Report - x-ti.com/fz/amzf.zip

Report Overview

Submitted URL
x-ti.com/fz/amzf.zip
IP
18.119.154.66
ASN
#16509 AMAZON-02
Submitted
2023-03-20 18:55:13
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-25T22:19:37Z	975 B	30 kB	216.58.207.227
stats.g.doubleclick.net	96	2013-06-10T22:21:11Z	2023-03-26T06:32:39Z	611 B	598 B	108.177.14.154
www.hugedomains.com	50857	2017-01-29T20:28:56Z	2023-03-26T05:16:55Z	2.3 kB	2.1 kB	172.67.70.191
c.statcounter.com	7772	2016-09-21T12:59:04Z	2023-03-26T05:22:40Z	783 B	582 B	104.20.219.77
cdn.jsdelivr.net	439	2012-09-30T02:15:09Z	2023-03-25T18:16:23Z	426 B	1.1 kB	104.16.85.20
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-25T18:12:03Z	3.0 kB	8.0 kB	23.33.119.27
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-26T05:11:12Z	413 B	5.9 kB	34.160.144.191
static.hugedomains.com	86609	2015-10-21T11:17:25Z	2023-03-26T05:16:56Z	5.5 kB	22 kB	172.67.70.191
use.typekit.net	494	2012-07-05T03:42:39Z	2023-03-25T18:12:31Z	942 B	21 kB	23.33.119.19
www.gstatic.com	unknown	2016-07-26T11:37:06Z	2023-03-26T05:56:25Z	449 B	166 kB	216.58.211.3
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-26T06:13:06Z	1.6 kB	1.0 kB	142.250.74.78
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-26T05:09:08Z	3.2 kB	59 kB	34.120.237.76
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-25T18:14:26Z	782 B	2.4 kB	35.241.9.150
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-26T05:10:41Z	3.4 kB	7.0 kB	142.250.74.163
www.google.com	7	2015-05-10T13:11:19Z	2023-03-25T21:05:45Z	370 B	1.1 kB	216.58.207.228
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-26T06:22:54Z	418 B	1.8 kB	142.250.74.74
p.typekit.net	620	2012-05-23T16:28:57Z	2023-03-26T05:09:02Z	424 B	338 B	95.101.11.112
secure.statcounter.com	14835	2014-02-28T02:22:24Z	2023-03-26T05:22:40Z	380 B	35 kB	104.20.219.77
x-ti.com	unknown	2014-03-18T06:51:36Z	2023-03-02T09:35:50Z	351 B	145 B	3.140.13.188
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-26T05:11:59Z	333 B	391 B	34.117.237.239
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-26T05:35:01Z	387 B	45 kB	142.250.74.136
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-26T05:10:29Z	606 B	127 B	100.20.70.168
www.google.no	25607	2016-04-05T21:50:59Z	2023-03-25T18:49:55Z	517 B	578 B	216.58.207.227

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-03-20 18:55:09	medium	Client IP	192.169.69.26	ET INFO DYNAMIC_DNS HTTP Request to a *.duckdns .org Domain

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (21)

	URL	Size	First Seen	Last Seen
	static.hugedomains.com/js/hdv3-js/jquery.min.js	87 kB	2023-03-07	2024-04-25
Pretty URL static.hugedomains.com/js/hdv3-js/jquery.min.js IP 172.67.70.191 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-25 14:46:05 Times Seen62357 Hash c9f5aeeca3ad37bf2aa006139b935f0a 1055018c28ab41087ef9ccefe411606893dabea2 87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de Loading...

	www.hugedomains.com/domain_profile.cfm?d=x-ti.com	377 B	2023-03-07	2023-05-24
Pretty URL www.hugedomains.com/domain_profile.cfm?d=x-ti.com IP 172.67.70.191 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:32 Last Seen2023-05-24 04:21:32 Times Seen468 Hash cba217ef037a19e529c629fae41dfe9f b70869692824220ef88e99d2fda757441ca8952c 2c72d0a5bd573680d7e76e7c14aa41c615e09bbadceedb1816948194704edc58 Loading...

	www.gstatic.com/recaptcha/releases/Trd6gj1dhC_fx0ma_AWHc1me/recaptcha__en.js	414 kB	2023-03-26	2023-05-26
Pretty URL www.gstatic.com/recaptcha/releases/Trd6gj1dhC_fx0ma_AWHc1me/recaptcha__en.js IP 216.58.211.3 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 07:49:14 Last Seen2023-05-26 08:52:16 Times Seen2778 Hash 3e73dbef941895dfc538a9d6a69ed927 dac57a54b2635c1d5e1e6ae44e95d12d0a547ad3 d9d91ff5b9a775b5ce8c6c81e51e71c27194d11ac8690353727d23c91f7b317c Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LdB69wUAAAAABYUZU_WrxJJxC4oLZd2TV5i9Lzh&co=aHR0cHM6Ly93d3cuaHVnZWRvbWFpbnMuY29tOjQ0Mw..&hl=en&v=Trd6gj1dhC_fx0ma_AWHc1me&size=normal&cb=iiv3dxsrzdpg	41 kB	2023-03-26	2023-03-26
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LdB69wUAAAAABYUZU_WrxJJxC4oLZd2TV5i9Lzh&co=aHR0cHM6Ly93d3cuaHVnZWRvbWFpbnMuY29tOjQ0Mw..&hl=en&v=Trd6gj1dhC_fx0ma_AWHc1me&size=normal&cb=iiv3dxsrzdpg IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 12:07:01 Last Seen2023-03-26 12:07:01 Times Seen1 Hash 6e280e9de294c8a971625faf3c4f1cc5 37d3b848aaf9f5ab8a198dce3111816a60abf46e c9ace41ef9e4cfb75f33529ae444c32d092ad684a91b931e09e39673505dee6b Loading...

	www.google.com/recaptcha/api.js	850 B	2023-03-26	2023-03-29
Pretty URL www.google.com/recaptcha/api.js IP 216.58.207.228 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 07:49:14 Last Seen2023-03-29 21:37:14 Times Seen679 Hash dc06c3119dddfbf05587300ac8ed33b1 4b1f693198d49ff46bc137de1dde821a6d0e2c96 8d8172236c099b083eb385a86781096526ef00b93215bd3a8a223725978cd04e Loading...

	secure.statcounter.com/counter/counter.js	44 kB	2023-03-14	2023-08-11
Pretty URL secure.statcounter.com/counter/counter.js IP 104.20.219.77 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 17:32:49 Last Seen2023-08-11 00:06:02 Times Seen1972 Hash 8c282e32ed5ba60f65d21d893258cd0d 53848ab96a1b140b666ce53c0b7a939998ee5c08 4e516b75c9ce0d756713b6d231b901beea2a200a80e717092603819dd97fc259 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-12	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:46:21 Last Seen2024-04-15 18:54:35 Times Seen35101 Hash 54e51056211dda674100cc5b323a58ad 26dc5034cb6c7f3bbe061edd37c7fc6006cb835b 5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LdB69wUAAAAABYUZU_WrxJJxC4oLZd2TV5i9Lzh&co=aHR0cHM6Ly93d3cuaHVnZWRvbWFpbnMuY29tOjQ0Mw..&hl=en&v=Trd6gj1dhC_fx0ma_AWHc1me&size=normal&cb=iiv3dxsrzdpg	69 B	2023-03-07	2024-04-25
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LdB69wUAAAAABYUZU_WrxJJxC4oLZd2TV5i9Lzh&co=aHR0cHM6Ly93d3cuaHVnZWRvbWFpbnMuY29tOjQ0Mw..&hl=en&v=Trd6gj1dhC_fx0ma_AWHc1me&size=normal&cb=iiv3dxsrzdpg IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:05 Last Seen2024-04-25 14:55:20 Times Seen99487 Hash 45ecf7458f42da80ac248ad42d610372 a5b3edf8328769bc754e6e616a957ceed4fdadd7 75867e75b209895995014b43c3d711476e3437481e5fbec91a4da674302558bf Loading...

	www.hugedomains.com/domain_profile.cfm?d=x-ti.com	629 B	2023-03-07	2023-05-24
Pretty URL www.hugedomains.com/domain_profile.cfm?d=x-ti.com IP 172.67.70.191 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:32 Last Seen2023-05-24 04:21:32 Times Seen468 Hash a7ed7ffe557ed98dc75b8a0025c5b162 f5e0ea4e11b0f928fb35909984d9b5e1df3ac920 138b27aab23d6015b5f7c5aee0ae5d1b8ce26608752c53077d8341bbd1d4273b Loading...

	www.hugedomains.com/domain_profile.cfm?d=x-ti.com	1.4 kB	2023-03-26	2023-03-26
Pretty URL www.hugedomains.com/domain_profile.cfm?d=x-ti.com IP 172.67.70.191 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 12:07:01 Last Seen2023-03-26 12:07:01 Times Seen1 Hash 3689cb12a86b447f394f00fa5190c5f1 bb4c94c4f085c280ee7379f863122d3ab2dc2b0d 26491e0e26ead7871574fc2356e031500ba8d5ea285ef4b73bb9baca19c5f022 Loading...

	http:blank	600 B	2023-03-26	2023-03-26
Pretty URL http:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 12:07:01 Last Seen2023-03-26 12:07:01 Times Seen1 Hash 08aecc087bca920b13dc83fe73969fdd 7db052b088124537210ed678970de709a39bef6a e9def58e66306b043552e6cb34ce64565217cc02aac46928176faa291dd98a30 Loading...

