8=nqgj6ve128sanmhhrhvl1of20k; f31ff57f6fc658ce2fba5b882fe44c4a=uk-UA
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.10.3 (Ubuntu)
Date: Mon, 12 Dec 2022 19:15:55 GMT
Content-Type: application/font-woff2
Content-Length: 18028
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
ETag: "466c-590b08641cbae"
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Tue, 12 Dec 2023 19:15:55 GMT
Vary: Accept-Encoding,Origin
Referrer-Policy: no-referrer-when-downgrade
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy: connect-src *
Pragma: public
Link: <https://sendpulse.ua/templates/sendpulsev1/fonts/glyphicons-halflings-regular.woff2>; rel="canonical"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
sendpulse.ua/templates/sendpulsev1/fonts/nunito-sans/nunitosans-bold.woff2
94.130.16.227200 OK 31 kB URL HTTP/1.1 sendpulse.ua/templates/sendpulsev1/fonts/nunito-sans/nunitosans-bold.woff2
IP 94.130.16.227:0
ASN #24940 Hetzner Online GmbH
File type Web Open Font Format (Version 2), TrueType, length 31156, version 2.-32637\012- data
Hash 393d6421f0931dbbd92ace58bc34a359
5403a157a157477c0be86331584f849320da90f9
2d48580b7e1be60fa94b8092ebe86471fe0adfe5ca75242a7af2042ac9da825f
GET /templates/sendpulsev1/fonts/nunito-sans/nunitosans-bold.woff2 HTTP/1.1
Host: sendpulse.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sendpulse.ua/url-disabled
Connection: keep-alive
Cookie: 18505184b99e41a758f25f62983abbb8=nqgj6ve128sanmhhrhvl1of20k; f31ff57f6fc658ce2fba5b882fe44c4a=uk-UA
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.10.3 (Ubuntu)
Date: Mon, 12 Dec 2022 19:15:55 GMT
Content-Type: application/font-woff2
Content-Length: 31156
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
ETag: "79b4-590b08641db4e"
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Tue, 12 Dec 2023 19:15:55 GMT
Vary: Accept-Encoding,Origin
Referrer-Policy: no-referrer-when-downgrade
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy: connect-src *
Pragma: public
Link: <https://sendpulse.ua/templates/sendpulsev1/fonts/nunito-sans/nunitosans-bold.woff2>; rel="canonical"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
www.spcdn.org/templates/sendpulsev1/fonts/nunito-sans/nunitosans-regular.woff2
185.76.9.25200 OK 31 kB URL HTTP/2 www.spcdn.org/templates/sendpulsev1/fonts/nunito-sans/nunitosans-regular.woff2
IP 185.76.9.25:0
ASN #60068 Datacamp Limited
File type Web Open Font Format (Version 2), TrueType, length 30620, version 2.-32637\012- data
Hash fdf0cee7ec2bced7d782c89879367c7c
2598d49f22675855a0540300391b12abcd85156e
878adc25278872933f004783f0ebbe092cebb3f9161aa30cffb2b9a8a07db040
GET /templates/sendpulsev1/fonts/nunito-sans/nunitosans-regular.woff2 HTTP/1.1
Host: www.spcdn.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sendpulse.ua
Connection: keep-alive
Referer: https://www.spcdn.org/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Dec 2022 19:15:55 GMT
content-type: application/octet-stream
content-length: 30620
alt-svc: quic="185.76.9.20:443"; ma=2592000; v="44,43,39"
last-modified: Thu, 22 Aug 2019 08:32:04 GMT
etag: "5d5e5304-779c"
expires: Tue, 23 May 2023 11:07:18 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-accel-expires: @1684840038
server: CDN77-Turbo
x-77-nzt: AblMCRSvqUT/BRMMAQ
x-77-nzt-ray: af5856301d82e7d4eb7d976366089c0c
x-cache: HIT
x-age: 17568517
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.spcdn.org/templates/sendpulsev1/fonts/nunito-sans/nunitosans-bold.woff2
185.76.9.25200 OK 31 kB URL HTTP/2 www.spcdn.org/templates/sendpulsev1/fonts/nunito-sans/nunitosans-bold.woff2
IP 185.76.9.25:0
ASN #60068 Datacamp Limited
File type Web Open Font Format (Version 2), TrueType, length 31156, version 2.-32637\012- data
Hash 393d6421f0931dbbd92ace58bc34a359
5403a157a157477c0be86331584f849320da90f9
2d48580b7e1be60fa94b8092ebe86471fe0adfe5ca75242a7af2042ac9da825f
GET /templates/sendpulsev1/fonts/nunito-sans/nunitosans-bold.woff2 HTTP/1.1
Host: www.spcdn.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sendpulse.ua
Connection: keep-alive
Referer: https://www.spcdn.org/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Dec 2022 19:15:55 GMT
content-type: application/octet-stream
content-length: 31156
alt-svc: quic="185.76.9.20:443"; ma=2592000; v="44,43,39"
last-modified: Thu, 22 Aug 2019 08:32:04 GMT
etag: "5d5e5304-79b4"
expires: Tue, 23 May 2023 11:07:18 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-accel-expires: @1684840038
server: CDN77-Turbo
x-77-nzt: AblMCRQ/lun/BRMMAQ
x-77-nzt-ray: af5856301d82e7d4eb7d9763c290aa0c
x-cache: HIT
x-age: 17568517
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
push.services.mozilla.com/
35.161.148.163101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.161.148.163:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: +EsQgHhsgzSbaZbtCR08JQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: PKnxFLaLIGOI8xcNwcxI6bJSm3M=
www.spcdn.org/templates/sendpulsev1/fonts/glyphicons-halflings-regular.woff2
185.76.9.25200 OK 18 kB URL HTTP/2 www.spcdn.org/templates/sendpulsev1/fonts/glyphicons-halflings-regular.woff2
IP 185.76.9.25:0
ASN #60068 Datacamp Limited
File type Web Open Font Format (Version 2), TrueType, length 18028, version 1.589\012- data
Hash 448c34a56d699c29117adc64c43affeb
ca35b697d99cae4d1b60f2d60fcd37771987eb07
fe185d11a49676890d47bb783312a0cda5a44c4039214094e7957b4c040ef11c
GET /templates/sendpulsev1/fonts/glyphicons-halflings-regular.woff2 HTTP/1.1
Host: www.spcdn.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sendpulse.ua
Connection: keep-alive
Referer: https://www.spcdn.org/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Dec 2022 19:15:55 GMT
content-type: application/octet-stream
content-length: 18028
alt-svc: quic="185.76.9.20:443"; ma=2592000; v="44,43,39"
last-modified: Thu, 22 Aug 2019 08:32:04 GMT
etag: "5d5e5304-466c"
expires: Tue, 23 May 2023 11:07:18 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-accel-expires: @1684840038
server: CDN77-Turbo
x-77-nzt: AblMCRQDGB3/BRMMAQ
x-77-nzt-ray: af5856301d82e7d4eb7d9763cdbca50d
x-cache: HIT
x-age: 17568517
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
sendpulse.ua/templates/sendpulsev1/img/svg-icons/sprite-social-icons-db.svg
94.130.16.227200 OK 9.9 kB URL HTTP/1.1 sendpulse.ua/templates/sendpulsev1/img/svg-icons/sprite-social-icons-db.svg
