ocsp.buypass.com/
1.7 kB IP
ASN #20940 Akamai International B.V.
Hash 6fa134387f969a677ae255d4c6a4074b
960dd485740ca410b3007a8f061663c2e3ad28b2
ef08a1355804140639e63e720a63cf6fbefb8e8cca807fabd50db11bc08683fa
POST / HTTP/1.1
Host: ocsp.buypass.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 78
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Access-Control-Allow-Origin: https://www.buypass.no
Access-Control-Allow-Headers: Content-Type,Authorization,X-Requested-With,Content-Length,Accept,Origin,X-Buypass-Session-Id,X-Buypass-Locale
Access-Control-Allow-Credentials: false
Access-Control-Allow-Methods: GET,POST
MDC-correlationId: 50fb68e2-10aa-4da6-acf4-cae080bbedae
Content-Length: 1701
Date: Wed, 13 Sep 2023 23:19:15 GMT
Connection: keep-alive
promotions.eats.com.sg/e-hfjbsndsjdkb.html
200 OK 554 B URL User Request GET HTTP/1.1 promotions.eats.com.sg/e-hfjbsndsjdkb.html
IP
Certificate IssuerBuypass AS-983163327
Subjectpromotions.eats.com.sg
Fingerprint21:2E:09:F9:C3:67:C1:D6:D7:19:57:93:AC:22:32:B7:8C:00:2F:CE
ValidityTue, 27 Jun 2023 07:11:54 GMT - Sat, 23 Dec 2023 22:59:00 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 37df7c945f9baa1a9be06b5852a022b5
45c2223d92c159e410e17e29345676288637ec33
3019b471b086d29098a270c849be9fb4b5847d4b0dd19f778c185da5bba4bcbb
Analyzer Verdict Alert OpenPhish phishing Microsoft OneDrive
GET /e-hfjbsndsjdkb.html HTTP/1.1
Host: promotions.eats.com.sg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Wed, 13 Sep 2023 23:19:15 GMT
Content-Type: text/html
Content-Length: 554
Last-Modified: Mon, 11 Sep 2023 13:05:00 GMT
Connection: keep-alive
ETag: "64ff107c-22a"
Accept-Ranges: bytes
promotions.eats.com.sg/cgi/jquery.js
200 OK 291 kB URL GET HTTP/1.1 promotions.eats.com.sg/cgi/jquery.js
IP
Requested by https://promotions.eats.com.sg/e-hfjbsndsjdkb.html
Certificate IssuerBuypass AS-983163327
Subjectpromotions.eats.com.sg
Fingerprint21:2E:09:F9:C3:67:C1:D6:D7:19:57:93:AC:22:32:B7:8C:00:2F:CE
ValidityTue, 27 Jun 2023 07:11:54 GMT - Sat, 23 Dec 2023 22:59:00 GMT
File type ASCII text, with CRLF line terminators
Size 291 kB (290960 bytes)
Hash 24fa855a7678b1938f16235881e3e80b
67b6c9946134456d67c07765d230130d8679f8c6
f2a84bc4f4cb8ae04162f42f1f3ebed1e05725d9b5bf666b885356c7698a071f
GET /cgi/jquery.js HTTP/1.1
Host: promotions.eats.com.sg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://promotions.eats.com.sg/e-hfjbsndsjdkb.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Wed, 13 Sep 2023 23:19:16 GMT
Content-Type: application/javascript
Content-Length: 290960
Last-Modified: Mon, 11 Sep 2023 13:02:46 GMT
Connection: keep-alive
ETag: "64ff0ff6-47090"
Accept-Ranges: bytes
promotions.eats.com.sg/cgi/basic.js
200 OK 23 kB URL GET HTTP/1.1 promotions.eats.com.sg/cgi/basic.js
IP
Requested by https://promotions.eats.com.sg/e-hfjbsndsjdkb.html
Certificate IssuerBuypass AS-983163327
Subjectpromotions.eats.com.sg
Fingerprint21:2E:09:F9:C3:67:C1:D6:D7:19:57:93:AC:22:32:B7:8C:00:2F:CE
ValidityTue, 27 Jun 2023 07:11:54 GMT - Sat, 23 Dec 2023 22:59:00 GMT
File type ASCII text, with very long lines (22660), with CRLF line terminators
Hash bb5b8dec4bb9cfe56d2a8239bd06ac55
8296e7bdf86623815e64c60a942b82b6ec783d09
4c056c0b0437223d0c19e8fb499936b1d5b6180ab5d12624545550c5f9a30080
GET /cgi/basic.js HTTP/1.1
Host: promotions.eats.com.sg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://promotions.eats.com.sg/e-hfjbsndsjdkb.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Wed, 13 Sep 2023 23:19:16 GMT
Content-Type: application/javascript
Content-Length: 23209
Last-Modified: Mon, 11 Sep 2023 13:02:31 GMT
Connection: keep-alive
ETag: "64ff0fe7-5aa9"
Accept-Ranges: bytes
cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js
200 OK 6.2 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js
IP