	static.hugedomains.com/js/hdv3-js/script.js	9.9 kB	2023-03-08	2024-04-25
Pretty URL static.hugedomains.com/js/hdv3-js/script.js IP 172.67.70.191 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:03 Last Seen2024-04-25 04:41:50 Times Seen6723 Hash defee0a43f53c0bd24b5420db2325418 55e3fdbced6fb04f1a2a664209f6117110b206f3 c1f8e55b298dc653477b557d4d9ef04951b3b8ba8362a836c54e2db10cda4d09 Loading...

	www.googletagmanager.com/gtag/js?id=UA-7117339-4	115 kB	2023-03-26	2023-03-26
Pretty URL www.googletagmanager.com/gtag/js?id=UA-7117339-4 IP 142.250.74.136 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 12:07:01 Last Seen2023-03-26 12:07:01 Times Seen1 Hash a831e585f2d7457342b5fafce05adba4 6febf57d4292fead41942a6a59addf42abc0ddaf 846f1a6e1048e9c22a6e2c539a9296e79636d967e6d550d4cbc0799d1cf363e6 Loading...

	www.hugedomains.com/domain_profile.cfm?d=x-ti.com	467 B	2023-03-07	2023-05-24
Pretty URL www.hugedomains.com/domain_profile.cfm?d=x-ti.com IP 172.67.70.191 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:32 Last Seen2023-05-24 04:21:32 Times Seen468 Hash 1e6fe3497ab0ff0c73a7629b99a6b38c 827ffa5d274cd5f8b1cbc302e6fca2f773da081b 5a76487f84b5482882b9d3de1d6ddfe2eb0bb13b34c09aa7f4ca70a6fc41d4bc Loading...

	www.google.com/recaptcha/api2/bframe?hl=en&v=Trd6gj1dhC_fx0ma_AWHc1me&k=6LdB69wUAAAAABYUZU_WrxJJxC4oLZd2TV5i9Lzh	181 B	2023-03-13	2023-04-05
Pretty URL www.google.com/recaptcha/api2/bframe?hl=en&v=Trd6gj1dhC_fx0ma_AWHc1me&k=6LdB69wUAAAAABYUZU_WrxJJxC4oLZd2TV5i9Lzh IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 11:07:17 Last Seen2023-04-05 02:09:41 Times Seen313 Hash 8757230bd9614180ba7d1c4ad407bc99 e6b774ec5f62551d5c5c4012ca5c967a85106bae 4e2418f00b141f1c38cef6924b94e1bb584f2c736d758c4df395054a6361d39a Loading...

		Size	First Seen	Last Seen
	#1 Eval - 4a549b59bb41bedade4b856e0da4bf77	16 kB	2023-03-26	2023-03-29
Pretty Observations First Seen2023-03-26 06:58:50 Last Seen2023-03-29 23:14:48 Times Seen1263 Hash 4a549b59bb41bedade4b856e0da4bf77 56446640acd4c92ca556a5c74fbbf6f02e74db20 eeed1180a21ac76b34cbb14522342242960e675b25a81fc7312c03ee33ed675e Loading...

	#2 Eval - 506665ceb90f8fd1418ab640bbbcd10f	22 kB	2023-03-26	2023-03-26
Pretty Observations First Seen2023-03-26 12:07:01 Last Seen2023-03-26 12:07:01 Times Seen1 Hash 506665ceb90f8fd1418ab640bbbcd10f 0de6d2d0c124fca1a2345605ede3a6a58ee5b0de 15c2b661c51c9109a950608c645eeb62cd0e6606ee8dd46fb023a04ecaca6211 Loading...

	#3 Eval - 296431c64008542097739b5d3ca282e9	22 B	2023-03-26	2023-03-29
Pretty Observations First Seen2023-03-26 06:58:50 Last Seen2023-03-29 23:14:48 Times Seen1262 Hash 296431c64008542097739b5d3ca282e9 14203ccbc508bc37a8ff43958de58d79317d1b67 2d621d13efcb44ca9b9949354449ddaf7c9d29a8cb0732d1eff85b464f35e1ce Loading...

	#4 Eval - 44d9f4338140d9f0a63e2b07f8084c07	64 B	2023-03-26	2023-03-29
Pretty Observations First Seen2023-03-26 06:58:50 Last Seen2023-03-29 23:14:48 Times Seen1262 Hash 44d9f4338140d9f0a63e2b07f8084c07 bfa3f0a058f0fd89e83507558fdd050c0ea29785 3f41c104b340637fe72cdca0dcb47b724842566cc962f4b55f3068e2df69315d Loading...

	#5 Eval - d667ba0beb9e284b1cb201d96ea24c76	22 B	2023-03-26	2023-03-29
Pretty Observations First Seen2023-03-26 06:58:50 Last Seen2023-03-29 23:14:48 Times Seen1265 Hash d667ba0beb9e284b1cb201d96ea24c76 459fdb91789d4f0d5f19396cb449379f5bf7ee67 94cd0c35bd1bb8bec3174d3338406c237b5e943bbeeebddee858ebf392b1ce97 Loading...

		Size	First Seen	Last Seen
	#1 Write - 23a9a19532d4d11d0162f8ff47f66385	96 B	2023-03-07	2024-04-24
Pretty Observations First Seen2023-03-07 01:06:56 Last Seen2024-04-24 16:41:09 Times Seen17082 Hash 23a9a19532d4d11d0162f8ff47f66385 39255a9f75cf85a5ce76383bab628291a9626f00 63fbe184fbb505dfd393d0292e5d1ee5f55922728fe59eef5b3d73818d6a9384 Loading...

HTTP Transactions (60)

	URL	IP	Response	Size
	x-ti.com/fz/amzf.zip	3.140.13.188	302 Found	0 B
URL HTTP/1.1 x-ti.com/fz/amzf.zip IP 3.140.13.188:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /fz/amzf.zip HTTP/1.1 Host: x-ti.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` `HTTP/1.1 302 Found content-length: 0 date: Mon, 20 Mar 2023 18:55:01 GMT location: https://www.hugedomains.com/domain_profile.cfm?d=x-ti.com`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash ec332b81a27117ce9c16b67a5a8e4fac b6d2afa2c859d000ad830d3d8d73f57bac6ffce2 1dc32c78e4e850303813338fd4e9616a41c8c05d1063748a1e76a92c397a5e8f HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "1DC32C78E4E850303813338FD4E9616A41C8C05D1063748A1E76A92C397A5E8F" Last-Modified: Mon, 20 Mar 2023 02:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=9054 Expires: Mon, 20 Mar 2023 21:25:57 GMT Date: Mon, 20 Mar 2023 18:55:03 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 00e304a3fc0c2f01af0e94fcefe0ca40 833969e75e5e13e823c8d97ee59a9821eb157ee3 c2b7f7ae4861f2dd16867de54c7e47d95582de77887f523841d9683a369d20a7 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C2B7F7AE4861F2DD16867DE54C7E47D95582DE77887F523841D9683A369D20A7" Last-Modified: Sun, 19 Mar 2023 18:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4797 Expires: Mon, 20 Mar 2023 20:15:00 GMT Date: Mon, 20 Mar 2023 18:55:03 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash bc86ef2a0cee04915bc360f5821adc8f 3658f9028cce204d38f7f48fcfaa2a8e4f54383a aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454 HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Type, Retry-After, Content-Length, Backoff, Alert content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Mon, 20 Mar 2023 18:14:55 GMT content-type: application/json age: 2408 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 4e6141892ec4705c6a0134f3157b969d 4169fdea42b0fa9cb565e14b8e8fdb293575c78e 905537ef3e3a4a9030391b44bd6ac6bb5d7c9ec752b1821d683dfbf483096163 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "905537EF3E3A4A9030391B44BD6AC6BB5D7C9EC752B1821D683DFBF483096163" Last-Modified: Sun, 19 Mar 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=18850 Expires: Tue, 21 Mar 2023 00:09:13 GMT Date: Mon, 20 Mar 2023 18:55:03 GMT Connection: keep-alive`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash e7bace7c1e04d44012e37ddffe36e5d5 3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2 6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2 HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK x-amz-id-2: BPX7nAWJFMvdo/pBUJGw3gnzoGDyXQQZs7Ik+J+RjraQ2su0h30oxIq08xx4mBbfH8zWIOGxSb4A55IdetBxhA== x-amz-request-id: BV34CXJ5599N219Q x-amz-server-side-encryption: AES256 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Mon, 20 Mar 2023 18:52:52 GMT age: 131 last-modified: Sat, 11 Mar 2023 16:53:15 GMT etag: "e7bace7c1e04d44012e37ddffe36e5d5" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Mon, 20 Mar 2023 18:55:03 GMT content-type: application/json content-length: 12 access-control-expose-headers: content-type access-control-allow-credentials: true vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	static.hugedomains.com/images/hdv3-img/logo.png	172.67.70.191	200 OK	4.3 kB
URL HTTP/2 static.hugedomains.com/images/hdv3-img/logo.png IP 172.67.70.191:0 ASN #13335 CLOUDFLARENET File type PNG image data, 237 x 35, 8-bit/color RGBA, non-interlaced\012- data Size 4.3 kB (4310 bytes) Hash c6585d35dbe66427d2971405193e3420 88f0c9cc830f31e475aa5040a44c959b6e5b309a b7538e415e50685e667d23705f5513c5770ae627e849bd1ea3c98f5abaf336c8 HTTP Headers GET /images/hdv3-img/logo.png HTTP/1.1 Host: static.hugedomains.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hugedomains.com/ Cookie: _ga=GA1.2.1987687633.1654109076; sc_is_visitor_unique=rx5694535.1654525580.A6FC6F7B0E844FA056AA6FAA902E9B06.2.2.2.2.2.2.1.1.1 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 200 OK date: Mon, 20 Mar 2023 18:55:03 GMT content-type: image/png content-length: 4310 access-control-allow-origin: * cf-bgj: imgq:100,h2pri cf-polished: origSize=6473 etag: "32f437d6b75ed61:0" last-modified: Mon, 20 Jul 2020 17:04:32 GMT x-powered-by: ASP.NET cache-control: max-age=14400 cf-cache-status: HIT age: 2622 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6z98DBY%2BvorVOEXF%2BE4ufrTea15uGKuoSoyzPU1n7%2FBagvrpE%2FXXCH3G5DcfAIgDptZpKbUL8%2FrmFdMm%2BlVENGFUAOaQfnUO1JUyS1zGvvjcJ0Nl%2Bq6w2VEWL%2F1L3I5W9wcE%2Fj%2BA2l0%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ab02ace484ab503-OSL X-Firefox-Spdy: h2

