hocoole.cf/
104.21.34.30302 Found 0 B IP 104.21.34.30:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: hocoole.cf
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Thu, 01 Dec 2022 21:54:50 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://oly4youbaby.info/?s1=fhy1&s6=HVyut3
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rBDUcXN8tu1gTOEfBCo5OP9e%2BQMbaCi9tLa%2FJJFHXRlJp7f%2F6SsV%2BXd4HntX7PGTrphfA73VDEJZjTDVBgC%2FV5C4KS4CnS6uibCUbf9CDXi9FxM0Mi%2F8%2BpKr%2BalN"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f104c3cae0b51-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10858
Expires: Fri, 02 Dec 2022 00:55:49 GMT
Date: Thu, 01 Dec 2022 21:54:51 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0c748388899e8a8d3680355da2ea5020
903c620cd137613daafb0da0508c37b2f4a67212
39eab80e022a9a1732872d9926b0ace80f818ec5c535e36a18b539ea63786fb2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4385
Cache-Control: max-age=136166
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 21:54:51 GMT
Etag: "63888270-1d7"
Expires: Sat, 03 Dec 2022 11:44:17 GMT
Last-Modified: Thu, 01 Dec 2022 10:31:12 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5655
Expires: Thu, 01 Dec 2022 23:29:06 GMT
Date: Thu, 01 Dec 2022 21:54:51 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 01 Dec 2022 21:18:09 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2202
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 85oR+H//NV6YqBoq5Sk6S/5ZzVrLUwjm2F34Tr4Npdha9ZCNuG5eTQqBukgRObnrHfmOqYzenQ3VqxrIv39+IA==
x-amz-request-id: Q5PTRMTTEHJVRFX8
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 01 Dec 2022 21:45:49 GMT
age: 542
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 21:54:51 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
oly4youbaby.info/?s1=fhy1&s6=HVyut3
104.21.61.81200 OK 1.2 kB URL HTTP/1.1 oly4youbaby.info/?s1=fhy1&s6=HVyut3
IP 104.21.61.81:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3522b9edbb6608a5b890ad3093e25e98
71614cd0d7bd3a6a982e1b393436dc655e5471f1
e353b8bbe335eb90a75f48c75f41b6dfb7dfd60c47cccc95ee3b241140140d8b
GET /?s1=fhy1&s6=HVyut3 HTTP/1.1
Host: oly4youbaby.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 21:54:51 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cache-control: private, must-revalidate
pragma: no-cache
expires: -1
set-cookie: XSRF-TOKEN=eyJpdiI6IkZNVVg1MFFRTitjWGF4VFRkNFhVNHc9PSIsInZhbHVlIjoiZlYrRjZkazlFcXJyQ1BOVE1PeXlDcitoeDl0cExhdmdpTXdmK2R0cHNTeS9wREprYndCWUZXU1BpMWdwLzM3NyIsIm1hYyI6IjZiZWVkYzYzODI1MThjMzBjZTZhYzE0MDUzMzI5NTlhNWQ5M2ZiNTgwN2NmZjQ5NGIyZWU4Y2ViOGZkMmFjNWEifQ%3D%3D; expires=Thu, 01-Dec-2022 23:54:51 GMT; Max-Age=7200; path=/; samesite=lax
laravel_session=eyJpdiI6InAxQmxKdURTT0paYmVUT0pnYkVpV0E9PSIsInZhbHVlIjoiWGttQWN3M00vNjRXRjgvbzdJSmUwdnJLaHpLeE00TFV1azlWZ2JPRVBUd08xRmRpZzhvWGN0TkNPWHRQNTkvYSIsIm1hYyI6IjQyYWUyOWVjYzY5NzBkMDJmMWI5MmVhZTM3OTNlZTUyOTlhYTg4NTdkYzE5MGViZWY1MjkzOWU3ODA5NjUwNTkifQ%3D%3D; expires=Thu, 01-Dec-2022 23:54:51 GMT; Max-Age=7200; path=/; httponly; samesite=lax
SRVNAME=w2; path=/