Requested by https://promotions.eats.com.sg/e-hfjbsndsjdkb.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (19015)
Hash 70d3fda195602fe8b75e0097eed74dde
c3b977aa4b8dfb69d651e07015031d385ded964b
a52f7aa54d7bcaafa056ee0a050262dfc5694ae28dee8b4cac3429af37ff0d66
GET /ajax/libs/popper.js/1.12.9/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promotions.eats.com.sg
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 13 Sep 2023 23:19:17 GMT
content-type: application/javascript; charset=utf-8
content-length: 6157
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "64942d85-180d"
last-modified: Thu, 22 Jun 2023 11:16:21 GMT
cf-cdnjs-via: cfworker/r2
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1159748
expires: Mon, 02 Sep 2024 23:19:17 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VzvVh7FS7ncA4qAJdPaOwN%2FkdrQ4Ey87%2F8jFNsuafPPuNXo0IyskAqi2dsErFWNwMdu949ConADBOI%2BRaC4spFmD5pwJSSMm3y7w5aIjpQZb0FKa5IfvPZgXg9JX4pvz2f3rgT3O"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 80641d3ceff50b51-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
code.jquery.com/jquery-3.2.1.slim.min.js
200 OK 24 kB URL GET HTTP/2 code.jquery.com/jquery-3.2.1.slim.min.js
IP
Requested by https://promotions.eats.com.sg/e-hfjbsndsjdkb.html
Certificate IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (32012)
Hash 5f48fc77cac90c4778fa24ec9c57f37d
9e89d1515bc4c371b86f4cb1002fd8e377c1829f
9365920887b11b33a3dc4ba28a0f93951f200341263e3b9cefd384798e4be398
GET /jquery-3.2.1.slim.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promotions.eats.com.sg
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 13 Sep 2023 23:19:17 GMT
content-encoding: gzip
content-length: 23856
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-10fdd"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1694647157.dop020.sk1.t,1694647157.cds012.sk1.hn,1694647157.cds253.sk1.c
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash 4d240fe28fd89c6d40e2652f9928c236
d49178e4be0c2d01677d01c5ffc47c96b5d89378
7d16a20887c3180973b7f81cd64edf6d88b65feba02e89a81b7dc07e9606d6e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 13 Sep 2023 23:19:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
471 B IP
Hash 4d240fe28fd89c6d40e2652f9928c236
d49178e4be0c2d01677d01c5ffc47c96b5d89378
7d16a20887c3180973b7f81cd64edf6d88b65feba02e89a81b7dc07e9606d6e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 13 Sep 2023 23:19:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
code.jquery.com/jquery-3.1.1.min.js
200 OK 30 kB URL GET HTTP/2 code.jquery.com/jquery-3.1.1.min.js
IP
Requested by https://promotions.eats.com.sg/e-hfjbsndsjdkb.html
Certificate IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File type ASCII text, with very long lines (32030)
Hash e071abda8fe61194711cfc2ab99fe104
f647a6d37dc4ca055ced3cf64bbc1f490070acba
85556761a8800d14ced8fcd41a6b8b26bf012d44a318866c0d81a62092efd9bf
GET /jquery-3.1.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 13 Sep 2023 23:19:17 GMT
content-encoding: gzip
content-length: 30070
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-152b5"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1694647157.dop221.sk1.t,1694647157.cds021.sk1.hn,1694647157.cds010.sk1.c
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js
200 OK 30 kB URL GET HTTP/2 ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js
IP
Requested by https://promotions.eats.com.sg/e-hfjbsndsjdkb.html
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint09:AB:BF:F5:D0:04:69:59:E1:EA:AC:DA:8B:68:CF:62:94:2E:50:38
ValidityMon, 14 Aug 2023 08:22:09 GMT - Mon, 06 Nov 2023 08:22:08 GMT
File type ASCII text, with very long lines (32065)
Hash 2f6b11a7e914718e0290410e85366fe9
69bb69e25ca7d5ef0935317584e6153f3fd9a88c
05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e
GET /ajax/libs/jquery/2.2.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 12 Sep 2023 21:21:03 GMT
