Overview

URLkinman.com/Admin/lib/lg-in/gouv-fr/
IP 192.254.235.71 (United States)
ASN#46606 UNIFIEDLAYER-AS-1
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-08-31 21:41:25 UTC
StatusLoading report..
IDS alerts0
Blocklist alert1
urlquery alerts No alerts detected
Tags None

Domain Summary (12)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
www.kinman.com (6) 0 2017-02-03 07:12:47 UTC 2022-08-31 12:34:53 UTC 192.254.235.71 Unknown ranking
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-08-31 13:22:03 UTC 143.204.55.27
r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-08-31 04:58:05 UTC 23.36.77.32
content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-08-31 05:05:27 UTC 143.204.55.49
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-08-31 05:05:02 UTC 34.117.237.239
ocsp.usertrust.com (1) 899 2012-05-21 15:43:18 UTC 2022-08-31 04:55:53 UTC 104.18.32.68
img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-08-31 12:55:20 UTC 34.120.237.76
ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-08-31 15:20:51 UTC 93.184.220.29
kinman.com (25) 0 2014-08-11 08:11:57 UTC 2022-08-31 15:03:16 UTC 192.254.235.71 Unknown ranking
push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-08-31 05:14:10 UTC 34.218.164.174
ocsp.sectigo.com (1) 487 2018-12-17 11:31:55 UTC 2022-08-31 19:54:48 UTC 104.18.32.68
cfspart.impots.gouv.fr (1) 643420 2017-02-05 07:17:33 UTC 2022-08-31 12:34:54 UTC 145.242.11.27

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
Scan Date Severity Indicator Comment
2022-08-31 2 kinman.com/Admin/lib/lg-in/gouv-fr/ DGI (French Tax Authority)

PhishTank
 No alerts detected

Fortinet's Web Filter
 No alerts detected

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 192.254.235.71
Date UQ / IDS / BL URL IP
2022-12-24 11:39:15 +0000 0 - 3 - 0 www.papilio.cc/uploads/Papilio/Papilio%20DUO% (...) 192.254.235.71
2022-12-04 21:07:15 +0000 0 - 0 - 8 mobile.kinman.com/mobile.kinman.com/order-que (...) 192.254.235.71
2022-12-02 17:39:15 +0000 0 - 0 - 4 www.mobile.kinman.com/.well-known/acme-challe (...) 192.254.235.71
2022-11-22 17:02:05 +0000 11 - 0 - 3 mobile.kinman.com/order-questions/covers/ser/ (...) 192.254.235.71
2022-09-20 18:01:50 +0000 0 - 0 - 4 www.mobile.kinman.com/de/ 192.254.235.71


Last 5 reports on ASN: UNIFIEDLAYER-AS-1
Date UQ / IDS / BL URL IP
2023-01-31 09:11:08 +0000 0 - 2 - 3 rodriguezq.cf/.well-known/ 162.240.35.239
2023-01-31 09:09:08 +0000 0 - 0 - 1 filipinamd.com/adm/wt.zip 74.220.199.6
2023-01-31 09:09:04 +0000 0 - 0 - 1 trustsamatva.org/ 162.241.148.33
2023-01-31 09:03:42 +0000 0 - 0 - 3 latinxbank.co/ 69.49.244.24
2023-01-31 08:59:17 +0000 0 - 0 - 20 joyfullysportsgoods.com/ 192.185.199.128


Last 5 reports on domain: kinman.com
Date UQ / IDS / BL URL IP
2022-12-04 21:07:15 +0000 0 - 0 - 8 mobile.kinman.com/mobile.kinman.com/order-que (...) 192.254.235.71
2022-12-02 17:39:15 +0000 0 - 0 - 4 www.mobile.kinman.com/.well-known/acme-challe (...) 192.254.235.71
2022-11-22 17:02:05 +0000 11 - 0 - 3 mobile.kinman.com/order-questions/covers/ser/ (...) 192.254.235.71
2022-09-20 18:01:50 +0000 0 - 0 - 4 www.mobile.kinman.com/de/ 192.254.235.71
2022-09-20 16:21:48 +0000 0 - 0 - 5 www.mobile.kinman.com/de/ 192.254.235.71