	static.hugedomains.com/images/hdv3-img/phone-icon.png	172.67.70.191	200 OK	743 B
URL HTTP/2 static.hugedomains.com/images/hdv3-img/phone-icon.png IP 172.67.70.191:0 ASN #13335 CLOUDFLARENET File type PNG image data, 22 x 22, 8-bit gray+alpha, non-interlaced\012- data Size 743 B (743 bytes) Hash bd361461dbc83db995e644e42e59dca9 7d3d5350646382e10d1fd84a3489d2eec7f1c651 4e5d6e60573346e0eb3e8368ca629af38d0d59f4e51f750724e7f95f8be5917e HTTP Headers GET /images/hdv3-img/phone-icon.png HTTP/1.1 Host: static.hugedomains.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hugedomains.com/ Cookie: _ga=GA1.2.1987687633.1654109076; sc_is_visitor_unique=rx5694535.1654525580.A6FC6F7B0E844FA056AA6FAA902E9B06.2.2.2.2.2.2.1.1.1 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 200 OK date: Mon, 20 Mar 2023 18:55:03 GMT content-type: image/png content-length: 743 access-control-allow-origin: * cf-bgj: imgq:100,h2pri cf-polished: origSize=2415 etag: "524238d6b75ed61:0" last-modified: Mon, 20 Jul 2020 17:04:32 GMT x-powered-by: ASP.NET cache-control: max-age=14400 cf-cache-status: HIT age: 416 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RlzYZqUrfyl0lgtK0vAcYF32QH%2BNmnIiyPRjNxvJ7vLIRCE8T67ex7qSIcycRI9HOV1mieAfbslogVxGAZ2zlOIlxJR5%2FxvxZ4224DJNbnKpmrfUINQThRjK9GZYPIifTM2wLzO7eSA%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ab02ace484db503-OSL X-Firefox-Spdy: h2

	static.hugedomains.com/images/hdv3-img/care.png	172.67.70.191	200 OK	708 B
URL HTTP/2 static.hugedomains.com/images/hdv3-img/care.png IP 172.67.70.191:0 ASN #13335 CLOUDFLARENET File type PNG image data, 46 x 47, 8-bit gray+alpha, non-interlaced\012- data Size 708 B (708 bytes) Hash 3ceb91c3c875ca5750c7aadf7e4ece6c 041a428a64ee9d32d6da4befacf6d8e5e3f5e436 3ec2212fc76e58ec342024869548e63c5a954162535572610a184aa0690577c8 HTTP Headers GET /images/hdv3-img/care.png HTTP/1.1 Host: static.hugedomains.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hugedomains.com/ Cookie: _ga=GA1.2.1987687633.1654109076; sc_is_visitor_unique=rx5694535.1654525580.A6FC6F7B0E844FA056AA6FAA902E9B06.2.2.2.2.2.2.1.1.1 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 200 OK date: Mon, 20 Mar 2023 18:55:03 GMT content-type: image/png content-length: 708 access-control-allow-origin: * cf-bgj: imgq:100,h2pri cf-polished: origSize=1906 etag: "a9c92cd6b75ed61:0" last-modified: Mon, 20 Jul 2020 17:04:31 GMT x-powered-by: ASP.NET cache-control: max-age=14400 cf-cache-status: HIT age: 6180 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DJgivGUDyk%2FrLFEBKse3a0mIbw%2B0nI5Pv2jUzzhsFBfrIjty%2F1rcasYnoJF82yBdjA7WQZRNkesI5lvDvCL%2BxM001JtKp%2FkP%2B4iXZGFywy0ozD0UxKcEdS5tKpNt%2Fcw50d7Ye5fXSNE%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ab02ace4850b503-OSL X-Firefox-Spdy: h2

	static.hugedomains.com/images/hdv3-img/guarant-footer.png	172.67.70.191	200 OK	1.5 kB
URL HTTP/2 static.hugedomains.com/images/hdv3-img/guarant-footer.png IP 172.67.70.191:0 ASN #13335 CLOUDFLARENET File type PNG image data, 37 x 47, 8-bit gray+alpha, non-interlaced\012- data Size 1.5 kB (1507 bytes) Hash e527bd653c6ab12a65243ea7b6090d60 6f4cecd8c8d38e340a81295606d4faa28d34d0a7 397380d4c94183937f67dc28fc89697fadef075f66e637080ec71545b07d65f1 HTTP Headers GET /images/hdv3-img/guarant-footer.png HTTP/1.1 Host: static.hugedomains.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hugedomains.com/ Cookie: _ga=GA1.2.1987687633.1654109076; sc_is_visitor_unique=rx5694535.1654525580.A6FC6F7B0E844FA056AA6FAA902E9B06.2.2.2.2.2.2.1.1.1 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 200 OK date: Mon, 20 Mar 2023 18:55:03 GMT content-type: image/png content-length: 1507 access-control-allow-origin: * cf-bgj: imgq:100,h2pri cf-polished: origSize=3413 etag: "8d4636d6b75ed61:0" last-modified: Mon, 20 Jul 2020 17:04:31 GMT x-powered-by: ASP.NET cache-control: max-age=14400 cf-cache-status: HIT age: 1198 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DfzTZYpXE6%2Fwe5xDlO1SNIg6cOR4tO%2FlkKnoLDAasn8lhtaY4ul2kpssBouCjRXx022e1Pc1IWBjrSniU%2FyJ9bu4AGx%2F8yKVV9RwPSfukrk1Or%2BypUSh26cwBU019lu7dTlxBWf4rWg%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ab02ace4852b503-OSL X-Firefox-Spdy: h2

	static.hugedomains.com/images/hdv3-img/escrow.png	172.67.70.191	200 OK	2.8 kB
URL HTTP/2 static.hugedomains.com/images/hdv3-img/escrow.png IP 172.67.70.191:0 ASN #13335 CLOUDFLARENET File type PNG image data, 196 x 47, 8-bit gray+alpha, non-interlaced\012- data Size 2.8 kB (2799 bytes) Hash 5e3fff838a9aa2ef46e2e4d9fe13ab85 a6ea4b142dd129e28d02ecc0dc59edade1976376 bbb3555394a1e45cb61c59281716bf177f29a026efef4750eed9c8a21b838765 HTTP Headers GET /images/hdv3-img/escrow.png HTTP/1.1 Host: static.hugedomains.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hugedomains.com/ Cookie: _ga=GA1.2.1987687633.1654109076; sc_is_visitor_unique=rx5694535.1654525580.A6FC6F7B0E844FA056AA6FAA902E9B06.2.2.2.2.2.2.1.1.1 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 200 OK date: Mon, 20 Mar 2023 18:55:03 GMT content-type: image/png content-length: 2799 access-control-allow-origin: * cf-bgj: imgq:100,h2pri cf-polished: origSize=5589 etag: "ece634d6b75ed61:0" last-modified: Mon, 20 Jul 2020 17:04:31 GMT x-powered-by: ASP.NET cache-control: max-age=14400 cf-cache-status: HIT age: 1161 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KFPDTwhPb0TXHc406pfbCKPPOzXXEGYPIOBJBPMylwfS0YX2LdEmP5JexxSLUEL4TovOnzBLOGD3h3AVLWdiKiNPUsZ7keFjzrGsrfPz%2F2INR%2FN6QUTJ43XY3I9Vr2wTLhto3DDLJxo%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ab02ace4854b503-OSL X-Firefox-Spdy: h2