expires: Wed, 11 Sep 2024 21:21:03 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 93494
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
icon-library.com/images/one-drive-icon/one-drive-icon-28.jpg
200 OK 15 kB URL GET HTTP/2 icon-library.com/images/one-drive-icon/one-drive-icon-28.jpg
IP
Requested by https://promotions.eats.com.sg/e-hfjbsndsjdkb.html
Certificate IssuerGoogle Trust Services LLC
Subjecticon-library.com
Fingerprint9E:AD:A0:37:C4:58:F5:CB:C0:57:45:E9:C4:57:15:DE:F2:CA:0C:5C
ValidityWed, 26 Jul 2023 09:03:00 GMT - Tue, 24 Oct 2023 09:02:59 GMT
File type PNG image data, 300 x 189, 8-bit/color RGBA, non-interlaced\012- data
Hash 038183a1bc5dc6bffad412edfe09c2e4
06594be36a2070c11bd57b8d8fee478d893b660d
047cd04c0bf47796870a485d672f90f6b4ec54203957cd520022b46130102a46
GET /images/one-drive-icon/one-drive-icon-28.jpg HTTP/1.1
Host: icon-library.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 13 Sep 2023 23:19:17 GMT
content-type: image/jpeg
content-length: 14777
last-modified: Tue, 09 Jul 2019 06:32:45 GMT
strict-transport-security: max-age=31536000;
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=79c3T49Z9oMdKg2aLnHYPYmma6bXIK0ODFpnmlScu5y40yfzMtayAKcSTqWRFE2FEDpXceWe4WZdypSj3WhSY0yA5V9LfyPuUCKWiI06zkA8UY5Tz7VExmINFR7zXfzhq08%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 80641d3cef9356c0-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
471 B IP
Hash 4d240fe28fd89c6d40e2652f9928c236
d49178e4be0c2d01677d01c5ffc47c96b5d89378
7d16a20887c3180973b7f81cd64edf6d88b65feba02e89a81b7dc07e9606d6e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 13 Sep 2023 23:19:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
471 B IP
Hash 665860a7c87d1b79ecbf29e92d333e0f
44a2f88493b256ad45ea9010a24beff45a58a235
c7e4457f2c29a2129d8d5587d84eecfe548a2d3422aa8a970b3507045dcd3990
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 13 Sep 2023 23:19:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js
200 OK 30 kB URL GET HTTP/2 ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js
IP
Requested by https://promotions.eats.com.sg/e-hfjbsndsjdkb.html
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint09:AB:BF:F5:D0:04:69:59:E1:EA:AC:DA:8B:68:CF:62:94:2E:50:38
ValidityMon, 14 Aug 2023 08:22:09 GMT - Mon, 06 Nov 2023 08:22:08 GMT
File type ASCII text, with very long lines (32065)
Hash 2f6b11a7e914718e0290410e85366fe9
69bb69e25ca7d5ef0935317584e6153f3fd9a88c
05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e
GET /ajax/libs/jquery/2.2.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 12 Sep 2023 21:21:03 GMT
expires: Wed, 11 Sep 2024 21:21:03 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 93494
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
i.imgur.com/5sLeYjL.png
302 Found 0 B IP
Requested by https://promotions.eats.com.sg/e-hfjbsndsjdkb.html
Certificate IssuerSectigo Limited
Subject*.imgur.com
FingerprintD6:4D:45:03:6D:38:F8:FD:EA:AF:E5:92:B3:4D:85:A5:6B:AF:5C:EC
ValidityMon, 13 Mar 2023 00:00:00 GMT - Tue, 12 Mar 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /5sLeYjL.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
retry-after: 0
location: https://i.imgur.com/removed.png
accept-ranges: bytes
date: Wed, 13 Sep 2023 23:19:17 GMT
age: 0
x-served-by: cache-iad-kcgs7200120-IAD, cache-hel1410033-HEL
x-cache: HIT, MISS
x-cache-hits: 0, 0
x-timer: S1694647158.524599,VS0,VE140
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
content-length: 0
X-Firefox-Spdy: h2
bafkreicxrgcgc4jkmoordg67rc3riwiz3tejk3d2e4os4sqqqszj5lthqu.ipfs.nftstorage.link/
200 OK 771 B URL GET HTTP/2 bafkreicxrgcgc4jkmoordg67rc3riwiz3tejk3d2e4os4sqqqszj5lthqu.ipfs.nftstorage.link/
IP
Requested by https://promotions.eats.com.sg/e-hfjbsndsjdkb.html
Certificate IssuerCloudflare, Inc.
