sairam.byethost7.com/login.html?i=1
185.27.134.135200 OK 564 B URL HTTP/1.1 sairam.byethost7.com/login.html?i=1
IP 185.27.134.135:0
ASN #34119 Wildcard UK Limited
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (841), with no line terminators
Hash 93f8c233f9e51dc97ca88a29c1fea56e
a99aca0fb3fc1a066074f3c38ef6f3f3e6a1d82c
eb7b872293d4e72b3d3f0c431cea356bc76ba50fac554245a5a5af63d6fe4ecf
Analyzer Verdict Alert openphish Instagram
fortinet Phishing
GET /login.html?i=1 HTTP/1.1
Host: sairam.byethost7.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 12:37:22 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Content-Encoding: gzip
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6369
Expires: Thu, 02 Feb 2023 14:23:31 GMT
Date: Thu, 02 Feb 2023 12:37:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e935ea42be4feaed61a824b0b903913e
f966cfa80d65a805cb9d7c6a53b3340865d7c51a
eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4648
Expires: Thu, 02 Feb 2023 13:54:50 GMT
Date: Thu, 02 Feb 2023 12:37:22 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 02 Feb 2023 11:43:31 GMT
content-type: application/json
age: 3231
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a8d45deaa7ebfcd996c2055dae592ab8
55befe074589fe7b39757c145968058162a8fc6b
50d7d516f446458145a304b288a0a39d391cd37ea50dabea36ae48d291c65ba7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "50D7D516F446458145A304B288A0A39D391CD37EA50DABEA36AE48D291C65BA7"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9615
Expires: Thu, 02 Feb 2023 15:17:37 GMT
Date: Thu, 02 Feb 2023 12:37:22 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: naHXmxBsK17Y88Rz/abLjz8h90DI+ugRCv8BuyaZGyswkQ3p5hklyvmlrTM3VyRSgOnlphgBc21WwcfCZ8Qq0g==
x-amz-request-id: 48YAVMG49T2G7S5W
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 02 Feb 2023 11:51:58 GMT
age: 2724
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 12:37:22 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
sairam.byethost7.com/aes.js
185.27.134.135200 OK 31 kB URL HTTP/1.1 sairam.byethost7.com/aes.js
IP 185.27.134.135:0
ASN #34119 Wildcard UK Limited
File type ASCII text, with CRLF line terminators
Hash 78a66859739b0c9e18bc5b4538c03bf9
77aa2fbbc258645904620937b387d3deedbd16ea
d2701c86a2a31a641520e72121749dbbabeed4b1a59aece20bbf14f9c9de82bc
GET /aes.js HTTP/1.1
Host: sairam.byethost7.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sairam.byethost7.com/login.html?i=1
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 12:37:22 GMT
Content-Type: application/javascript
Content-Length: 31206
Last-Modified: Sat, 08 Aug 2015 08:32:49 GMT
Connection: keep-alive
ETag: "55c5beb1-79e6"
Accept-Ranges: bytes
sairam.byethost7.com/login.html?i=2
185.27.134.135302 Found 248 B URL HTTP/1.1 sairam.byethost7.com/login.html?i=2
IP 185.27.134.135:0
ASN #34119 Wildcard UK Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 11fea94ae19835c3366fb991be468bae
18089e34f51f3e36b72bccd8a1d4b8e5d0dbc62b
e6ea5f1ee30bcbe74d5eafe99d688718a621414e7b71f22620f3d8d4eda53226
Analyzer Verdict Alert fortinet Phishing
GET /login.html?i=2 HTTP/1.1
Host: sairam.byethost7.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sairam.byethost7.com/login.html?i=1
Cookie: __test=7da11f1c3aec6fedc537eb0a7f6e670d
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Server: nginx
Date: Thu, 02 Feb 2023 12:37:22 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 248
Connection: keep-alive
Location: http://suspended-website.com/index.php?host=sairam.byethost7.com
Cache-Control: max-age=0
Expires: Thu, 02 Feb 2023 12:37:22 GMT
suspended-website.com/index.php?host=sairam.byethost7.com
188.114.96.1302 Found 2 B URL HTTP/1.1 suspended-website.com/index.php?host=sairam.byethost7.com
IP 188.114.96.1:0
Hash e1c06d85ae7b8b032bef47e42e4c08f9
71853c6197a6a7f222db0f1978c7cb232b87c5ee
75a11da44c802486bc6f65640aa48a730f0f684c5c07a42ba3cd1735eb3fb070
GET /index.php?host=sairam.byethost7.com HTTP/1.1
Host: suspended-website.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://sairam.byethost7.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Thu, 02 Feb 2023 12:37:23 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.3.18
Location: http://cdn.byethost2.com/index.html
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OYtiJyZZM85brbiFzFVgy2ZS506TXq2l4Ie9px%2B6ui0WeBcParuy%2F8gB785GlxewdLIR0otyi1SItGWmEb7iOJB4gKrOV6GwiuSxu1aunBvF%2FuzW4XJIAjSNolklOsHOjwmFSqs6QBo%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7932fa52596bb500-OSL
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 02 Feb 2023 11:49:05 GMT
age: 2898
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.byethost2.com/index.html
185.27.134.23200 OK 23 kB URL HTTP/1.1 cdn.byethost2.com/index.html
IP 185.27.134.23:0
ASN #34119 Wildcard UK Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (595)
Hash 887f5bf64989a33322c8a70bb9f40db9
895f6cbee52cdc41e1f47f2da892f3077245f527
0bd33f7d77dd6ff287e46017b1e7c57b1b884d17b5a2060453058c01ddc18704
GET /index.html HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://sairam.byethost7.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:31:17 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Sun, 20 Dec 2015 15:08:14 GMT
ETag: "24205a9-5979-52755bdd35380"
Accept-Ranges: bytes
Content-Length: 22905
Connection: close
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12035
Expires: Thu, 02 Feb 2023 15:57:58 GMT
Date: Thu, 02 Feb 2023 12:37:23 GMT
Connection: keep-alive
cdn.byethost2.com/modules/mod_janewslight/ja_newslight/ja-newslight.css
185.27.134.23404 Not Found 333 B URL HTTP/1.1 cdn.byethost2.com/modules/mod_janewslight/ja_newslight/ja-newslight.css
IP 185.27.134.23:0
ASN #34119 Wildcard UK Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash dd5f3d488136f86e067ad6b164161370
bcca283c7532ee09571639213961a79da083c1a9
d9a04aace8d6fe28adb50527f22f6eb02cee76dd4934cdfd72fac09574d4a5c3
GET /modules/mod_janewslight/ja_newslight/ja-newslight.css HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 404 Not Found
Date: Thu, 02 Feb 2023 12:31:17 GMT
Server: Apache/2.2.3 (CentOS)
Content-Length: 333
Connection: close
Content-Type: text/html; charset=iso-8859-1
cdn.byethost2.com/media/system/js/mootools.js
185.27.134.23404 Not Found 307 B URL HTTP/1.1 cdn.byethost2.com/media/system/js/mootools.js
IP 185.27.134.23:0
ASN #34119 Wildcard UK Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f2b28942adbf79ad63f5c75b454f607f
a0313251e7328bf42ac9cf83c02ca0c602c3ebba
ef21c1b7a356a1e0935c11d5dd76cba7536c5b67097adebc0f51b10d443fe96c
GET /media/system/js/mootools.js HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 404 Not Found
Date: Thu, 02 Feb 2023 12:31:17 GMT
Server: Apache/2.2.3 (CentOS)
Content-Length: 307
Connection: close
Content-Type: text/html; charset=iso-8859-1
cdn.byethost2.com/media/system/js/caption.js
185.27.134.23404 Not Found 306 B URL HTTP/1.1 cdn.byethost2.com/media/system/js/caption.js
IP 185.27.134.23:0
ASN #34119 Wildcard UK Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 4e1bf16d9c2beedaaaf6c44865ffa87f
aee2848ab2c751431f21efa4d0f09c47191a34f7
0de02d3c8345a5c7af49b85ce7ab3a29a1f766203633eeb2d6a421c1c55ba25b
GET /media/system/js/caption.js HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 404 Not Found
Date: Thu, 02 Feb 2023 12:31:17 GMT
Server: Apache/2.2.3 (CentOS)
Content-Length: 306
Connection: close
Content-Type: text/html; charset=iso-8859-1
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
216.58.211.14301 Moved Permanently 0 B URL HTTP/1.1 translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
IP 216.58.211.14:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/
HTTP/1.1 301 Moved Permanently
Content-Type: application/binary
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Thu, 02 Feb 2023 12:37:23 GMT
Location: https://translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
Cross-Origin-Opener-Policy: same-origin-allow-popups
Server: ESF