IP 94.130.16.227:0
ASN #24940 Hetzner Online GmbH
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3060)
Hash 1f50c4f2ec9a67896d1868c5aead3b26
a3d4f5e33bf3481fe2678fa35afdd0d59ab9038f
e24309cdf44b8669a551153ddeb18002abab6f368f228b17f24c164769fa3c06
GET /templates/sendpulsev1/img/svg-icons/sprite-social-icons-db.svg HTTP/1.1
Host: sendpulse.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sendpulse.ua/url-disabled
Connection: keep-alive
Cookie: 18505184b99e41a758f25f62983abbb8=nqgj6ve128sanmhhrhvl1of20k; f31ff57f6fc658ce2fba5b882fe44c4a=uk-UA; sw=1280
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx/1.10.3 (Ubuntu)
Date: Mon, 12 Dec 2022 19:15:55 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
ETag: W/"5704-5ef51ea92cc7b"
Cache-Control: max-age=31536000, public
Expires: Tue, 12 Dec 2023 19:15:55 GMT
Vary: Accept-Encoding, Accept-Encoding,Origin
Referrer-Policy: no-referrer-when-downgrade
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Content-Security-Policy: connect-src *
Pragma: public
Link: <https://sendpulse.ua/templates/sendpulsev1/img/svg-icons/sprite-social-icons-db.svg>; rel="canonical"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
Content-Encoding: gzip
www.spcdn.org/templates/sendpulsev1/img/favicons/apple-touch-icon.png
185.76.9.25200 OK 1.5 kB URL HTTP/2 www.spcdn.org/templates/sendpulsev1/img/favicons/apple-touch-icon.png
IP 185.76.9.25:0
ASN #60068 Datacamp Limited
File type PNG image data, 180 x 180, 8-bit colormap, non-interlaced\012- data
Hash ac36fa491443740439783d54d296022f
8dda712844be1007e01b3976cfeb97a850eec7cc
d97b0d8bf9527f1a9ead1c84b7bd5a6b09d177a093b8d282cf96918930a20bee
GET /templates/sendpulsev1/img/favicons/apple-touch-icon.png HTTP/1.1
Host: www.spcdn.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sendpulse.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Dec 2022 19:15:55 GMT
content-type: image/png
content-length: 1463
alt-svc: quic="185.76.9.20:443"; ma=2592000; v="44,43,39"
last-modified: Mon, 03 Aug 2020 14:26:35 GMT
etag: "5f281e9b-5b7"
expires: Tue, 23 May 2023 11:14:53 GMT
cache-control: max-age=31536000
vary: Accept
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-accel-expires: @1684840493
server: CDN77-Turbo
x-77-nzt: AblMCRS+64j/PhEMAQ
x-77-nzt-ray: af5856301d82e7d4eb7d9763c233d610
x-cache: HIT
x-age: 17568062
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9e21cee0dbf1fabeb73977bec650e0c0
b141b392ed601952004f4c7517007677a68eb85d
bd45bfbb4cde2a36b02dd426915221ca1db3a04abd5993559b0145ddc5c738a5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 19:15:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a41c1c2a6aad29835a33369555bbe359
4e104748d3d8c3237d58e03b6f7493fcc9182142
a0495e2ab6ed55134a4bf56eb85252977c6978eb965b14724d47e3c979f25ab4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 19:15:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.spcdn.org/templates/sendpulsev1/img/sp_icons/sp-i-small-edu.svg
185.76.9.25200 OK 1.2 kB URL HTTP/2 www.spcdn.org/templates/sendpulsev1/img/sp_icons/sp-i-small-edu.svg
IP 185.76.9.25:0
ASN #60068 Datacamp Limited
Hash b0944ac46c66e18924992675a994fdd4
d3a83c084ddaf1fced5301f4408053856dedbd96
494b0ccfb4babd7352f98589bed72902637904b29c418f534ebff9b6b56dacf1
GET /templates/sendpulsev1/img/sp_icons/sp-i-small-edu.svg HTTP/1.1
Host: www.spcdn.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.spcdn.org/templates/sendpulsev1/css/main.min.css?v=20221212-094512
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Dec 2022 19:15:55 GMT
content-type: image/svg+xml
alt-svc: quic="185.76.9.20:443"; ma=2592000; v="44,43,39"
last-modified: Tue, 14 Dec 2021 12:38:17 GMT
vary: Accept-Encoding
etag: W/"61b89039-666"
expires: Tue, 23 May 2023 11:07:56 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-accel-expires: @1684840076
server: CDN77-Turbo
x-77-nzt: AblMCRSAYLv/3xIMAQ
x-77-nzt-ray: af5856301d82e7d4eb7d9763cc53fc1c
x-cache: HIT
x-age: 17568479
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.spcdn.org/templates/sendpulsev1/css/vendor/aos.css
185.76.9.25200 OK 3.0 kB URL HTTP/2 www.spcdn.org/templates/sendpulsev1/css/vendor/aos.css
IP 185.76.9.25:0
ASN #60068 Datacamp Limited
File type ASCII text, with very long lines (26832), with no line terminators
Hash 655bc97700820249bbb53da14ef1de0a
40fcab819a9e8f706bd4d56263b77c3363cdde07
bb562d765d1ee382417af6b801dfd1f968d5aeecaf4733e016afd5462f035bc3
GET /templates/sendpulsev1/css/vendor/aos.css HTTP/1.1
Host: www.spcdn.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sendpulse.ua/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Dec 2022 19:15:55 GMT
content-type: text/css
alt-svc: quic="185.76.9.20:443"; ma=2592000; v="44,43,39"
last-modified: Mon, 01 Jun 2020 14:30:36 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"5ed5110c-655c"
expires: Wed, 25 Oct 2023 08:24:57 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-accel-expires: @1698222297
server: CDN77-Turbo
x-77-nzt: AblMCRQCshH/kuA/AA
x-77-nzt-ray: af5856301d82e7d4eb7d976396485a09
x-cache: HIT
x-age: 4186258
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.spcdn.org/images/url-disabled/security.svg
185.76.9.25200 OK 5.5 kB URL HTTP/2 www.spcdn.org/images/url-disabled/security.svg
IP 185.76.9.25:0
ASN #60068 Datacamp Limited
Hash 78b47b0a7f2f7a0300d0a667b0bac0db
a11c06068a619df8f3565d0220a66ddee4c6083c
f3e5c768ea41ff8f09dcc103ae631799cccd5e94dbca40043ac937e6512ffc1f
GET /images/url-disabled/security.svg HTTP/1.1
Host: www.spcdn.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sendpulse.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Dec 2022 19:15:55 GMT
content-type: image/svg+xml
alt-svc: quic="185.76.9.20:443"; ma=2592000; v="44,43,39"
last-modified: Mon, 08 Jul 2019 13:45:46 GMT
vary: Accept-Encoding
etag: W/"5d23490a-2be7"
expires: Tue, 21 Nov 2023 05:36:16 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-accel-expires: @1700544976
server: CDN77-Turbo
x-77-nzt: AblMCRQTLp//m28cAA
x-77-nzt-ray: af5856301d82e7d4eb7d97636dbeca04
x-cache: HIT
x-age: 1863579
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/pn3ro1xnhf4yB8qmnrhh9iD2/recaptcha__en.js
142.250.74.35200 OK 163 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/pn3ro1xnhf4yB8qmnrhh9iD2/recaptcha__en.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (649)