Subjectnftstorage.link
FingerprintD6:FD:E5:58:AD:9A:25:9A:0C:1E:EA:6F:7C:7A:88:E5:1D:C7:FE:ED
ValidityMon, 13 Mar 2023 00:00:00 GMT - Tue, 12 Mar 2024 23:59:59 GMT
File type PNG image data, 26 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash c3fc46c5799c76f9107504028f39190f
519096ad3f03410cf9ce3c9b9fcca6b439d97b23
57898461712a639d119bdf88b7145919dcc8956c7a271d2e4a1084b29eae6785
GET / HTTP/1.1
Host: bafkreicxrgcgc4jkmoordg67rc3riwiz3tejk3d2e4os4sqqqszj5lthqu.ipfs.nftstorage.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 13 Sep 2023 23:19:17 GMT
content-type: image/png
content-length: 771
cf-ray: 80641d3cec3e569b-OSL
access-control-allow-origin: *
cache-control: public, max-age=29030400, immutable
etag: "bafkreicxrgcgc4jkmoordg67rc3riwiz3tejk3d2e4os4sqqqszj5lthqu"
vary: Accept-Encoding
access-control-allow-methods: GET
access-control-expose-headers: Link
content-security-policy: default-src 'self' 'unsafe-inline' 'unsafe-eval' blob: data: https://*.w3s.link https://*.nftstorage.link https://*.dweb.link https://ipfs.io/ipfs/ https://*.githubusercontent.com https://polygon-rpc.com https://rpc.testnet.fantom.network ; form-action 'self'; navigate-to 'self'; connect-src 'self' blob: data: https://*.w3s.link https://*.nftstorage.link https://*.dweb.link https://ipfs.io/ipfs/ https://*.githubusercontent.com https://polygon-rpc.com https://rpc.testnet.fantom.network ; report-to csp-endpoint ; report-uri https://csp-report-to.web3.storage
reporting-endpoints: csp-endpoint="https://csp-report-to.web3.storage"
server-timing: request;dur=80
x-dotstorage-anchor: 74d28545c43e7947282ea44fb2b69ecbe1f6b6f1ca8e0155204678776073ab80
x-dotstorage-resolution-id: https://freeway.dag.haus
x-dotstorage-resolution-layer: dotstorage-race
x-freeway-version: 2.13.0
server: cloudflare
X-Firefox-Spdy: h2
i.imgur.com/removed.png
200 OK 503 B IP
Requested by https://promotions.eats.com.sg/e-hfjbsndsjdkb.html
Certificate IssuerSectigo Limited
Subject*.imgur.com
FingerprintD6:4D:45:03:6D:38:F8:FD:EA:AF:E5:92:B3:4D:85:A5:6B:AF:5C:EC
ValidityMon, 13 Mar 2023 00:00:00 GMT - Tue, 12 Mar 2024 23:59:59 GMT
File type PNG image data, 161 x 81, 1-bit colormap, non-interlaced\012- data
Hash d835884373f4d6c8f24742ceabe74946
20002faf28adfd94ca98cf6ced46f14334b53684
9b5936f4006146e4e1e9025b474c02863c0b5614132ad40db4b925a10e8bfbb9
GET /removed.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 May 2014 05:44:36 GMT
etag: "d835884373f4d6c8f24742ceabe74946"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Wed, 13 Sep 2023 23:19:17 GMT
age: 15779173
x-served-by: cache-bwi5167-BWI, cache-hel1410033-HEL
x-cache: HIT, HIT
x-cache-hits: 1, 448603
x-timer: S1694647158.683594,VS0,VE0
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 503
X-Firefox-Spdy: h2
bafkreidr44uzhhqxl5fotu74yzc5nnzyt3budjd2qskq4bdrs4zr7xbc6e.ipfs.nftstorage.link/
200 OK 18 kB URL GET HTTP/2 bafkreidr44uzhhqxl5fotu74yzc5nnzyt3budjd2qskq4bdrs4zr7xbc6e.ipfs.nftstorage.link/
IP
Requested by https://promotions.eats.com.sg/e-hfjbsndsjdkb.html
Certificate IssuerCloudflare, Inc.
Subjectnftstorage.link
FingerprintD6:FD:E5:58:AD:9A:25:9A:0C:1E:EA:6F:7C:7A:88:E5:1D:C7:FE:ED
ValidityMon, 13 Mar 2023 00:00:00 GMT - Tue, 12 Mar 2024 23:59:59 GMT
File type PNG image data, 187 x 188, 8-bit/color RGBA, non-interlaced\012- data
Hash a5cdadd60382e9ae6228121542eb1c2a
cec15f6470d0237569e931d7d11752b41ac5d8a3
71e729939e175f4ae9d3fcc645d6b7389ec341a47a84950e047197331fdc22f1
GET / HTTP/1.1
Host: bafkreidr44uzhhqxl5fotu74yzc5nnzyt3budjd2qskq4bdrs4zr7xbc6e.ipfs.nftstorage.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 13 Sep 2023 23:19:17 GMT
content-type: image/png
content-length: 18147
cf-ray: 80641d3e2cd4569b-OSL
access-control-allow-origin: *
cache-control: public, max-age=29030400, immutable
etag: "bafkreidr44uzhhqxl5fotu74yzc5nnzyt3budjd2qskq4bdrs4zr7xbc6e"
vary: Accept-Encoding
access-control-allow-methods: GET
access-control-expose-headers: Link
content-security-policy: default-src 'self' 'unsafe-inline' 'unsafe-eval' blob: data: https://*.w3s.link https://*.nftstorage.link https://*.dweb.link https://ipfs.io/ipfs/ https://*.githubusercontent.com https://polygon-rpc.com https://rpc.testnet.fantom.network ; form-action 'self'; navigate-to 'self'; connect-src 'self' blob: data: https://*.w3s.link https://*.nftstorage.link https://*.dweb.link https://ipfs.io/ipfs/ https://*.githubusercontent.com https://polygon-rpc.com https://rpc.testnet.fantom.network ; report-to csp-endpoint ; report-uri https://csp-report-to.web3.storage
reporting-endpoints: csp-endpoint="https://csp-report-to.web3.storage"
server-timing: request;dur=300
x-dotstorage-anchor: 07af72e9fce3b8553b445b6c76df621a4da7e7dc4a15b54cb184fe4474025464
x-dotstorage-resolution-id: https://freeway.dag.haus
x-dotstorage-resolution-layer: dotstorage-race
x-freeway-version: 2.13.0
server: cloudflare
X-Firefox-Spdy: h2
bafkreifk2jhnl43decleyuk3tce4wkkdxp4dbnahaomzvu4xn7hic5xfkq.ipfs.nftstorage.link/
200 OK 18 kB URL GET HTTP/2 bafkreifk2jhnl43decleyuk3tce4wkkdxp4dbnahaomzvu4xn7hic5xfkq.ipfs.nftstorage.link/
IP
Requested by https://promotions.eats.com.sg/e-hfjbsndsjdkb.html
Certificate IssuerCloudflare, Inc.