Last 5 reports with similar screenshot
Date UQ / IDS / BL URL IP
2023-01-21 21:11:37 +0000 17 - 0 - 6 wordpress-867582-3000298.cloudwaysapps.com/dg (...) 18.102.83.111
2023-01-21 06:44:52 +0000 17 - 0 - 6 wordpress-867582-3000298.cloudwaysapps.com/dg (...) 18.102.83.111
2022-11-07 09:04:37 +0000 0 - 0 - 12 www.siantartop.co.id/impots-2021-lmtbn/gouv-f (...) 202.74.236.102
2022-10-29 21:55:36 +0000 0 - 0 - 1 wordpress-231390-2982067.cloudwaysapps.com/63 (...) 104.248.163.238
2022-10-29 19:08:55 +0000 0 - 0 - 1 wordpress-231390-2982067.cloudwaysapps.com/63 (...) 104.248.163.238

JavaScript

Executed Scripts (8)

Executed Evals (0)

Executed Writes (0)


HTTP Transactions (52)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 31 Aug 2022 21:26:37 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: -7TQhxuPL7nSsAzjA6BRqB-6kWhvGZ3C5RHb9z8IExeFg-az20muVA==
Age: 878


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    91dd975a7b17b2922dd23c0e49314e40
Sha1:   57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
Sha256: 09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "ECE269E8B9BE8A5839D75C1343823D68B96930C593C2E3E8D522999176EE3149"
Last-Modified: Mon, 29 Aug 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3045
Expires: Wed, 31 Aug 2022 22:32:00 GMT
Date: Wed, 31 Aug 2022 21:41:15 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         143.204.55.49
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 31 Aug 2022 02:27:05 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: wNWj1HWVFiYzQilXGHsSaK-Sg2zBLBEo-ZJ6GESgZoYrLhzR6pt2sg==
age: 69251
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    742edb4038f38bc533514982f3d2e861
Sha1:   cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Wed, 31 Aug 2022 21:41:15 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 31 Aug 2022 21:17:12 GMT
Cache-Control: max-age=3600
Expires: Wed, 31 Aug 2022 21:48:23 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: jk49wNaGxMYFcp_OF7u1GgZ-pWkHHIW2rt_7CVM2ZnQm02KYl61DBg==
Age: 1443


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "8D0FD6B07B59C74AA61F491D9F73945AABCB13569A528DC6E7DE28A16C5CF605"
Last-Modified: Tue, 30 Aug 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11623
Expires: Thu, 01 Sep 2022 00:54:58 GMT
Date: Wed, 31 Aug 2022 21:41:15 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2837
Cache-Control: 'max-age=158059'
Date: Wed, 31 Aug 2022 21:41:15 GMT
Last-Modified: Wed, 31 Aug 2022 20:53:58 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /Admin/lib/lg-in/gouv-fr/ HTTP/1.1 
Host: kinman.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         192.254.235.71
HTTP/2 200 OK
content-type: text/html
                                        
last-modified: Thu, 04 Aug 2022 02:29:28 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9048
date: Wed, 31 Aug 2022 21:41:15 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ISO-8859 text, with very long lines (3361), with CRLF line terminators
Size:   9048
Md5:    2bbeccc0a18cced21eb837489577d4bf
Sha1:   e61c8760b8464e6a5cbff87f3524d561852b38b4
Sha256: b2d3316067b29f0a05d7b6a40b16f62fb97ee8e0677ca7c3f0acd6b77bef0764

Alerts:
  Blocklists:
    - openphish: DGI (French Tax Authority)
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: UAjknITS+THdRI88EXwOXA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         34.218.164.174
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: B+67xzGo1Eyk2A9yN01uEVEj2V0=

                                        
                                            GET /Admin/lib/lg-in/gouv-fr/templates/info.png HTTP/1.1 
Host: kinman.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kinman.com/Admin/lib/lg-in/gouv-fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.254.235.71
HTTP/2 200 OK
content-type: image/png
                                        
last-modified: Thu, 04 Aug 2022 02:29:29 GMT
accept-ranges: bytes
content-length: 3158
date: Wed, 31 Aug 2022 21:41:16 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 107 x 105, 8-bit/color RGBA, non-interlaced\012- data
Size:   3158
Md5:    8586605c7e823e4c6c088954c90d1290
Sha1:   56aff3bdeaa37d2d0cbe800edc2a63c22c745e98
Sha256: b16fbbc475f7128aa28ed91bc59e48517a580ca486ef5a4836e240e62224cc61
                                        