Size 163 kB (163396 bytes)
Hash aa75370bb1ce2d5b05b0d02f6feecba4
f110915b53288da7b267c51210cfc239dc0b5591
cfb8dadaba93a5e0a08739ce589b55cc61fb93d0c616da564394ce925bef6197
GET /recaptcha/releases/pn3ro1xnhf4yB8qmnrhh9iD2/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sendpulse.ua
Connection: keep-alive
Referer: https://sendpulse.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 163396
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 12 Dec 2022 14:04:44 GMT
expires: Tue, 12 Dec 2023 14:04:44 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 08 Dec 2022 01:21:32 GMT
content-type: text/javascript
age: 18671
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6d462d3e6bc6168ee30040355f8b96ee
7578100cefe27a95fc25fa11481d78353185a9f0
7371baa9980618773809e1f238fb57f8ec6eef6bdc37d127bead092b7fde990c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 19:15:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/WAfFbjg1EN8
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/WAfFbjg1EN8
IP 142.250.74.131:0
Hash 660abdf5db9a583f9b8f112fa2a51927
cee071e54b2b3752212b7236a6fa076e97e83772
9ff8f025ef1c9127f2ad5605fb74ac62a53960a56a1ce549e9da217eb3eb617c
POST /s/gts1d4/WAfFbjg1EN8 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 19:15:56 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.35200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Dec 2022 21:48:03 GMT
expires: Fri, 08 Dec 2023 21:48:03 GMT
cache-control: public, max-age=31536000
age: 336473
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Dec 2022 16:40:43 GMT
expires: Fri, 08 Dec 2023 16:40:43 GMT
cache-control: public, max-age=31536000
age: 354913
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d35fcd5d7e74c530535b18d57ed5f587
3b9bf9e02593b63108515f4df7cae57ce62145e7
4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7409
Expires: Mon, 12 Dec 2022 21:19:25 GMT
Date: Mon, 12 Dec 2022 19:15:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d35fcd5d7e74c530535b18d57ed5f587
3b9bf9e02593b63108515f4df7cae57ce62145e7
4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7409
Expires: Mon, 12 Dec 2022 21:19:25 GMT
Date: Mon, 12 Dec 2022 19:15:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d35fcd5d7e74c530535b18d57ed5f587
3b9bf9e02593b63108515f4df7cae57ce62145e7
4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7409
Expires: Mon, 12 Dec 2022 21:19:25 GMT
Date: Mon, 12 Dec 2022 19:15:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d35fcd5d7e74c530535b18d57ed5f587
3b9bf9e02593b63108515f4df7cae57ce62145e7
4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7409
Expires: Mon, 12 Dec 2022 21:19:25 GMT
Date: Mon, 12 Dec 2022 19:15:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d35fcd5d7e74c530535b18d57ed5f587
3b9bf9e02593b63108515f4df7cae57ce62145e7
4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7409
Expires: Mon, 12 Dec 2022 21:19:25 GMT
Date: Mon, 12 Dec 2022 19:15:56 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb6bca12a-103c-4b98-a218-27a61f8d6951.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb6bca12a-103c-4b98-a218-27a61f8d6951.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2020df3404a4b7c3e142af4a1330b848
2fe69b52fe03128e86550bf08474ecac82682384
37a52c158d5cfdf3589e19163cf446c02ce1466f444656080b02da82d2bcefae
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb6bca12a-103c-4b98-a218-27a61f8d6951.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6311
x-amzn-requestid: 46ccaee0-bde8-4be6-9dc8-46e3ae356dc8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c8xUYH10oAMF8Ig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6394fc1b-2440251f06cb950a57489555;Sampled=0
x-amzn-remapped-date: Sat, 10 Dec 2022 21:37:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bgmOsF49y9d_oDWjQxm7toxsydgt9HBKZunUbe-BZfSmdfJ7q0Jo3A==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Dec 2022 21:52:33 GMT
age: 77003
etag: "2fe69b52fe03128e86550bf08474ecac82682384"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5a765cd8-d4ff-441c-a948-f6a223fa2b0b.jpeg
34.120.237.76200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5a765cd8-d4ff-441c-a948-f6a223fa2b0b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 38876d760ef06c8471468c474c1e28a7
d43cd03d5eb3e7618b6fb70c935010c2ac92ad32
a0747f29eb6084eef42d3c247594973b02c619c7ec56b6137e24b6d0362557a0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5a765cd8-d4ff-441c-a948-f6a223fa2b0b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4720
x-amzn-requestid: dd990fe1-8447-403e-b276-40889af5baa0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dAENuF6SoAMF7oQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63964d8a-59b5a8f92ef6111e64e16079;Sampled=0
x-amzn-remapped-date: Sun, 11 Dec 2022 21:37:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: SBYH2ZqOyZx6tB8u3g3dkimaCUGSWAMQhULpYs4gWrmZ6i3_1Br_zQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Dec 2022 21:57:39 GMT
etag: "d43cd03d5eb3e7618b6fb70c935010c2ac92ad32"
content-type: image/jpeg
age: 76697
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe7732c6-dc98-445c-86c6-d413942250ea.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe7732c6-dc98-445c-86c6-d413942250ea.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 45e0c1638ad919bde19731f7987ab064
1e492807c665e6e6b24ec6ce19035fdfc6f23b92
f0d3738ec8406958470c8fd152a02a123d7654c30f974c1df5c4977a380c2d62
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe7732c6-dc98-445c-86c6-d413942250ea.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10205
x-amzn-requestid: daca166e-fa82-4491-9065-a4629141fd11
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c4OQAGLyoAMFQgQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63932a66-0551e77243e4a6472b377f9d;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 12:30:30 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NRMWuTRJ5fCJ-bJj8707fTNThWiF3nBYHdyIFmdvCFaR6fRURx5OuA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Mon, 12 Dec 2022 01:24:09 GMT
age: 64307
etag: "1e492807c665e6e6b24ec6ce19035fdfc6f23b92"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9aa9678b-479f-4894-b9e7-3d05e236f19c.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9aa9678b-479f-4894-b9e7-3d05e236f19c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9051770b3587c195bea670f8820e8cfe