Subjectnftstorage.link
FingerprintD6:FD:E5:58:AD:9A:25:9A:0C:1E:EA:6F:7C:7A:88:E5:1D:C7:FE:ED
ValidityMon, 13 Mar 2023 00:00:00 GMT - Tue, 12 Mar 2024 23:59:59 GMT
File type PNG image data, 151 x 151, 8-bit/color RGBA, non-interlaced\012- data
Hash 4458cd0a6df7deabdff0b99bd5905ec9
45a8b436d07d7ed7973b87a1c393d6973afe6fb5
aad24ed5f36320964c515b9889cb2943bbf830b40703999ad3976fce8176e554
GET / HTTP/1.1
Host: bafkreifk2jhnl43decleyuk3tce4wkkdxp4dbnahaomzvu4xn7hic5xfkq.ipfs.nftstorage.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 13 Sep 2023 23:19:17 GMT
content-type: image/png
content-length: 17931
cf-ray: 80641d3e2cd3569b-OSL
access-control-allow-origin: *
cache-control: public, max-age=29030400, immutable
etag: "bafkreifk2jhnl43decleyuk3tce4wkkdxp4dbnahaomzvu4xn7hic5xfkq"
vary: Accept-Encoding
access-control-allow-methods: GET
access-control-expose-headers: Link
content-security-policy: default-src 'self' 'unsafe-inline' 'unsafe-eval' blob: data: https://*.w3s.link https://*.nftstorage.link https://*.dweb.link https://ipfs.io/ipfs/ https://*.githubusercontent.com https://polygon-rpc.com https://rpc.testnet.fantom.network ; form-action 'self'; navigate-to 'self'; connect-src 'self' blob: data: https://*.w3s.link https://*.nftstorage.link https://*.dweb.link https://ipfs.io/ipfs/ https://*.githubusercontent.com https://polygon-rpc.com https://rpc.testnet.fantom.network ; report-to csp-endpoint ; report-uri https://csp-report-to.web3.storage
reporting-endpoints: csp-endpoint="https://csp-report-to.web3.storage"
server-timing: request;dur=297
x-dotstorage-anchor: 059f090883c2301819046f7c00b7d118fbaa465622c32a511c40c5f4390c6caf
x-dotstorage-resolution-id: https://freeway.dag.haus
x-dotstorage-resolution-layer: dotstorage-race
x-freeway-version: 2.13.0
server: cloudflare
X-Firefox-Spdy: h2
bafkreihyvdhu6gjisoghs3rpgx4megynkegu4pyw4alo5a6r6idpr266cq.ipfs.nftstorage.link/
200 OK 26 kB URL GET HTTP/2 bafkreihyvdhu6gjisoghs3rpgx4megynkegu4pyw4alo5a6r6idpr266cq.ipfs.nftstorage.link/
IP
Requested by https://promotions.eats.com.sg/e-hfjbsndsjdkb.html
Certificate IssuerCloudflare, Inc.