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Qe6s2%2BvmVf%2BYBXIX6qVU%2B%2FoAeP9XVE55FboA36iUcUtv9JLhVYWq2alXuFyUYNJaQ5LtxSMYW3WAeu1ZSotcRA18CcMGovVTER3TNeWhYyzZyYtFd8CnfgP%2FJzSoA6JClOJ3"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 772f104d5ac6b518-OSL
Content-Encoding: gzip
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 15428c2ecdc876243b7b2c6e83789467
246f4188ac89dbcc51b41732a955bf2477ad5c5f
0f667ef14beab7cfe927cdf6cdc1f032a21b6877fc4fbbd7dcb20b0c450268c4
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "0F667EF14BEAB7CFE927CDF6CDC1F032A21B6877FC4FBBD7DCB20B0C450268C4"
Last-Modified: Tue, 29 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16625
Expires: Fri, 02 Dec 2022 02:31:56 GMT
Date: Thu, 01 Dec 2022 21:54:51 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 01 Dec 2022 21:11:15 GMT
cache-control: public,max-age=3600
age: 2616
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
oly4youbaby.info/landings/59/js/vendor.js
104.21.61.81200 OK 37 kB URL HTTP/1.1 oly4youbaby.info/landings/59/js/vendor.js
IP 104.21.61.81:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 9d85a126065747c39db6a55b90fc2082
4d70b034bf0f678a07dfe40d6c5f9bb2a56d3c29
dfb53573b256d892ef439ac9302e7b7d9dd9f7bb8f9870bde6bdb6644e993059
GET /landings/59/js/vendor.js HTTP/1.1
Host: oly4youbaby.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://oly4youbaby.info/?s1=fhy1&s6=HVyut3
Cookie: XSRF-TOKEN=eyJpdiI6IkZNVVg1MFFRTitjWGF4VFRkNFhVNHc9PSIsInZhbHVlIjoiZlYrRjZkazlFcXJyQ1BOVE1PeXlDcitoeDl0cExhdmdpTXdmK2R0cHNTeS9wREprYndCWUZXU1BpMWdwLzM3NyIsIm1hYyI6IjZiZWVkYzYzODI1MThjMzBjZTZhYzE0MDUzMzI5NTlhNWQ5M2ZiNTgwN2NmZjQ5NGIyZWU4Y2ViOGZkMmFjNWEifQ%3D%3D; laravel_session=eyJpdiI6InAxQmxKdURTT0paYmVUT0pnYkVpV0E9PSIsInZhbHVlIjoiWGttQWN3M00vNjRXRjgvbzdJSmUwdnJLaHpLeE00TFV1azlWZ2JPRVBUd08xRmRpZzhvWGN0TkNPWHRQNTkvYSIsIm1hYyI6IjQyYWUyOWVjYzY5NzBkMDJmMWI5MmVhZTM3OTNlZTUyOTlhYTg4NTdkYzE5MGViZWY1MjkzOWU3ODA5NjUwNTkifQ%3D%3D; SRVNAME=w2
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 21:54:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Tue, 22 Nov 2022 11:33:35 GMT
etag: W/"637cb38f-1a37b"
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5o7Y2m0YQ03r4c7o%2Fxq6ha%2BTMQh3zYCWaQelEMclHweYkzWbcLyWjS79WZ6Q25RVxawviE9F57E5HPAy1j9suMTX0PA23R5wUAl6YE8wTZz4Jeqw1KPLuWUSR2%2Fj5IU8YVej"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772f1050380b0b3d-OSL
Content-Encoding: gzip
oly4youbaby.info/landings/59/fonts/vendor.css
104.21.61.81200 OK 4.3 kB URL HTTP/1.1 oly4youbaby.info/landings/59/fonts/vendor.css
IP 104.21.61.81:0
File type ASCII text, with very long lines (16685), with no line terminators
Hash 54d3a21b424150b7ed9d80428b2702a4
e5e9e0e3167c47ec12725a3d6ebf0e9a29975fd6
0cf40d54a13331a5de7ebbd17a8bf6d38321cd1a698762cb611c8a61daf5c1c0
GET /landings/59/fonts/vendor.css HTTP/1.1
Host: oly4youbaby.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://oly4youbaby.info/?s1=fhy1&s6=HVyut3
Cookie: XSRF-TOKEN=eyJpdiI6IkZNVVg1MFFRTitjWGF4VFRkNFhVNHc9PSIsInZhbHVlIjoiZlYrRjZkazlFcXJyQ1BOVE1PeXlDcitoeDl0cExhdmdpTXdmK2R0cHNTeS9wREprYndCWUZXU1BpMWdwLzM3NyIsIm1hYyI6IjZiZWVkYzYzODI1MThjMzBjZTZhYzE0MDUzMzI5NTlhNWQ5M2ZiNTgwN2NmZjQ5NGIyZWU4Y2ViOGZkMmFjNWEifQ%3D%3D; laravel_session=eyJpdiI6InAxQmxKdURTT0paYmVUT0pnYkVpV0E9PSIsInZhbHVlIjoiWGttQWN3M00vNjRXRjgvbzdJSmUwdnJLaHpLeE00TFV1azlWZ2JPRVBUd08xRmRpZzhvWGN0TkNPWHRQNTkvYSIsIm1hYyI6IjQyYWUyOWVjYzY5NzBkMDJmMWI5MmVhZTM3OTNlZTUyOTlhYTg4NTdkYzE5MGViZWY1MjkzOWU3ODA5NjUwNTkifQ%3D%3D; SRVNAME=w2