abf58087f0e345202da088238daea85d177b431b
f687a10c0ae63699a551977e9a4ec5bc7ba606b1925178d7ed4ec6728889bb2e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9aa9678b-479f-4894-b9e7-3d05e236f19c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8841
x-amzn-requestid: 09b64f8e-60c0-4cf6-a0dc-15e597bd9d85
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c5eMWH7MIAMFyow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6393aa4e-3471ee5f5a78b55c424e2c6d;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 21:36:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: KkltHSO_YnfExbgR5cg199uOPnKy62zoMPwFfktRCpu03ImoFNMAIw==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Dec 2022 22:37:58 GMT
age: 74278
etag: "abf58087f0e345202da088238daea85d177b431b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc57568b-de5b-4cc8-9e29-a57a302df9b6.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc57568b-de5b-4cc8-9e29-a57a302df9b6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9f8d3e3c9e5d2ed74c3894b4825fcc2f
6bbd19dbf5112b5c52a1ccbfff3c9d7d0ab030da
9e44f93e65206ae7095cf9177296f4f528f1c2597cffa4853b7d6dcabf032796
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc57568b-de5b-4cc8-9e29-a57a302df9b6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5619
x-amzn-requestid: df7189d2-5cad-43a2-9511-20c5de53f710
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dAEMPFCSIAMF4uA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63964d81-729683c606fd6abc5bc70534;Sampled=0
x-amzn-remapped-date: Sun, 11 Dec 2022 21:37:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: kbfjvh64NjCUE-e-3z7W58vyJMisRwERUV_W99jn3vrErY4bF1SFsg==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Dec 2022 21:58:39 GMT
etag: "6bbd19dbf5112b5c52a1ccbfff3c9d7d0ab030da"
content-type: image/jpeg
age: 76637
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcded97a1-bc2d-405f-b231-35f5af035463.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcded97a1-bc2d-405f-b231-35f5af035463.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 75dd1ecae61b991cd21929deb9244aac
4f14c9f7b36dfa356877251f1e6a0f5936286c4b
3435eda8961bb9954fcf5fd7c957ce58fd7aa4bb9e00525b8f42756adcf341e7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcded97a1-bc2d-405f-b231-35f5af035463.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6438
x-amzn-requestid: 517b1627-9789-48e8-b5df-106fee878820
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dAENaGN6IAMFoUw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63964d88-28cbd126745e8ab15d937936;Sampled=0
x-amzn-remapped-date: Sun, 11 Dec 2022 21:37:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: amWbF9zOStURk7mvKoCOs0babDMecP7hOWzf4Hrn8RGThFiqv-_elg==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Dec 2022 21:59:55 GMT
age: 76561
etag: "4f14c9f7b36dfa356877251f1e6a0f5936286c4b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 8f0c126cc36eec35ebc421c69f3f7703
ae016bc3a2b2e13471878f8db346fee7e3c51f8d
4b47231727ca31ea6f971f5f5b845c943294975a99673d104d2aaec05d7bf280
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2558
Cache-Control: max-age=109667
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 19:15:56 GMT
Etag: "63967d51-1d7"
Expires: Wed, 14 Dec 2022 01:43:43 GMT
Last-Modified: Mon, 12 Dec 2022 01:01:05 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6c797045ce2453615ff57e1749364ccd
30192a4c14e94cdb789832ead604861432296e2e
96867aa0b5bea168df793e580b71dcf005c1afb5786780230b8aadfc4bf6648c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 19:15:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-59727977-1&cid=1606420138.1670872555&jid=1698173944&gjid=2061317252&_gid=226873499.1670872555&_u=YGBAgEABAAAAAEAEKI~&z=321798088
108.177.14.156200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-59727977-1&cid=1606420138.1670872555&jid=1698173944&gjid=2061317252&_gid=226873499.1670872555&_u=YGBAgEABAAAAAEAEKI~&z=321798088
IP 108.177.14.156:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-59727977-1&cid=1606420138.1670872555&jid=1698173944&gjid=2061317252&_gid=226873499.1670872555&_u=YGBAgEABAAAAAEAEKI~&z=321798088 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://sendpulse.ua
Connection: keep-alive
Referer: https://sendpulse.ua/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://sendpulse.ua
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 12 Dec 2022 19:15:56 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 50fb5d828bd0f2240c444cfecac25ff4
8cb8f547bddfbe56685f89317ab9d914ee8287db
7cf1f83d41503425ce0e237804eae9b7330f7f4326dce85d901f55184430e543
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7CF1F83D41503425CE0E237804EAE9B7330F7F4326DCE85D901F55184430E543"
Last-Modified: Mon, 12 Dec 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7623
Expires: Mon, 12 Dec 2022 21:22:59 GMT
Date: Mon, 12 Dec 2022 19:15:56 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6c797045ce2453615ff57e1749364ccd
30192a4c14e94cdb789832ead604861432296e2e
96867aa0b5bea168df793e580b71dcf005c1afb5786780230b8aadfc4bf6648c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 19:15:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
accounts.google.com/gsi/client
142.250.74.109200 OK 176 kB URL HTTP/2 accounts.google.com/gsi/client
IP 142.250.74.109:0
Size 176 kB (176165 bytes)
Hash 498b6f56eaf77a61c285c9c9eceeb122
59529329ea07a243f6824c19ccc6de2980d2dbe0
4715712d15b06c8178e66aa982c298cafaf19237f58aacef28757fdbcc2cd673
GET /gsi/client HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sendpulse.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
expires: Mon, 12 Dec 2022 19:15:55 GMT
date: Mon, 12 Dec 2022 19:15:55 GMT
cache-control: private, max-age=1800
content-security-policy: script-src 'nonce-gWqLyCDlOH1E4MORZ4dmlA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http, require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http
cross-origin-opener-policy-report-only: same-origin; report-to="coop_dd7de8473bddc59c6b748810a67a39b1"
report-to: {"group":"coop_dd7de8473bddc59c6b748810a67a39b1","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/dd7de8473bddc59c6b748810a67a39b1"}]}