Subjectnftstorage.link
FingerprintD6:FD:E5:58:AD:9A:25:9A:0C:1E:EA:6F:7C:7A:88:E5:1D:C7:FE:ED
ValidityMon, 13 Mar 2023 00:00:00 GMT - Tue, 12 Mar 2024 23:59:59 GMT
File type PNG image data, 253 x 218, 8-bit/color RGBA, non-interlaced\012- data
Hash ec9cbc1048239b3927ad0276fc983019
17c27c038644bdb141381b606c7c94a177c07326
f8a8cf4f1928938c796e2f35f8c21b0d510d4e3f16e016ee83d1f206f8ebde14
GET / HTTP/1.1
Host: bafkreihyvdhu6gjisoghs3rpgx4megynkegu4pyw4alo5a6r6idpr266cq.ipfs.nftstorage.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 13 Sep 2023 23:19:17 GMT
content-type: image/png
content-length: 26456
cf-ray: 80641d3e2cd6569b-OSL
access-control-allow-origin: *
cache-control: public, max-age=29030400, immutable
etag: "bafkreihyvdhu6gjisoghs3rpgx4megynkegu4pyw4alo5a6r6idpr266cq"
vary: Accept-Encoding
access-control-allow-methods: GET
access-control-expose-headers: Link
content-security-policy: default-src 'self' 'unsafe-inline' 'unsafe-eval' blob: data: https://*.w3s.link https://*.nftstorage.link https://*.dweb.link https://ipfs.io/ipfs/ https://*.githubusercontent.com https://polygon-rpc.com https://rpc.testnet.fantom.network ; form-action 'self'; navigate-to 'self'; connect-src 'self' blob: data: https://*.w3s.link https://*.nftstorage.link https://*.dweb.link https://ipfs.io/ipfs/ https://*.githubusercontent.com https://polygon-rpc.com https://rpc.testnet.fantom.network ; report-to csp-endpoint ; report-uri https://csp-report-to.web3.storage
reporting-endpoints: csp-endpoint="https://csp-report-to.web3.storage"
server-timing: request;dur=300
x-dotstorage-anchor: 0ac972454f6e04b756562ee1731f63a967a74b6ac67e35f061fa918ff9951f75
x-dotstorage-resolution-id: https://freeway.dag.haus
x-dotstorage-resolution-layer: dotstorage-race
x-freeway-version: 2.13.0
server: cloudflare
X-Firefox-Spdy: h2
bafkreidltp6ockde5z54hk3a46lifxrkoapwjzmrsxszgdv3tiogpirej4.ipfs.nftstorage.link/
200 OK 179 kB URL GET HTTP/2 bafkreidltp6ockde5z54hk3a46lifxrkoapwjzmrsxszgdv3tiogpirej4.ipfs.nftstorage.link/
IP
Requested by https://promotions.eats.com.sg/e-hfjbsndsjdkb.html
Certificate IssuerCloudflare, Inc.
Subjectnftstorage.link
FingerprintD6:FD:E5:58:AD:9A:25:9A:0C:1E:EA:6F:7C:7A:88:E5:1D:C7:FE:ED
ValidityMon, 13 Mar 2023 00:00:00 GMT - Tue, 12 Mar 2024 23:59:59 GMT
File type PNG image data, 1999 x 1093, 8-bit colormap, non-interlaced\012- data
Size 179 kB (178845 bytes)
Hash 49e24f572401a88d22940723d25fb803
7cc9312c020f594ab640a012f0cbd363d7761301
6b9bfce12864ee7bc3ab60e79682de2a701f64e59195e5930ebb9a1c67a2244f
GET / HTTP/1.1
Host: bafkreidltp6ockde5z54hk3a46lifxrkoapwjzmrsxszgdv3tiogpirej4.ipfs.nftstorage.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 13 Sep 2023 23:19:17 GMT
content-type: image/png
content-length: 178845
cf-ray: 80641d3efd40569b-OSL
access-control-allow-origin: *
cache-control: public, max-age=29030400, immutable
etag: "bafkreidltp6ockde5z54hk3a46lifxrkoapwjzmrsxszgdv3tiogpirej4"
vary: Accept-Encoding
access-control-allow-methods: GET
access-control-expose-headers: Link
content-security-policy: default-src 'self' 'unsafe-inline' 'unsafe-eval' blob: data: https://*.w3s.link https://*.nftstorage.link https://*.dweb.link https://ipfs.io/ipfs/ https://*.githubusercontent.com https://polygon-rpc.com https://rpc.testnet.fantom.network ; form-action 'self'; navigate-to 'self'; connect-src 'self' blob: data: https://*.w3s.link https://*.nftstorage.link https://*.dweb.link https://ipfs.io/ipfs/ https://*.githubusercontent.com https://polygon-rpc.com https://rpc.testnet.fantom.network ; report-to csp-endpoint ; report-uri https://csp-report-to.web3.storage
reporting-endpoints: csp-endpoint="https://csp-report-to.web3.storage"
server-timing: request;dur=371
x-dotstorage-anchor: 43de2eb21f65adcfb5f786b3a5e27a79d98bbb9b73849fc52eb2468e6e65870c
x-dotstorage-resolution-id: https://freeway.dag.haus
x-dotstorage-resolution-layer: dotstorage-race
x-freeway-version: 2.13.0
server: cloudflare
X-Firefox-Spdy: h2
bafkreibo6bopl3uphffghgihpwi6ckxd5v7xemrtmmelzqcr73fhfuwxxa.ipfs.nftstorage.link/
0 B URL GET bafkreibo6bopl3uphffghgihpwi6ckxd5v7xemrtmmelzqcr73fhfuwxxa.ipfs.nftstorage.link/
IP
Requested by https://promotions.eats.com.sg/e-hfjbsndsjdkb.html
Certificate IssuerCloudflare, Inc.