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 21:54:51 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Tue, 22 Nov 2022 11:33:35 GMT
etag: W/"637cb38f-412d"
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WMKGT1dMvYoV2%2Fpbaqqtp4%2BysqqLTLs%2BvMhaNjBXwNCm9TMo0%2FUfl83ZWZ2b1Gk3EnFd%2FFrBIwb20WjjMHPSdd6pzA4Bqe3zCPA%2BZurdYSQgnheZmhaBQtkYjj6%2FMzFauiy8"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772f10503e70b518-OSL
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1f88399f3fdd89dbb9ca1229cb67143a
325c9dbfd932cf9a6fb9fab2dd8e27083f55a9a3
831ecd45dcd2d5ae2ae86cd63ea5e94ecd85281b7e51054af5df9a6386fb8d79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4366
Cache-Control: max-age=131084
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 21:54:51 GMT
Etag: "63886ea9-1d7"
Expires: Sat, 03 Dec 2022 10:19:35 GMT
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 15428c2ecdc876243b7b2c6e83789467
246f4188ac89dbcc51b41732a955bf2477ad5c5f
0f667ef14beab7cfe927cdf6cdc1f032a21b6877fc4fbbd7dcb20b0c450268c4
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "0F667EF14BEAB7CFE927CDF6CDC1F032A21B6877FC4FBBD7DCB20B0C450268C4"
Last-Modified: Tue, 29 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16625
Expires: Fri, 02 Dec 2022 02:31:56 GMT
Date: Thu, 01 Dec 2022 21:54:51 GMT
Connection: keep-alive
push.services.mozilla.com/
34.214.236.46101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.214.236.46:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: RRlcIgZWXYHRKCyWytwO9g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 7YZ63G+6+zA1PWAz0crnp6Nr+hQ=
oly4youbaby.info/landings/59/images/x.svg
104.21.61.81200 OK 208 B URL HTTP/1.1 oly4youbaby.info/landings/59/images/x.svg
IP 104.21.61.81:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 3dc92be0fb89a9903f309fe15941a05d
3a1ded1a8a6ceee370a2ace09ae8581a179b1d4f
6fc114384e78af774d242693e07c217be5d755bb67d3d955bb6f990b92c873a2
GET /landings/59/images/x.svg HTTP/1.1
Host: oly4youbaby.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://oly4youbaby.info/?s1=fhy1&s6=HVyut3
Cookie: XSRF-TOKEN=eyJpdiI6IkZNVVg1MFFRTitjWGF4VFRkNFhVNHc9PSIsInZhbHVlIjoiZlYrRjZkazlFcXJyQ1BOVE1PeXlDcitoeDl0cExhdmdpTXdmK2R0cHNTeS9wREprYndCWUZXU1BpMWdwLzM3NyIsIm1hYyI6IjZiZWVkYzYzODI1MThjMzBjZTZhYzE0MDUzMzI5NTlhNWQ5M2ZiNTgwN2NmZjQ5NGIyZWU4Y2ViOGZkMmFjNWEifQ%3D%3D; laravel_session=eyJpdiI6InAxQmxKdURTT0paYmVUT0pnYkVpV0E9PSIsInZhbHVlIjoiWGttQWN3M00vNjRXRjgvbzdJSmUwdnJLaHpLeE00TFV1azlWZ2JPRVBUd08xRmRpZzhvWGN0TkNPWHRQNTkvYSIsIm1hYyI6IjQyYWUyOWVjYzY5NzBkMDJmMWI5MmVhZTM3OTNlZTUyOTlhYTg4NTdkYzE5MGViZWY1MjkzOWU3ODA5NjUwNTkifQ%3D%3D; SRVNAME=w2
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 21:54:52 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Tue, 22 Nov 2022 11:33:35 GMT