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
data.sendpulse.ua/analytics.js
216.239.34.21200 OK 23 kB URL HTTP/2 data.sendpulse.ua/analytics.js
IP 216.239.34.21:0
Hash d5e53f4bd1ba46750df91c66568052df
c9ce7d268b173105fe3aaa1aa3853ba6ae00460a
c5dcae49bc5ac25e44f55bacd1e2a5a8e7f7400c9d0a9891ef2821eb97165066
GET /analytics.js HTTP/1.1
Host: data.sendpulse.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sendpulse.ua/url-disabled
Connection: keep-alive
Cookie: social_services=emailservice
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Dec 2022 19:15:56 GMT
content-type: text/javascript
vary: Accept-Encoding
cache-control: public, max-age=7200
expires: Mon, 12 Dec 2022 21:15:07 GMT
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-encoding: gzip
via: 1.1 google
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash be36fdcbab5a82c4711b6eb21d16120b
4589a6e36d78df3d385043a6041da679f0b366e4
423e6b90363e7b036ae2270c3dbc280d6a3621c721b1b92aefb377fed560d227
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 19:15:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-59727977-1&cid=1606420138.1670872555&jid=1698173944&_u=YGBAgEABAAAAAEAEKI~&z=1509886761
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-59727977-1&cid=1606420138.1670872555&jid=1698173944&_u=YGBAgEABAAAAAEAEKI~&z=1509886761
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-59727977-1&cid=1606420138.1670872555&jid=1698173944&_u=YGBAgEABAAAAAEAEKI~&z=1509886761 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sendpulse.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 12 Dec 2022 19:15:57 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash be36fdcbab5a82c4711b6eb21d16120b
4589a6e36d78df3d385043a6041da679f0b366e4
423e6b90363e7b036ae2270c3dbc280d6a3621c721b1b92aefb377fed560d227
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 19:15:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.facebook.com/tr/?id=304832899913845&ev=PageView&dl=https%3A%2F%2Fsendpulse.ua%2Furl-disabled&rl=http%3A%2F%2Ftrack.saison-arbeitskraefte.com%2F&if=false&ts=1670872555304&sw=1280&sh=1024&v=2.9.23&r=stable&ec=0&o=30&fbp=fb.1.1670872555303.1702527085&it=1670872554720&coo=false&rqm=GET
157.240.240.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=304832899913845&ev=PageView&dl=https%3A%2F%2Fsendpulse.ua%2Furl-disabled&rl=http%3A%2F%2Ftrack.saison-arbeitskraefte.com%2F&if=false&ts=1670872555304&sw=1280&sh=1024&v=2.9.23&r=stable&ec=0&o=30&fbp=fb.1.1670872555303.1702527085&it=1670872554720&coo=false&rqm=GET
IP 157.240.240.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=304832899913845&ev=PageView&dl=https%3A%2F%2Fsendpulse.ua%2Furl-disabled&rl=http%3A%2F%2Ftrack.saison-arbeitskraefte.com%2F&if=false&ts=1670872555304&sw=1280&sh=1024&v=2.9.23&r=stable&ec=0&o=30&fbp=fb.1.1670872555303.1702527085&it=1670872554720&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sendpulse.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Mon, 12 Dec 2022 19:15:57 GMT
X-Firefox-Spdy: h2
www.spcdn.org/templates/sendpulsev1/css/vendor/bootstrap.min.css?v341_1
185.76.9.25200 OK 0 B URL HTTP/2 www.spcdn.org/templates/sendpulsev1/css/vendor/bootstrap.min.css?v341_1
IP 185.76.9.25:0
ASN #60068 Datacamp Limited
GET /templates/sendpulsev1/css/vendor/bootstrap.min.css?v341_1 HTTP/1.1
Host: www.spcdn.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sendpulse.ua/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 12 Dec 2022 19:15:55 GMT
content-type: text/css
alt-svc: quic="185.76.9.20:443"; ma=2592000; v="44,43,39"
last-modified: Tue, 27 Oct 2020 12:20:04 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"5f981074-1d93d"
expires: Tue, 23 May 2023 11:07:55 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-accel-expires: @1684840075
server: CDN77-Turbo
x-77-nzt: AblMCRQXDhj/4BIMAQ
x-77-nzt-ray: af5856301d82e7d4eb7d9763b9ff4805
x-cache: HIT
x-age: 17568480
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.spcdn.org/templates/sendpulsev1/js/vendor/bootstrap.min.js?v341
185.76.9.25200 OK 0 B URL HTTP/2 www.spcdn.org/templates/sendpulsev1/js/vendor/bootstrap.min.js?v341
IP 185.76.9.25:0
ASN #60068 Datacamp Limited
GET /templates/sendpulsev1/js/vendor/bootstrap.min.js?v341 HTTP/1.1
Host: www.spcdn.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sendpulse.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 12 Dec 2022 19:15:55 GMT
content-type: application/javascript
alt-svc: quic="185.76.9.20:443"; ma=2592000; v="44,43,39"
last-modified: Thu, 06 Aug 2020 08:58:33 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"5f2bc639-9b00"
expires: Mon, 30 May 2022 11:07:55 GMT
cache-control: max-age=604800
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-accel-expires: @1671449055
server: CDN77-Turbo
x-77-nzt: AblMCRRJ8VL/jG4AAA
x-77-nzt-ray: af5856301d82e7d4eb7d9763207a7607
x-cache: HIT
x-age: 28300
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
data.sendpulse.ua/g/collect?v=2&tid=G-46NQ594GKJ>m=2rebu0&_p=2065866781&cid=1606420138.1670872555&ul=en-us&_fplc=0&_rdi=1&_geo=1&_s=1&sid=1670872555&sct=1&seg=0&dl=https%3A%2F%2Fsendpulse.ua%2Furl-disabled&dr=http%3A%2F%2Ftrack.saison-arbeitskraefte.com%2F&dt=%D0%9F%D0%BE%D1%81%D0%B8%D0%BB%D0%B0%D0%BD%D0%BD%D1%8F%20%D0%BD%D0%B5%D0%B4%D1%96%D0%B9%D1%81%D0%BD%D0%B5%20%7C%20SendPulse%20%D0%A3%D0%BA%D1%80%D0%B0%D0%B8%D0%BD%D0%B0&en=page_view&_fv=1&_ss=1&ep.transport=beacon&ep.country=no&ep.exp=&ep.hostname=sendpulse.ua&ep.lang=ua&ep.visitor_pseudo_id=0b57aa6c8d7c22ca1cc7bac2026d5d4d9ebab9d38630649bf4528a4e096e7441&up.country=no&up.language=ua&richsstsse
216.239.34.21200 OK 0 B URL HTTP/2 data.sendpulse.ua/g/collect?v=2&tid=G-46NQ594GKJ>m=2rebu0&_p=2065866781&cid=1606420138.1670872555&ul=en-us&_fplc=0&_rdi=1&_geo=1&_s=1&sid=1670872555&sct=1&seg=0&dl=https%3A%2F%2Fsendpulse.ua%2Furl-disabled&dr=http%3A%2F%2Ftrack.saison-arbeitskraefte.com%2F&dt=%D0%9F%D0%BE%D1%81%D0%B8%D0%BB%D0%B0%D0%BD%D0%BD%D1%8F%20%D0%BD%D0%B5%D0%B4%D1%96%D0%B9%D1%81%D0%BD%D0%B5%20%7C%20SendPulse%20%D0%A3%D0%BA%D1%80%D0%B0%D0%B8%D0%BD%D0%B0&en=page_view&_fv=1&_ss=1&ep.transport=beacon&ep.country=no&ep.exp=&ep.hostname=sendpulse.ua&ep.lang=ua&ep.visitor_pseudo_id=0b57aa6c8d7c22ca1cc7bac2026d5d4d9ebab9d38630649bf4528a4e096e7441&up.country=no&up.language=ua&richsstsse
IP 216.239.34.21:0