                                            GET /Admin/lib/lg-in/gouv-fr/templates/css/autentification.css HTTP/1.1 
Host: kinman.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kinman.com/Admin/lib/lg-in/gouv-fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.254.235.71
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Thu, 04 Aug 2022 02:29:29 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4725
date: Wed, 31 Aug 2022 21:41:16 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   4725
Md5:    90a6e15a3b5edf96795632f9e4d537f5
Sha1:   0d69031dd887ee1d1ff6043de7a4010856d63cc1
Sha256: b070eb4bf20af415b3cee9a53b47a5cef300582f8051c094e3457ed8c61f264c
                                        
                                            GET /Admin/lib/lg-in/gouv-fr/templates/jquery.maskedinput.js HTTP/1.1 
Host: kinman.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kinman.com/Admin/lib/lg-in/gouv-fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.254.235.71
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 04 Aug 2022 02:29:29 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3160
date: Wed, 31 Aug 2022 21:41:16 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   3160
Md5:    085baa06963bb6c53feaa103f94b65c7
Sha1:   6ecd14e82af66df04a8f89fbe20826b81e5dad84
Sha256: 70892b2c969ed9b1ee3d9345652c79d8656b34ac1c9e8abb279eb9a8b6188d15
                                        
                                            GET /Admin/lib/lg-in/gouv-fr/templates/css/imp.css HTTP/1.1 
Host: kinman.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kinman.com/Admin/lib/lg-in/gouv-fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.254.235.71
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Thu, 04 Aug 2022 02:29:29 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 7574
date: Wed, 31 Aug 2022 21:41:16 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   7574
Md5:    1b6e83d4ec2e7557e890658b3621689d
Sha1:   8aba4da4be0f1eaac3c872222b2aba2e574b2eb1
Sha256: 231bd3cc68816346561784c5fe60b63f25c7c619826cdec8c99ee54ef021f07e
                                        
                                            GET /Admin/lib/lg-in/gouv-fr/images/aide.gif HTTP/1.1 
Host: kinman.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kinman.com/Admin/lib/lg-in/gouv-fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.254.235.71
HTTP/2 302 Found
content-type: text/html; charset=iso-8859-1
                                        
location: https://www.kinman.com
content-length: 206
date: Wed, 31 Aug 2022 21:41:16 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   206
Md5:    f3fc3bbfe75bd7b0b5517f777457650e
Sha1:   e958c8145488f0f931606b90bcb7dc1004e656cf
Sha256: 64c60e7dd29be88a76234f2e9e2f95849b25b25d288921a6770f6934c66c10cb
                                        
                                            GET /Admin/lib/lg-in/gouv-fr/templates/1.gif HTTP/1.1 
Host: kinman.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kinman.com/Admin/lib/lg-in/gouv-fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.254.235.71
HTTP/2 200 OK
content-type: image/gif
                                        
last-modified: Thu, 04 Aug 2022 02:29:28 GMT
accept-ranges: bytes
content-length: 2812
date: Wed, 31 Aug 2022 21:41:16 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 124 x 28\012- data
Size:   2812
Md5:    0d050fd3d35da175a6129a21030e78aa
Sha1:   09ee6a15ede6919de054fde434e9398684d48e2b
Sha256: 3b5b95ee14d3c3e64158175050be929c9fb2612a1c003df388d62af47a4c3e37
                                        
                                            GET /Admin/lib/lg-in/gouv-fr/templates/2.gif HTTP/1.1 
Host: kinman.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kinman.com/Admin/lib/lg-in/gouv-fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.254.235.71
HTTP/2 200 OK
content-type: image/gif
                                        
last-modified: Thu, 04 Aug 2022 02:29:28 GMT
accept-ranges: bytes
content-length: 2866
date: Wed, 31 Aug 2022 21:41:16 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 138 x 25\012- data
Size:   2866
Md5:    ae43f701c156c678e3124853049bcd1d
Sha1:   0875ffacc52951f87e0b6d50578cbd4e5c1da976
Sha256: f4f598b5fc93817de8bdd76013d28b4c092b8f139be116e625d046e3b3b9be30
                                        