etag: W/"637cb38f-154"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=H0Li%2FXvGHuTPq7YaNvMsA7w2e7kTpRxVNPwmj5FWzip2oHfar6mZTVF2ARN2C3YhDZkZiZSQHI2SL1Rr%2BKyq9eyDkWAK%2FQi2LiLoOgqB9Q%2BEYIAPj%2B4ph8XHuMgnc%2BM5puYe"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772f1052290ab518-OSL
Content-Encoding: gzip
oly4youbaby.info/landings/59/images/question.svg
104.21.61.81200 OK 472 B URL HTTP/1.1 oly4youbaby.info/landings/59/images/question.svg
IP 104.21.61.81:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (714)
Hash 6cdcb41aa9541370f623cd24af707657
3d2f6bc66f505846246b4d7be2cb4903b2b4ab5d
ba6b1c284aaaf6893fa3f758f573a21ea9f8d42db31395eba4a7caa704f8d3cf
GET /landings/59/images/question.svg HTTP/1.1
Host: oly4youbaby.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://oly4youbaby.info/?s1=fhy1&s6=HVyut3
Cookie: XSRF-TOKEN=eyJpdiI6IkZNVVg1MFFRTitjWGF4VFRkNFhVNHc9PSIsInZhbHVlIjoiZlYrRjZkazlFcXJyQ1BOVE1PeXlDcitoeDl0cExhdmdpTXdmK2R0cHNTeS9wREprYndCWUZXU1BpMWdwLzM3NyIsIm1hYyI6IjZiZWVkYzYzODI1MThjMzBjZTZhYzE0MDUzMzI5NTlhNWQ5M2ZiNTgwN2NmZjQ5NGIyZWU4Y2ViOGZkMmFjNWEifQ%3D%3D; laravel_session=eyJpdiI6InAxQmxKdURTT0paYmVUT0pnYkVpV0E9PSIsInZhbHVlIjoiWGttQWN3M00vNjRXRjgvbzdJSmUwdnJLaHpLeE00TFV1azlWZ2JPRVBUd08xRmRpZzhvWGN0TkNPWHRQNTkvYSIsIm1hYyI6IjQyYWUyOWVjYzY5NzBkMDJmMWI5MmVhZTM3OTNlZTUyOTlhYTg4NTdkYzE5MGViZWY1MjkzOWU3ODA5NjUwNTkifQ%3D%3D; SRVNAME=w2
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 21:54:52 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Tue, 22 Nov 2022 11:33:35 GMT
etag: W/"637cb38f-332"
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5u6CUdel8GcT5aan3bsO2kjuaj5OBhJQCJsPaTDJCHDlpnHM8N0%2BfsBI5JJCJkPVKO3zksz7FEw4HN0gRdlTc8Kz1Zrt0dFcOLoyUA5NDgsCPlzCTgH%2B2VWN%2B%2BHvxy2pES9d"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772f105229c80b3d-OSL
Content-Encoding: gzip
oly4youbaby.info/landings/59/fonts/Gilroy/Gilroy-Bold.woff
104.21.61.81200 OK 37 kB URL HTTP/1.1 oly4youbaby.info/landings/59/fonts/Gilroy/Gilroy-Bold.woff
IP 104.21.61.81:0
File type Web Open Font Format, TrueType, length 36800, version 0.0\012- data
Hash 32750b00d6f5003097a67377a4af208f
e7e72722332c7b79a975e183710b822c70733a40
79d5defd745ad33275f5247859cc553964fa06bffeb736c5b25ca91915280e7c
GET /landings/59/fonts/Gilroy/Gilroy-Bold.woff HTTP/1.1
Host: oly4youbaby.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://oly4youbaby.info/landings/59/fonts/vendor.css
Cookie: XSRF-TOKEN=eyJpdiI6IkZNVVg1MFFRTitjWGF4VFRkNFhVNHc9PSIsInZhbHVlIjoiZlYrRjZkazlFcXJyQ1BOVE1PeXlDcitoeDl0cExhdmdpTXdmK2R0cHNTeS9wREprYndCWUZXU1BpMWdwLzM3NyIsIm1hYyI6IjZiZWVkYzYzODI1MThjMzBjZTZhYzE0MDUzMzI5NTlhNWQ5M2ZiNTgwN2NmZjQ5NGIyZWU4Y2ViOGZkMmFjNWEifQ%3D%3D; laravel_session=eyJpdiI6InAxQmxKdURTT0paYmVUT0pnYkVpV0E9PSIsInZhbHVlIjoiWGttQWN3M00vNjRXRjgvbzdJSmUwdnJLaHpLeE00TFV1azlWZ2JPRVBUd08xRmRpZzhvWGN0TkNPWHRQNTkvYSIsIm1hYyI6IjQyYWUyOWVjYzY5NzBkMDJmMWI5MmVhZTM3OTNlZTUyOTlhYTg4NTdkYzE5MGViZWY1MjkzOWU3ODA5NjUwNTkifQ%3D%3D; SRVNAME=w2
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 21:54:52 GMT
Content-Type: application/font-woff
Content-Length: 36800
Connection: keep-alive
last-modified: Tue, 22 Nov 2022 11:33:35 GMT
etag: "637cb38f-8fc0"