Content-Length: 0
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
pagead2.googlesyndication.com/pagead/show_ads.js
142.250.74.66200 OK 37 kB URL HTTP/1.1 pagead2.googlesyndication.com/pagead/show_ads.js
IP 142.250.74.66:0
File type ASCII text, with very long lines (4131)
Hash cbbd629d4c147d465292f37be33ae263
7328af525b0fc266abfb2459896467cfba16c83d
4a1fce448dad6a35e90f4249fba9f07680a260b373b7050ca1c42a00f5d8f877
GET /pagead/show_ads.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Date: Thu, 02 Feb 2023 12:37:23 GMT
Expires: Thu, 02 Feb 2023 12:37:23 GMT
Cache-Control: private, max-age=3600
Content-Type: text/javascript; charset=UTF-8
ETag: 15744231482571418164
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 36753
X-XSS-Protection: 0
cdn.byethost2.com/templates/ja_erica/scripts/ja.script.js
185.27.134.23200 OK 11 kB URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/scripts/ja.script.js
IP 185.27.134.23:0
ASN #34119 Wildcard UK Limited
File type ASCII text, with CRLF line terminators
Hash 25a145ca86eada6f97cd4b3fd16ef367
dfefef93e47de97fdad38ef4ac099bf50fa40f12
26f90b2b586ac5078b3b1416c2b32e950a0b362065fe3211560b41c00cb432bd
GET /templates/ja_erica/scripts/ja.script.js HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:31:17 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Wed, 14 Oct 2015 14:55:06 GMT
ETag: "2420bd0-2b63-52211bf7d4680"
Accept-Ranges: bytes
Content-Length: 11107
Connection: close
Content-Type: application/x-javascript
cdn.byethost2.com/templates/ja_erica/scripts/ja.hiddenpanel.js
185.27.134.23200 OK 3.3 kB URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/scripts/ja.hiddenpanel.js
IP 185.27.134.23:0
ASN #34119 Wildcard UK Limited
File type ASCII text, with CRLF line terminators
Hash 8648162a69a138d8898bcae0e9d37dc0
5207816426e88949bdaa3dbd810fa006f3ce86a0
f012ebf03d5b11d71ce5852dfa92e38cbf60b45cf4a0c5a281dac3fb40fcadb7
GET /templates/ja_erica/scripts/ja.hiddenpanel.js HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:31:17 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420bcf-cb4-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 3252
Connection: close
Content-Type: application/x-javascript
cdn.byethost2.com/templates/ja_erica/css/template.css
185.27.134.23200 OK 33 kB URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/css/template.css
IP 185.27.134.23:0
ASN #34119 Wildcard UK Limited
File type ASCII text, with CRLF line terminators
Hash 22092dbdc93b11e09039cb2970391b73
2469caee1d1061efe5e9d49f12c7685b3093c32c
95a4a24afa991a9754e2ddc3648949bb6a6a1010067572b755f878e726a8b618
GET /templates/ja_erica/css/template.css HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:31:17 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:11 GMT
ETag: "2420aab-7fad-520532ce2f8c0"
Accept-Ranges: bytes
Content-Length: 32685
Connection: close
Content-Type: text/css
cdn.byethost2.com/templates/ja_erica/ja_menus/ja_splitmenu/ja-splitmenu.css
185.27.134.23200 OK 3.6 kB URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/ja_menus/ja_splitmenu/ja-splitmenu.css
IP 185.27.134.23:0
ASN #34119 Wildcard UK Limited
File type ASCII text, with CRLF line terminators
Hash 776beb63fce1ab0cdbd3177c28f4f300
c18e7f8e49f74300d6f9635668b0b47d2738d3bc
9dd5e4a69a32944715e5112a06833c3b46e4847809a516e0e589b5c10b5ed2f5
GET /templates/ja_erica/ja_menus/ja_splitmenu/ja-splitmenu.css HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:31:17 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Wed, 14 Oct 2015 14:55:06 GMT
ETag: "2420bcb-e21-52211bf7d4680"
Accept-Ranges: bytes
Content-Length: 3617
Connection: close
Content-Type: text/css
cdn.byethost2.com/templates/ja_erica/css/colors/style1.css
185.27.134.23200 OK 485 B URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/css/colors/style1.css
IP 185.27.134.23:0
ASN #34119 Wildcard UK Limited
File type ASCII text, with CRLF line terminators
Hash 3a1561e6124663329d82b1f4cbb01c71
f569f7430178418bf76d23d342cec28844a7eea9
34dcaec6149141abdb3c7c96effab6537e81ace9ea812f3bf1eecc9b90588386
GET /templates/ja_erica/css/colors/style1.css HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:31:17 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:11 GMT
ETag: "2420aad-1e5-520532ce2f8c0"
Accept-Ranges: bytes
Content-Length: 485
Connection: close
Content-Type: text/css
cdn.byethost2.com/lightbox.js
185.27.134.23200 OK 13 kB URL HTTP/1.1 cdn.byethost2.com/lightbox.js
IP 185.27.134.23:0
ASN #34119 Wildcard UK Limited
File type ASCII text, with CRLF, LF line terminators
Hash a4bc8e013dd63bd857fd6447acbefc57
6755b738f382300877cea452357ae5d4b5761858
7943a62dd92c6c9a6a165fc47bd2dc06563f3b33010c072cd93de48184686f37
GET /lightbox.js HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:31:17 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Wed, 14 Oct 2015 14:55:06 GMT
ETag: "24205ab-3176-52211bf7d4680"
Accept-Ranges: bytes
Content-Length: 12662
Connection: close
Content-Type: application/x-javascript
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash d06fd066caf4dfa1e21a722a5c468158
acb765577662906ae8e11242bed487ce1051db28
4b45760de269e60345d43ff2da6c5803722f7c052edd0a9f5258ce69b2ffa32f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:37:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.byethost2.com/templates/ja_erica/images/user-decrease.gif
185.27.134.23200 OK 726 B URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/user-decrease.gif
IP 185.27.134.23:0
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 19 x 19\012- data
Hash 8e444a52da96f1b10b442a885d66976c
958186f64c6dff6fb858af213a18ade499f1bf5f
d3efd960bd4d307be201da42129218201329856801c76286e1085883d50dd6fd
GET /templates/ja_erica/images/user-decrease.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:31:17 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420b30-2d6-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 726
Connection: close
Content-Type: image/gif
cdn.byethost2.com/templates/ja_erica/images/user-screen3.gif
185.27.134.23200 OK 732 B URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/user-screen3.gif
IP 185.27.134.23:0
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 19 x 19\012- data
Hash 0ba83d9793aff2f19bfd105df39ebfd7
14f4f0c40e44bb25ec96a1553b2c69fc2598910f
b00e140e136214780ce0738864b06c8773cbe6149b78d9e519cc3695ed47f2cd
GET /templates/ja_erica/images/user-screen3.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:31:17 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420b38-2dc-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 732
Connection: close
Content-Type: image/gif
cdn.byethost2.com/templates/ja_erica/images/user-reset.gif
185.27.134.23200 OK 726 B URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/user-reset.gif
IP 185.27.134.23:0
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 19 x 19\012- data
Hash 84366b07c1cda90236b048deee69d432
8188d7288ba7efeb02a7c61d7ce63ba1af3da0ba
671331f91cf02d58370591651fd89b6199d695e736ad4f5c9bad937ea91b1ed2
GET /templates/ja_erica/images/user-reset.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:31:17 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420b32-2d6-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 726
Connection: close
Content-Type: image/gif
cdn.byethost2.com/templates/ja_erica/images/indent1.png
185.27.134.23200 OK 155 B URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/indent1.png
IP 185.27.134.23:0
ASN #34119 Wildcard UK Limited
File type PNG image data, 10 x 1, 8-bit colormap, non-interlaced\012- data
Hash 6179d11bd9c9f642e4d1f9df7f9c2981
13146a43597bb5f1cb9ac8a998297293e5a5eccf
1a76154f7cd0d75b3de3c905c696610f7c3d98e299131dfa22fc84a9d2602b75
GET /templates/ja_erica/images/indent1.png HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:31:17 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420afa-9b-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 155
Connection: close
Content-Type: image/png