                                            GET /templates/js/auth.js HTTP/1.1 
Host: kinman.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kinman.com/Admin/lib/lg-in/gouv-fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.254.235.71
HTTP/2 302 Found
content-type: text/html; charset=iso-8859-1
                                        
location: https://www.kinman.com
content-length: 206
date: Wed, 31 Aug 2022 21:41:16 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   206
Md5:    f3fc3bbfe75bd7b0b5517f777457650e
Sha1:   e958c8145488f0f931606b90bcb7dc1004e656cf
Sha256: 64c60e7dd29be88a76234f2e9e2f95849b25b25d288921a6770f6934c66c10cb
                                        
                                            GET /templates/js/urls.js HTTP/1.1 
Host: kinman.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kinman.com/Admin/lib/lg-in/gouv-fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.254.235.71
HTTP/2 302 Found
content-type: text/html; charset=iso-8859-1
                                        
location: https://www.kinman.com
content-length: 206
date: Wed, 31 Aug 2022 21:41:16 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   206
Md5:    f3fc3bbfe75bd7b0b5517f777457650e
Sha1:   e958c8145488f0f931606b90bcb7dc1004e656cf
Sha256: 64c60e7dd29be88a76234f2e9e2f95849b25b25d288921a6770f6934c66c10cb
                                        
                                            GET /templates/images/Miniballs.gif HTTP/1.1 
Host: kinman.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kinman.com/Admin/lib/lg-in/gouv-fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.254.235.71
HTTP/2 302 Found
content-type: text/html; charset=iso-8859-1
                                        
location: https://www.kinman.com
content-length: 206
date: Wed, 31 Aug 2022 21:41:16 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   206
Md5:    f3fc3bbfe75bd7b0b5517f777457650e
Sha1:   e958c8145488f0f931606b90bcb7dc1004e656cf
Sha256: 64c60e7dd29be88a76234f2e9e2f95849b25b25d288921a6770f6934c66c10cb
                                        
                                            GET /Admin/lib/lg-in/gouv-fr/templates/images/fermer.svg HTTP/1.1 
Host: kinman.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kinman.com/Admin/lib/lg-in/gouv-fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.254.235.71
HTTP/2 200 OK
content-type: image/svg+xml
                                        
last-modified: Thu, 04 Aug 2022 02:29:29 GMT
accept-ranges: bytes
content-length: 1757
date: Wed, 31 Aug 2022 21:41:16 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (340)
Size:   1757
Md5:    c2a9168d032fcd7c8a0f8f015b10d211
Sha1:   8376d9a7c74b0b3ba4cbfde3658cf893a4cce7ec
Sha256: bd41f1926d21d2cdcc4522c7d6ad6348e4f79230f97dc81910486b633fc98c23
                                        
                                            GET /Admin/lib/lg-in/gouv-fr/templates/3.jpg HTTP/1.1 
Host: kinman.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kinman.com/Admin/lib/lg-in/gouv-fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.254.235.71
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Thu, 04 Aug 2022 02:29:28 GMT
accept-ranges: bytes
content-length: 7110
date: Wed, 31 Aug 2022 21:41:16 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 120x45, components 3\012- data
Size:   7110
Md5:    0e2048acf0519d2c005209f8146edfca
Sha1:   e80d85ad5b49404bbc97e09652c79f3eb988fc90
Sha256: 2e3c000bb11b035e1a6bfe511338a7877fdc67f5c51a5ff29394e4d3735b36df
                                        
                                            GET /templates/js/bootstrap.min.js HTTP/1.1 
Host: kinman.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kinman.com/Admin/lib/lg-in/gouv-fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.254.235.71
HTTP/2 302 Found
content-type: text/html; charset=iso-8859-1
                                        
location: https://www.kinman.com
content-length: 206
date: Wed, 31 Aug 2022 21:41:16 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   206
Md5:    f3fc3bbfe75bd7b0b5517f777457650e
Sha1:   e958c8145488f0f931606b90bcb7dc1004e656cf
Sha256: 64c60e7dd29be88a76234f2e9e2f95849b25b25d288921a6770f6934c66c10cb
                                        