GET /g/collect?v=2&tid=G-46NQ594GKJ>m=2rebu0&_p=2065866781&cid=1606420138.1670872555&ul=en-us&_fplc=0&_rdi=1&_geo=1&_s=1&sid=1670872555&sct=1&seg=0&dl=https%3A%2F%2Fsendpulse.ua%2Furl-disabled&dr=http%3A%2F%2Ftrack.saison-arbeitskraefte.com%2F&dt=%D0%9F%D0%BE%D1%81%D0%B8%D0%BB%D0%B0%D0%BD%D0%BD%D1%8F%20%D0%BD%D0%B5%D0%B4%D1%96%D0%B9%D1%81%D0%BD%D0%B5%20%7C%20SendPulse%20%D0%A3%D0%BA%D1%80%D0%B0%D0%B8%D0%BD%D0%B0&en=page_view&_fv=1&_ss=1&ep.transport=beacon&ep.country=no&ep.exp=&ep.hostname=sendpulse.ua&ep.lang=ua&ep.visitor_pseudo_id=0b57aa6c8d7c22ca1cc7bac2026d5d4d9ebab9d38630649bf4528a4e096e7441&up.country=no&up.language=ua&richsstsse HTTP/1.1
Host: data.sendpulse.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sendpulse.ua/url-disabled
Origin: https://sendpulse.ua
Connection: keep-alive
Cookie: social_services=emailservice; _ga=GA1.1.1606420138.1670872555; _gid=GA1.2.226873499.1670872555; _dc_gtm_UA-59727977-1=1; _ga_46NQ594GKJ=GS1.1.1670872555.1.0.1670872555.0.0.0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Dec 2022 19:15:57 GMT
content-type: text/plain
vary: Accept-Encoding
set-cookie: FPLC=4WVIBgOVPsbxNqfi0Un%2BegfuDwPJAYIchFLbk6sn%2Bdc1wBVA5oFmVXAQpgdmpVZ%2BOk9oyf8FLqqMpQi7nOYOQoR310svr4JKcququNmcCFXisy%2FW4uFUYaCF3naOFQ%3D%3D; Max-Age=72000; Domain=sendpulse.ua; Path=/; Secure
FPID=FPID2.2.xFW%2BF%2FrQ3mEpjSpLvl%2Blz%2BUyr9oM5udmXpRO%2BSsl9vE%3D.1670872555; Max-Age=63072000; Domain=sendpulse.ua; Path=/; Secure; HttpOnly
cache-control: no-cache
x-content-type-options: nosniff
access-control-allow-origin: https://sendpulse.ua
access-control-allow-credentials: true
content-encoding: gzip
via: 1.1 google
X-Firefox-Spdy: h2
www.spcdn.org/templates/sendpulsev1/img/favicons/favicon.svg
185.76.9.25200 OK 0 B URL HTTP/2 www.spcdn.org/templates/sendpulsev1/img/favicons/favicon.svg
IP 185.76.9.25:0
ASN #60068 Datacamp Limited
GET /templates/sendpulsev1/img/favicons/favicon.svg HTTP/1.1
Host: www.spcdn.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sendpulse.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Dec 2022 19:15:55 GMT
content-type: image/svg+xml
alt-svc: quic="185.76.9.20:443"; ma=2592000; v="44,43,39"
last-modified: Mon, 03 Aug 2020 14:26:35 GMT
vary: Accept-Encoding
etag: W/"5f281e9b-34e"
expires: Tue, 23 May 2023 11:07:54 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-accel-expires: @1684840074
server: CDN77-Turbo
x-77-nzt: AblMCRRyUab/4RIMAQ
x-77-nzt-ray: af5856301d82e7d4eb7d97632f88dd10
x-cache: HIT
x-age: 17568481
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.spcdn.org/templates/sendpulsev1/img/sp_icons/sp-i-small-a360.svg
185.76.9.25200 OK 0 B URL HTTP/2 www.spcdn.org/templates/sendpulsev1/img/sp_icons/sp-i-small-a360.svg
IP 185.76.9.25:0
ASN #60068 Datacamp Limited
GET /templates/sendpulsev1/img/sp_icons/sp-i-small-a360.svg HTTP/1.1
Host: www.spcdn.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.spcdn.org/templates/sendpulsev1/css/main.min.css?v=20221212-094512
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Dec 2022 19:15:55 GMT
content-type: image/svg+xml
alt-svc: quic="185.76.9.20:443"; ma=2592000; v="44,43,39"
last-modified: Wed, 28 Sep 2022 13:53:56 GMT
vary: Accept-Encoding
etag: W/"633451f4-3b2"
expires: Thu, 28 Sep 2023 13:54:31 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-accel-expires: @1695909271
server: CDN77-Turbo
x-77-nzt: AblMCRSJtJf/1CtjAA
x-77-nzt-ray: af5856301d82e7d4eb7d976381eb071d
x-cache: HIT
x-age: 6499284
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.spcdn.org/templates/sendpulsev1/img/sp_icons/sp-i-small-academia.svg
185.76.9.25200 OK 0 B URL HTTP/2 www.spcdn.org/templates/sendpulsev1/img/sp_icons/sp-i-small-academia.svg
IP 185.76.9.25:0
ASN #60068 Datacamp Limited
GET /templates/sendpulsev1/img/sp_icons/sp-i-small-academia.svg HTTP/1.1
Host: www.spcdn.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.spcdn.org/templates/sendpulsev1/css/main.min.css?v=20221212-094512
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Dec 2022 19:15:55 GMT
content-type: image/svg+xml
alt-svc: quic="185.76.9.20:443"; ma=2592000; v="44,43,39"
last-modified: Thu, 10 Dec 2020 13:29:16 GMT
vary: Accept-Encoding
etag: W/"5fd222ac-35f"
expires: Tue, 23 May 2023 11:07:56 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-accel-expires: @1684840076
server: CDN77-Turbo
x-77-nzt: AblMCRTRU0D/3xIMAQ
x-77-nzt-ray: af5856301d82e7d4eb7d9763f59c5d1d
x-cache: HIT
x-age: 17568479
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.spcdn.org/templates/sendpulsev1/js/vendor/aos.js
185.76.9.25200 OK 0 B URL HTTP/2 www.spcdn.org/templates/sendpulsev1/js/vendor/aos.js
IP 185.76.9.25:0
ASN #60068 Datacamp Limited
GET /templates/sendpulsev1/js/vendor/aos.js HTTP/1.1
Host: www.spcdn.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sendpulse.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 12 Dec 2022 19:15:55 GMT
content-type: application/javascript
alt-svc: quic="185.76.9.20:443"; ma=2592000; v="44,43,39"
last-modified: Tue, 27 Oct 2020 12:20:04 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"5f981074-307e"
expires: Mon, 30 May 2022 11:07:52 GMT
cache-control: max-age=604800
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-accel-expires: @1671450370
server: CDN77-Turbo
x-77-nzt: AblMCRSZc1n/aWkAAA
x-77-nzt-ray: af5856301d82e7d4eb7d97638c01db04
x-cache: HIT
x-age: 26985
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.spcdn.org/templates/sendpulsev1/js/vendor.js?v=20190822-132209
185.76.9.25200 OK 0 B URL HTTP/2 www.spcdn.org/templates/sendpulsev1/js/vendor.js?v=20190822-132209
IP 185.76.9.25:0
ASN #60068 Datacamp Limited
GET /templates/sendpulsev1/js/vendor.js?v=20190822-132209 HTTP/1.1
Host: www.spcdn.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sendpulse.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 12 Dec 2022 19:15:55 GMT
content-type: application/javascript
alt-svc: quic="185.76.9.20:443"; ma=2592000; v="44,43,39"
last-modified: Thu, 22 Aug 2019 13:22:09 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"5d5e9701-26d23"
expires: Mon, 30 May 2022 11:07:55 GMT
cache-control: max-age=604800
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-accel-expires: @1671449055
server: CDN77-Turbo
x-77-nzt: AblMCRQ0lVr/jG4AAA
x-77-nzt-ray: af5856301d82e7d4eb7d97632020e204