cdn.byethost2.com/templates/ja_erica/images/style1-hilite.gif
185.27.134.23200 OK 1.1 kB URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/style1-hilite.gif
IP 185.27.134.23:0
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 19 x 19\012- data
Hash 0f68a71e837fa9739d0e41ad06e1496c
5e9aa8c30dd70cd7508fdef12b676dd225a93c39
d8bd0b9c2ee1cdbdb1c1a0b1db44976df0369666baa07e1f2bb98ee7b586bd74
GET /templates/ja_erica/images/style1-hilite.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:31:17 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420b26-45f-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 1119
Connection: close
Content-Type: image/gif
cdn.byethost2.com/templates/ja_erica/images/style2.gif
185.27.134.23200 OK 676 B URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/style2.gif
IP 185.27.134.23:0
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 19 x 19\012- data
Hash 114a1d726ee6c764cad5912fc29741a9
bb32bdf3e4f88e2bb5798e6b20b39827f8555715
fffb07440f84d05f14bb1964fbf2122da3d75783b43385dcbc3b021eb204aec0
GET /templates/ja_erica/images/style2.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:31:17 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420b29-2a4-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 676
Connection: close
Content-Type: image/gif
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash d06fd066caf4dfa1e21a722a5c468158
acb765577662906ae8e11242bed487ce1051db28
4b45760de269e60345d43ff2da6c5803722f7c052edd0a9f5258ce69b2ffa32f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:37:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.byethost2.com/templates/ja_erica/images/user-increase.gif
185.27.134.23200 OK 728 B URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/user-increase.gif
IP 185.27.134.23:0
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 19 x 19\012- data
Hash fa7732d203ca4885f5f61c0494affdb2
880b013270bcbebdddd74b17b99c2e088956bd7a
a589e28a10ee8d7c966ad05b8eda92c51cfb89bd4897bb1be977e16f8f59276e
GET /templates/ja_erica/images/user-increase.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:31:17 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420b31-2d8-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 728
Connection: close
Content-Type: image/gif
cdn.byethost2.com/templates/ja_erica/images/style3.gif
185.27.134.23200 OK 671 B URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/style3.gif
IP 185.27.134.23:0
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 19 x 19\012- data
Hash 686a33890b9e69da76ca0dd75979b857
072efe8af5accd61f769503beea44423f25eca02
497c3952262705fbe6f390124ebd5fce9d706f70aa09d5afcf7a4a71f938d6b6
GET /templates/ja_erica/images/style3.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:31:17 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420b2b-29f-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 671
Connection: close
Content-Type: image/gif
cdn.byethost2.com/templates/ja_erica/images/user-screen2-hilite.gif
185.27.134.23200 OK 730 B URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/user-screen2-hilite.gif
IP 185.27.134.23:0
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 19 x 19\012- data
Hash 53017cb0a4318ff160a18d4857fe798f
4c1326ee077413aabfe6576f8aa27f65fa90a75a
7efd088b6d533153cd6f6d9bb62fd0f3e84211c1331c940e8f1ac7ebcb3669e9
GET /templates/ja_erica/images/user-screen2-hilite.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:31:17 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420b35-2da-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 730
Connection: close
Content-Type: image/gif
cdn.byethost2.com/templates/ja_erica/images/user-screen1.gif
185.27.134.23200 OK 727 B URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/user-screen1.gif
IP 185.27.134.23:0
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 19 x 19\012- data
Hash 2ad2e732b37da5b79a0bc974acf7c904
ca50ad7c0346fd16fa934a4b374e42aa348d904f
c7590d1f6917f21936096b50a41d9843c0347eef4bab40a95ea2f72d5c32c4ec
GET /templates/ja_erica/images/user-screen1.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:31:17 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420b34-2d7-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 727
Connection: close
Content-Type: image/gif
www.statcounter.com/counter/counter.js
104.20.219.77200 OK 14 kB URL HTTP/1.1 www.statcounter.com/counter/counter.js
IP 104.20.219.77:0
File type ASCII text, with very long lines (43632), with no line terminators
Hash ec70672a2f4620ce69dbd93d41715fb2
68d559ba806e8aa338221616ba9a85ae582e03a3
f6cd20fa5ef3de2a6bd894efa434c1650f12cf6b3c9df03d45489aff18c44b7e
GET /counter/counter.js HTTP/1.1
Host: www.statcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:37:23 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 02 Feb 2023 10:49:52 GMT
ETag: W/"aa70-5f3b5531e5347"
Cache-Control: max-age=43200
Expires: Thu, 02 Feb 2023 23:54:47 GMT
Access-Control-Allow-Origin: *
P3P: policyref="http://www.statcounter.com/w3c/p3p.xml", CP="ADMa OUR COM NAV NID DSP NOI COR"
User-Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 2556
Server: cloudflare
CF-RAY: 7932fa56afd2b4f9-OSL
cdn.byethost2.com/templates/ja_erica/images/grad1.gif
185.27.134.23200 OK 347 B URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/grad1.gif
IP 185.27.134.23:0
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 3 x 60\012- data
Hash b888be8dae328282d9e96bf4b7147972
898b36e152eb4dba32e4647f9fac5fcdd60f4179
9bd01e2874c97c5f2da14dc4844948af06e2c4980d59806f393acea581ecf174
GET /templates/ja_erica/images/grad1.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/templates/ja_erica/css/template.css
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:31:17 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420aed-15b-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 347
Connection: close
Content-Type: image/gif
cdn.byethost2.com/templates/ja_erica/images/logo.png
185.27.134.23200 OK 15 kB URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/logo.png
IP 185.27.134.23:0
ASN #34119 Wildcard UK Limited
File type PNG image data, 270 x 54, 8-bit/color RGBA, non-interlaced\012- data
Hash 256732956b0bb55fd088aee1850fbcfa
7e32be328dbad7bb6439db98bbfa8beadc080b51
899519b1847a7a38f5b38a263314a2f1cb8932abe14573836925ee29ea773f98
GET /templates/ja_erica/images/logo.png HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/templates/ja_erica/css/template.css
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:31:17 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420b04-39d4-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 14804
Connection: close
Content-Type: image/png
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:37:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
translate.googleapis.com/translate_static/css/translateelement.css
172.217.21.170200 OK 3.6 kB URL HTTP/2 translate.googleapis.com/translate_static/css/translateelement.css
IP 172.217.21.170:0
File type ASCII text, with very long lines (22967)
Hash f7bf2121608909b56672e6398ac2335c
864ef3bac46b08ab6609fad23f00d5f09815647d
b9d3a8600d9b6edf9c71b793c42782282ecfb01e2026e0128608b949e91e152c
GET /translate_static/css/translateelement.css HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cdn.byethost2.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3632
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 11:42:29 GMT
expires: Thu, 02 Feb 2023 12:42:29 GMT
cache-control: public, max-age=3600
age: 3294
last-modified: Mon, 09 Jan 2023 20:58:00 GMT
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.12.59.47101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.12.59.47:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 34MdGJu414XHnt3mDMTb0Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 3pQxFU4hLfv72KFCPFubyQQE/ag=
cdn.byethost2.com/templates/ja_erica/images/v-divider-center.gif