Subjectnftstorage.link
FingerprintD6:FD:E5:58:AD:9A:25:9A:0C:1E:EA:6F:7C:7A:88:E5:1D:C7:FE:ED
ValidityMon, 13 Mar 2023 00:00:00 GMT - Tue, 12 Mar 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: bafkreibo6bopl3uphffghgihpwi6ckxd5v7xemrtmmelzqcr73fhfuwxxa.ipfs.nftstorage.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 13 Sep 2023 23:19:17 GMT
content-type: image/x-icon
cf-ray: 80641d3cfc40569b-OSL
access-control-allow-origin: *
cache-control: public, max-age=29030400, immutable
etag: W/"bafkreibo6bopl3uphffghgihpwi6ckxd5v7xemrtmmelzqcr73fhfuwxxa"
vary: Accept-Encoding
access-control-allow-methods: GET
access-control-expose-headers: Link
content-security-policy: default-src 'self' 'unsafe-inline' 'unsafe-eval' blob: data: https://*.w3s.link https://*.nftstorage.link https://*.dweb.link https://ipfs.io/ipfs/ https://*.githubusercontent.com https://polygon-rpc.com https://rpc.testnet.fantom.network ; form-action 'self'; navigate-to 'self'; connect-src 'self' blob: data: https://*.w3s.link https://*.nftstorage.link https://*.dweb.link https://ipfs.io/ipfs/ https://*.githubusercontent.com https://polygon-rpc.com https://rpc.testnet.fantom.network ; report-to csp-endpoint ; report-uri https://csp-report-to.web3.storage
reporting-endpoints: csp-endpoint="https://csp-report-to.web3.storage"
server-timing: request;dur=78
x-dotstorage-anchor: 5a8d5cb739cee6fa0ad6389ff1c056c0628c49780a0e7e7497a7634e33d9cfba
x-dotstorage-resolution-id: https://freeway.dag.haus
x-dotstorage-resolution-layer: dotstorage-race
x-freeway-version: 2.13.0
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-shims.min.css?token=585b051251
200 OK 27 kB URL GET HTTP/2 ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-shims.min.css?token=585b051251
IP
Requested by https://promotions.eats.com.sg/e-hfjbsndsjdkb.html
Certificate IssuerGoogle Trust Services LLC
Subjectka-f.fontawesome.com
Fingerprint64:27:AB:CA:DB:24:8C:C9:87:09:13:04:21:49:9C:6A:4E:DD:97:93
ValiditySun, 10 Sep 2023 05:39:32 GMT - Sat, 09 Dec 2023 05:39:31 GMT
File type ASCII text, with very long lines (26500)
Hash 76f34b71fc9fb641507ff6a822cc07f5
73ed2f8f21cd40fb496e61306acbb5849d4dbff4
6dea47458a4cd7cd7312cc780a53c62e0c8b3ccc8d0b13c1ac0ea6e3dfcecea8
GET /releases/v5.15.4/css/free-v4-shims.min.css?token=585b051251 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://promotions.eats.com.sg/
Origin: https://promotions.eats.com.sg
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 13 Sep 2023 23:19:17 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
etag: W/"76f34b71fc9fb641507ff6a822cc07f5"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9fedc4d43d76bf30a3fb8278d99d39aa.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: RS6va7GB1vz46rDxLbx3LYypoJ0gV0RUwu9S5TZZE8G_s_cCyqLAVA==
age: 29637
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cBDci%2Fq6B5TIid9Iiqme%2BvX0ZyWlwQueGYBozhO3VxMrH%2FvT3Z0rlqVVegxTeERo0FWoYSA3UnmpglhPP2er6jAHoPYvKpx7fUkTTQBYrkgKyBTLVcKPelDF8PjSOo4ZmArkFT1J2Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80641d3f583e23d7-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
promotions.eats.com.sg/favicon.ico
0 B URL GET promotions.eats.com.sg/favicon.ico
IP
Requested by https://promotions.eats.com.sg/e-hfjbsndsjdkb.html
Certificate IssuerBuypass AS-983163327
Subjectpromotions.eats.com.sg
Fingerprint21:2E:09:F9:C3:67:C1:D6:D7:19:57:93:AC:22:32:B7:8C:00:2F:CE
ValidityTue, 27 Jun 2023 07:11:54 GMT - Sat, 23 Dec 2023 22:59:00 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: promotions.eats.com.sg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://promotions.eats.com.sg/e-hfjbsndsjdkb.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
fonts.googleapis.com/css?family=SegeoUI&display=swap
400 Bad Request 0 B URL GET HTTP/2 fonts.googleapis.com/css?family=SegeoUI&display=swap
IP
Requested by https://promotions.eats.com.sg/e-hfjbsndsjdkb.html
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint09:AB:BF:F5:D0:04:69:59:E1:EA:AC:DA:8B:68:CF:62:94:2E:50:38
ValidityMon, 14 Aug 2023 08:22:09 GMT - Mon, 06 Nov 2023 08:22:08 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /css?family=SegeoUI&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 400 Bad Request
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 13 Sep 2023 23:19:17 GMT
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
kit.fontawesome.com/585b051251.js
200 OK 12 kB URL GET HTTP/2 kit.fontawesome.com/585b051251.js