                                            GET /Admin/lib/lg-in/gouv-fr/templates/4.gif HTTP/1.1 
Host: kinman.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kinman.com/Admin/lib/lg-in/gouv-fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.254.235.71
HTTP/2 200 OK
content-type: image/gif
                                        
last-modified: Thu, 04 Aug 2022 02:29:28 GMT
accept-ranges: bytes
content-length: 3357
date: Wed, 31 Aug 2022 21:41:16 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 143 x 45\012- data
Size:   3357
Md5:    559e49c09cad7db6d103fbaf08be4d51
Sha1:   19236601f16bb32cfa38a65c991f9de4a528c826
Sha256: 9d0567e661cf2d5205acaaec1a0c7dfee24f48af2d56a56212c1b4db1ab88b60
                                        
                                            GET /templates/js/jquery-1.11.3.min.js HTTP/1.1 
Host: kinman.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kinman.com/Admin/lib/lg-in/gouv-fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.254.235.71
HTTP/2 302 Found
content-type: text/html; charset=iso-8859-1
                                        
location: https://www.kinman.com
content-length: 206
date: Wed, 31 Aug 2022 21:41:16 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   206
Md5:    f3fc3bbfe75bd7b0b5517f777457650e
Sha1:   e958c8145488f0f931606b90bcb7dc1004e656cf
Sha256: 64c60e7dd29be88a76234f2e9e2f95849b25b25d288921a6770f6934c66c10cb
                                        
                                            GET /Admin/lib/lg-in/gouv-fr/templates/5.gif HTTP/1.1 
Host: kinman.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kinman.com/Admin/lib/lg-in/gouv-fr/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.254.235.71
HTTP/2 200 OK
content-type: image/gif
                                        
last-modified: Thu, 04 Aug 2022 02:29:28 GMT
accept-ranges: bytes
content-length: 1843
date: Wed, 31 Aug 2022 21:41:16 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 118 x 40\012- data
Size:   1843
Md5:    d6621df34ea2eadd541830ee370ea10f
Sha1:   d651d11e6622cb873489cca89fdce44b421a9a0d
Sha256: 58b70b4cdcb982be2ab0d89312bb4b1f8596c2294392983aba048cc046acc7c5
                                        
                                            POST / HTTP/1.1 
Host: ocsp.usertrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 31 Aug 2022 21:41:16 GMT
Content-Length: 2236
Connection: keep-alive
Last-Modified: Wed, 31 Aug 2022 10:12:16 GMT
Expires: Wed, 07 Sep 2022 10:12:15 GMT
Etag: "79c569e62a6f193baf70ea7c5ddd763db31d4934"
Cache-Control: max-age=602439,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 1688
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7438edebda53fab4-OSL


--- Additional Info ---
Magic:  data
Size:   2236
Md5:    1785a45fa7343bb87e046213bf7f3f97
Sha1:   79c569e62a6f193baf70ea7c5ddd763db31d4934
Sha256: b9fc387d491b83fc3e79a9647afecf8ba9b623c8ef39e83adbe83d5ee1e9905d
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sectigo.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 31 Aug 2022 21:41:16 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 29 Aug 2022 18:59:01 GMT
Expires: Mon, 05 Sep 2022 18:59:00 GMT
Etag: "fd9caaaae3b1635517515e22ee20e10b2c70db55"
Cache-Control: max-age=421663,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7438edebfe77b4f4-OSL

                                        
                                            GET /templates/images/Cadenas.svg HTTP/1.1 
Host: cfspart.impots.gouv.fr
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kinman.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         145.242.11.27
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=utf-8
                                        
Date: Wed, 31 Aug 2022 21:41:16 GMT
Server: Apache
Strict-Transport-Security: max-age=63072000; includeSubdomains; preload
Last-Modified: Tue, 19 Mar 2019 06:51:48 GMT
ETag: "23107-b72-5846cf068a2a8"
Accept-Ranges: bytes
Content-Length: 2930
Via: dpapusx041
Keep-Alive: timeout=1, max=100
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (323)
Size:   2930
Md5:    31c8c7c86c2a6814948044e8714acddb
Sha1:   49cf9783f5f57a2a843a141c27bed79f54a5c2aa
Sha256: 8254c9ce56497ac4e9e296b9b8d35cccde8872e5961de17b7b7bb65d8c2cf1db
                                        