185.27.134.23200 OK 255 B URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/v-divider-center.gif
IP 185.27.134.23:0
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 15 x 31\012- data
Hash 1e8b1844846a0d1ef74601862cd1933e
5cdf106a68e4cf87d028f9892370a36db0458f06
d1bcfade7a51f02544da5c0404abc219d6b40cfb6e0be7893d62515f716424fb
GET /templates/ja_erica/images/v-divider-center.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/templates/ja_erica/css/template.css
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:31:17 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420b3a-ff-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 255
Connection: close
Content-Type: image/gif
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:37:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.byethost2.com/templates/ja_erica/images/v-divider-top.gif
185.27.134.23200 OK 734 B URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/v-divider-top.gif
IP 185.27.134.23:0
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 11 x 175\012- data
Hash 24f7282bfac6cfd5334fa6380a736536
de9339e386050506abd6f29e9d34c078cb8454d6
75d6ef0fb7754f6c01539a5b53f7917add95928d823a8e62995b2054ee8b3c54
GET /templates/ja_erica/images/v-divider-top.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/templates/ja_erica/css/template.css
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:31:17 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420b3b-2de-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 734
Connection: close
Content-Type: image/gif
cdn.byethost2.com/templates/ja_erica/images/icon-search.gif
185.27.134.23200 OK 65 B URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/icon-search.gif
IP 185.27.134.23:0
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 11 x 11\012- data
Hash f8a4b67432c413ea84a9eca04d1adb98
164bb6ee1ce6f7a9affd8eea367bd56b7c827b4e
65326a89428a7fa94fb64828208743470071de5517b3c857ff7dbf6a6593c2b5
GET /templates/ja_erica/images/icon-search.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/templates/ja_erica/css/template.css
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:31:17 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420af8-41-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 65
Connection: close
Content-Type: image/gif
cdn.byethost2.com/templates/ja_erica/images/bullet-list.gif
185.27.134.23200 OK 69 B URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/bullet-list.gif
IP 185.27.134.23:0
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 5 x 5\012- data
Hash 49441b2ec2284bcfc63515eac2aa6e95
91791a8833caa668725e45c51660c7097278ef93
8f1035e7bdeaf0bd845820efd30950640af6018f444f3d54f0561be73d4070de
GET /templates/ja_erica/images/bullet-list.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/templates/ja_erica/css/template.css
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:31:17 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420ad5-45-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 69
Connection: close
Content-Type: image/gif
cdn.byethost2.com/templates/ja_erica/images/vline.gif
185.27.134.23200 OK 46 B URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/vline.gif
IP 185.27.134.23:0
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 2 x 10\012- data
Hash 6141ae485f7bdfe34ce395385c8ec9bc
488f9fb80812074a7fa5226a9124b45e82f8a11c
a9dffa833667782ca6406ca6ed05ae78e08072d0f34f03292578295ab35f7ad4
GET /templates/ja_erica/images/vline.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/templates/ja_erica/css/template.css
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:31:17 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420b3d-2e-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 46
Connection: close
Content-Type: image/gif
cdn.byethost2.com/templates/ja_erica/images/hdot.gif
185.27.134.23200 OK 43 B URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/hdot.gif
IP 185.27.134.23:0
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 3 x 1\012- data
Hash 480b38fde1e78b48e0c3cb6fb7ed7218
d592c2e2cff6582b116c9925affb812d3e126fc8
790911d818943a4cad1c38421fd6e93805334a83122d31d985cb1030b0797221
GET /templates/ja_erica/images/hdot.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/templates/ja_erica/css/template.css
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:31:17 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420af4-2b-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 43
Connection: close
Content-Type: image/gif
cdn.byethost2.com/templates/ja_erica/images/v-divider-bot.gif
185.27.134.23200 OK 771 B URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/v-divider-bot.gif
IP 185.27.134.23:0
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 15 x 165\012- data
Hash 01df0ecaca48f07d90fa66ee6093b238
c120a29f58d2e5e003856c6949d0c1b086c73639
c174fcc5e7af0a8a5baa5e8c70ed67a3360c2c90e539844c11f2598c806752b6
GET /templates/ja_erica/images/v-divider-bot.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/templates/ja_erica/css/template.css
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:31:17 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:11 GMT
ETag: "2420b39-303-520532ce2f8c0"
Accept-Ranges: bytes
Content-Length: 771
Connection: close
Content-Type: image/gif
cdn.byethost2.com/templates/ja_erica/images/topsl.gif
185.27.134.23200 OK 9.1 kB URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/topsl.gif
IP 185.27.134.23:0
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 500 x 190\012- data
Hash 0458608f644ed434a9c717dafc7c968f
e29366cfb54c0af8a3f18bba8b9fc263f64a23a4
eb6ba8f5e21548c0b56623aaee78dc53845b953be902a1f006e63e66c74b2ee4
GET /templates/ja_erica/images/topsl.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/templates/ja_erica/css/template.css
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:31:17 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420b2f-236a-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 9066
Connection: close
Content-Type: image/gif
cdn.byethost2.com/templates/ja_erica/images/star-bg.gif
185.27.134.23200 OK 578 B URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/star-bg.gif
IP 185.27.134.23:0
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 19 x 19\012- data
Hash df63cda96ec074d1bf19920b4ce1c82a
c997da29b9df462a1c14604303519556bd7bdc57
56fb33a6437dc757d02be8c1d0f9d01478f67b8f91c58c5f52514e528124be88
GET /templates/ja_erica/images/star-bg.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/templates/ja_erica/css/template.css
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:31:17 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420b24-242-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 578
Connection: close
Content-Type: image/gif
cdn.byethost2.com/templates/ja_erica/images/grad2.gif
185.27.134.23200 OK 197 B URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/grad2.gif
IP 185.27.134.23:0
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 3 x 70\012- data
Hash a72578730d849f01bb135ec936146eb9
41ff6f96027b72e74816e681259ef04872828e7c
263b60148f52330cd4ca0f8dc8611afb2971d687fe30b957ba8e75388c19ba4b
GET /templates/ja_erica/images/grad2.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/templates/ja_erica/css/template.css
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:31:17 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420aee-c5-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 197
Connection: close
Content-Type: image/gif
cdn.byethost2.com/templates/ja_erica/images/topsl-bg.gif
185.27.134.23200 OK 335 B URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/topsl-bg.gif
IP 185.27.134.23:0
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 4 x 290\012- data
Hash 890b9187047d7561f62bed958e0489fb
c2de2e44bbab04298d47e358d24d4e19d33988ef
9ce576f7aeb0088e299f468d0ecb6a89ed7b9382fddcbaa67faa6072495b34be
GET /templates/ja_erica/images/topsl-bg.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/templates/ja_erica/css/template.css