IP
Requested by https://promotions.eats.com.sg/e-hfjbsndsjdkb.html
Certificate IssuerDigiCert Inc
Subject*.fontawesome.com
Fingerprint6C:69:02:A7:9B:07:84:8E:D0:3D:0A:10:61:8E:01:80:88:37:EF:5E
ValidityTue, 22 Nov 2022 00:00:00 GMT - Sat, 23 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (11213)
Hash 4ec685b1e2c1ca5fd6d56e2f4cb0569d
a41e1f45db2fbc59562390ba8567ec3373d69510
cac5a0bd86eba50bf4a83d4dc43fe38b759ed39cc8397fdbbaa7ea68b9c63cfa
GET /585b051251.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promotions.eats.com.sg
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 13 Sep 2023 23:19:17 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, stale-while-revalidate=30
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: F4Pj80iOzJ24m2ES-0QC
cf-cache-status: MISS
server: cloudflare
cf-ray: 80641d3cfa490b55-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js
200 OK 49 kB URL GET HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js
IP
Requested by https://promotions.eats.com.sg/e-hfjbsndsjdkb.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (48664)
Hash 14d449eb8876fa55e1ef3c2cc52b0c17
a9545831803b1359cfeed47e3b4d6bae68e40e99
e7ed36ceee5450b4243bbc35188afabdfb4280c7c57597001de0ed167299b01b
GET /bootstrap/4.0.0/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promotions.eats.com.sg
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 13 Sep 2023 23:19:17 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"14d449eb8876fa55e1ef3c2cc52b0c17"
last-modified: Mon, 25 Jan 2021 22:04:04 GMT
cdn-cachedat: 11/25/2022 23:23:38
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 865
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 9916fcd73bec0f4c76592e8a8a6ac75c
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 80641d3c790bb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v5.15.4/css/free.min.css?token=585b051251
200 OK 60 kB URL GET HTTP/2 ka-f.fontawesome.com/releases/v5.15.4/css/free.min.css?token=585b051251
IP
Requested by https://promotions.eats.com.sg/e-hfjbsndsjdkb.html
Certificate IssuerGoogle Trust Services LLC
Subjectka-f.fontawesome.com
Fingerprint64:27:AB:CA:DB:24:8C:C9:87:09:13:04:21:49:9C:6A:4E:DD:97:93
ValiditySun, 10 Sep 2023 05:39:32 GMT - Sat, 09 Dec 2023 05:39:31 GMT
File type ASCII text, with very long lines (60130)
Hash a12ec7ebe75a4d59a5dd6b79e2ba2e16
28f5dcc595ee6d4163481ef64170180502c8629b
fc5128dfdcdfa0c3a9967a6d2f19399d7bf1aaae6ad7571b96b03915a1f30dda
GET /releases/v5.15.4/css/free.min.css?token=585b051251 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://promotions.eats.com.sg/
Origin: https://promotions.eats.com.sg
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 13 Sep 2023 23:19:17 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
etag: W/"a12ec7ebe75a4d59a5dd6b79e2ba2e16"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ed393405ff603a61a1e63909cf1c1a44.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: MT1QZVkifqu6ZlS27P6VPyrKNT2aM2p5ae7zku9121w7alhIEBwCGw==
age: 29637
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=506rRnag752wISWz1IkMquImKHydFw8WOyCIZVnc%2FWQsPL3SvRiFyz4x4ZYDJ44ZOy1lHs09TvamzdFwOwDLgAFScfck5iUAHB4w%2FwNQ1GiqrlNjlOJ%2FRB34QUUq1NsScUhRnjZ6IA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 80641d3f584323d7-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css
200 OK 145 kB URL GET HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css
IP
Requested by https://promotions.eats.com.sg/e-hfjbsndsjdkb.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (65325)
Size 145 kB (144877 bytes)
Hash 450fc463b8b1a349df717056fbb3e078
895125a4522a3b10ee7ada06ee6503587cbf95c5
2c0f3dcfe93d7e380c290fe4ab838ed8cadff1596d62697f5444be460d1f876d
GET /bootstrap/4.0.0/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://promotions.eats.com.sg
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 13 Sep 2023 23:19:17 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"450fc463b8b1a349df717056fbb3e078"
last-modified: Mon, 25 Jan 2021 22:04:04 GMT
cdn-cachedat: 06/15/2023 15:41:03
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 752
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: e7a7028ac4ed9a9d7fa6102563113eef
cdn-cache: HIT
cf-cache-status: HIT
age: 198639
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 80641d3c790ab50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
3.1.44.105
151.101.244.193
172.64.146.216
104.18.11.207
23.33.119.18
0.0.0.0