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NmjusdfB4KK07Cd45PSiiyFGhuK4y%2FQ92Uw90e%2Bv2VmKKjTAydkdv1y7jNH2L2vBYqJteyMZKpg7PAKiXkKFgsxmfPY8rws8nOJsY6EWi6nqgreMooeZN8%2B%2B%2FgIYQGfhkOUK"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772f1052b979b4e8-OSL
oly4youbaby.info/landings/59/fonts/Gilroy/Gilroy-Regular.woff
104.21.61.81200 OK 35 kB URL HTTP/1.1 oly4youbaby.info/landings/59/fonts/Gilroy/Gilroy-Regular.woff
IP 104.21.61.81:0
File type Web Open Font Format, TrueType, length 35308, version 0.0\012- data
Hash 8e8705d069fbb9099b3a1e1d779fa5c5
ff762363b88add1df9a3c36ff1247796376b61e6
9f2ef335c07566f0d4f273a4b72bcb3ad2b02f0c6232da6129952ee60bd07ba8
GET /landings/59/fonts/Gilroy/Gilroy-Regular.woff HTTP/1.1
Host: oly4youbaby.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://oly4youbaby.info/landings/59/fonts/vendor.css
Cookie: XSRF-TOKEN=eyJpdiI6IkZNVVg1MFFRTitjWGF4VFRkNFhVNHc9PSIsInZhbHVlIjoiZlYrRjZkazlFcXJyQ1BOVE1PeXlDcitoeDl0cExhdmdpTXdmK2R0cHNTeS9wREprYndCWUZXU1BpMWdwLzM3NyIsIm1hYyI6IjZiZWVkYzYzODI1MThjMzBjZTZhYzE0MDUzMzI5NTlhNWQ5M2ZiNTgwN2NmZjQ5NGIyZWU4Y2ViOGZkMmFjNWEifQ%3D%3D; laravel_session=eyJpdiI6InAxQmxKdURTT0paYmVUT0pnYkVpV0E9PSIsInZhbHVlIjoiWGttQWN3M00vNjRXRjgvbzdJSmUwdnJLaHpLeE00TFV1azlWZ2JPRVBUd08xRmRpZzhvWGN0TkNPWHRQNTkvYSIsIm1hYyI6IjQyYWUyOWVjYzY5NzBkMDJmMWI5MmVhZTM3OTNlZTUyOTlhYTg4NTdkYzE5MGViZWY1MjkzOWU3ODA5NjUwNTkifQ%3D%3D; SRVNAME=w2
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 21:54:52 GMT
Content-Type: application/font-woff
Content-Length: 35308
Connection: keep-alive
last-modified: Tue, 22 Nov 2022 11:33:35 GMT
etag: "637cb38f-89ec"
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OI%2F8ciUfOYqCItP7UNBFDyFwp9sKXR6hLpKdxxI3SbzszSz5OTxskXKtmBC5kNqYZqGE23aifD%2Fa1m21nTPvHS6rVUvKy48oNdGj45wqZPsvFwA%2FxA%2BXo52zzm9dnRNI44cL"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772f1052a9b0b518-OSL
oly4youbaby.info/landings/59/images/8.jpg
104.21.61.81200 OK 50 kB URL HTTP/1.1 oly4youbaby.info/landings/59/images/8.jpg
IP 104.21.61.81:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1080, components 3\012- data
Hash d36cd479e349e6977b0a0cc0a4c15dba
3d83f68561a31b7135f9743c8e18af8936463edd
5e1a16db7feffc67f08806c24cfaa0b5b0a1673a69a70e05d22abcaf545d12b4
GET /landings/59/images/8.jpg HTTP/1.1
Host: oly4youbaby.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://oly4youbaby.info/landings/59/fonts/vendor.css
Cookie: XSRF-TOKEN=eyJpdiI6IkZNVVg1MFFRTitjWGF4VFRkNFhVNHc9PSIsInZhbHVlIjoiZlYrRjZkazlFcXJyQ1BOVE1PeXlDcitoeDl0cExhdmdpTXdmK2R0cHNTeS9wREprYndCWUZXU1BpMWdwLzM3NyIsIm1hYyI6IjZiZWVkYzYzODI1MThjMzBjZTZhYzE0MDUzMzI5NTlhNWQ5M2ZiNTgwN2NmZjQ5NGIyZWU4Y2ViOGZkMmFjNWEifQ%3D%3D; laravel_session=eyJpdiI6InAxQmxKdURTT0paYmVUT0pnYkVpV0E9PSIsInZhbHVlIjoiWGttQWN3M00vNjRXRjgvbzdJSmUwdnJLaHpLeE00TFV1azlWZ2JPRVBUd08xRmRpZzhvWGN0TkNPWHRQNTkvYSIsIm1hYyI6IjQyYWUyOWVjYzY5NzBkMDJmMWI5MmVhZTM3OTNlZTUyOTlhYTg4NTdkYzE5MGViZWY1MjkzOWU3ODA5NjUwNTkifQ%3D%3D; SRVNAME=w2
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 21:54:52 GMT
Content-Type: image/jpeg
Content-Length: 50454
Connection: keep-alive
last-modified: Tue, 22 Nov 2022 11:33:35 GMT
etag: "637cb38f-c516"