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:31:17 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420b2e-14f-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 335
Connection: close
Content-Type: image/gif
cdn.byethost2.com/templates/ja_erica/images/big-readon.png
185.27.134.23200 OK 12 kB URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/big-readon.png
IP 185.27.134.23:0
ASN #34119 Wildcard UK Limited
File type PNG image data, 203 x 61, 8-bit/color RGBA, non-interlaced\012- data
Hash c11e4732ae88151857c65c2a3500f2bb
0d8f914b7912f5b25932bb57b2f52602104ac58e
337714e4afd7f68d9fe880ce6d55a9bcb6b1bbe021289d1f19fcfe1af32d831d
GET /templates/ja_erica/images/big-readon.png HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/templates/ja_erica/css/template.css
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:31:17 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420ab8-2e28-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 11816
Connection: close
Content-Type: image/png
cdn.byethost2.com/images/php_mysql_logo.png
185.27.134.23200 OK 28 kB URL HTTP/1.1 cdn.byethost2.com/images/php_mysql_logo.png
IP 185.27.134.23:0
ASN #34119 Wildcard UK Limited
File type PNG image data, 220 x 127, 8-bit/color RGBA, non-interlaced\012- data
Hash 4f74c45f0f3b064bf5039dddd6bcb13d
8c06b758a4375be1b6a50b89248befe88b426476
3c885fd208d070cb13c918e29dcce63a823d8a5da01ede81f2824e83b3c2e463
GET /images/php_mysql_logo.png HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:31:17 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:40:26 GMT
ETag: "2420785-6da4-52053a038ba80"
Accept-Ranges: bytes
Content-Length: 28068
Connection: close
Content-Type: image/png
cdn.byethost2.com/templates/ja_erica/images/but-bg.gif
185.27.134.23200 OK 155 B URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/but-bg.gif
IP 185.27.134.23:0
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 1 x 30\012- data
Hash 7be0da0242ac6b9946146c0db51988a2
78b8ee403afe2baa4e2a3d19cf60c02a8c16b800
d1cff97b96ed70ef48662a94ff4f5d0ec52898edb7961dc9efd39e8c1cde9317
GET /templates/ja_erica/images/but-bg.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/templates/ja_erica/css/template.css
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:31:17 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:11 GMT
ETag: "2420ad7-9b-520532ce2f8c0"
Accept-Ranges: bytes
Content-Length: 155
Connection: close
Content-Type: image/gif
cdn.byethost2.com/templates/ja_erica/images/hpswitch-on.png
185.27.134.23200 OK 4.5 kB URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/hpswitch-on.png
IP 185.27.134.23:0
ASN #34119 Wildcard UK Limited
File type PNG image data, 107 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash e3dc442d274f96a33acc82ab2e8bc8c4
1063e1e8cbd152b432e9998edd0ac99dabdcbd7c
9c7116cc80c97f38e1f1bbdb10876bbb2a42dc4f736c518b42e93ba1db51048f
GET /templates/ja_erica/images/hpswitch-on.png HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:31:17 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:11 GMT
ETag: "2420af7-1167-520532ce2f8c0"
Accept-Ranges: bytes
Content-Length: 4455
Connection: close
Content-Type: image/png
cdn.byethost2.com/templates/ja_erica/images/readon2.gif
185.27.134.23200 OK 2.8 kB URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/readon2.gif
IP 185.27.134.23:0
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 115 x 29\012- data
Hash c880467a2d92395e0737c6036fa75a72
3222955777c6acac666df416f4700d9fd4e6cdfd
cb1bd497dcebdc440edc89656538c55f170eb2645862c24d882b63b9c5105c34
GET /templates/ja_erica/images/readon2.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:31:17 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420b1e-b0e-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 2830
Connection: close
Content-Type: image/gif
cdn.byethost2.com/templates/ja_erica/images/readon1.gif
185.27.134.23200 OK 2.9 kB URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/readon1.gif
IP 185.27.134.23:0
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 115 x 29\012- data
Hash 9861fea4d13ffa0ca98706766b92b7f4
fa2ae3b31932ac9f4e4bbb4e5eb9852839dbe1e0
d4dbbbd1c50269ee0f8150b49a2af9b0661e158c23927c50839bed80a99e13e0
GET /templates/ja_erica/images/readon1.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:31:17 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420b1d-b64-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 2916
Connection: close
Content-Type: image/gif
cdn.byethost2.com/templates/ja_erica/images/style3/readon1.gif
185.27.134.23200 OK 2.9 kB URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/style3/readon1.gif
IP 185.27.134.23:0
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 115 x 29\012- data
Hash 9861fea4d13ffa0ca98706766b92b7f4
fa2ae3b31932ac9f4e4bbb4e5eb9852839dbe1e0
d4dbbbd1c50269ee0f8150b49a2af9b0661e158c23927c50839bed80a99e13e0
GET /templates/ja_erica/images/style3/readon1.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:31:17 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420ba8-b64-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 2916
Connection: close
Content-Type: image/gif
cdn.byethost2.com/templates/ja_erica/images/topimg.png
185.27.134.23200 OK 46 kB URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/topimg.png
IP 185.27.134.23:0
ASN #34119 Wildcard UK Limited
File type PNG image data, 328 x 176, 8-bit/color RGBA, non-interlaced\012- data
Hash 59f5e0282078ca7402b42291243ea797
a808f6dfe9c5ac9f4b8948832344c7fbfb1354cb
dcf77a6150a7b61f64e90d1e5975cc830beb202f4d0b11095a3ac6bf059dfc4f
GET /templates/ja_erica/images/topimg.png HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/templates/ja_erica/css/template.css
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:31:17 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420b2d-b2db-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 45787
Connection: close
Content-Type: image/png
cdn.byethost2.com/templates/ja_erica/images/style3/readon2.gif
185.27.134.23200 OK 2.8 kB URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/style3/readon2.gif
IP 185.27.134.23:0
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 115 x 29\012- data
Hash c880467a2d92395e0737c6036fa75a72
3222955777c6acac666df416f4700d9fd4e6cdfd
cb1bd497dcebdc440edc89656538c55f170eb2645862c24d882b63b9c5105c34
GET /templates/ja_erica/images/style3/readon2.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:31:17 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420ba9-b0e-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 2830
Connection: close
Content-Type: image/gif
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 2dc2e297877f6332a114de88eeeaca61
cc91e58f3dd132b078223d21cd3177f0819e40e7
94f1191402d63bc2757d7ec854bc418dd6929b5aa9efb815d9bd35f8dab98fef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:37:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.byethost2.com/favicon.ico
185.27.134.23200 OK 1.2 kB URL HTTP/1.1 cdn.byethost2.com/favicon.ico
IP 185.27.134.23:0
ASN #34119 Wildcard UK Limited
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 78e7f36bc147d6022321149ba2149331
d4cddb950f7e5f6f541e09c338b848f67badc0fc
7023d407806c0a2d729c0a32f60312f39b107f4f13ae50065791e9c82187112a
GET /favicon.ico HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
Cookie: sc_is_visitor_unique=rx9327126.1675341470.4B83E2D5A48C4F41F76A0E0627515A5E.1.1.1.1.1.1.1.1.1
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:31:17 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Wed, 09 Apr 2008 14:16:54 GMT
ETag: "24205a6-47e-44a715a532180"
Accept-Ranges: bytes
Content-Length: 1150
Connection: close
Content-Type: text/plain; charset=UTF-8
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash 89693a781b6fd4661b5135e995c020e0
31556087e2debc22777fa52b4d3b61f97ad3f4c2
566e15d9c91a95c23293a34abb7456037353f2abd75ed440d38ca880d3c42099