	static.hugedomains.com/images/hdv3-img/geo.png	172.67.70.191	200 OK	2.6 kB
URL HTTP/2 static.hugedomains.com/images/hdv3-img/geo.png IP 172.67.70.191:0 ASN #13335 CLOUDFLARENET File type PNG image data, 166 x 36, 8-bit gray+alpha, non-interlaced\012- data Size 2.6 kB (2578 bytes) Hash 1aceace0b63ef3e4cf3a349b83f5725b fede44a511cbb7a94be77c6a3fbaf05c0ac735e9 7185ad18f6d3ea3d12c0a64a084a4bc570ba2e79ed46a1fb3427a4c29ca9bb20 HTTP Headers GET /images/hdv3-img/geo.png HTTP/1.1 Host: static.hugedomains.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hugedomains.com/ Cookie: _ga=GA1.2.1987687633.1654109076; sc_is_visitor_unique=rx5694535.1654525580.A6FC6F7B0E844FA056AA6FAA902E9B06.2.2.2.2.2.2.1.1.1 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 200 OK date: Mon, 20 Mar 2023 18:55:03 GMT content-type: image/png content-length: 2578 access-control-allow-origin: * cf-bgj: imgq:100,h2pri cf-polished: origSize=5035 etag: "741f36d6b75ed61:0" last-modified: Mon, 20 Jul 2020 17:04:31 GMT x-powered-by: ASP.NET cache-control: max-age=14400 cf-cache-status: HIT age: 1198 accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CquIi0G2OMYgAGj4xrDp1XqQVVb9ZtV085pJKJaeyKfbKBnN9brEoPj5rUmuUrSCvsAUhvHdidtdOY7KpvmkbZlsqC89YtHaBct8oXggQTihY4u7VF%2FT%2BPSzwOzfUyy4wV7SVfXdM2E%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ab02ace485cb503-OSL X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 8252dadd968ec1f294252ff1328a1f08 8612446f27ae9ce296270c969845a784dcc7569b 84717d4c360be2750d3e28827fa865c9616395cd3463ac03245b57baa8887e35 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 20 Mar 2023 18:55:03 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 8535613a8a8fd6ee9e928b3539dcfccd 75d939e05c094dda5410c98b8264d7c3270a6672 b09eaa3afbf3c651a41228d2297ff907b3f98102bce5277c7b9a1af8a1f346f3 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 20 Mar 2023 18:55:03 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.google.com/recaptcha/api.js	216.58.207.228	200 OK	554 B
URL HTTP/2 www.google.com/recaptcha/api.js IP 216.58.207.228:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (850), with no line terminators Size 554 B (554 bytes) Hash 7a61332e081c1df94aee6da79ccab5cf 9a1b52aef388542cfa62d685399669420b8998ee 3edecdbe2c8dbe6ff85c45d382f9f608ed30a6618fa62b18282e03d866dc6dd7 HTTP Headers `GET /recaptcha/api.js HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hugedomains.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK expires: Mon, 20 Mar 2023 18:55:03 GMT date: Mon, 20 Mar 2023 18:55:03 GMT cache-control: private, max-age=300 content-type: text/javascript; charset=UTF-8 cross-origin-resource-policy: cross-origin content-encoding: gzip x-content-type-options: nosniff x-frame-options: SAMEORIGIN content-security-policy: frame-ancestors 'self' x-xss-protection: 1; mode=block content-length: 554 server: GSE alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 7b9696c5a484fe48a260ec0ac6f4c2dc 5fa72a6aae12370de4d88d0aa205f293e5a85c5b 578156cb0f02ebb0d6472976aa7186f70b49dfad8623edd5595b740ff1559d2c HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 20 Mar 2023 18:55:03 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.googletagmanager.com/gtag/js?id=UA-7117339-4	142.250.74.136	200 OK	45 kB
URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-7117339-4 IP 142.250.74.136:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (2206) Size 45 kB (44635 bytes) Hash 70a5c387b3bd1066678890c8a6f115ba b215722942a1fab7eaf984aef7247b65734ed6ac d1ada05dd0241d9357500fa474bbfa9c5742fdd8c95e5dc51c790c58696d6904 HTTP Headers `GET /gtag/js?id=UA-7117339-4 HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hugedomains.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Mon, 20 Mar 2023 18:55:03 GMT expires: Mon, 20 Mar 2023 18:55:03 GMT cache-control: private, max-age=900 last-modified: Mon, 20 Mar 2023 18:00:00 GMT strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 44635 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	use.typekit.net/zyw6mds.css	23.33.119.19	200 OK	588 B
URL HTTP/2 use.typekit.net/zyw6mds.css IP 23.33.119.19:0 ASN #20940 Akamai International B.V. File type Unicode text, UTF-8 text, with very long lines (516) Size 588 B (588 bytes) Hash 1fae530a53c3514f06a2fc3e71ec6da4 3539186e5450bd660e3b31e796e893b0b89f2161 da55da319923caf0ec1a6a69fbbffb3d71a5beabf8fd97885ef2e0cbe896f1d3 HTTP Headers `GET /zyw6mds.css HTTP/1.1 Host: use.typekit.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://static.hugedomains.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx content-type: text/css;charset=utf-8 vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; cache-control: private, max-age=600, stale-while-revalidate=604800 timing-allow-origin: * access-control-allow-origin: * cross-origin-resource-policy: cross-origin content-encoding: gzip content-length: 588 date: Mon, 20 Mar 2023 18:55:03 GMT X-Firefox-Spdy: h2`

	fonts.googleapis.com/css?family=Noto+Sans:400,700&display=swap	142.250.74.74	200 OK	1.2 kB
URL HTTP/2 fonts.googleapis.com/css?family=Noto+Sans:400,700&display=swap IP 142.250.74.74:0 ASN #15169 GOOGLE File type data Size 1.2 kB (1157 bytes) Hash 3e4ebe191aabc22b38ad49b213b06cb0 471a3022cda6069fd76cadabdbd5e696d0ca0b21 f4865f23d8b4d6cb5bc9a7338fd92b5c77dfc0d571e3d73b7b1a35bc807f8923 HTTP Headers `GET /css?family=Noto+Sans:400,700&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://static.hugedomains.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Mon, 20 Mar 2023 18:55:03 GMT date: Mon, 20 Mar 2023 18:55:03 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	static.hugedomains.com/css/hdv3-css/reboot.min.css	172.67.70.191	200 OK	2.0 kB
URL HTTP/2 static.hugedomains.com/css/hdv3-css/reboot.min.css IP 172.67.70.191:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (3640), with CRLF line terminators Size 2.0 kB (1956 bytes) Hash 68162f1311d63ca456f25e5fd4f66ec2 37c5b7bbf94c4e541d98554a634949c81fd13607 831acdd9cc3e539a1359449612a66a321aaf19c97e4ae9a1cf52a6c5702da5c2 HTTP Headers GET /css/hdv3-css/reboot.min.css HTTP/1.1 Host: static.hugedomains.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hugedomains.com/ Cookie: _ga=GA1.2.1987687633.1654109076; sc_is_visitor_unique=rx5694535.1654525580.A6FC6F7B0E844FA056AA6FAA902E9B06.2.2.2.2.2.2.1.1.1 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 200 OK date: Mon, 20 Mar 2023 18:55:03 GMT content-type: text/css last-modified: Tue, 15 Nov 2022 18:51:51 GMT etag: W/"80fd745223f9d81:0" vary: Accept-Encoding x-powered-by: ASP.NET access-control-allow-origin: * cache-control: max-age=14400 cf-cache-status: HIT age: 4990 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BezIv0J2kDZz2Bjj3vDYKqWUf%2BcWxQZ7WPUL9tJQAnYl1tp5BNWAX0YRBLLzWvZpoPJM8YP6VOPnZkk%2Fyoxg%2BeMl%2FmBspHCv0gocreotrI7r7MP2dv5ki8eSSOzXqWlgYrJTyg%2Bvsbo%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7ab02ace2816b503-OSL content-encoding: br X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 7b9696c5a484fe48a260ec0ac6f4c2dc 5fa72a6aae12370de4d88d0aa205f293e5a85c5b 578156cb0f02ebb0d6472976aa7186f70b49dfad8623edd5595b740ff1559d2c HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 20 Mar 2023 18:55:03 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Type, Retry-After, Last-Modified, Content-Length, Pragma, Expires, ETag, Backoff, Alert, Cache-Control content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Mon, 20 Mar 2023 18:17:21 GMT age: 2262 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	p.typekit.net/p.css?s=1&k=zyw6mds&ht=tk&f=40411&a=11744788&app=typekit&e=css	95.101.11.112	200 OK	5 B
URL HTTP/2 p.typekit.net/p.css?s=1&k=zyw6mds&ht=tk&f=40411&a=11744788&app=typekit&e=css IP 95.101.11.112:0 ASN #20940 Akamai International B.V. File type ASCII text Size 5 B (5 bytes) Hash 83d24d4b43cc7eef2b61e66c95f3d158 f0cafc285ee23bb6c28c5166f305493c4331c84d 1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb HTTP Headers `GET /p.css?s=1&k=zyw6mds&ht=tk&f=40411&a=11744788&app=typekit&e=css HTTP/1.1 Host: p.typekit.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://use.typekit.net/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site` `HTTP/2 200 OK server: nginx content-type: text/css content-length: 5 last-modified: Thu, 28 Jul 2022 22:24:50 GMT etag: "62e30cb2-5" cache-control: public, max-age=604800 access-control-allow-origin: * cross-origin-resource-policy: cross-origin accept-ranges: bytes date: Mon, 20 Mar 2023 18:55:03 GMT X-Firefox-Spdy: h2`