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SjaSBpqwfBHdaYcDNxWwVkmM0nAT9FHPBknvltMv0aUhmmbi%2BgLJ3RwxTo7J3%2BDS3tSeBcm4hvCt%2B%2FBIHgq3%2BcU6lHRidD9kQb26rn0FgqmXzuGbtBzqqN0UeOahww7RDCWC"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772f1052a9590b59-OSL
oly4youbaby.info/landings/59/fonts/Gilroy/Gilroy-Medium.woff
104.21.61.81200 OK 37 kB URL HTTP/1.1 oly4youbaby.info/landings/59/fonts/Gilroy/Gilroy-Medium.woff
IP 104.21.61.81:0
File type Web Open Font Format, TrueType, length 36924, version 0.0\012- data
Hash 7d5dc1791cf2738d55a87e871549004c
7960861bd85d181bd3ff1abd77d55791d05c83e4
a19283a467a53bafbcc7a335d8fd1e96cea3f45fb81a9642f66be7b192099bc4
GET /landings/59/fonts/Gilroy/Gilroy-Medium.woff HTTP/1.1
Host: oly4youbaby.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://oly4youbaby.info/landings/59/fonts/vendor.css
Cookie: XSRF-TOKEN=eyJpdiI6IkZNVVg1MFFRTitjWGF4VFRkNFhVNHc9PSIsInZhbHVlIjoiZlYrRjZkazlFcXJyQ1BOVE1PeXlDcitoeDl0cExhdmdpTXdmK2R0cHNTeS9wREprYndCWUZXU1BpMWdwLzM3NyIsIm1hYyI6IjZiZWVkYzYzODI1MThjMzBjZTZhYzE0MDUzMzI5NTlhNWQ5M2ZiNTgwN2NmZjQ5NGIyZWU4Y2ViOGZkMmFjNWEifQ%3D%3D; laravel_session=eyJpdiI6InAxQmxKdURTT0paYmVUT0pnYkVpV0E9PSIsInZhbHVlIjoiWGttQWN3M00vNjRXRjgvbzdJSmUwdnJLaHpLeE00TFV1azlWZ2JPRVBUd08xRmRpZzhvWGN0TkNPWHRQNTkvYSIsIm1hYyI6IjQyYWUyOWVjYzY5NzBkMDJmMWI5MmVhZTM3OTNlZTUyOTlhYTg4NTdkYzE5MGViZWY1MjkzOWU3ODA5NjUwNTkifQ%3D%3D; SRVNAME=w2
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 21:54:52 GMT
Content-Type: application/font-woff
Content-Length: 36924
Connection: keep-alive
last-modified: Tue, 22 Nov 2022 11:33:35 GMT
etag: "637cb38f-903c"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kRpkr6n8lB01EoCQ9H9xJImpP7BfUpJnqNK2QrEeWnji7nF77hTz2wYJcH5iqTbjhjSA4IZ4ZtlsFDM49NhReVHFYPuV%2FAyOkIMtR18q8u6D4kQKw8U3%2Bu1m%2F186LQ4l%2Fnkf"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772f1052bf330b69-OSL
oly4youbaby.info/favicon.ico
104.21.61.81200 OK 0 B URL HTTP/1.1 oly4youbaby.info/favicon.ico
IP 104.21.61.81:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: oly4youbaby.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://oly4youbaby.info/?s1=fhy1&s6=HVyut3
Cookie: XSRF-TOKEN=eyJpdiI6IkZNVVg1MFFRTitjWGF4VFRkNFhVNHc9PSIsInZhbHVlIjoiZlYrRjZkazlFcXJyQ1BOVE1PeXlDcitoeDl0cExhdmdpTXdmK2R0cHNTeS9wREprYndCWUZXU1BpMWdwLzM3NyIsIm1hYyI6IjZiZWVkYzYzODI1MThjMzBjZTZhYzE0MDUzMzI5NTlhNWQ5M2ZiNTgwN2NmZjQ5NGIyZWU4Y2ViOGZkMmFjNWEifQ%3D%3D; laravel_session=eyJpdiI6InAxQmxKdURTT0paYmVUT0pnYkVpV0E9PSIsInZhbHVlIjoiWGttQWN3M00vNjRXRjgvbzdJSmUwdnJLaHpLeE00TFV1azlWZ2JPRVBUd08xRmRpZzhvWGN0TkNPWHRQNTkvYSIsIm1hYyI6IjQyYWUyOWVjYzY5NzBkMDJmMWI5MmVhZTM3OTNlZTUyOTlhYTg4NTdkYzE5MGViZWY1MjkzOWU3ODA5NjUwNTkifQ%3D%3D; SRVNAME=w2
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 21:54:52 GMT
Content-Type: image/x-icon
Content-Length: 0
Connection: keep-alive
last-modified: Tue, 22 Nov 2022 11:33:33 GMT
etag: "637cb38d-0"
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 235
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AZizsKUG3Dcu4ZiRLNlGYFpdVIpipvop7fckX8vsaReuq0uR25uMjTxaE9Di91aYaYefs%2Ba5iNvcgcbjpiLVaSCzTfMSPrTpOtHPUBgO4t4S55j1w4sYs4rXWFc7o3jYyJtk"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772f1054fbbb0b59-OSL