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:37:24 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 06:34:07 GMT
Expires: Tue, 07 Feb 2023 06:34:06 GMT
Etag: "31556087e2debc22777fa52b4d3b61f97ad3f4c2"
Cache-Control: max-age=409601,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7932fa594a70b512-OSL
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202301190101/show_ads_impl_with_ama_fy2021.js?client=pub-4951685689297156&plah=cdn.byethost2.com&bust=31071766
142.250.74.66200 OK 121 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/managed/js/adsense/m202301190101/show_ads_impl_with_ama_fy2021.js?client=pub-4951685689297156&plah=cdn.byethost2.com&bust=31071766
IP 142.250.74.66:0
File type ASCII text, with very long lines (4056)
Size 121 kB (121045 bytes)
Hash effa280e94dcb96a2a80fe6aa068f59a
707f1b631ad4de6cf67a7f5caee841e579b5a33c
59ff48478a0486df6eaed53c26ac8e4bf06aacbdc58dd6ecabe3e69895c66e89
GET /pagead/managed/js/adsense/m202301190101/show_ads_impl_with_ama_fy2021.js?client=pub-4951685689297156&plah=cdn.byethost2.com&bust=31071766 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cdn.byethost2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Thu, 02 Feb 2023 12:37:24 GMT
expires: Thu, 02 Feb 2023 12:37:24 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 3165100014593145634
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 121045
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:37:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
216.58.211.14200 OK 28 kB URL HTTP/2 translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
IP 216.58.211.14:0
Hash 1df5fc8bc963d4a06d52492e02473175
5f5591a4e7802bfe4884b5c22806863fc922b69b
7938945e280ff051371166b297796a74579a3da93fab4c8042cb9c0018b40ae3
GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://cdn.byethost2.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 02 Feb 2023 12:37:23 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+896; expires=Sat, 01-Feb-2025 12:37:23 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:37:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:37:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/images/branding/product/2x/translate_24dp.png
142.250.74.99200 OK 1.8 kB URL HTTP/2 www.gstatic.com/images/branding/product/2x/translate_24dp.png
IP 142.250.74.99:0
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash c69c796362406f9e11c7f4bf5bb628da
e489ce95ab56208090868882113d7416abf46775
4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82
GET /images/branding/product/2x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://translate.googleapis.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1842
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 09:30:26 GMT
expires: Fri, 02 Feb 2024 09:30:26 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
age: 11218
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/images/branding/product/1x/translate_24dp.png
142.250.74.99200 OK 846 B URL HTTP/2 www.gstatic.com/images/branding/product/1x/translate_24dp.png
IP 142.250.74.99:0
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash e9cd262114358f26b7608b56905185dc
6dbde0a96deaab2b529723ce26c62043cf9180ab
5a861509b658aa24fc3aed2867ac3c061e7d818d90b9990959afc6d1b5d4ff99
GET /images/branding/product/1x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cdn.byethost2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 846
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 17:23:05 GMT
expires: Thu, 01 Feb 2024 17:23:05 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
age: 69259
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_68x28dp.png
142.250.74.99200 OK 1.6 kB URL HTTP/2 www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_68x28dp.png
IP 142.250.74.99:0
File type PNG image data, 68 x 28, 8-bit/color RGBA, non-interlaced\012- data
Hash c4a931d597decd2553aac6634b766cf2
6ec84fb4a2745b4b71520241be77db1fd1013830
f56402b127698db4b4dc611a97a6f081d04c4691c60522c5912d189e37c94a9e
GET /images/branding/googlelogo/1x/googlelogo_color_68x28dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cdn.byethost2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1597
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 05:43:13 GMT
expires: Fri, 02 Feb 2024 05:43:13 GMT
cache-control: public, max-age=31536000
age: 24851
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
translate.google.com/gen204?sl=en&nca=te_ap&client=te&logld=vTE_20230124
216.58.211.14204 No Content 0 B URL HTTP/1.1 translate.google.com/gen204?sl=en&nca=te_ap&client=te&logld=vTE_20230124
IP 216.58.211.14:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /gen204?sl=en&nca=te_ap&client=te&logld=vTE_20230124 HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/
HTTP/1.1 204 No Content
Content-Type: image/gif; charset=us-ascii
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Thu, 02 Feb 2023 12:37:24 GMT
Cross-Origin-Resource-Policy: cross-origin
Permissions-Policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
Content-Security-Policy: require-trusted-types-for 'script';report-uri /_/TranslateApiHttp/cspreport, script-src 'nonce-qvVTJgNJqxlw70CeSJ2-rA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/TranslateApiHttp/cspreport;worker-src 'self'
Cross-Origin-Opener-Policy: same-origin
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
Server: ESF
Content-Length: 0
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:37:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash df4a6d84addba49571d9f6ae44c61a3f
28c8093de27e27645cf6dfd5ae93a62fc77b9be5
cb6623b08b6245ea11bb871729613e453046d427d738a8c6431c5da8347e6e05
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:37:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/images/cleardot.gif
142.250.74.164200 OK 43 B URL HTTP/2 www.google.com/images/cleardot.gif
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash fc94fb0c3ed8a8f909dbc7630a0987ff
56d45f8a17f5078a20af9962c992ca4678450765
2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363
GET /images/cleardot.gif HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cdn.byethost2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/gif
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 43
date: Thu, 02 Feb 2023 12:37:24 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Tue, 22 Oct 2019 18:30:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash a4253e662d539c01b8656dbb6d73aab1
08f71eead367b6fa76b99f7f590680a5f5650b62
f05b99f6b0c8fb5c38221d02c0c9ed96389fbd5105d6329cdc733d1fae411df2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:37:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/adsid/integrator.js?domain=cdn.byethost2.com
142.250.74.34200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=cdn.byethost2.com
IP 142.250.74.34:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=cdn.byethost2.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cdn.byethost2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 02 Feb 2023 12:37:24 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=cdn.byethost2.com
216.58.211.2200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=cdn.byethost2.com
IP 216.58.211.2:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=cdn.byethost2.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cdn.byethost2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 02 Feb 2023 12:37:24 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash f44095f8ebc7d211f4ee24d88a703128
97263cb2c5d0237c08bee075fb75c8bddefddf2c
1183ec38cb48e7986d42d545c968616fe9f996f73849f1da6c111eb4ccfbb529
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:37:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=cdn.byethost2.com&callback=_gfp_s_&client=ca-pub-4951685689297156
216.58.207.226200 OK 255 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=cdn.byethost2.com&callback=_gfp_s_&client=ca-pub-4951685689297156
IP 216.58.207.226:0