	use.typekit.net/af/a91117/00000000000000003b9b257c/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n5&v=3	23.33.119.19	200 OK	20 kB
URL HTTP/2 use.typekit.net/af/a91117/00000000000000003b9b257c/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n5&v=3 IP 23.33.119.19:0 ASN #20940 Akamai International B.V. File type Web Open Font Format (Version 2), TrueType, length 19608, version 1.0\012- data Size 20 kB (19608 bytes) Hash 067422192cbb34922cab0a5cf0614816 f019792c33d128b074a639935cba0b585f5beb0e cfa0e92aa58452201274b8ef57ba1066a5465809a6937a24ee224052ca6d71e0 HTTP Headers GET /af/a91117/00000000000000003b9b257c/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n5&v=3 HTTP/1.1 Host: use.typekit.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.hugedomains.com Connection: keep-alive Referer: https://use.typekit.net/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site `HTTP/2 200 OK server: nginx content-type: application/font-woff2 content-length: 19608 etag: "98e73879b397d0b98b8a96538c3271fce677cf5c" timing-allow-origin: * access-control-allow-origin: * cross-origin-resource-policy: cross-origin cache-control: public, max-age=31536000 date: Mon, 20 Mar 2023 18:55:03 GMT X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 55ad4123e19b3babc18ece16b13ff042 97d003194e3a29a4f64596b981b5a4a730e263c9 3dc00b98beb78092083878847d238f0784a7e720f82e524bde4fa115cbf34078 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 20 Mar 2023 18:55:03 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.gstatic.com/s/notosans/v27/o-0IIpQlx3QUlC5A4PNr5TRA.woff2	216.58.207.227	200 OK	13 kB
URL HTTP/2 fonts.gstatic.com/s/notosans/v27/o-0IIpQlx3QUlC5A4PNr5TRA.woff2 IP 216.58.207.227:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 12860, version 1.0\012- data Size 13 kB (12860 bytes) Hash ab21c24efd75543e16e34807ebc6cdec eb2562f9729079333fbcbbe94868695669dd3301 88f00438d26021a325247c4427898f7c778a22976df9f1a9d9876429778bf265 HTTP Headers `GET /s/notosans/v27/o-0IIpQlx3QUlC5A4PNr5TRA.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.hugedomains.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 12860 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 16 Mar 2023 21:13:06 GMT expires: Fri, 15 Mar 2024 21:13:06 GMT cache-control: public, max-age=31536000 age: 337317 last-modified: Mon, 09 May 2022 18:27:55 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 55ad4123e19b3babc18ece16b13ff042 97d003194e3a29a4f64596b981b5a4a730e263c9 3dc00b98beb78092083878847d238f0784a7e720f82e524bde4fa115cbf34078 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 20 Mar 2023 18:55:03 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 3462d41d9283fedf24f278089d5d1570 b8bcea77656f775cdc34620322cc616216ed2b95 55e47b413ba648a98eb6e92ab73aee602912cd13e7da23ef3cea1490c1b9de50 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "55E47B413BA648A98EB6E92AB73AEE602912CD13E7DA23EF3CEA1490C1B9DE50" Last-Modified: Sun, 19 Mar 2023 18:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2215 Expires: Mon, 20 Mar 2023 19:31:58 GMT Date: Mon, 20 Mar 2023 18:55:03 GMT Connection: keep-alive`

	secure.statcounter.com/counter/counter.js	104.20.219.77	200 OK	35 kB
URL HTTP/2 secure.statcounter.com/counter/counter.js IP 104.20.219.77:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (43941), with no line terminators Size 35 kB (34717 bytes) Hash 69b3d2ce17204d3c6cd9e21fea8527d5 047941cdbead15d6797a51449817e523280f296c 6fe29400772cf16e3b212fea9e9d27d3dfb898b34ea91640f45f86531a1b6d79 HTTP Headers `GET /counter/counter.js HTTP/1.1 Host: secure.statcounter.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hugedomains.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK date: Mon, 20 Mar 2023 18:55:03 GMT content-type: application/javascript vary: Accept-Encoding last-modified: Thu, 16 Mar 2023 14:44:05 GMT etag: W/"64132b35-aba5" expires: Tue, 21 Mar 2023 02:38:59 GMT cache-control: max-age=43200 cf-cache-status: HIT age: 15364 server: cloudflare cf-ray: 7ab02ad069d9b521-OSL content-encoding: br X-Firefox-Spdy: h2`

	www.gstatic.com/recaptcha/releases/Trd6gj1dhC_fx0ma_AWHc1me/recaptcha__en.js	216.58.211.3	200 OK	165 kB
URL HTTP/2 www.gstatic.com/recaptcha/releases/Trd6gj1dhC_fx0ma_AWHc1me/recaptcha__en.js IP 216.58.211.3:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (576) Size 165 kB (164678 bytes) Hash f22f07ee02fbeed3958345c90b52b818 2aa44ea19d580589c06c2170103b4d0505e18cdb dc1eadf37f70bef92766d0c316d1da7af283b84e5c309a4732d8ed35d7bbfb84 HTTP Headers `GET /recaptcha/releases/Trd6gj1dhC_fx0ma_AWHc1me/recaptcha__en.js HTTP/1.1 Host: www.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.hugedomains.com Connection: keep-alive Referer: https://www.hugedomains.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha" report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]} content-length: 164678 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 15 Mar 2023 11:44:52 GMT expires: Thu, 14 Mar 2024 11:44:52 GMT cache-control: public, max-age=31536000 last-modified: Mon, 13 Mar 2023 02:02:14 GMT content-type: text/javascript vary: Accept-Encoding age: 457811 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	www.google-analytics.com/collect?v=1&_v=j99&a=1597080295&t=event&_s=2&dl=https%3A%2F%2Fwww.hugedomains.com%2Fdomain_profile.cfm%3Fd%3Dx-ti.com&ul=en-us&de=UTF-8&dt=HugeDomains.com&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&ec=general&ea=pageLoad&_u=4CDAAUABAAAAACAAI~&jid=&gjid=&cid=1987687633.1654109076&tid=UA-7117339-4&_gid=335664437.1679338505&gtm=457e33f0&cd1=1&cd2=0&cd3=HDv2&z=1488837861	142.250.74.78	200 OK	35 B
URL HTTP/2 www.google-analytics.com/collect?v=1&_v=j99&a=1597080295&t=event&_s=2&dl=https%3A%2F%2Fwww.hugedomains.com%2Fdomain_profile.cfm%3Fd%3Dx-ti.com&ul=en-us&de=UTF-8&dt=HugeDomains.com&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&ec=general&ea=pageLoad&_u=4CDAAUABAAAAACAAI~&jid=&gjid=&cid=1987687633.1654109076&tid=UA-7117339-4&_gid=335664437.1679338505&gtm=457e33f0&cd1=1&cd2=0&cd3=HDv2&z=1488837861 IP 142.250.74.78:0 ASN #15169 GOOGLE File type GIF image data, version 89a, 1 x 1\012- data Size 35 B (35 bytes) Hash 28d6814f309ea289f847c69cf91194c6 0f4e929dd5bb2564f7ab9c76338e04e292a42ace 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015 HTTP Headers GET /collect?v=1&_v=j99&a=1597080295&t=event&_s=2&dl=https%3A%2F%2Fwww.hugedomains.com%2Fdomain_profile.cfm%3Fd%3Dx-ti.com&ul=en-us&de=UTF-8&dt=HugeDomains.com&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&ec=general&ea=pageLoad&_u=4CDAAUABAAAAACAAI~&jid=&gjid=&cid=1987687633.1654109076&tid=UA-7117339-4&_gid=335664437.1679338505&gtm=457e33f0&cd1=1&cd2=0&cd3=HDv2&z=1488837861 HTTP/1.1 Host: www.google-analytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hugedomains.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 200 OK access-control-allow-origin: * pragma: no-cache x-content-type-options: nosniff cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 35 date: Mon, 20 Mar 2023 16:34:51 GMT expires: Mon, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate age: 8412 last-modified: Sun, 17 May 1998 03:00:00 GMT content-type: image/gif alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	www.google-analytics.com/j/collect?v=1&_v=j99&a=1597080295&t=pageview&_s=1&dl=https%3A%2F%2Fwww.hugedomains.com%2Fdomain_profile.cfm%3Fd%3Dx-ti.com&ul=en-us&de=UTF-8&dt=HugeDomains.com&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=4CDAAUABAAAAACAAI~&jid=120041001&gjid=586629108&cid=1987687633.1654109076&tid=UA-7117339-4&_gid=335664437.1679338505&_r=1&gtm=457e33f0&z=656053990	142.250.74.78	200 OK	2 B
URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=1597080295&t=pageview&_s=1&dl=https%3A%2F%2Fwww.hugedomains.com%2Fdomain_profile.cfm%3Fd%3Dx-ti.com&ul=en-us&de=UTF-8&dt=HugeDomains.com&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=4CDAAUABAAAAACAAI~&jid=120041001&gjid=586629108&cid=1987687633.1654109076&tid=UA-7117339-4&_gid=335664437.1679338505&_r=1&gtm=457e33f0&z=656053990 IP 142.250.74.78:0 ASN #15169 GOOGLE File type ASCII text, with no line terminators Size 2 B (2 bytes) Hash cc7a1e792bca8ccb1946b7a07f6dbc03 11a2757082428311f587b7664fa9840376137f80 de3246094525b21a870fc7d2a67490d0132535c6fa5993755c549f1a9d1bd8af HTTP Headers POST /j/collect?v=1&_v=j99&a=1597080295&t=pageview&_s=1&dl=https%3A%2F%2Fwww.hugedomains.com%2Fdomain_profile.cfm%3Fd%3Dx-ti.com&ul=en-us&de=UTF-8&dt=HugeDomains.com&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=4CDAAUABAAAAACAAI~&jid=120041001&gjid=586629108&cid=1987687633.1654109076&tid=UA-7117339-4&_gid=335664437.1679338505&_r=1&gtm=457e33f0&z=656053990 HTTP/1.1 Host: www.google-analytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 0 Origin: https://www.hugedomains.com Connection: keep-alive Referer: https://www.hugedomains.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK access-control-allow-origin: https://www.hugedomains.com date: Mon, 20 Mar 2023 18:55:03 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate last-modified: Sun, 17 May 1998 03:00:00 GMT access-control-allow-credentials: true x-content-type-options: nosniff content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 2e64fc6f9ae4228dd2fc48d61e1d8841 ae781abd01bae215d2ccc65fe308aaa4e3df6706 f8f424b8de4cb7cea5608432bbad1786f02cbc7e3c111f5d395288065f134fa0 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 20 Mar 2023 18:55:04 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-7117339-4&cid=1987687633.1654109076&jid=120041001&gjid=586629108&_gid=335664437.1679338505&_u=4CDAAUAAAAAAACAAI~&z=1082078409	108.177.14.154	200 OK	4 B
URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-7117339-4&cid=1987687633.1654109076&jid=120041001&gjid=586629108&_gid=335664437.1679338505&_u=4CDAAUAAAAAAACAAI~&z=1082078409 IP 108.177.14.154:0 ASN #15169 GOOGLE File type ASCII text, with no line terminators Size 4 B (4 bytes) Hash 48c0473b7821185d937e685216e2168b 3743e47f8a429a5e87b86cb582d78940733d9d2e 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a HTTP Headers POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-7117339-4&cid=1987687633.1654109076&jid=120041001&gjid=586629108&_gid=335664437.1679338505&_u=4CDAAUAAAAAAACAAI~&z=1082078409 HTTP/1.1 Host: stats.g.doubleclick.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 0 Origin: https://www.hugedomains.com Connection: keep-alive Referer: https://www.hugedomains.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK access-control-allow-origin: https://www.hugedomains.com strict-transport-security: max-age=10886400; includeSubDomains; preload date: Mon, 20 Mar 2023 18:55:04 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate last-modified: Sun, 17 May 1998 03:00:00 GMT access-control-allow-credentials: true x-content-type-options: nosniff content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 4 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash f012cdd7cf0de250dad5fe3f278cb616 cb16e7ba2d5b470c7ae19546e0b51ce5f2019af7 9e4071dcc60e43a82f4a24c60c8be0eecc25dcf39682c3bbf7d4ac50d6d1f5d2 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 20 Mar 2023 18:55:04 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	push.services.mozilla.com/	100.20.70.168	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 100.20.70.168:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: i8km0UP9TuAG0KScN1oI2Q== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: KCd+JQsGN/6aeG6CX6N2DFOjM2A=`