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9638
Expires: Fri, 02 Dec 2022 00:35:31 GMT
Date: Thu, 01 Dec 2022 21:54:53 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9638
Expires: Fri, 02 Dec 2022 00:35:31 GMT
Date: Thu, 01 Dec 2022 21:54:53 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9638
Expires: Fri, 02 Dec 2022 00:35:31 GMT
Date: Thu, 01 Dec 2022 21:54:53 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9638
Expires: Fri, 02 Dec 2022 00:35:31 GMT
Date: Thu, 01 Dec 2022 21:54:53 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9638
Expires: Fri, 02 Dec 2022 00:35:31 GMT
Date: Thu, 01 Dec 2022 21:54:53 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb30f254-1327-487b-a297-00361bfd5c02.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb30f254-1327-487b-a297-00361bfd5c02.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cd78aa69439c995167f32b8a41a1f4f6
d07d6145182f312f3ed86ecf96b4ffa175416fa0
3b08cf3fad31ee0cf3ee25abc2484fb4283543865a42dfc568b14f9856fd3bb5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb30f254-1327-487b-a297-00361bfd5c02.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7722
x-amzn-requestid: 8d7c4800-6c06-43ed-afa1-94840d42f591
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGy2Gr1IAMFWeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e78-429ae3135d47e3b020c4c7a1;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:36:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Z8thSamrCRejcAcQEGAp4WpSMzMEvstuZtVpKAjiCH4dyJyf1yihBA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:50:11 GMT
age: 282
etag: "d07d6145182f312f3ed86ecf96b4ffa175416fa0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F40b76495-d9ea-430e-9b62-92b639b122e0.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F40b76495-d9ea-430e-9b62-92b639b122e0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 58a28fc1cbcacdb07b3ca175281982b5
9bc47ee49fc070d0997e49a719bd9758685ad583
d3bfcf749c4652cb29f7c82a5d7ba940bd607f9060e49c1c40a112eb3e625bd9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F40b76495-d9ea-430e-9b62-92b639b122e0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6564
x-amzn-requestid: e2875cf3-3915-43a5-a724-4de2ca03de56
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGepHOiIAMFTFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-5f7e2a3f609d54a609a12670;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: mwGAEu-gPXY5Opwd972VbBA6l33dNk7bPFSyZmciaplQKj2ZuTkQSg==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:47:56 GMT
age: 417
etag: "9bc47ee49fc070d0997e49a719bd9758685ad583"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
34.120.237.76200 OK 2.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b47431190f34eccf0a6efb98e2a32b7d
9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704
08d3b6be354cafb70c20e6865788cb375adbf88d47711651fe1a3b855094daf2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2942
x-amzn-requestid: ed26679f-cd56-477f-9914-f9afbcaaeea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoGFYoAMFWgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-4ec6bebe21656d5026456994;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Fw6nrporwF27NW0-vXpaolW79nDXLF2RyS-lqhhp1osHt7q98VpI3g==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:34:47 GMT