File type ASCII text, with very long lines (393), with no line terminators
Hash dd6e900e83fcb12d803a7281e1ac3608
5a1783db784ce9dd9d06dfbb4f52cd1963d80a5b
c2a4f845e5801fc02e46a45e1da41dcbb4d1ac90c5b40348063d1785e035c029
GET /gampad/cookie.js?domain=cdn.byethost2.com&callback=_gfp_s_&client=ca-pub-4951685689297156 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cdn.byethost2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Thu, 02 Feb 2023 12:37:24 GMT
server: cafe
cache-control: private
content-length: 255
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
c.statcounter.com/t.php?sc_project=9327126&u1=4B83E2D5A48C4F41F76A0E0627515A5E&java=1&security=6463e657&sc_snum=1&sess=a8f3c4&p=0&rcat=r&rdom=sairam.byethost7.com&rdomg=new&bb=1&jg=new&rr=1.1.1.1.1.1.1.1.1&resolution=1280&h=1024&camefrom=http%3A//sairam.byethost7.com/&u=http%3A//cdn.byethost2.com/index.html&t=ByetHost%20Free%20Hosting%20Offer%20Landing%20Page&invisible=1&sc_rum_e_s=831&sc_rum_e_e=837&sc_rum_f_s=0&sc_rum_f_e=821&get_config=true
104.20.219.77200 OK 621 B URL HTTP/2 c.statcounter.com/t.php?sc_project=9327126&u1=4B83E2D5A48C4F41F76A0E0627515A5E&java=1&security=6463e657&sc_snum=1&sess=a8f3c4&p=0&rcat=r&rdom=sairam.byethost7.com&rdomg=new&bb=1&jg=new&rr=1.1.1.1.1.1.1.1.1&resolution=1280&h=1024&camefrom=http%3A//sairam.byethost7.com/&u=http%3A//cdn.byethost2.com/index.html&t=ByetHost%20Free%20Hosting%20Offer%20Landing%20Page&invisible=1&sc_rum_e_s=831&sc_rum_e_e=837&sc_rum_f_s=0&sc_rum_f_e=821&get_config=true
IP 104.20.219.77:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 35519fd040c00d866aea484625262f66
60e09cf042aa23f39a2943542c1e282b2d4d8856
ce0dee88f42a80c55a3bff9abde543f4430b7061ae4ccf8ba7a50c5f6f6a3285
GET /t.php?sc_project=9327126&u1=4B83E2D5A48C4F41F76A0E0627515A5E&java=1&security=6463e657&sc_snum=1&sess=a8f3c4&p=0&rcat=r&rdom=sairam.byethost7.com&rdomg=new&bb=1&jg=new&rr=1.1.1.1.1.1.1.1.1&resolution=1280&h=1024&camefrom=http%3A//sairam.byethost7.com/&u=http%3A//cdn.byethost2.com/index.html&t=ByetHost%20Free%20Hosting%20Offer%20Landing%20Page&invisible=1&sc_rum_e_s=831&sc_rum_e_e=837&sc_rum_f_s=0&sc_rum_f_e=821&get_config=true HTTP/1.1
Host: c.statcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://cdn.byethost2.com
Connection: keep-alive
Referer: http://cdn.byethost2.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 12:37:24 GMT
content-type: application/json
p3p: policyref="http://www.statcounter.com/w3c/p3p.xml", CP="ADMa OUR COM NAV NID DSP NOI COR"
expires: Mon, 26 Jul 1997 05:00:00 GMT
set-cookie: is_unique=sc9327126.1675341444.0; SameSite=None; Secure; Expires=Tuesday, 01-Feb-2028 12:37:24 GMT; Path=/; Domain=.statcounter.com
access-control-allow-origin: http://cdn.byethost2.com
access-control-allow-credentials: true
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7932fa599e96b4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash f44095f8ebc7d211f4ee24d88a703128
97263cb2c5d0237c08bee075fb75c8bddefddf2c
1183ec38cb48e7986d42d545c968616fe9f996f73849f1da6c111eb4ccfbb529
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:37:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-4951685689297156&output=html&h=250&adk=3327512900&adf=2811768130&w=300&lmt=1450624094&channel=1815593665%2B2888622927&ad_type=text_image&format=300x250_as&color_bg=ffffff&color_border=ffffff&color_link=820b0b&color_text=000000&color_url=000000&url=http%3A%2F%2Fcdn.byethost2.com%2Findex.html&wgl=1&dt=1675341469613&bpp=50&bdt=207&idt=752&shv=r20230131&mjsv=m202301190101&ptt=5&saldr=sa&abxe=1&correlator=5270466330914&frm=20&pv=2&ga_vid=760959036.1675341471&ga_sid=1675341471&ga_hid=1678650938&ga_fc=0&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=174&ady=834&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C44773810%2C31071766%2C44779793&oid=2&pvsid=2796623068406242&nvt=1&ref=http%3A%2F%2Fsairam.byethost7.com%2F&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Cle%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=1&uci=a!1&fsb=1&xpc=4RxxUkiZB5&p=http%3A//cdn.byethost2.com&dtd=908
142.250.74.162403 Forbidden 46 B URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-4951685689297156&output=html&h=250&adk=3327512900&adf=2811768130&w=300&lmt=1450624094&channel=1815593665%2B2888622927&ad_type=text_image&format=300x250_as&color_bg=ffffff&color_border=ffffff&color_link=820b0b&color_text=000000&color_url=000000&url=http%3A%2F%2Fcdn.byethost2.com%2Findex.html&wgl=1&dt=1675341469613&bpp=50&bdt=207&idt=752&shv=r20230131&mjsv=m202301190101&ptt=5&saldr=sa&abxe=1&correlator=5270466330914&frm=20&pv=2&ga_vid=760959036.1675341471&ga_sid=1675341471&ga_hid=1678650938&ga_fc=0&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=174&ady=834&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C44773810%2C31071766%2C44779793&oid=2&pvsid=2796623068406242&nvt=1&ref=http%3A%2F%2Fsairam.byethost7.com%2F&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Cle%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=1&uci=a!1&fsb=1&xpc=4RxxUkiZB5&p=http%3A//cdn.byethost2.com&dtd=908
IP 142.250.74.162:0
File type HTML document, ASCII text, with very long lines (603), with no line terminators
Hash 0c80c3a2604d656b7e461160bf5eba0f
d4f5c720a2b94f5f13b2e569035a7b14a513630d
470b81d27902c371ec202ef835ecf76bf54c8e222dab8b77eb8d2fd45652c955
GET /pagead/ads?client=ca-pub-4951685689297156&output=html&h=250&adk=3327512900&adf=2811768130&w=300&lmt=1450624094&channel=1815593665%2B2888622927&ad_type=text_image&format=300x250_as&color_bg=ffffff&color_border=ffffff&color_link=820b0b&color_text=000000&color_url=000000&url=http%3A%2F%2Fcdn.byethost2.com%2Findex.html&wgl=1&dt=1675341469613&bpp=50&bdt=207&idt=752&shv=r20230131&mjsv=m202301190101&ptt=5&saldr=sa&abxe=1&correlator=5270466330914&frm=20&pv=2&ga_vid=760959036.1675341471&ga_sid=1675341471&ga_hid=1678650938&ga_fc=0&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=174&ady=834&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759876%2C44759927%2C44759842%2C44773810%2C31071766%2C44779793&oid=2&pvsid=2796623068406242&nvt=1&ref=http%3A%2F%2Fsairam.byethost7.com%2F&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Cle%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=1&uci=a!1&fsb=1&xpc=4RxxUkiZB5&p=http%3A//cdn.byethost2.com&dtd=908 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cdn.byethost2.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Thu, 02 Feb 2023 12:37:24 GMT
server: cafe
content-length: 46
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 02-Feb-2023 12:52:24 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.byethost2.com/templates/ja_erica/images/hpswitch-off.png
185.27.134.23200 OK 4.1 kB URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/hpswitch-off.png
IP 185.27.134.23:0
ASN #34119 Wildcard UK Limited
File type PNG image data, 107 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 4f2a0c70babd6bcb254342f63383f6bf
6ed93e5b3b2b39e3700c85759e3995df8792be99
8565d753daa448ddf6eacd97661dec5916c2225c42d5d1163481aaf22a75f805
GET /templates/ja_erica/images/hpswitch-off.png HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/templates/ja_erica/css/template.css
Cookie: sc_is_visitor_unique=rx9327126.1675341470.4B83E2D5A48C4F41F76A0E0627515A5E.1.1.1.1.1.1.1.1.1; __gads=ID=d25c27ca81228a0d-22e982ef7ddb00c0:T=1675341444:RT=1675341444:S=ALNI_MbbEGS8gh9wCu_FHPuPTaANVG2uqg; __gpi=UID=00000bae1a2578c2:T=1675341444:RT=1675341444:S=ALNI_MYOPUu3g3BKE4HgWvozvrxlZ9wTww
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 12:31:18 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420af6-100c-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 4108
Connection: close
Content-Type: image/png
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 351332ee37e64ebbc378867caa545f48
b087bf0ea81c8447062b4d892d2c8662975f2146
0fafe57c60a83992b0bd2873353010eccc11ce7f30ec4f1e05e0957d5b9ddc85
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FAFE57C60A83992B0BD2873353010ECCC11CE7F30EC4F1E05E0957D5B9DDC85"