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 2eb57e50cf85e854f2979aae08edfbbd c1d8f0aa625a907989b1eedd64dfaa8b59f73d14 e36ae9f68c31c5d9f1eb6a96b26f97b94b8d61f8a47aa1c576bc0f816e3a2e14 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 20 Mar 2023 18:55:04 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-7117339-4&cid=1987687633.1654109076&jid=120041001&_u=4CDAAUAAAAAAACAAI~&z=583220154	216.58.207.227	200 OK	42 B
URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-7117339-4&cid=1987687633.1654109076&jid=120041001&_u=4CDAAUAAAAAAACAAI~&z=583220154 IP 216.58.207.227:0 ASN #15169 GOOGLE File type GIF image data, version 89a, 1 x 1\012- data Size 42 B (42 bytes) Hash d89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629 HTTP Headers GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j99&tid=UA-7117339-4&cid=1987687633.1654109076&jid=120041001&_u=4CDAAUAAAAAAACAAI~&z=583220154 HTTP/1.1 Host: www.google.no User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hugedomains.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 200 OK p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Mon, 20 Mar 2023 18:55:04 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate content-type: image/gif x-content-type-options: nosniff server: cafe content-length: 42 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.163	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.163:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 2eb57e50cf85e854f2979aae08edfbbd c1d8f0aa625a907989b1eedd64dfaa8b59f73d14 e36ae9f68c31c5d9f1eb6a96b26f97b94b8d61f8a47aa1c576bc0f816e3a2e14 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 20 Mar 2023 18:55:04 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2	216.58.207.227	200 OK	15 kB
URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP 216.58.207.227:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data Size 15 kB (15344 bytes) Hash 5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc HTTP Headers `GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.google.com Connection: keep-alive Referer: https://www.google.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15344 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 16 Mar 2023 21:48:03 GMT expires: Fri, 15 Mar 2024 21:48:03 GMT cache-control: public, max-age=31536000 age: 335221 last-modified: Mon, 16 Oct 2017 17:32:55 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash de95776582936b8e129e876cf6d80fa8 0233251e1cf0123f1260d980d7c8ef92718723f9 49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36" Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17519 Expires: Mon, 20 Mar 2023 23:47:04 GMT Date: Mon, 20 Mar 2023 18:55:05 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash de95776582936b8e129e876cf6d80fa8 0233251e1cf0123f1260d980d7c8ef92718723f9 49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36" Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17519 Expires: Mon, 20 Mar 2023 23:47:04 GMT Date: Mon, 20 Mar 2023 18:55:05 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash de95776582936b8e129e876cf6d80fa8 0233251e1cf0123f1260d980d7c8ef92718723f9 49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36" Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17519 Expires: Mon, 20 Mar 2023 23:47:04 GMT Date: Mon, 20 Mar 2023 18:55:05 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash de95776582936b8e129e876cf6d80fa8 0233251e1cf0123f1260d980d7c8ef92718723f9 49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36" Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17519 Expires: Mon, 20 Mar 2023 23:47:04 GMT Date: Mon, 20 Mar 2023 18:55:05 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash de95776582936b8e129e876cf6d80fa8 0233251e1cf0123f1260d980d7c8ef92718723f9 49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36" Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17519 Expires: Mon, 20 Mar 2023 23:47:04 GMT Date: Mon, 20 Mar 2023 18:55:05 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bd8451-f062-4a29-9566-2fa60e012de2.jpeg	34.120.237.76	200 OK	12 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bd8451-f062-4a29-9566-2fa60e012de2.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 12 kB (12424 bytes) Hash e1533684819dcbf9e77684c19eb86465 489f8f036efd23ce36085af127af7d6c794fe00b 9154a471013bd0972fad93ea4eeaf4b23f66dd1534e0d9cc302263aca0f94bd1 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bd8451-f062-4a29-9566-2fa60e012de2.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 12424 x-amzn-requestid: 64a89fbe-4ac0-4059-a481-37c30ae36928 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: B8eOuEG2oAMF1Qw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6414dd91-0492160f3e8196a23fc53eda;Sampled=0 x-amzn-remapped-date: Fri, 17 Mar 2023 21:37:21 GMT x-amz-cf-pop: HIO50-C1, SEA19-C3 x-cache: Miss from cloudfront x-amz-cf-id: tx--67yg-v6sA1zslsl2iUXzLbdnWhU-cMqTDpxldZg-qog8-urKcA== via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 c5c7edc18be1805f007e0576da02e554.cloudfront.net (CloudFront), 1.1 google date: Mon, 20 Mar 2023 08:59:45 GMT age: 35720 etag: "489f8f036efd23ce36085af127af7d6c794fe00b" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8afa2cdb-a5f3-4c78-a2ab-132c8b752b4b.png	34.120.237.76	200 OK	10 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8afa2cdb-a5f3-4c78-a2ab-132c8b752b4b.png IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 10 kB (10338 bytes) Hash 78453ba98b72eff3879ef163b59c86ed 80519bb3726ee1f9f211344cd433cefaed3a7f2e 61adfeff11af9583355ac7d1500e8a8d97357b2846f151f2421001994fb06655 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8afa2cdb-a5f3-4c78-a2ab-132c8b752b4b.png HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10338 x-amzn-requestid: 9f880b5b-056c-44bb-a811-36ea27c232aa x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: BvSgFGENoAMFuVw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-640f9799-2318d444248f7610300c658f;Sampled=0 x-amzn-remapped-date: Mon, 13 Mar 2023 21:37:29 GMT x-amz-cf-pop: SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: xfkObFQbeYQQjIJ4FWQ7xKbH5FPxBQ1vkTDCwWCM6IcAAu8H31BNhQ== via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 ef8f66c83aecd87910ce2e1153544a20.cloudfront.net (CloudFront), 1.1 google date: Mon, 20 Mar 2023 07:04:48 GMT age: 42617 etag: "80519bb3726ee1f9f211344cd433cefaed3a7f2e" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe323f22e-6800-4578-a34f-a8fa940499e0.jpeg	34.120.237.76	200 OK	8.2 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe323f22e-6800-4578-a34f-a8fa940499e0.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.2 kB (8189 bytes) Hash 6645ef8b7e2b10326cc1cb7c76f82769 cc7b05fa466c6ecd6c8a0e0d6ccc96ecbd59aced 1076fa495f0b7cc23922f64cc6a6f596de9a6f08ea7549eef785d804db0be7fc HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe323f22e-6800-4578-a34f-a8fa940499e0.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8189 x-amzn-requestid: 3815c61d-6d05-4794-bd9a-d417d1270527 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: B_wqgGsdIAMFi6g= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64162e42-6af86b2a21b89d38559ca754;Sampled=0 x-amzn-remapped-date: Sat, 18 Mar 2023 21:33:54 GMT x-amz-cf-pop: SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: 615Du8dUBpZq6He1j_lB3Jl8nVFhWYBVO6qfBcFwcGIlpjDMMLXQUg== via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 cca7d60248a961ff8fc8c5640024b652.cloudfront.net (CloudFront), 1.1 google date: Sun, 19 Mar 2023 22:15:51 GMT age: 74354 etag: "cc7b05fa466c6ecd6c8a0e0d6ccc96ecbd59aced" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7cd6847f-4682-4476-ab1c-3a96a63feea0.jpeg	34.120.237.76	200 OK	6.8 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7cd6847f-4682-4476-ab1c-3a96a63feea0.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 6.8 kB (6839 bytes) Hash 2dd89721d1aeaf671e76434c7d8a4ad7 a3dedec80d68e8f0326548d03b0e594ffc87ecd1 ff593609540ed01673c58483ce57a40cc712000d32427ccf2486fd0035728448 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7cd6847f-4682-4476-ab1c-3a96a63feea0.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 6839 x-amzn-requestid: c478a5c6-cb9b-4324-be41-b79c32f99570 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CDDU6GKyoAMF6uw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64177f52-180dc15d2627e08d3182a761;Sampled=0 x-amzn-remapped-date: Sun, 19 Mar 2023 21:32:02 GMT x-amz-cf-pop: HIO50-C1, SEA19-C3 x-cache: Miss from cloudfront x-amz-cf-id: QBgnZBxWku97O-CIkgmOTJe5g2DCZOozVhHj_0ViEP6w7hDeXPhmeg== via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 5c7981a979abd51ba7e5ca7d464fd048.cloudfront.net (CloudFront), 1.1 google date: Sun, 19 Mar 2023 22:14:42 GMT age: 74423 etag: "a3dedec80d68e8f0326548d03b0e594ffc87ecd1" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1c8c491-aa6d-4268-a72a-1f4233962425.jpeg	34.120.237.76	200 OK	7.2 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1c8c491-aa6d-4268-a72a-1f4233962425.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.2 kB (7249 bytes) Hash 4e5aa79770d71507827e79149031b5cf 338ee74f53fac2b19a90981bc4b02a3c3722a1fa 81df6f2312df6e488ae91c172ecf872d694497ffe80500f71eb97e6c06ff5f5f HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1c8c491-aa6d-4268-a72a-1f4233962425.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 7249 x-amzn-requestid: dfaf4924-b8c3-4b6b-a079-7c3903fdf4fb x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CDDVjGJyIAMFS9w= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64177f56-6379351b215dc2d9638de9ea;Sampled=0 x-amzn-remapped-date: Sun, 19 Mar 2023 21:32:06 GMT x-amz-cf-pop: HIO50-C1, SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: XYA6F9VzUqxozJS4OsX-TKy81mOHUB7N6L7rkCaQJmXe5n-a_Zce-Q== via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 50faaaa196a6b0875217ef7827f97d7c.cloudfront.net (CloudFront), 1.1 google date: Sun, 19 Mar 2023 22:15:51 GMT age: 74354 etag: "338ee74f53fac2b19a90981bc4b02a3c3722a1fa" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7963a1ee-914e-454a-a5e7-9466ab707e33.jpeg	34.120.237.76	200 OK	7.7 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7963a1ee-914e-454a-a5e7-9466ab707e33.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.7 kB (7695 bytes) Hash 302595cc68fe8cf12121d0f652b3194d e5532a3fed552246e8a63ea2ba75e174273a7b9f 6ca3599a9af06f51d4dc205d4ebd8f7f8b38c54864b6b478eac8c0d1adbc97c6 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7963a1ee-914e-454a-a5e7-9466ab707e33.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 7695 x-amzn-requestid: 1009077b-14aa-42e5-86f1-de94b8b2aba0 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CDETIHf8oAMFxEA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-641780e0-07bbb0376f1c1941731e00ba;Sampled=0 x-amzn-remapped-date: Sun, 19 Mar 2023 21:38:40 GMT x-amz-cf-pop: HIO50-C1, SEA19-C3 x-cache: Miss from cloudfront x-amz-cf-id: 388_JExXl_vwNTUh_69QfjoGz-cNeQwwrp6kpAP1Hhv3VvtgeeXbrw== via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 a06140ffee86972bad90c57fc682df36.cloudfront.net (CloudFront), 1.1 google date: Sun, 19 Mar 2023 21:55:31 GMT age: 75574 etag: "e5532a3fed552246e8a63ea2ba75e174273a7b9f" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	www.hugedomains.com/cdn-cgi/challenge-platform/h/g/scripts/alpha/invisible.js?ts=1679328000	172.67.70.191	200 OK	0 B
URL HTTP/2 www.hugedomains.com/cdn-cgi/challenge-platform/h/g/scripts/alpha/invisible.js?ts=1679328000 IP 172.67.70.191:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /cdn-cgi/challenge-platform/h/g/scripts/alpha/invisible.js?ts=1679328000 HTTP/1.1 Host: www.hugedomains.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Cookie: site_version_phase=108; site_version=HDv3; HD=5AF5169D45CF49129DAECA323D08C2B0050; _ga=GA1.2.1987687633.1654109076; HDS=CF007C19EBF336E7781E2D34C1192F5621074E6A28B450787663CB58260A1DED191BFFEE1D7EDE0DAF670BED68273848; sc_is_visitor_unique=rx5694535.1679338505.A6FC6F7B0E844FA056AA6FAA902E9B06.3.3.3.3.3.3.2.2.2 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Mon, 20 Mar 2023 18:55:03 GMT content-type: application/javascript; charset=UTF-8 vary: accept-encoding x-control-type-options: nosniff cache-control: max-age=14400, public report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eCQYtyrCUmn%2BfITa2Ym%2Bwfnlm%2Fc12VG%2FHX8jYrsFP5071w7rka4nniG7YgwkBVOKGURxydSUJuoat4rcNIXmByXp4IkL0oRVszoX6qC7ZE%2B0C6x1nO841blcfKPCTK4t%2Fvl1PJY%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7ab02ad0cd9eb503-OSL content-encoding: br X-Firefox-Spdy: h2