x-cache: HIT
x-age: 28300
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.partnersrc.com/scripts/track.php?accountId=default1&url=S_sendpulse.ua%2Furl-disabled&referrer=H_track.saison-arbeitskraefte.com%2F&getParams=&anchor=&isInIframe=false&cookies=
185.76.9.18200 OK 0 B URL HTTP/2 www.partnersrc.com/scripts/track.php?accountId=default1&url=S_sendpulse.ua%2Furl-disabled&referrer=H_track.saison-arbeitskraefte.com%2F&getParams=&anchor=&isInIframe=false&cookies=
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
GET /scripts/track.php?accountId=default1&url=S_sendpulse.ua%2Furl-disabled&referrer=H_track.saison-arbeitskraefte.com%2F&getParams=&anchor=&isInIframe=false&cookies= HTTP/1.1
Host: www.partnersrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sendpulse.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Dec 2022 19:15:59 GMT
content-type: application/x-javascript
alt-svc: quic="185.76.9.13:443"; ma=2592000; v="44,43,39"
vary: Accept-Encoding, Accept-Encoding
x-powered-by: PHP/7.1.25
cache-control: private, no-cache, no-store, max-age=0
expires: Sat, 26 Jul 1997 05:00:00 GMT
p3p: CP="NOI NID ADMa DEVa PSAa OUR BUS ONL UNI COM STA OTC"
set-cookie: PAPVisitorId=d0fd69519edcf1b7e4f8c864c28715c8; Expires=Tue, 12 Dec 2023 19:15:59 GMT; path=/; domain=.sendpulse.com; Secure; SameSite=None
x-accel-expires: @1670958959
server: CDN77-Turbo
x-77-nzt: AblMCQ3cuXuh
x-77-nzt-ray: c0a4cc2815b9258aee7d976393524e36
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: gzip
X-Firefox-Spdy: h2
www.spcdn.org/templates/sendpulsev1/img/sp_icons/sp-i-small-viber.svg
185.76.9.25200 OK 0 B URL HTTP/2 www.spcdn.org/templates/sendpulsev1/img/sp_icons/sp-i-small-viber.svg
IP 185.76.9.25:0
ASN #60068 Datacamp Limited
GET /templates/sendpulsev1/img/sp_icons/sp-i-small-viber.svg HTTP/1.1
Host: www.spcdn.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.spcdn.org/templates/sendpulsev1/css/main.min.css?v=20221212-094512
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Dec 2022 19:15:55 GMT
content-type: image/svg+xml
alt-svc: quic="185.76.9.20:443"; ma=2592000; v="44,43,39"
last-modified: Thu, 22 Aug 2019 08:32:04 GMT
vary: Accept-Encoding
etag: W/"5d5e5304-e32"
expires: Tue, 23 May 2023 11:07:56 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-accel-expires: @1684840076
server: CDN77-Turbo
x-77-nzt: AblMCRQZAjz/3xIMAQ
x-77-nzt-ray: af5856301d82e7d4eb7d97637348151d
x-cache: HIT
x-age: 17568479
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
connect.facebook.net/signals/config/304832899913845?v=2.9.23&r=stable
157.240.240.1200 OK 0 B URL HTTP/2 connect.facebook.net/signals/config/304832899913845?v=2.9.23&r=stable
IP 157.240.240.1:0
GET /signals/config/304832899913845?v=2.9.23&r=stable HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sendpulse.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: xXGyZkz+azhH6eaRf3SaSOPwK0BDJHanGbEfmDNTIGGoDY7mihwGZezQonZwpNKQEvteUahPQXMn26HGdBzkLw==
priority: u=3,i
x-fb-trip-id: 1679558926
date: Mon, 12 Dec 2022 19:15:56 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.spcdn.org/templates/sendpulsev1/js/main.min.js?v=20221129-114746
185.76.9.25200 OK 0 B URL HTTP/2 www.spcdn.org/templates/sendpulsev1/js/main.min.js?v=20221129-114746
IP 185.76.9.25:0
ASN #60068 Datacamp Limited
GET /templates/sendpulsev1/js/main.min.js?v=20221129-114746 HTTP/1.1
Host: www.spcdn.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sendpulse.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Dec 2022 19:15:55 GMT
content-type: application/javascript
alt-svc: quic="185.76.9.20:443"; ma=2592000; v="44,43,39"
last-modified: Tue, 29 Nov 2022 11:47:46 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"6385f162-70b6"
expires: Tue, 06 Dec 2022 11:48:16 GMT
cache-control: max-age=604800
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-accel-expires: @1670932110
server: CDN77-Turbo
x-77-nzt: AblMCRTH1SX/3VEIAA
x-77-nzt-ray: af5856301d82e7d4eb7d9763fe78b804
x-cache: HIT
x-age: 545245
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.spcdn.org/plugins/system/lazyloadforjoomla/assets/js/lazyloadforjoomla-jquery.js
185.76.9.25200 OK 0 B URL HTTP/2 www.spcdn.org/plugins/system/lazyloadforjoomla/assets/js/lazyloadforjoomla-jquery.js
IP 185.76.9.25:0
ASN #60068 Datacamp Limited
GET /plugins/system/lazyloadforjoomla/assets/js/lazyloadforjoomla-jquery.js HTTP/1.1
Host: www.spcdn.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sendpulse.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 12 Dec 2022 19:15:55 GMT
content-type: application/javascript
alt-svc: quic="185.76.9.20:443"; ma=2592000; v="44,43,39"
last-modified: Thu, 22 Aug 2019 08:32:04 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"5d5e5304-11c4"
expires: Mon, 30 May 2022 11:07:55 GMT
cache-control: max-age=604800
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-accel-expires: @1671448733
server: CDN77-Turbo
x-77-nzt: AblMCRQWNfX/zm8AAA
x-77-nzt-ray: af5856301d82e7d4eb7d9763011d7205
x-cache: HIT
x-age: 28622
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.spcdn.org/templates/sendpulsev1/img/sp_icons/sp-i-small-sms.svg
185.76.9.25200 OK 0 B URL HTTP/2 www.spcdn.org/templates/sendpulsev1/img/sp_icons/sp-i-small-sms.svg
IP 185.76.9.25:0
ASN #60068 Datacamp Limited
GET /templates/sendpulsev1/img/sp_icons/sp-i-small-sms.svg HTTP/1.1
Host: www.spcdn.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.spcdn.org/templates/sendpulsev1/css/main.min.css?v=20221212-094512
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Dec 2022 19:15:55 GMT
content-type: image/svg+xml
alt-svc: quic="185.76.9.20:443"; ma=2592000; v="44,43,39"
last-modified: Thu, 22 Aug 2019 08:32:04 GMT
vary: Accept-Encoding
etag: W/"5d5e5304-d9b"
expires: Tue, 23 May 2023 11:07:56 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-accel-expires: @1684840076
server: CDN77-Turbo
x-77-nzt: AblMCRTAA8//3xIMAQ
x-77-nzt-ray: af5856301d82e7d4eb7d97639309591c
x-cache: HIT
x-age: 17568479
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.spcdn.org/templates/sendpulsev1/img/sp_icons/sp-i-small-push.svg
185.76.9.25200 OK 0 B URL HTTP/2 www.spcdn.org/templates/sendpulsev1/img/sp_icons/sp-i-small-push.svg
IP 185.76.9.25:0
ASN #60068 Datacamp Limited
GET /templates/sendpulsev1/img/sp_icons/sp-i-small-push.svg HTTP/1.1