Last-Modified: Tue, 31 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5150
Expires: Thu, 02 Feb 2023 14:03:14 GMT
Date: Thu, 02 Feb 2023 12:37:24 GMT
Connection: keep-alive
byet.host/close.gif
82.163.176.143404 Not Found 0 B IP 82.163.176.143:0
ASN #34119 Wildcard UK Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /close.gif HTTP/1.1
Host: byet.host
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cdn.byethost2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.0 404 Not Found
Date: Thu, 02 Feb 2023 12:37:24 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.4.16
X-Powered-By: PHP/5.4.16
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 351332ee37e64ebbc378867caa545f48
b087bf0ea81c8447062b4d892d2c8662975f2146
0fafe57c60a83992b0bd2873353010eccc11ce7f30ec4f1e05e0957d5b9ddc85
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FAFE57C60A83992B0BD2873353010ECCC11CE7F30EC4F1E05E0957D5B9DDC85"
Last-Modified: Tue, 31 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13925
Expires: Thu, 02 Feb 2023 16:29:29 GMT
Date: Thu, 02 Feb 2023 12:37:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5981
Expires: Thu, 02 Feb 2023 14:17:05 GMT
Date: Thu, 02 Feb 2023 12:37:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5981
Expires: Thu, 02 Feb 2023 14:17:05 GMT
Date: Thu, 02 Feb 2023 12:37:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5981
Expires: Thu, 02 Feb 2023 14:17:05 GMT
Date: Thu, 02 Feb 2023 12:37:24 GMT
Connection: keep-alive
byet.host/loading.gif
82.163.176.143404 Not Found 0 B IP 82.163.176.143:0
ASN #34119 Wildcard UK Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /loading.gif HTTP/1.1
Host: byet.host
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cdn.byethost2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.0 404 Not Found
Date: Thu, 02 Feb 2023 12:37:24 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.4.16
X-Powered-By: PHP/5.4.16
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 395bb0f71f9eba82f5ca23548d08900f
b1fada280c7ea3eb775a6fa46ce173a51eb045f5
7443babb69532e1ee3ee779e05ad4f62de2c5bf62548bcb5702f8290a527664c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11367
x-amzn-requestid: 67702c15-9a68-46ec-95e5-efb57f08e2f1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5OGfBoAMF3Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6e-033182ba55fdd0230ad5a270;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Ybz4mmNUwsKOkpz6GFm4nLz7iGX5gJ--EiUjqrs8G92GBLn6qaF7IQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:57:51 GMT
age: 52773
etag: "b1fada280c7ea3eb775a6fa46ce173a51eb045f5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc1ea9f44-4a0b-4366-b041-d2bd88c5fcb5.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc1ea9f44-4a0b-4366-b041-d2bd88c5fcb5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 604c573da6f79effa2a81e711c14ad9e
322a3a510ca73e124d78e31b49d676ec891a6762
8d2b897fe4251106be9183fa2a6a3b0918cd1f4dcc5f814aa88a630a77b4045c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc1ea9f44-4a0b-4366-b041-d2bd88c5fcb5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7960
x-amzn-requestid: 774cebdf-b2bf-4a98-9d2b-e2abd4bd1a2b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5BG-hoAMFTSQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6c-234163873ca67e934d684a1d;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: uBOoIV3qLgPgjOas4bG9LnzvJyW5AmcxMm7xqxI2keBg3er2G3MldA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:01:31 GMT
etag: "322a3a510ca73e124d78e31b49d676ec891a6762"
content-type: image/jpeg
age: 52553
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7c823f1d6bf1c50d58eb263b85e6e37c
a7b74d11494fb3254df907e5cc1eead070d84617
b2706961eb756383e0988dfdb501dc424aea59697aedd1e4a6c294c314a31935
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5356
x-amzn-requestid: fef22c83-35a4-4990-9008-af5853f838d1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5BEB6oAMFczg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6c-68d3017555c069bc3107d150;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: i697kJpdT4ZPeMLWIftWf16pWCic0-v4tL4GDKfVfTZLo-E4-3FwDQ==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:21:38 GMT
age: 51346
etag: "a7b74d11494fb3254df907e5cc1eead070d84617"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4bb3a6fba496d54cdbbccaf2b9600386
8e30002699e9fbf2047f9ac11a36d2175fc9c591
927bf3a04b011b4e3bc8d8772a3d5813507f7f523312d43627767b64615562f3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15857
x-amzn-requestid: cfe36b9d-34f6-4f3f-896e-e70ec45c4a04
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ2JGGWoAMFSLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcf3-0dd68dd778b9aba268a129b0;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: C1kqthy0eZop0UZfG3_op5xeBOVGiPLYfia4uS1l4-kchEzV6ccE9w==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 07:16:08 GMT
age: 19276
etag: "8e30002699e9fbf2047f9ac11a36d2175fc9c591"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc092e5e-3a14-4d43-9814-99fd9d49d6c8.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc092e5e-3a14-4d43-9814-99fd9d49d6c8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 41c44051cc3b4c69924df66048e7566b
5c6a12595c3f6005fec4baa84b16575951e72178
72dff70bcb417c088aba013a486e1dbabe099b40fb718a283f1ba220b142b848
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc092e5e-3a14-4d43-9814-99fd9d49d6c8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7450
x-amzn-requestid: 1b3ef150-9b12-4b8b-94e6-0d6debbd24ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdTDFmPoAMF-UQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadc13-0fea883b0ce1a1b933dc2be8;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:39:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qON7fRZ1XPCkl7ldiGagd0UcPynLKMzysXr8LZSRvS1ily9cN5w_wA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:22:55 GMT
age: 51269
etag: "5c6a12595c3f6005fec4baa84b16575951e72178"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9dac6192-89b0-4161-86a2-38f3998a1bc4.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9dac6192-89b0-4161-86a2-38f3998a1bc4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f1d06527f75868ea84da730b7c8b5660
6c0cb65a477d6bc7d013529411d5735bd39e3d46
2ff4fb12b9ac4dff67bf89cc69f1bfce3ffa738696f904172044a5a537a704c9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9dac6192-89b0-4161-86a2-38f3998a1bc4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6783
x-amzn-requestid: 5ab60169-ec65-483a-828b-3312c74ee4b2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5BGjqoAMFV6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6c-73a465244f89adaa27626246;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: EnMwKHnlZQbvGDjPKuFqW9G8CBaRAV6QKzJ2VFOtRPDm3EIgVUpmYQ==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:57:29 GMT
age: 52795
etag: "6c0cb65a477d6bc7d013529411d5735bd39e3d46"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash b204f3abe06417a75a9703b1ed69bb37
f636ae39c412c40c3737e9c3c99a5e2e30a7e861
209edba54e970905fc4efd62b8736ef3f5d5021ccb82ea63e7ebfe0baf3e1896
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 12:37:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
142.250.74.97200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 142.250.74.97:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cdn.byethost2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Thu, 02 Feb 2023 12:37:24 GMT
expires: Thu, 02 Feb 2023 12:37:24 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
142.250.74.97200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP 142.250.74.97:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cdn.byethost2.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 20:34:21 GMT
expires: Fri, 26 Jan 2024 20:34:21 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
age: 576183
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2