                                            GET /Admin/lib/lg-in/gouv-fr/templates/css/bootstrap-3.3.6.min.css HTTP/1.1 
Host: kinman.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kinman.com/Admin/lib/lg-in/gouv-fr/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.254.235.71
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Thu, 04 Aug 2022 02:29:29 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
date: Wed, 31 Aug 2022 21:41:16 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   111202
Md5:    20a09db0c56ff0bb686915a8321a21aa
Sha1:   90d8e8dd07124910e4ef269653e5752f2684b65d
Sha256: 038f56cb7cb2207745a002bade21eb0994e0287d81455f07c8d0f8dd272702fe
                                        
                                            GET / HTTP/1.1 
Host: www.kinman.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kinman.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         192.254.235.71
HTTP/2 302 Found
content-type: text/html
                                        
x-powered-by: PHP/5.4.45
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: PHPSESSID=86a266b12dcfff05bc1cbad4733d5a7e; path=/
location: https://kinman.com/
content-length: 0
date: Wed, 31 Aug 2022 21:41:16 GMT
server: Apache
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10209
Expires: Thu, 01 Sep 2022 00:31:26 GMT
Date: Wed, 31 Aug 2022 21:41:17 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10209
Expires: Thu, 01 Sep 2022 00:31:26 GMT
Date: Wed, 31 Aug 2022 21:41:17 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10209
Expires: Thu, 01 Sep 2022 00:31:26 GMT
Date: Wed, 31 Aug 2022 21:41:17 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10209
Expires: Thu, 01 Sep 2022 00:31:26 GMT
Date: Wed, 31 Aug 2022 21:41:17 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F761bec2c-917c-4d76-b30f-d952432e80ae.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8243
x-amzn-requestid: cf7ca552-b255-4629-8115-9dd951f9c4c0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xv3i4EKBoAMFxPw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630fd2df-38f269ff114135be10791fd7;Sampled=0
x-amzn-remapped-date: Wed, 31 Aug 2022 21:30:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 4gctfV7TlofTF8DzNbjpedJURjS8oVCK3QDciVxHoCaXPLBj1i-bVw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 21:37:31 GMT
etag: "db7ad928f5cb3478e16a4827aa1324d5f0441aee"
age: 226
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8243
Md5:    f6f2d3a00d6d7da233136a2f97288438
Sha1:   db7ad928f5cb3478e16a4827aa1324d5f0441aee
Sha256: e52e34961bd591a719e421a2c42681ae4e7f53162e708c0e1cd23a032b8c1461
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0198fd1f-b00c-442e-9184-8ce8ebf9593c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10777
x-amzn-requestid: 2e9a081f-2ae4-49b9-b9d4-79cae2b7eae9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xv3kRFiJIAMFgNA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630fd2e7-2f9eec0b239ceb6d617431b6;Sampled=0
x-amzn-remapped-date: Wed, 31 Aug 2022 21:30:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: w9ACDg_Mxbl2GSEDeDAqdMlKjkCiMyWExvCUa2jHquaQy6U-4EJtbQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 21:37:20 GMT
age: 237
etag: "d97a8b0e4b4dbc60dfc9eb15ba28f68e8e3731ef"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10777
Md5:    ba98f63d9bef7deebb9a8d1b3126d396
Sha1:   d97a8b0e4b4dbc60dfc9eb15ba28f68e8e3731ef
Sha256: b8f6c1c6b34ec452a6aa3090c30ebf3a68cb3b4d45a7b134ed32e1959f4f0682
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16c55402-8dff-4d38-9bf3-5867acbc9770.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9593