	static.hugedomains.com/css/hdv3-css/responsive.css?r=20201105a	172.67.70.191	200 OK	0 B
URL HTTP/2 static.hugedomains.com/css/hdv3-css/responsive.css?r=20201105a IP 172.67.70.191:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /css/hdv3-css/responsive.css?r=20201105a HTTP/1.1 Host: static.hugedomains.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hugedomains.com/ Cookie: _ga=GA1.2.1987687633.1654109076; sc_is_visitor_unique=rx5694535.1654525580.A6FC6F7B0E844FA056AA6FAA902E9B06.2.2.2.2.2.2.1.1.1 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 200 OK date: Mon, 20 Mar 2023 18:55:03 GMT content-type: text/css access-control-allow-origin: * cf-bgj: minify cf-polished: origSize=91313 etag: W/"801d162c5bead81:0" last-modified: Thu, 27 Oct 2022 23:23:51 GMT vary: Accept-Encoding x-powered-by: ASP.NET cache-control: max-age=14400 cf-cache-status: HIT age: 6180 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=juSBCsIy0dlT45pCev4lmmtLYtLSMjHvzKig6q3QVpJEieFyLDaOUJhGetocXIP9nBswHMtiJJeWijaglyH8TGG%2FyDsm89lnbE0JtnR4xuDkJD7X0oaLRowNG6j7J4E9sb%2BsBSSecwc%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7ab02ace2810b503-OSL content-encoding: br X-Firefox-Spdy: h2

	static.hugedomains.com/js/hdv3-js/script.js	172.67.70.191	200 OK	0 B
URL HTTP/2 static.hugedomains.com/js/hdv3-js/script.js IP 172.67.70.191:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /js/hdv3-js/script.js HTTP/1.1 Host: static.hugedomains.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hugedomains.com/ Cookie: _ga=GA1.2.1987687633.1654109076; sc_is_visitor_unique=rx5694535.1654525580.A6FC6F7B0E844FA056AA6FAA902E9B06.2.2.2.2.2.2.1.1.1 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 200 OK date: Mon, 20 Mar 2023 18:55:03 GMT content-type: application/javascript access-control-allow-origin: * cf-bgj: minify cf-polished: origSize=16782 etag: W/"04e7c371aebd81:0" last-modified: Fri, 28 Oct 2022 22:11:24 GMT vary: Accept-Encoding x-powered-by: ASP.NET cache-control: max-age=14400 cf-cache-status: HIT age: 1336 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vs5A45vyN85iZs4I%2FyASyckt8mUAafSEluwggOuY7ZNNmHcYGxP29jx0i5Xz8M0EtLWIq%2F%2FHnjXnQ%2F8p6i762DB82VhOcwHZelqd2qX2loE%2FwYM%2Fi6PgJHXi0%2Bnbsnwsq%2F86qMdQyI0%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7ab02ace5876b503-OSL content-encoding: br X-Firefox-Spdy: h2