age: 1206
etag: "9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
svntrk.com/assets/fhy1_638922ab60062.js
188.114.96.1200 OK 7.7 kB URL HTTP/2 svntrk.com/assets/fhy1_638922ab60062.js
IP 188.114.96.1:0
Hash 4c279c10c8830a0d965ee9b2842e002e
d8ff216ff8d51f5e6bdc107751e787b00784ae81
6397b92d166464274b900b2c1af782d07ec5b22a6c0ad542cfb3922a71929e70
GET /assets/fhy1_638922ab60062.js HTTP/1.1
Host: svntrk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://oly4youbaby.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 01 Dec 2022 21:54:51 GMT
content-type: text/javascript; charset=UTF-8
cache-control: no-cache, private
cf-cache-status: BYPASS
set-cookie: svnimp=638922abc15b4; path=/; secure; httponly; samesite=none
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NS6xYXyR663WedVJiqFvHJR7DwK%2FF6yctOxAi3cEN0QxFl%2F8T%2FqY%2FNi1ZGIjpw%2FTu3JFVJzz7sFHCnKVdOPv9t4yL7oDFwGenfhH1LuMnCaIEvQmdfkERygOkv2O"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 772f10507d930afe-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe0842726-801f-4648-a54d-c0cb2cf5348a.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe0842726-801f-4648-a54d-c0cb2cf5348a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 89502a302863c914b4de5e8c6a7f6846
898d50ac6e372609656fccee27de3d036bc0281c
9bc1f83d570d70b7e17e5de7a1546885851431ea989d915852ae7130387c422f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe0842726-801f-4648-a54d-c0cb2cf5348a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5675
x-amzn-requestid: a47e049a-6f76-4af4-8064-fd7722bcfb17
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGepGYEIAMFeQw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-09e13afe27c4dc5b44e828be;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: U_3ah2pFrsQl9IVVqm9EVI99FnF79b9zOUFVBGX966JAjkDg6UF--A==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:47:56 GMT
age: 417
etag: "898d50ac6e372609656fccee27de3d036bc0281c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F449f29d0-f60b-4dec-8b5b-0a1971bab406.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F449f29d0-f60b-4dec-8b5b-0a1971bab406.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4c7113338bc3310b13d23ca415c177e2
2cb4edc6b161c6d2d5b47aa498ae54e677966466
3a83adce869dd7eb064c583bf7ff93c57fabd7ea2da872f7d1f7d868b8a492e9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F449f29d0-f60b-4dec-8b5b-0a1971bab406.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10270
x-amzn-requestid: ac2d2825-2ec4-435e-9921-3ea6524df1dc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfG1nEvYoAMFliA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e8a-4419423112b5723e3dba46ea;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:37:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NQ21d2_5JO2Ym-LEnDecub9bK6wUyvM2zUf_XpfMGag83fVWlMjT8w==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:50:09 GMT
age: 284
etag: "2cb4edc6b161c6d2d5b47aa498ae54e677966466"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2