Host: www.spcdn.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.spcdn.org/templates/sendpulsev1/css/main.min.css?v=20221212-094512
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Dec 2022 19:15:55 GMT
content-type: image/svg+xml
alt-svc: quic="185.76.9.20:443"; ma=2592000; v="44,43,39"
last-modified: Thu, 22 Aug 2019 08:32:04 GMT
vary: Accept-Encoding
etag: W/"5d5e5304-601"
expires: Tue, 23 May 2023 11:07:56 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-accel-expires: @1684840076
server: CDN77-Turbo
x-77-nzt: AblMCRR9WrP/3xIMAQ
x-77-nzt-ray: af5856301d82e7d4eb7d9763b4f2811c
x-cache: HIT
x-age: 17568479
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.spcdn.org/templates/sendpulsev1/img/svg-icons/mail.svg
185.76.9.25200 OK 0 B URL HTTP/2 www.spcdn.org/templates/sendpulsev1/img/svg-icons/mail.svg
IP 185.76.9.25:0
ASN #60068 Datacamp Limited
GET /templates/sendpulsev1/img/svg-icons/mail.svg HTTP/1.1
Host: www.spcdn.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sendpulse.ua/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Dec 2022 19:15:55 GMT
content-type: image/svg+xml
alt-svc: quic="185.76.9.20:443"; ma=2592000; v="44,43,39"
last-modified: Tue, 15 Mar 2022 09:00:36 GMT
vary: Accept-Encoding
etag: W/"623055b4-219"
expires: Tue, 23 May 2023 11:07:54 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-accel-expires: @1684840074
server: CDN77-Turbo
x-77-nzt: AblMCRTbeF3/4RIMAQ
x-77-nzt-ray: af5856301d82e7d4eb7d9763d4899e20
x-cache: HIT
x-age: 17568481
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.spcdn.org/templates/sendpulsev1/css/main.min.css?v=20221212-094512
185.76.9.25200 OK 0 B URL HTTP/2 www.spcdn.org/templates/sendpulsev1/css/main.min.css?v=20221212-094512
IP 185.76.9.25:0
ASN #60068 Datacamp Limited
GET /templates/sendpulsev1/css/main.min.css?v=20221212-094512 HTTP/1.1
Host: www.spcdn.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sendpulse.ua/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 12 Dec 2022 19:15:55 GMT
content-type: text/css
alt-svc: quic="185.76.9.20:443"; ma=2592000; v="44,43,39"
last-modified: Mon, 12 Dec 2022 09:45:12 GMT
vary: Accept-Encoding, Accept-Encoding
etag: W/"6396f828-6d5c2"
expires: Tue, 12 Dec 2023 09:46:01 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-accel-expires: @1702374361
server: CDN77-Turbo
x-77-nzt: AblMCRT4bKP/koUAAA
x-77-nzt-ray: af5856301d82e7d4eb7d97632bc0f703
x-cache: HIT
x-age: 34194
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.partnersrc.com/scripts/trackjs.js
185.76.9.18200 OK 0 B URL HTTP/2 www.partnersrc.com/scripts/trackjs.js
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
GET /scripts/trackjs.js HTTP/1.1
Host: www.partnersrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sendpulse.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 12 Dec 2022 19:15:58 GMT
content-type: application/javascript
alt-svc: quic="185.76.9.13:443"; ma=2592000; v="44,43,39"
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 25 Jun 2020 14:04:26 GMT
etag: W/"7f6b-5a8e911fa0e80"
x-accel-expires: @1670923360
server: CDN77-Turbo
x-77-nzt: AblMCQ0fUQL/DosAAA
x-77-nzt-ray: c0a4cc2815b9258aee7d9763480f2b32
x-cache: HIT
x-age: 35598
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.spcdn.org/templates/sendpulsev1/img/sp_icons/sp-i-small-lp.svg
185.76.9.25200 OK 0 B URL HTTP/2 www.spcdn.org/templates/sendpulsev1/img/sp_icons/sp-i-small-lp.svg
IP 185.76.9.25:0
ASN #60068 Datacamp Limited
GET /templates/sendpulsev1/img/sp_icons/sp-i-small-lp.svg HTTP/1.1
Host: www.spcdn.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.spcdn.org/templates/sendpulsev1/css/main.min.css?v=20221212-094512
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Dec 2022 19:15:55 GMT
content-type: image/svg+xml
alt-svc: quic="185.76.9.20:443"; ma=2592000; v="44,43,39"
last-modified: Fri, 26 Mar 2021 14:02:57 GMT
vary: Accept-Encoding
etag: W/"605de991-296"
expires: Tue, 23 May 2023 11:07:56 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-accel-expires: @1684840076
server: CDN77-Turbo
x-77-nzt: AblMCRTvc/D/3xIMAQ
x-77-nzt-ray: af5856301d82e7d4eb7d9763894cf71c
x-cache: HIT
x-age: 17568479
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
www.partnersrc.com/scripts/get_affinfo.php?visitorId=d0fd69519edcf1b7e4f8c864c28715c8&accountId=default1
185.76.9.18200 OK 0 B URL HTTP/2 www.partnersrc.com/scripts/get_affinfo.php?visitorId=d0fd69519edcf1b7e4f8c864c28715c8&accountId=default1
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
GET /scripts/get_affinfo.php?visitorId=d0fd69519edcf1b7e4f8c864c28715c8&accountId=default1 HTTP/1.1
Host: www.partnersrc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://sendpulse.ua/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Dec 2022 19:15:59 GMT
content-type: application/x-javascript
alt-svc: quic="185.76.9.13:443"; ma=2592000; v="44,43,39"
vary: Accept-Encoding, Accept-Encoding
x-powered-by: PHP/7.1.25
cache-control: private, no-cache, no-store, max-age=0
expires: Sat, 26 Jul 1997 05:00:00 GMT
x-accel-expires: @1670958959
server: CDN77-Turbo
x-77-nzt: AblMCQ1rOamh
x-77-nzt-ray: c0a4cc2815b9258aef7d97631ed9750a
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: gzip
X-Firefox-Spdy: h2
www.spcdn.org/templates/sendpulsev1/img/svg-icons/hot.svg
185.76.9.25200 OK 0 B URL HTTP/2 www.spcdn.org/templates/sendpulsev1/img/svg-icons/hot.svg
IP 185.76.9.25:0
ASN #60068 Datacamp Limited
GET /templates/sendpulsev1/img/svg-icons/hot.svg HTTP/1.1
Host: www.spcdn.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.spcdn.org/templates/sendpulsev1/css/main.min.css?v=20221212-094512
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Dec 2022 19:15:55 GMT
content-type: image/svg+xml
alt-svc: quic="185.76.9.20:443"; ma=2592000; v="44,43,39"
last-modified: Mon, 05 Jul 2021 08:47:00 GMT
vary: Accept-Encoding
etag: W/"60e2c704-b1a"
expires: Tue, 23 May 2023 11:07:56 GMT
cache-control: max-age=31536000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, DELETE, PUT
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-accel-expires: @1684840076
server: CDN77-Turbo
x-77-nzt: AblMCRRqEV7v3xIMAQ
x-77-nzt-ray: af5856301d82e7d4eb7d9763051a011d
x-cache: HIT
x-age: 17568479
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2