x-amzn-requestid: 98542ed5-a8b2-49c8-bd9f-8bb88e655880
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XufKHGfUoAMFuKA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630f4573-38b597d859a48b971f5cfab4;Sampled=0
x-amzn-remapped-date: Wed, 31 Aug 2022 11:26:43 GMT
x-amz-cf-pop: HIO50-C2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: _OP760g92PmG8VTRevsoPXe_Yd5pORMRnzc5xGToV69WI7wCiy0e4A==
via: 1.1 75b094ecf0bf22429a44bab3eafcbf16.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 21:37:24 GMT
etag: "823d7261c40f8c5bf65a7e59544da90d88546c1f"
age: 233
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9593
Md5:    374a3607782ca6a016be0fbfa8d38f7d
Sha1:   823d7261c40f8c5bf65a7e59544da90d88546c1f
Sha256: d9ab7b8bfe0389c5fda3ad06b5c913d470d89f5921fc950a8c7245d512dc1b02
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff48464b4-ee99-46c1-8a3e-aa01e1b670f8.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11031
x-amzn-requestid: bd49a4c9-205b-4553-90a3-308ebc6be818
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xv4hOHzVoAMFl8Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630fd46e-783de8c2461d7cb9167f734e;Sampled=0
x-amzn-remapped-date: Wed, 31 Aug 2022 21:36:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mDad6prX28HjnDw7hq0B9vE_BaX9qqrjaOo7A46jhu2S505prB5SJA==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 21:37:11 GMT
age: 246
etag: "2082e9f809e97bbcaf6ff11846398aca472f9f0f"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11031
Md5:    494ba0180ab4b2b80ca11aeb67ae69ab
Sha1:   2082e9f809e97bbcaf6ff11846398aca472f9f0f
Sha256: c6a707e79315677912fa7cf6ab592abf4377aa76e51ae5149d4bae7e663d6801
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F382fbb98-12b7-491f-a8c7-63afff403010.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9152
x-amzn-requestid: 12c7a724-7c66-488e-b1c4-ac222ed4e5aa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xv3i5H6sIAMFRLw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630fd2df-0fc85d8539d761367b821823;Sampled=0
x-amzn-remapped-date: Wed, 31 Aug 2022 21:30:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: _j9qaEvy56YyK9qz0CaE2IO9_yEsoM7RIhO_5gddryb3pgOdOmH-OA==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 ddaf46a95abcfc80e8eae76235e2127c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 21:37:15 GMT
age: 242
etag: "151395a70faa075762664fc6cd52a65004b5c81c"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9152
Md5:    b0d8ed4b8bda662c244b9d26cf143147
Sha1:   151395a70faa075762664fc6cd52a65004b5c81c
Sha256: 49b381815612b7ecb021f243438aae99e399993d91fb38bf5d7bb3d357519d6a
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9a65f81-cc75-4344-b2c9-b175dee43d52.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6879
x-amzn-requestid: 75e0d594-5ef0-4cc0-b34b-7a20d2f1a85e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xv3i5GhRoAMFjyA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630fd2df-10e5e0bb386fbccb79250553;Sampled=0
x-amzn-remapped-date: Wed, 31 Aug 2022 21:30:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: qv1FPsIltHP40xrSG0KLtuKJKH4OwimLspy17JGRcYSQRxeVieT6aw==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 21:37:19 GMT
age: 238
etag: "fd24bc01d65805deff463e77bd875a1a299e8b9d"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6879
Md5:    8c7c7824789fc28f90fdfc7afe9856bd
Sha1:   fd24bc01d65805deff463e77bd875a1a299e8b9d
Sha256: 1c5afb4c9648efb6c0117a47cb7613aa1072f7731fa3c7c325228373c8e07106
                                        
                                            GET / HTTP/1.1 
Host: www.kinman.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kinman.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         192.254.235.71
HTTP/2 302 Found
content-type: text/html
                                        
x-powered-by: PHP/5.4.45
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: PHPSESSID=4b611fa6f7814849cd83e15949e9feee; path=/
location: https://kinman.com/
content-length: 0
date: Wed, 31 Aug 2022 21:41:17 GMT
server: Apache
X-Firefox-Spdy: h2

                                        
                                            GET / HTTP/1.1 
Host: www.kinman.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kinman.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         192.254.235.71
HTTP/2 302 Found
content-type: text/html
                                        
x-powered-by: PHP/5.4.45
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: PHPSESSID=5f61b72818aacf3478d305dbe9de2ee4; path=/
location: https://kinman.com/
content-length: 0
date: Wed, 31 Aug 2022 21:41:17 GMT
server: Apache
X-Firefox-Spdy: h2

                                        
                                            GET / HTTP/1.1 
Host: www.kinman.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kinman.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         192.254.235.71
HTTP/2 302 Found
content-type: text/html
                                        
x-powered-by: PHP/5.4.45
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: PHPSESSID=47d0ae64004cacdd0537fde17139a8e6; path=/
location: https://kinman.com/
content-length: 0
date: Wed, 31 Aug 2022 21:41:17 GMT
server: Apache
X-Firefox-Spdy: h2

                                        
                                            GET / HTTP/1.1 
Host: www.kinman.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kinman.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         192.254.235.71
HTTP/2 302 Found
content-type: text/html
                                        
x-powered-by: PHP/5.4.45
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: PHPSESSID=1e4ec78bdd1207a42f742bdc8d9a1bf7; path=/
location: https://kinman.com/
content-length: 0
date: Wed, 31 Aug 2022 21:41:17 GMT
server: Apache
X-Firefox-Spdy: h2

                                        
                                            GET / HTTP/1.1 
Host: www.kinman.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kinman.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         192.254.235.71
HTTP/2 302 Found
content-type: text/html
                                        
x-powered-by: PHP/5.4.45
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: PHPSESSID=224634ebc02f115a73f0b9b54730297d; path=/
location: https://kinman.com/
content-length: 0
date: Wed, 31 Aug 2022 21:41:17 GMT
server: Apache
X-Firefox-Spdy: h2

                                        
                                            GET / HTTP/1.1 
Host: kinman.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kinman.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         192.254.235.71
HTTP/2 200 OK
content-type: text/html
                                        
x-powered-by: PHP/5.4.45
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: PHPSESSID=869a5873c82de81bc88600cd0763a779; path=/
vary: Accept-Encoding
content-encoding: gzip
date: Wed, 31 Aug 2022 21:41:18 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   26159
Md5:    d43ba26ca42460ac59937b7f134fed8c
Sha1:   dfc48ce2597f1c0201a4a53a80516a158c31dc39
Sha256: d410e9b79c01ee94e7b4e55d80abf0b012130fc4eccd045fc791f234436e844f
                                        
                                            GET / HTTP/1.1 
Host: kinman.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kinman.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         192.254.235.71
HTTP/2 200 OK
content-type: text/html
                                        
x-powered-by: PHP/5.4.45
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: PHPSESSID=2a9951ef5ad7936ca6c66deaca6dea1e; path=/
vary: Accept-Encoding
content-encoding: gzip
date: Wed, 31 Aug 2022 21:41:18 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET / HTTP/1.1 
Host: kinman.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kinman.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         192.254.235.71
HTTP/2 200 OK
content-type: text/html
                                        
x-powered-by: PHP/5.4.45
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: PHPSESSID=9485719063044635ac0e8198492c58c5; path=/
vary: Accept-Encoding
content-encoding: gzip
date: Wed, 31 Aug 2022 21:41:18 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET / HTTP/1.1 
Host: kinman.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kinman.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         192.254.235.71
HTTP/2 200 OK
content-type: text/html
                                        
x-powered-by: PHP/5.4.45
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: PHPSESSID=71a3e0e78aabe0c6d30ffeef98d0723c; path=/
vary: Accept-Encoding
content-encoding: gzip
date: Wed, 31 Aug 2022 21:41:18 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET / HTTP/1.1 
Host: kinman.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kinman.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         192.254.235.71
HTTP/2 200 OK
content-type: text/html
                                        
x-powered-by: PHP/5.4.45
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: PHPSESSID=6b0184333844ad8da0e5276aa36c62c7; path=/
vary: Accept-Encoding
content-encoding: gzip
date: Wed, 31 Aug 2022 21:41:17 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /Admin/lib/lg-in/gouv-fr/templates/jquery-3.1.0.min.js HTTP/1.1 
Host: kinman.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kinman.com/Admin/lib/lg-in/gouv-fr/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         192.254.235.71
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 04 Aug 2022 02:29:29 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
date: Wed, 31 Aug 2022 21:41:16 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET / HTTP/1.1 
Host: kinman.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kinman.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         192.254.235.71
HTTP/2 200 OK
content-type: text/html
                                        
x-powered-by: PHP/5.4.45
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
set-cookie: PHPSESSID=f65c0eaa91f91bc521fcaa386b331463; path=/
vary: Accept-Encoding
content-encoding: gzip
date: Wed, 31 Aug 2022 21:41:18 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---