	static.hugedomains.com/js/hdv3-js/jquery.min.js	172.67.70.191	200 OK	0 B
URL HTTP/2 static.hugedomains.com/js/hdv3-js/jquery.min.js IP 172.67.70.191:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /js/hdv3-js/jquery.min.js HTTP/1.1 Host: static.hugedomains.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hugedomains.com/ Cookie: _ga=GA1.2.1987687633.1654109076; sc_is_visitor_unique=rx5694535.1654525580.A6FC6F7B0E844FA056AA6FAA902E9B06.2.2.2.2.2.2.1.1.1 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 200 OK date: Mon, 20 Mar 2023 18:55:03 GMT content-type: application/javascript last-modified: Mon, 20 Jul 2020 17:04:33 GMT etag: W/"8026d0d6b75ed61:0" vary: Accept-Encoding x-powered-by: ASP.NET access-control-allow-origin: * cache-control: max-age=14400 cf-cache-status: HIT age: 3633 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WD%2B%2Ftic6Ed8wjwAJj5KfheKiTRd8%2BidEuEZ8JdOs%2FxGXm7BwiLAsji2Znf50VpDzPdabwTYxkYPeun5LlAYX8EmJJ6S9QIcIimGa6ZJWodYB4pEvwudQeeIWbJ8cX3AHd5UQuAmJH7E%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7ab02ace5875b503-OSL content-encoding: br X-Firefox-Spdy: h2

	www.hugedomains.com/favicon.ico	172.67.70.191	200 OK	0 B
URL HTTP/2 www.hugedomains.com/favicon.ico IP 172.67.70.191:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /favicon.ico HTTP/1.1 Host: www.hugedomains.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hugedomains.com/domain_profile.cfm?d=x-ti.com Cookie: site_version_phase=108; site_version=HDv3; HD=5AF5169D45CF49129DAECA323D08C2B0050; _ga=GA1.2.1987687633.1654109076; HDS=CF007C19EBF336E7781E2D34C1192F5621074E6A28B450787663CB58260A1DED191BFFEE1D7EDE0DAF670BED68273848; sc_is_visitor_unique=rx5694535.1679338505.A6FC6F7B0E844FA056AA6FAA902E9B06.3.3.3.3.3.3.2.2.2 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Mon, 20 Mar 2023 18:55:04 GMT content-type: image/x-icon cache-control: private last-modified: Mon, 20 Jul 2020 17:04:28 GMT etag: W/"036d5d3b75ed61:0" access-control-allow-origin: * x-lbdetail: nonimg 1150 ctimage/x-icon x-powered-by: ASP.NET lb: TclPrdLbHd1 cf-cache-status: BYPASS report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8Jz4gk7gFAB%2FNKObN1l%2Fyr6wjigu5Q9cHLCsIyD%2FVQdlMiYKAyt2bgO5Ar0rQKNXeinTuzulFNC7ShCt%2BehBrVAOu2z13Gqcl15ZWCzTEoa0yvQHtkrGEK9iZrWffPWjtY2Y1mg%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7ab02ad0fdeab503-OSL content-encoding: br X-Firefox-Spdy: h2

	www.hugedomains.com/domain_profile.cfm?d=x-ti.com	172.67.70.191	200 OK	0 B
URL HTTP/2 www.hugedomains.com/domain_profile.cfm?d=x-ti.com IP 172.67.70.191:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /domain_profile.cfm?d=x-ti.com HTTP/1.1 Host: www.hugedomains.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Cookie: site_version_phase=108; site_version=HDv3; HD=5AF5169D45CF49129DAECA323D08C2B0050; _ga=GA1.2.1987687633.1654109076; HDS=CF007C19EBF336E7781E2D34C1192F5621074E6A28B450787663CB58260A1DED191BFFEE1D7EDE0DAF670BED68273848; sc_is_visitor_unique=rx5694535.1654525580.A6FC6F7B0E844FA056AA6FAA902E9B06.2.2.2.2.2.2.1.1.1 Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1 HTTP/2 200 OK date: Mon, 20 Mar 2023 18:55:03 GMT content-type: text/html; charset=utf-8 cache-control: private vary: Accept-Encoding set-cookie: captcha-tracker=; expires=Sun, 19-Mar-2023 18:55:03 GMT; path=/ x-powered-by: ASP.NET lb: TclPrdLbHd1 cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZwisseJR42Igw8Yjw3RURuIRUgmQIFe4V9SBpH6MTByK9ZRW%2Bm5mGzbYmI9yoeyzrI%2FXuUM%2FxKTF3f9WRPJS8xr8jRuLvAGHbQLUR%2F9d3I2qeZbChJQVTlTQVNRQBdzDRQ0%2F5tc%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7ab02acc9da9b503-OSL content-encoding: br X-Firefox-Spdy: h2

	c.statcounter.com/t.php?sc_project=5694535&u1=A6FC6F7B0E844FA056AA6FAA902E9B06&java=1&security=91f91c19&sc_snum=1&sess=c5bd59&p=0&rcat=d&rdom=d&rdomg=new&bb=1&jg=24812925&rr=3.3.3.3.3.3.2.2.2&resolution=1280&h=1024&camefrom=&u=https%3A//www.hugedomains.com/domain_profile.cfm%3Fd%3Dx-ti.com&t=HugeDomains.com&invisible=1&sc_rum_e_s=1083&sc_rum_e_e=1090&sc_rum_f_s=0&sc_rum_f_e=1070&get_config=true	104.20.219.77	200 OK	0 B
URL HTTP/2 c.statcounter.com/t.php?sc_project=5694535&u1=A6FC6F7B0E844FA056AA6FAA902E9B06&java=1&security=91f91c19&sc_snum=1&sess=c5bd59&p=0&rcat=d&rdom=d&rdomg=new&bb=1&jg=24812925&rr=3.3.3.3.3.3.2.2.2&resolution=1280&h=1024&camefrom=&u=https%3A//www.hugedomains.com/domain_profile.cfm%3Fd%3Dx-ti.com&t=HugeDomains.com&invisible=1&sc_rum_e_s=1083&sc_rum_e_e=1090&sc_rum_f_s=0&sc_rum_f_e=1070&get_config=true IP 104.20.219.77:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /t.php?sc_project=5694535&u1=A6FC6F7B0E844FA056AA6FAA902E9B06&java=1&security=91f91c19&sc_snum=1&sess=c5bd59&p=0&rcat=d&rdom=d&rdomg=new&bb=1&jg=24812925&rr=3.3.3.3.3.3.2.2.2&resolution=1280&h=1024&camefrom=&u=https%3A//www.hugedomains.com/domain_profile.cfm%3Fd%3Dx-ti.com&t=HugeDomains.com&invisible=1&sc_rum_e_s=1083&sc_rum_e_e=1090&sc_rum_f_s=0&sc_rum_f_e=1070&get_config=true HTTP/1.1 Host: c.statcounter.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.hugedomains.com Connection: keep-alive Referer: https://www.hugedomains.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK date: Mon, 20 Mar 2023 18:55:04 GMT content-type: application/json p3p: policyref="http://www.statcounter.com/w3c/p3p.xml", CP="ADMa OUR COM NAV NID DSP NOI COR" expires: Mon, 26 Jul 1997 05:00:00 GMT set-cookie: is_unique=sc5694535.1679338503.0; SameSite=None; Secure; Expires=Saturday, 18-Mar-2028 12:55:03 MDT; Path=/; Domain=.statcounter.com access-control-allow-origin: https://www.hugedomains.com access-control-allow-credentials: true cf-cache-status: DYNAMIC server: cloudflare cf-ray: 7ab02ad11b05b521-OSL content-encoding: br X-Firefox-Spdy: h2

	cdn.jsdelivr.net/gh/fancyapps/fancybox@3.5.7/dist/jquery.fancybox.min.css	104.16.85.20	200 OK	0 B
URL HTTP/2 cdn.jsdelivr.net/gh/fancyapps/fancybox@3.5.7/dist/jquery.fancybox.min.css IP 104.16.85.20:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /gh/fancyapps/fancybox@3.5.7/dist/jquery.fancybox.min.css HTTP/1.1 Host: cdn.jsdelivr.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.hugedomains.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Mon, 20 Mar 2023 18:55:03 GMT content-type: text/css; charset=utf-8 access-control-allow-origin: * access-control-expose-headers: * timing-allow-origin: * cache-control: public, max-age=31536000, s-maxage=31536000, immutable cross-origin-resource-policy: cross-origin x-content-type-options: nosniff strict-transport-security: max-age=31536000; includeSubDomains; preload x-jsd-version: 3.5.7 x-jsd-version-type: version etag: W/"31fb-G+m3m+AqHPxdlsSl4P649HK6vZU" x-served-by: cache-fra-eddf8230072-FRA, cache-yyz4573-YYZ x-cache: HIT, HIT vary: Accept-Encoding alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 cf-cache-status: HIT age: 2283669 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WSMLC7zUjNXwWg8AuT3DohiMq%2F1RQFDrQKV2kSOixQthJHr8nmTpdbhRZea0KiVesw6xB1M%2BTgZ%2BftX%2FDqu1X1TxInby4K4KaphCZb%2B8CneSgf8iRpcdh5DOTrlgHKg6C9I%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7ab02ace4ed50b55-OSL content-encoding: br X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (21)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML