r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash e935ea42be4feaed61a824b0b903913e
f966cfa80d65a805cb9d7c6a53b3340865d7c51a
eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8994
Expires: Thu, 02 Feb 2023 19:20:38 GMT
Date: Thu, 02 Feb 2023 16:50:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10997
Expires: Thu, 02 Feb 2023 19:54:01 GMT
Date: Thu, 02 Feb 2023 16:50:44 GMT
Connection: keep-alive
blog.krtraining.com/author/admin/
208.109.25.207301 Moved Permanently 249 B URL HTTP/1.1 blog.krtraining.com/author/admin/
IP 208.109.25.207:0
ASN #398101 GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e5720e9e17833f9ecabfa05a254d67b1
825f2498b3826d6b3290ed5eb4efb920f696353c
a72a71861336a8300297cfa67a63329859052547d756eca927bc434e1941fa93
Analyzer Verdict Alert fortinet Phishing
GET /author/admin/ HTTP/1.1
Host: blog.krtraining.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 02 Feb 2023 16:50:44 GMT
Server: Apache
Location: https://blog.krtraining.com/author/admin/
Content-Length: 249
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 02 Feb 2023 16:36:06 GMT
content-type: application/json
age: 878
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 9a76feabb767086ae0fa54e0ffbf763f
3655d78994a1e9838340669462728b67c8c12e54
bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12075
Expires: Thu, 02 Feb 2023 20:11:59 GMT
Date: Thu, 02 Feb 2023 16:50:44 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: LL3BHR2O0v6BCshsP3W+FAI63604KO1AHCBBtxp7X253ql67eTUEsHt3dRMyftuvw6mAucC3seg=
x-amz-request-id: 5Z5ZWD49HF2WBFGH
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 02 Feb 2023 15:52:02 GMT
age: 3522
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 16:50:44 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 02 Feb 2023 16:07:19 GMT
age: 2605
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14170
Expires: Thu, 02 Feb 2023 20:46:54 GMT
Date: Thu, 02 Feb 2023 16:50:44 GMT
Connection: keep-alive
push.services.mozilla.com/
54.200.107.47101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.200.107.47:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: JFBZqXOUIX3wZiwLiszZgw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: aUsTI/C+kFOOwR8lX3gVWQwElwU=
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10210
Expires: Thu, 02 Feb 2023 19:40:55 GMT
Date: Thu, 02 Feb 2023 16:50:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10210
Expires: Thu, 02 Feb 2023 19:40:55 GMT
Date: Thu, 02 Feb 2023 16:50:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10210
Expires: Thu, 02 Feb 2023 19:40:55 GMT
Date: Thu, 02 Feb 2023 16:50:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10210
Expires: Thu, 02 Feb 2023 19:40:55 GMT
Date: Thu, 02 Feb 2023 16:50:45 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7c823f1d6bf1c50d58eb263b85e6e37c
a7b74d11494fb3254df907e5cc1eead070d84617
b2706961eb756383e0988dfdb501dc424aea59697aedd1e4a6c294c314a31935
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5356
x-amzn-requestid: fef22c83-35a4-4990-9008-af5853f838d1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5BEB6oAMFczg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6c-68d3017555c069bc3107d150;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: i697kJpdT4ZPeMLWIftWf16pWCic0-v4tL4GDKfVfTZLo-E4-3FwDQ==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:21:38 GMT
age: 66547
etag: "a7b74d11494fb3254df907e5cc1eead070d84617"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 395bb0f71f9eba82f5ca23548d08900f
b1fada280c7ea3eb775a6fa46ce173a51eb045f5
7443babb69532e1ee3ee779e05ad4f62de2c5bf62548bcb5702f8290a527664c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11367
x-amzn-requestid: 67702c15-9a68-46ec-95e5-efb57f08e2f1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5OGfBoAMF3Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6e-033182ba55fdd0230ad5a270;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Ybz4mmNUwsKOkpz6GFm4nLz7iGX5gJ--EiUjqrs8G92GBLn6qaF7IQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:57:51 GMT
age: 67974
etag: "b1fada280c7ea3eb775a6fa46ce173a51eb045f5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b9af1fd56c0de8f128ddce88d49c1b4d
e3bb3d4950f7c0267f4476eef21872da332831aa
908153182f76362ff329803d9c11c06c66181e85e8e51dabd927f1f1ac630d5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8944
x-amzn-requestid: 07495184-ede8-485c-94e8-5302ec348ea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: freiLHRPoAMFYbw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dade0d-275437a54eceb40e302a7f55;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:47:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: e0zaXjoBKOmsY4fPEbl1SWCBxetMssmszZug0-epLq-X5rGb5zKHZw==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:59:36 GMT
age: 67869
etag: "e3bb3d4950f7c0267f4476eef21872da332831aa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0f85742f336de59ca88f7f964a8b33f4
0fc7177f8cb06421a8807e93989f651bda743567
fbd5fd39c39c218b0fa956f8cb8050cbdbfcb109a92303f6175d73cc8c339526
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8642
x-amzn-requestid: f47f7616-41aa-4983-8ada-20f6f0b6856b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frfXtHkUoAMFr1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadf64-083a903959cdab540bd38265;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:53:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UqoeSWse0jZAC3IEIWk5fj9q_4xsAoZRkn67U4m2L5NkayHxsAYmlA==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:00:35 GMT
age: 67810
etag: "0fc7177f8cb06421a8807e93989f651bda743567"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04301881-7728-4218-a61a-642cd5ffae53.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04301881-7728-4218-a61a-642cd5ffae53.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0224e848c34cb32cf932ed99dfd8468a
31c1abac8979bca5a998a6649ca3e6f59c0fb2f5
f93d5a69758e57d4d2b0d307ce98ad5ea8d86b825108873e8ea5bc36567dc5c0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04301881-7728-4218-a61a-642cd5ffae53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5061
x-amzn-requestid: e8e96b85-5b24-48b4-bea3-6c1b93c55ca1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdKVGf3oAMFj1w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadbdb-558cb5ec6f31497d284518be;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:38:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: AeFT9dVmzOw8800DKN7VouWS3HGHRYp64On9sF62J-aOK_OGtvAa7w==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:12:52 GMT
age: 67073
etag: "31c1abac8979bca5a998a6649ca3e6f59c0fb2f5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4bb3a6fba496d54cdbbccaf2b9600386
8e30002699e9fbf2047f9ac11a36d2175fc9c591
927bf3a04b011b4e3bc8d8772a3d5813507f7f523312d43627767b64615562f3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15857
x-amzn-requestid: cfe36b9d-34f6-4f3f-896e-e70ec45c4a04
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ2JGGWoAMFSLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcf3-0dd68dd778b9aba268a129b0;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: C1kqthy0eZop0UZfG3_op5xeBOVGiPLYfia4uS1l4-kchEzV6ccE9w==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 07:16:08 GMT
age: 34477
etag: "8e30002699e9fbf2047f9ac11a36d2175fc9c591"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
blog.krtraining.com/author/admin/
208.109.25.207200 OK 14 kB URL HTTP/2 blog.krtraining.com/author/admin/
IP 208.109.25.207:0
ASN #398101 GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (9381), with CRLF, LF line terminators
Hash c7a4307f4e4ca74910f0460d7987260c
a3447b35756fe27c3e7f74c5952cc676ea22dfd7
c277f43e6f1e527206d8fa79828ca02ba9b4504d04fe6bf972a6c1be2d8f4cc2
Analyzer Verdict Alert fortinet Phishing
GET /author/admin/ HTTP/1.1
Host: blog.krtraining.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
x-powered-by: PHP/7.4.33
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
link: <https://blog.krtraining.com/wp-json/>; rel="https://api.w.org/", <https://blog.krtraining.com/wp-json/wp/v2/users/1>; rel="alternate"; type="application/json"
set-cookie: PHPSESSID=09b898b1f2ab093b6a14668a36606263; path=/
vary: Accept-Encoding
content-encoding: br
content-length: 13994
content-type: text/html; charset=UTF-8
date: Thu, 02 Feb 2023 16:50:44 GMT
server: Apache
X-Firefox-Spdy: h2
c0.wp.com/c/6.1.1/wp-includes/css/classic-themes.min.css
192.0.77.37200 OK 217 B URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/css/classic-themes.min.css
IP 192.0.77.37:0
Hash 95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5
GET /c/6.1.1/wp-includes/css/classic-themes.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.krtraining.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 16:50:46 GMT
content-type: text/css
content-length: 217
last-modified: Tue, 25 Oct 2022 13:45:16 GMT
expires: Fri, 02 Feb 2024 16:50:46 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash bbeb609cbf32a8842bf96a124588e65e
40c0f548bcb714731f62df5a27cad21adef0463d
502c60a18a13b84598933731d182aafd4b83576bfc56451b36f9238c621a571d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:50:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i0.wp.com/blog.krtraining.com/wp-content/uploads/2021/04/Newsletter-header-no-month.jpg?resize=150%2C150&ssl=1
192.0.77.2200 OK 4.3 kB URL HTTP/2 i0.wp.com/blog.krtraining.com/wp-content/uploads/2021/04/Newsletter-header-no-month.jpg?resize=150%2C150&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 150x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 3142cf3ab1110432c28a03d5cf4be5f2
af31e3da4adf2c67a5b0385febaf8e62e3df9727
354ff5e57f2562781416a61976184b60f96222aa31c1588cc68716a2fbd57c77
GET /blog.krtraining.com/wp-content/uploads/2021/04/Newsletter-header-no-month.jpg?resize=150%2C150&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.krtraining.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 16:50:46 GMT
content-type: image/webp
content-length: 4290
last-modified: Thu, 02 Feb 2023 16:50:46 GMT
expires: Sun, 02 Feb 2025 04:50:46 GMT
cache-control: public, max-age=63115200
link: <https://blog.krtraining.com/wp-content/uploads/2021/04/Newsletter-header-no-month.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "13e8433332427118"
vary: Accept
x-nc: MISS arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:50:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
blog.krtraining.com/wp-content/plugins/vfb-pro/public/assets/css/vfb-style.min.css?ver=2019.05.10
208.109.25.207200 OK 9.6 kB URL HTTP/2 blog.krtraining.com/wp-content/plugins/vfb-pro/public/assets/css/vfb-style.min.css?ver=2019.05.10
IP 208.109.25.207:0
ASN #398101 GO-DADDY-COM-LLC
File type ASCII text, with very long lines (65536), with no line terminators
Hash afe6aa4fd992251b72858cd948900134
9b566e91ec0ec03f90d7d10d5a3b7154bebb2dc3
b0fd3bb8c50a327ddd704d3e4746238a664d29dd77a81829136641c149b5a10d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/vfb-pro/public/assets/css/vfb-style.min.css?ver=2019.05.10 HTTP/1.1
Host: blog.krtraining.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.krtraining.com/author/admin/
Cookie: PHPSESSID=09b898b1f2ab093b6a14668a36606263
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 08 Oct 2021 21:59:26 GMT
etag: "b40c6a-108dd-5cdde7e1fcb80-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 9586
content-type: text/css
date: Thu, 02 Feb 2023 16:50:46 GMT
server: Apache
X-Firefox-Spdy: h2
blog.krtraining.com/wp-content/themes/f2/style.css?ver=2.2.3
208.109.25.207200 OK 7.6 kB URL HTTP/2 blog.krtraining.com/wp-content/themes/f2/style.css?ver=2.2.3
IP 208.109.25.207:0
ASN #398101 GO-DADDY-COM-LLC
Hash ce6b418ec7d14cbfba6cb9b4cc496e6f
1748609de921064d21a603effb7747bdd681cc32
db96902958e38968c32dbd1be3fe360ebe6113f222136de2ffae891b72dc2083
GET /wp-content/themes/f2/style.css?ver=2.2.3 HTTP/1.1
Host: blog.krtraining.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.krtraining.com/author/admin/
Cookie: PHPSESSID=09b898b1f2ab093b6a14668a36606263
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 17 Apr 2017 03:03:28 GMT
etag: "b40e22-ad5c-54d54090d2000-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 7598
content-type: text/css
date: Thu, 02 Feb 2023 16:50:46 GMT
server: Apache
X-Firefox-Spdy: h2
c0.wp.com/c/6.1.1/wp-includes/js/mediaelement/wp-mediaelement.min.css
192.0.77.37200 OK 1.5 kB URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/js/mediaelement/wp-mediaelement.min.css
IP 192.0.77.37:0
File type ASCII text, with very long lines (4186), with no line terminators
Hash cfbf1501450a051e4558b63e5b6c488c
1d516cd068faf74c910014f2ad6c771fd928e6a1
97e6daedbf11a8450093eaaf28e32d0dca84ef7411d37de59fd8bba421af9a22
GET /c/6.1.1/wp-includes/js/mediaelement/wp-mediaelement.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.krtraining.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 16:50:46 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 07 Jun 2019 20:45:02 GMT
content-encoding: br
expires: Fri, 02 Feb 2024 16:50:46 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
fonts.gstatic.com/s/bitter/v32/raxhHiqOu8IVPmnRc6SY1KXhnF_Y8RHYOLjOXQ.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/bitter/v32/raxhHiqOu8IVPmnRc6SY1KXhnF_Y8RHYOLjOXQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 16244, version 1.0\012- data
Hash 088c506956e968ae70b7e06961f82e4b
b1e1d62383a58319f5fd86e2c5bada4994b1fd7b
8fdfc4091347dc2e549d7c0fb88385acb620ddcc7ba7e66163513b16e76fb9a7
GET /s/bitter/v32/raxhHiqOu8IVPmnRc6SY1KXhnF_Y8RHYOLjOXQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://blog.krtraining.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16244
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 01:02:40 GMT
expires: Fri, 02 Feb 2024 01:02:40 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 07 Dec 2022 17:58:05 GMT
content-type: font/woff2
age: 56886
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
c0.wp.com/c/6.1.1/wp-includes/js/jquery/jquery-migrate.min.js
192.0.77.37200 OK 4.5 kB URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/js/jquery/jquery-migrate.min.js
IP 192.0.77.37:0
File type ASCII text, with very long lines (11126)
Hash 66ba76dc8f55515f06bb56f50eae8f9e
8c2c4b75ccfa77c5446d63d28266e6671936349e
6351c04041eb68c8109a440573213aa5e38d84b0c3a000ba26caf3eb0d51b5d9
GET /c/6.1.1/wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.krtraining.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 16:50:46 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
content-encoding: br
expires: Fri, 02 Feb 2024 16:50:46 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:50:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
blog.krtraining.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
208.109.25.207200 OK 4.6 kB URL HTTP/2 blog.krtraining.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 208.109.25.207:0
ASN #398101 GO-DADDY-COM-LLC
File type ASCII text, with very long lines (15660)
Hash a0083d25b89ea80ecd2393db9f865d62
24eaf2df7c722fb13f2b5bf77ada5ee446720c25
f7533cb93f2efbb9e3bccfa9ff4036a2cafa7dd1bd4d66bea4833306b321e957
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: blog.krtraining.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.krtraining.com/author/admin/
Cookie: PHPSESSID=09b898b1f2ab093b6a14668a36606263
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 25 May 2022 16:19:57 GMT
etag: "b440dc-48b9-5dfd871b26540-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 4614
content-type: application/javascript
date: Thu, 02 Feb 2023 16:50:46 GMT
server: Apache
X-Firefox-Spdy: h2
blog.krtraining.com/wp-content/themes/f2/js/small-menu.js?ver=2.2.3
208.109.25.207200 OK 436 B URL HTTP/2 blog.krtraining.com/wp-content/themes/f2/js/small-menu.js?ver=2.2.3
IP 208.109.25.207:0
ASN #398101 GO-DADDY-COM-LLC
Hash aef05efdad6c560dc3e58553de0b22fa
690d247da5c57a1535545a78f8f033b392ed34da
ab5093d9e8020b8e3997a148688d08370777fc85d925d992390723c33702e2af
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/f2/js/small-menu.js?ver=2.2.3 HTTP/1.1
Host: blog.krtraining.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.krtraining.com/author/admin/
Cookie: PHPSESSID=09b898b1f2ab093b6a14668a36606263
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 17 Apr 2017 03:03:28 GMT
etag: "b40e38-4e6-54d54090d2000-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 436
content-type: application/javascript
date: Thu, 02 Feb 2023 16:50:46 GMT
server: Apache
X-Firefox-Spdy: h2
blog.krtraining.com/wp-content/themes/f2/js/jquery.fitvids.min.js?ver=2.2.3
208.109.25.207200 OK 807 B URL HTTP/2 blog.krtraining.com/wp-content/themes/f2/js/jquery.fitvids.min.js?ver=2.2.3
IP 208.109.25.207:0
ASN #398101 GO-DADDY-COM-LLC
File type HTML document, ASCII text, with very long lines (1864)
Hash 8f8cbda0b3570d7a72e4ac2cfd1b0d59
7fa33c5845f381a4ad72d7d93c5b32413118068c
1d9d8e2a030e3e8b4980ffa49e292a37f765c60f4c80744afa04f827805c8e22
GET /wp-content/themes/f2/js/jquery.fitvids.min.js?ver=2.2.3 HTTP/1.1
Host: blog.krtraining.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.krtraining.com/author/admin/
Cookie: PHPSESSID=09b898b1f2ab093b6a14668a36606263
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 17 Apr 2017 03:03:28 GMT
etag: "b40e36-8f2-54d54090d2000-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 807
content-type: application/javascript
date: Thu, 02 Feb 2023 16:50:46 GMT
server: Apache
X-Firefox-Spdy: h2
blog.krtraining.com/wp-content/themes/f2/print.css?ver=2.2.3
208.109.25.207200 OK 1.9 kB URL HTTP/2 blog.krtraining.com/wp-content/themes/f2/print.css?ver=2.2.3
IP 208.109.25.207:0
ASN #398101 GO-DADDY-COM-LLC
Hash 477aece28864ce5ad5ebd35e9210608c
6c1fafa8aed80daa47084f9ccb176848c4a29af7
fd9ace5f9176b77b01f22c8509130532352aeac0c97da7923d9ce07391b88fbd
GET /wp-content/themes/f2/print.css?ver=2.2.3 HTTP/1.1
Host: blog.krtraining.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.krtraining.com/author/admin/
Cookie: PHPSESSID=09b898b1f2ab093b6a14668a36606263
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 17 Apr 2017 03:03:28 GMT
etag: "b40e1b-1890-54d54090d2000-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1924
content-type: text/css
date: Thu, 02 Feb 2023 16:50:46 GMT
server: Apache
X-Firefox-Spdy: h2
stats.wp.com/e-202305.js
192.0.76.3200 OK 11 kB IP 192.0.76.3:0
File type ASCII text, with very long lines (2690)
Hash b4fe1e30b91d074c569a01dccb3978b1
c4dff7a9838c054d40e2594359534547198d1170
957aa4f5139483b8ced8fe1da35d47b0327e9f6bf05b4a4a412de95da2ae98b6
GET /e-202305.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.krtraining.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 16:50:46 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"62f6b688-3508"
content-encoding: br
expires: Wed, 24 Jan 2024 05:54:37 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2
fonts.gstatic.com/s/gudea/v15/neIFzCqgsI0mp9CI_oA.woff2
216.58.207.227200 OK 7.9 kB URL HTTP/2 fonts.gstatic.com/s/gudea/v15/neIFzCqgsI0mp9CI_oA.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 7908, version 1.0\012- data
Hash 15d9bbcfbc1d668a43c85d156d23262b
c436963710c58453c4ae27e66c051e85c084cd49
6db83475c4b6e3bcd2df60ca7afcedabc5140c3b55c9a6bb0ca636c5b6438e5f
GET /s/gudea/v15/neIFzCqgsI0mp9CI_oA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://blog.krtraining.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7908
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 00:52:19 GMT
expires: Fri, 02 Feb 2024 00:52:19 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 21 Apr 2022 16:47:58 GMT
content-type: font/woff2
age: 57507
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pixel.wp.com/g.gif?v=ext&blog=27794321&post=0&tz=-6&srv=blog.krtraining.com&j=1%3A11.7.1&host=blog.krtraining.com&ref=&fcp=2595&rand=0.9983858134831721
192.0.76.3200 OK 50 B URL HTTP/2 pixel.wp.com/g.gif?v=ext&blog=27794321&post=0&tz=-6&srv=blog.krtraining.com&j=1%3A11.7.1&host=blog.krtraining.com&ref=&fcp=2595&rand=0.9983858134831721
IP 192.0.76.3:0
File type GIF image data, version 89a, 6 x 5\012- data
Hash e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
GET /g.gif?v=ext&blog=27794321&post=0&tz=-6&srv=blog.krtraining.com&j=1%3A11.7.1&host=blog.krtraining.com&ref=&fcp=2595&rand=0.9983858134831721 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.krtraining.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 16:50:46 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:50:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i0.wp.com/blog.krtraining.com/wp-content/uploads/2022/11/new_alco_target_photos_355_right_handed_clean.jpg?resize=150%2C150&ssl=1
192.0.77.2200 OK 5.6 kB URL HTTP/2 i0.wp.com/blog.krtraining.com/wp-content/uploads/2022/11/new_alco_target_photos_355_right_handed_clean.jpg?resize=150%2C150&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 150x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 05c0ad3a3f457a610d29b5a70ac0da43
c11921221f21fe408cad0bd7c50a2c8e9eea968e
091bb4991035b8c57c6c7b7b4749bd6a61d50d9492a0eef6026044e0ec49d296
GET /blog.krtraining.com/wp-content/uploads/2022/11/new_alco_target_photos_355_right_handed_clean.jpg?resize=150%2C150&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.krtraining.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 16:50:46 GMT
content-type: image/webp
content-length: 5568
last-modified: Thu, 02 Feb 2023 16:50:46 GMT
expires: Sun, 02 Feb 2025 04:50:46 GMT
cache-control: public, max-age=63115200
link: <https://blog.krtraining.com/wp-content/uploads/2022/11/new_alco_target_photos_355_right_handed_clean.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "02a5189bc2110052"
vary: Accept
x-nc: MISS arn 7
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
blog.krtraining.com/wp-content/themes/f2/images/noise.png
208.109.25.207200 OK 16 kB URL HTTP/2 blog.krtraining.com/wp-content/themes/f2/images/noise.png
IP 208.109.25.207:0
ASN #398101 GO-DADDY-COM-LLC
File type PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 435b1f179e87efb99523ded57468ef34
2fb3a67979707fd4366e78b60be33cd6fbc79c8e
a017fb8f4c629cc5f2e29f5ae74c11f8d84d4068313f69f40815a992ddf3f231
GET /wp-content/themes/f2/images/noise.png HTTP/1.1
Host: blog.krtraining.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.krtraining.com/wp-content/themes/f2/style.css?ver=2.2.3
Cookie: PHPSESSID=09b898b1f2ab093b6a14668a36606263
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 17 Apr 2017 03:03:28 GMT
etag: "b40e23-3ca5-54d54090d2000"
accept-ranges: bytes
content-length: 15525
content-type: image/png
date: Thu, 02 Feb 2023 16:50:46 GMT
server: Apache
X-Firefox-Spdy: h2
i0.wp.com/blog.krtraining.com/wp-content/uploads/2017/03/cropped-2014_KRlogo_crop.gif?fit=32%2C32&ssl=1
192.0.77.2200 OK 246 B URL HTTP/2 i0.wp.com/blog.krtraining.com/wp-content/uploads/2017/03/cropped-2014_KRlogo_crop.gif?fit=32%2C32&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 1d1393c5d84e25abe69affd8147fc844
1b6461873216837b709320a49165f939f4299130
a9c55b3f5cd33cb74d960f0c313ae06c57d88eef5bb9ff3fb09fdadf6de21b07
GET /blog.krtraining.com/wp-content/uploads/2017/03/cropped-2014_KRlogo_crop.gif?fit=32%2C32&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.krtraining.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 16:50:46 GMT
content-type: image/webp
content-length: 246
last-modified: Sun, 22 Jan 2023 16:57:16 GMT
expires: Wed, 22 Jan 2025 04:57:16 GMT
cache-control: public, max-age=63115200
link: <https://blog.krtraining.com/wp-content/uploads/2017/03/cropped-2014_KRlogo_crop.gif>; rel="canonical"
x-content-type-options: nosniff
etag: "0997c8e72d0a4f74"
vary: Accept
x-nc: HIT arn 2
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/blog.krtraining.com/wp-content/uploads/2017/03/cropped-2014_KRlogo_crop.gif?fit=192%2C192&ssl=1
192.0.77.2200 OK 3.0 kB URL HTTP/2 i0.wp.com/blog.krtraining.com/wp-content/uploads/2017/03/cropped-2014_KRlogo_crop.gif?fit=192%2C192&ssl=1
IP 192.0.77.2:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 6fd222dc59a899d9812095a8f669c6dd
98bcb579f82c49729d5ab533317c44722d70ae4e
90e41c9345963f4af5084d20f6f842ab51f96464bc8257a0d4da160a22879ecd
GET /blog.krtraining.com/wp-content/uploads/2017/03/cropped-2014_KRlogo_crop.gif?fit=192%2C192&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.krtraining.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 16:50:46 GMT
content-type: image/webp
content-length: 2978
last-modified: Wed, 01 Feb 2023 18:02:05 GMT
expires: Sat, 01 Feb 2025 06:02:05 GMT
cache-control: public, max-age=63115200
link: <https://blog.krtraining.com/wp-content/uploads/2017/03/cropped-2014_KRlogo_crop.gif>; rel="canonical"
x-content-type-options: nosniff
etag: "0f733f5e6b9c5b17"
vary: Accept
x-nc: MISS arn 2
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bae868356becb6470806e213f97e8aa6
1a3c7ffdce0f4e9c1f59aa0cd7715f22bade5117
c9930f2471f9a8a87fddfe3989391d65e1c41b3457a3f0fbf2e2357566f81a1b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1534
Cache-Control: max-age=89962
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:50:46 GMT
Etag: "63daa052-1d7"
Expires: Fri, 03 Feb 2023 17:50:08 GMT
Last-Modified: Wed, 01 Feb 2023 17:24:34 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/sdk.js
157.240.205.11200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js
IP 157.240.205.11:0
File type ASCII text, with very long lines (1957)
Hash 31f16c2d1d5d3e8abf2a569ad228a277
8623952850f13b24e4351b509cb84d16766d28b0
ef24fc930493d82e9c3a2369ce956905c538ec74a9904ec94f30ce66a195a151
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.krtraining.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 4e505c2920cdbceebed70b70fbbcbd9d
etag: "fc84678f2cb8f57c76fb2783b7a65c64"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Thu, 02 Feb 2023 17:00:55 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
x-frame-options: DENY
origin-agent-cluster: ?0
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: MfFsLR1dPoq/Klaa0iiidw==
x-fb-debug: JGSMPl7ZOplJBOrma/xFr40wPvT09BoK+nCA04OpoH2TbciFZI9dG3PXuBFjiFU8juU1U2g1ApnMkf54afXKlA==
priority: u=3,i
content-length: 1688
x-fb-trip-id: 1679558926
date: Thu, 02 Feb 2023 16:50:46 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bae868356becb6470806e213f97e8aa6
1a3c7ffdce0f4e9c1f59aa0cd7715f22bade5117
c9930f2471f9a8a87fddfe3989391d65e1c41b3457a3f0fbf2e2357566f81a1b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1534
Cache-Control: max-age=89962
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 16:50:46 GMT
Etag: "63daa052-1d7"
Expires: Fri, 03 Feb 2023 17:50:08 GMT
Last-Modified: Wed, 01 Feb 2023 17:24:34 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/sdk.js?hash=6752170c39001fa696962cbfa37764b3
157.240.205.11200 OK 87 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js?hash=6752170c39001fa696962cbfa37764b3
IP 157.240.205.11:0
File type ASCII text, with very long lines (13192)
Hash 82d6644cc6b8aac3413489e9c8fd22c4
05cf83d03ff6ad342d7ae130cb8d85f47736f8f7
ce6b4e73ab029cfff14c92143d4bab4115e5bc8836c140a1bcf02cf3fb7cb510
GET /en_US/sdk.js?hash=6752170c39001fa696962cbfa37764b3 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://blog.krtraining.com
Connection: keep-alive
Referer: https://blog.krtraining.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 16a8fc44e6575d26c2236b30bb07085a
etag: "e1d06f306b7b72602283fa12bb14ab14"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Fri, 02 Feb 2024 14:31:24 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
x-frame-options: DENY
origin-agent-cluster: ?0
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: gtZkTMa4qsNBNInpyP0ixA==
x-fb-debug: OgjN1g85lBr3F+EwX/3Ww+F0G1hicXq1LODkhOnU+oaUXxVVK0MdBFzbNAPVe7q8aEv0oF7h+ylPl0tGDXxHOQ==
priority: u=3,i
content-length: 86979
x-fb-trip-id: 1679558926
date: Thu, 02 Feb 2023 16:50:46 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz
157.240.205.11200 OK 830 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.205.11:0
File type ASCII text, with very long lines (724)
Hash d63a02ce87c07ffcfa869fef7fc5f233
cae745fef84088abe3525bb77f75c55cd1d4cc2c
bf9d4d71541a0a1f31b10be351add847ee935da6de355756314c8ca96512444d
GET /rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 25 Jan 2024 20:38:19 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 1joCzofAf/z6hp/vf8XyMw==
x-fb-debug: VgBqqW8CByBx3tjYfpl37TPxvDbALH7+wrhcEMEy00kMdtnIMID4a2bD+4XrozVCtQ+tPWV4DnP3MZ+EOrvU5Q==
content-length: 830
x-fb-trip-id: 1679558926
date: Thu, 02 Feb 2023 16:50:47 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yv/l/0,cross/L2c2KcRw3O7.css?_nc_x=Ij3Wp8lg5Kz
157.240.205.11200 OK 5.1 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yv/l/0,cross/L2c2KcRw3O7.css?_nc_x=Ij3Wp8lg5Kz
IP 157.240.205.11:0
File type ASCII text, with very long lines (4431)
Hash 4a81eff2261c7e21ee5d446e07910ce3
dd1bff1f84efc1662fefa76791152d19e4967f0f
f922afbce45103f6f3d30fec5753f77e5f0d62063c25908c6817e2cb184326d5
GET /rsrc.php/v3/yv/l/0,cross/L2c2KcRw3O7.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 01 Feb 2024 22:09:54 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: SoHv8iYcfiHuXURuB5EM4w==
x-fb-debug: 6DIiec0pfhK050a1x9uVzOJd0k3LIjvusIiL/jb0CbIoXOBoPNPaswWhM9i1g2JARUAatKTl7+SWztjEbTIsCA==
priority: u=3,i
content-length: 5083
x-fb-trip-id: 1679558926
date: Thu, 02 Feb 2023 16:50:47 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yy/r/iX6iLCSYoZd.js?_nc_x=Ij3Wp8lg5Kz
157.240.205.11200 OK 85 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yy/r/iX6iLCSYoZd.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.205.11:0
File type ASCII text, with very long lines (18622)
Hash dd7b77baa6a9c3956412d90c810f1bd9
690a2a1edce288cbce0c42cbefe054426646f103
8a8cf402e81553058f17de80378c5555c717ce500b78a1bef17dbc5ce776a48a
GET /rsrc.php/v3/yy/r/iX6iLCSYoZd.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 02 Feb 2024 02:19:46 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 3Xt3uqapw5VkEtkMgQ8b2Q==
x-fb-debug: d8BRjZ38RRN7ChBXr+O3BJRixNntH99vH3MXnT+WUXidrcfaLhkW2Wy/2NvyqlTEg6N5P7+771vybotSpSBppA==
content-length: 85007
x-fb-trip-id: 1679558926
date: Thu, 02 Feb 2023 16:50:47 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yJ/r/6A3gWPe90QC.js?_nc_x=Ij3Wp8lg5Kz
157.240.205.11200 OK 1.7 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yJ/r/6A3gWPe90QC.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.205.11:0
File type ASCII text, with very long lines (1984)
Hash e02981a8f7b00c3f3c4be66a969aecbc
2f8040095d5f8d2cc3c78a96ed6cb9d7dc5c8f79
a12ea55726cdca7e197e6a0790bea3e5f90893b7fea59541340556566ccbf93d
GET /rsrc.php/v3/yJ/r/6A3gWPe90QC.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 01 Feb 2024 20:59:07 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
origin-agent-cluster: ?0
content-md5: 4CmBqPewDD88S+ZqlprsvA==
x-fb-debug: Eoqltl4Hd7aYH5d4E0n9hvzmbD34NMDlL71jMhlp6My/AXzpPiFK+KgOLUVwuaSGaKN0G0ZEgBrYqOwm1FgAJw==
content-length: 1738
x-fb-trip-id: 1679558926
date: Thu, 02 Feb 2023 16:50:47 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yu/r/6y4CCZM5a8v.js?_nc_x=Ij3Wp8lg5Kz
157.240.205.11200 OK 16 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yu/r/6y4CCZM5a8v.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.205.11:0
File type C source, ASCII text, with very long lines (8848)
Hash 9734a0267b00a50c8eb7614bee9c6545
d8163bd9220aaa5674dbf00612b42505fb15f2cd
ca64b67c67b52c47e3a136997975c35e2a8c40751740bab7a88af53020dfcbe4
GET /rsrc.php/v3/yu/r/6y4CCZM5a8v.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 19 Jan 2024 21:31:13 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: lzSgJnsApQyOt2FL7pxlRQ==
x-fb-debug: F5pntLgs3Gk56tQDY9HCyYcngZHzQI0Csjz9I/uvtNrRBMmJCMy/Py/SdFZG4CRbaOPxne6QE4Gm8ubOzrSHyg==
priority: u=3,i
content-length: 16276
x-fb-trip-id: 1679558926
date: Thu, 02 Feb 2023 16:50:47 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y4/r/MAi7z2OqdgF.js?_nc_x=Ij3Wp8lg5Kz
157.240.205.11200 OK 17 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y4/r/MAi7z2OqdgF.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.205.11:0
File type C source, ASCII text, with very long lines (10595)
Hash 1b4e393b8e16ae6863c2b0985d76730c
7623c0dbc34486262e2a136674c16565a46a1940
ff7f19c4d7b6d45e58d6d0fbd7a18e28990fe0aef734b2493da0368b65f70a68
GET /rsrc.php/v3/y4/r/MAi7z2OqdgF.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 01 Feb 2024 19:38:38 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: G045O44WrmhjwrCYXXZzDA==
x-fb-debug: 9ysGgUCyGwaOGobxwXLVK6ueuDUyzBuQmuhCG/1R3yDnj7UqqiC/LdAhaO02J0WqObc2cLtYEaPn4j6R9YGBaA==
priority: u=3,i
content-length: 17090
x-fb-trip-id: 1679558926
date: Thu, 02 Feb 2023 16:50:47 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz
157.240.205.11200 OK 293 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.205.11:0
File type ASCII text, with very long lines (327)
Hash 2f913d812811ef7e6fca30334c5972e2
d17caaa167443dc08696c672380f237e0db3fb02
ee8918a2f5d163099104b70f79065abc8fd309e69add57170546f2706956eef8
GET /rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 20 Jan 2024 00:36:23 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: L5E9gSgR735vyjAzTFly4g==
x-fb-debug: IU3j7mZoEQ5npyHFLhCgSnyLrTABmiDMftUGGZ45eSQYKTr5EI7ikNVpbH/YQBhdTSi+eqL1hkmXX1oHwSS4bg==
priority: u=3,i
content-length: 293
x-fb-trip-id: 1679558926
date: Thu, 02 Feb 2023 16:50:47 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yJ/r/uNNkXts1Y-V.js?_nc_x=Ij3Wp8lg5Kz
157.240.205.11200 OK 56 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yJ/r/uNNkXts1Y-V.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.205.11:0
File type ASCII text, with very long lines (48918)
Hash 6942b5d651484a8f1ce4d3cf9f5deaa1
a1ddc6f72c2b0aac86b70367fd60b42e3017ff75
1181c761d6ac20338ab47243dee3166cbcf88799a5796e2897a434c83dce978d
GET /rsrc.php/v3/yJ/r/uNNkXts1Y-V.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 02 Feb 2024 02:12:45 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
origin-agent-cluster: ?0
content-md5: aUK11lFISo8c5NPPn13qoQ==
x-fb-debug: IImi0+VWIY0APvgEcDNLAVvf+OsvKa98pHV2SFQGBu3YX+7t2UwiY6lsVhFNl/3ANheaumSMYp12+nCvodvAeQ==
content-length: 56415
x-fb-trip-id: 1679558926
date: Thu, 02 Feb 2023 16:50:47 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yN/r/elvGmxOyMJZ.js?_nc_x=Ij3Wp8lg5Kz
157.240.205.11200 OK 1.7 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yN/r/elvGmxOyMJZ.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.205.11:0
File type ASCII text, with very long lines (3744)
Hash 1d528b587346b24d7e36f3881c2d6a77
9e92e6b415c50f4882ba7e0dd65ff6ee31091bb6
89c5f78d73cde32bff1a97a0e9ff383400e282d0d3473d267132a5000abd28c3
GET /rsrc.php/v3/yN/r/elvGmxOyMJZ.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 25 Jan 2024 21:50:17 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: HVKLWHNGsk1+NvOIHC1qdw==
x-fb-debug: 0hSFCjYt5bTmn2nBaMXb9YngyfPaRMM27S1M2VCXz9FfH5r2ItuBqyaur78SiGYoXsCVrRGGakR8cKzWTn+XKg==
content-length: 1728
x-fb-trip-id: 1679558926
date: Thu, 02 Feb 2023 16:50:47 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iLl54/yI/l/en_US/cDcOw13Y5VI.js?_nc_x=Ij3Wp8lg5Kz
157.240.205.11200 OK 5.5 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iLl54/yI/l/en_US/cDcOw13Y5VI.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.205.11:0
File type ASCII text, with very long lines (2905)
Hash 617835339086c700332bf0f645f6b4ce
db3872418f68874647f963f044661a292653d6b4
0149022198676c9cdd99ce6a2966be38c8e2125e44925f7bcd8181dc7a6d6cdd
GET /rsrc.php/v3iLl54/yI/l/en_US/cDcOw13Y5VI.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 26 Jan 2024 00:41:46 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
origin-agent-cluster: ?0
content-md5: YXg1M5CGxwAzK/D2Rfa0zg==
x-fb-debug: wAADe0bqVv4Y8eV/qx7wGwdIhe/Fi6CsWSE3EJFV6dZNItZmG3/VPzGDbzjddbxVXNy7VYUJckwXLCMHAqY5wA==
content-length: 5459
x-fb-trip-id: 1679558926
date: Thu, 02 Feb 2023 16:50:47 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y2/r/hWOdyLOhufr.js?_nc_x=Ij3Wp8lg5Kz
157.240.205.11200 OK 7.2 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y2/r/hWOdyLOhufr.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.205.11:0
File type ASCII text, with very long lines (4057)
Hash 4542c58795523351cacfecdb315eba00
e44e00242137798121e12b6cb4353fac2e127af3
ecb041648adda0cdbf6d2b01eed61e1cc22a1f3d33026ee58c3b89b4ca2e40e1
GET /rsrc.php/v3/y2/r/hWOdyLOhufr.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 02 Feb 2024 01:29:02 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: RULFh5VSM1HKz+zbMV66AA==
x-fb-debug: 4Mpfo78T4kNebuVY3UYtNuZ9c7jrpkc+l9tBks7jcJYq1ClucnjDdFDPYMoo/cnLLQFF5a7priqBhckn6j/wZA==
content-length: 7168
x-fb-trip-id: 1679558926
date: Thu, 02 Feb 2023 16:50:47 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iEpO4/yN/l/en_US/jF56mpSoBYl.js?_nc_x=Ij3Wp8lg5Kz
157.240.205.11200 OK 24 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iEpO4/yN/l/en_US/jF56mpSoBYl.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.205.11:0
File type ASCII text, with very long lines (42114)
Hash f8ca3ab8395af8fbd25391b445bb6670
12da1e04b1e26a8c7710ac93a66ab4fbbbc5026d
2f11cd57e135482fab0eb7606f056110bfd99d3a5afb47732cc4bab681fb54ed
GET /rsrc.php/v3iEpO4/yN/l/en_US/jF56mpSoBYl.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Thu, 25 Jan 2024 21:50:17 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: +Mo6uDla+PvSU5G0RbtmcA==
x-fb-debug: t5grVzqgysRPy9PRyOl4RpSclz6F7SuyOmiDiz0O/QsXUkvOISf1yXgMzePrwu0dWjsMQRZ8cxvIyQQ08A+/CQ==
priority: u=3,i
content-length: 23510
x-fb-trip-id: 1679558926
date: Thu, 02 Feb 2023 16:50:47 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
scontent-arn2-1.xx.fbcdn.net/v/t39.30808-1/295272140_996615164494953_4434987074976248953_n.png?stp=cp0_dst-png_p50x50&_nc_cat=103&ccb=1-7&_nc_sid=dbb9e7&_nc_ohc=zMRysEdnkVkAX9DdEix&_nc_ht=scontent-arn2-1.xx&oh=00_AfDw7OgIDurHf2YwAENShMswXN5IZC1vZdCSEUifiI0qbA&oe=63E05AD1
31.13.72.12200 OK 18 kB URL HTTP/2 scontent-arn2-1.xx.fbcdn.net/v/t39.30808-1/295272140_996615164494953_4434987074976248953_n.png?stp=cp0_dst-png_p50x50&_nc_cat=103&ccb=1-7&_nc_sid=dbb9e7&_nc_ohc=zMRysEdnkVkAX9DdEix&_nc_ht=scontent-arn2-1.xx&oh=00_AfDw7OgIDurHf2YwAENShMswXN5IZC1vZdCSEUifiI0qbA&oe=63E05AD1
IP 31.13.72.12:0
Hash 50e1fc03927ca6a3427fbaa7bbdd74d1
63a12e17273417a35642123b6fb6fb639788f934
36a46ab11b4433224fb856dd138e254bd9351393b6fa2176e03e40f16d6761a5
GET /v/t39.30808-1/295272140_996615164494953_4434987074976248953_n.png?stp=cp0_dst-png_p50x50&_nc_cat=103&ccb=1-7&_nc_sid=dbb9e7&_nc_ohc=zMRysEdnkVkAX9DdEix&_nc_ht=scontent-arn2-1.xx&oh=00_AfDw7OgIDurHf2YwAENShMswXN5IZC1vZdCSEUifiI0qbA&oe=63E05AD1 HTTP/1.1
Host: scontent-arn2-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Fri, 22 Jul 2022 20:41:59 GMT
x-haystack-needlechecksum: 393731375
x-needle-checksum: 3601269514
content-type: image/png
content-digest: adler32=838494535
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
accept-ranges: bytes
content-length: 2332
x-fb-trip-id: 2074150462
date: Thu, 02 Feb 2023 16:50:48 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
scontent-arn2-1.xx.fbcdn.net/v/t15.5256-10/328607986_906897610451323_3870910096145457453_n.jpg?_nc_cat=110&ccb=1-7&_nc_sid=f2c4d5&_nc_ohc=i87bWMa7a9YAX8qIDdb&_nc_ht=scontent-arn2-1.xx&oh=00_AfBqY4VRuBIliS8xDY7kjIYtpGZZI2Gb_0JFrX0xUVCqqg&oe=63E110AC
31.13.72.12200 OK 228 kB URL HTTP/2 scontent-arn2-1.xx.fbcdn.net/v/t15.5256-10/328607986_906897610451323_3870910096145457453_n.jpg?_nc_cat=110&ccb=1-7&_nc_sid=f2c4d5&_nc_ohc=i87bWMa7a9YAX8qIDdb&_nc_ht=scontent-arn2-1.xx&oh=00_AfBqY4VRuBIliS8xDY7kjIYtpGZZI2Gb_0JFrX0xUVCqqg&oe=63E110AC
IP 31.13.72.12:0
File type JPEG image data, baseline, precision 8, 720x1280, components 3\012- data
Size 228 kB (227779 bytes)
Hash 0184e1e6053e9b7f00e6da8f982d5af0
27180304bedfde7f2cceb7d0faecaf16582ff7c1
8be8d93a074204b92cbe94403357c2c4ee171185a80c44eaa42b629213d46824
GET /v/t15.5256-10/328607986_906897610451323_3870910096145457453_n.jpg?_nc_cat=110&ccb=1-7&_nc_sid=f2c4d5&_nc_ohc=i87bWMa7a9YAX8qIDdb&_nc_ht=scontent-arn2-1.xx&oh=00_AfBqY4VRuBIliS8xDY7kjIYtpGZZI2Gb_0JFrX0xUVCqqg&oe=63E110AC HTTP/1.1
Host: scontent-arn2-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Tue, 31 Jan 2023 19:45:30 GMT
content-type: image/jpeg
x-haystack-needlechecksum: 2465191100
x-needle-checksum: 2564387707
content-length: 227779
content-digest: adler32=2564387707
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
accept-ranges: bytes
x-fb-trip-id: 2074150462
date: Thu, 02 Feb 2023 16:50:48 GMT
x-fb-edge-debug: TQ9ufa3S89G7-YRywbBzuip_gytgXNsxsHHUk2qPg1STzXYVKlZrwrVQsE_1xU5gdMZzRXcU53wMNqK8c1kEvVfVn5n5MiHTyPGRtRWk5a0
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
scontent-arn2-2.xx.fbcdn.net/v/t39.30808-6/328504090_516067443930539_2524751494249541283_n.jpg?stp=dst-jpg_p118x118&_nc_cat=108&ccb=1-7&_nc_sid=110474&_nc_ohc=3r4b9CWVLFwAX-5IzGx&_nc_ht=scontent-arn2-2.xx&oh=00_AfBjiI1kP5efPToEbcPNCxD7tNODbePRvMn8oq38e1NNrA&oe=63E0317A
157.240.194.27200 OK 5.4 kB URL HTTP/2 scontent-arn2-2.xx.fbcdn.net/v/t39.30808-6/328504090_516067443930539_2524751494249541283_n.jpg?stp=dst-jpg_p118x118&_nc_cat=108&ccb=1-7&_nc_sid=110474&_nc_ohc=3r4b9CWVLFwAX-5IzGx&_nc_ht=scontent-arn2-2.xx&oh=00_AfBjiI1kP5efPToEbcPNCxD7tNODbePRvMn8oq38e1NNrA&oe=63E0317A
IP 157.240.194.27:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 157x118, components 3\012- data
Hash 7792a92ae081e4160b868a80946fecd5
5275d9f673c687a8fa23b8a32cdc45ef32c33fb9
bab037ddb6f2210b72269aa3e1fa0be52df91a7787b749f5778ae04741a25ea2
GET /v/t39.30808-6/328504090_516067443930539_2524751494249541283_n.jpg?stp=dst-jpg_p118x118&_nc_cat=108&ccb=1-7&_nc_sid=110474&_nc_ohc=3r4b9CWVLFwAX-5IzGx&_nc_ht=scontent-arn2-2.xx&oh=00_AfBjiI1kP5efPToEbcPNCxD7tNODbePRvMn8oq38e1NNrA&oe=63E0317A HTTP/1.1
Host: scontent-arn2-2.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Tue, 31 Jan 2023 19:45:20 GMT
x-haystack-needlechecksum: 384884057
x-needle-checksum: 1351261419
content-type: image/jpeg
content-length: 5376
content-digest: adler32=385252879
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
accept-ranges: bytes
x-fb-trip-id: 2074150462
date: Thu, 02 Feb 2023 16:50:48 GMT
x-fb-edge-debug: pAW85AXF4mVVlJb0oDV5uBSiXSwufc0_ebbEYn0FKuER1Ny5f34PHQtNSmh98S7GqKLIYwQyyy1xG4g8EuU2QZDf2KlGB-ygY0PzN5tPLBU
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
scontent-arn2-1.xx.fbcdn.net/v/t15.5256-10/328607986_906897610451323_3870910096145457453_n.jpg?stp=dst-jpg_p110x80&_nc_cat=110&ccb=1-7&_nc_sid=08861d&_nc_ohc=i87bWMa7a9YAX8qIDdb&_nc_ht=scontent-arn2-1.xx&oh=00_AfDWrdzheKGgrQ5v8P0fFVvSxIJfdSzmBPN1956ylGdNkg&oe=63E110AC
31.13.72.12200 OK 6.6 kB URL HTTP/2 scontent-arn2-1.xx.fbcdn.net/v/t15.5256-10/328607986_906897610451323_3870910096145457453_n.jpg?stp=dst-jpg_p110x80&_nc_cat=110&ccb=1-7&_nc_sid=08861d&_nc_ohc=i87bWMa7a9YAX8qIDdb&_nc_ht=scontent-arn2-1.xx&oh=00_AfDWrdzheKGgrQ5v8P0fFVvSxIJfdSzmBPN1956ylGdNkg&oe=63E110AC
IP 31.13.72.12:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 110x196, components 3\012- data
Hash 5a2cc517c5bd1b6aed473745597c2c93
63efb34e6d32fa4276ca0cc09b3ade6b331f968e
e74c89f7f46a78852e55e9e7d10392d314424202824eedd06dc853616d1acb4a
GET /v/t15.5256-10/328607986_906897610451323_3870910096145457453_n.jpg?stp=dst-jpg_p110x80&_nc_cat=110&ccb=1-7&_nc_sid=08861d&_nc_ohc=i87bWMa7a9YAX8qIDdb&_nc_ht=scontent-arn2-1.xx&oh=00_AfDWrdzheKGgrQ5v8P0fFVvSxIJfdSzmBPN1956ylGdNkg&oe=63E110AC HTTP/1.1
Host: scontent-arn2-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Tue, 31 Jan 2023 19:45:30 GMT
x-haystack-needlechecksum: 2465191100
x-needle-checksum: 2564387707
content-type: image/jpeg
content-length: 6642
content-digest: adler32=4121348097
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
accept-ranges: bytes
x-fb-trip-id: 2074150462
date: Thu, 02 Feb 2023 16:50:48 GMT
x-fb-edge-debug: EXypJHf8pVFd-rIs0KA7vJSpIboHtM_UmFI7tH1TaNMdq29R2mIJ8TAPuBuxtEG38w23XFxP63kXgJ7BdCpDW6w9SH9jFh6uAuZGLScPBYU
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
scontent-arn2-1.xx.fbcdn.net/v/t39.30808-6/328730322_1123224201694157_310461332562500883_n.jpg?stp=dst-jpg_p261x260&_nc_cat=102&ccb=1-7&_nc_sid=110474&_nc_ohc=3Gv-KQj1M-oAX_N_5wK&_nc_ht=scontent-arn2-1.xx&oh=00_AfDDeJsnFgQsp6EdVNljS3Cs6b5HnSApiA3zSqHb0JUiNQ&oe=63DFFB15
31.13.72.12200 OK 16 kB URL HTTP/2 scontent-arn2-1.xx.fbcdn.net/v/t39.30808-6/328730322_1123224201694157_310461332562500883_n.jpg?stp=dst-jpg_p261x260&_nc_cat=102&ccb=1-7&_nc_sid=110474&_nc_ohc=3Gv-KQj1M-oAX_N_5wK&_nc_ht=scontent-arn2-1.xx&oh=00_AfDDeJsnFgQsp6EdVNljS3Cs6b5HnSApiA3zSqHb0JUiNQ&oe=63DFFB15
IP 31.13.72.12:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 261x348, components 3\012- data
Hash 41705bc1b0de04ac797555614090cd8c
0e4696048ee114363d0f5c4c4af8bb37732a2dfd
9958ccb8faafd79b774f7b2271bba689b2af50633e6b414847eaf715b324e4ec
GET /v/t39.30808-6/328730322_1123224201694157_310461332562500883_n.jpg?stp=dst-jpg_p261x260&_nc_cat=102&ccb=1-7&_nc_sid=110474&_nc_ohc=3Gv-KQj1M-oAX_N_5wK&_nc_ht=scontent-arn2-1.xx&oh=00_AfDDeJsnFgQsp6EdVNljS3Cs6b5HnSApiA3zSqHb0JUiNQ&oe=63DFFB15 HTTP/1.1
Host: scontent-arn2-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Tue, 31 Jan 2023 19:45:16 GMT
x-haystack-needlechecksum: 2442316777
x-needle-checksum: 1174522627
content-type: image/jpeg
content-length: 16385
content-digest: adler32=833057716
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
accept-ranges: bytes
x-fb-trip-id: 2074150462
date: Thu, 02 Feb 2023 16:50:49 GMT
x-fb-edge-debug: WKhHrJ89wzYiyDUoyWe98NxX2bW9rC7VX_vsu4r7ZUFGvrhyROCqbDHwFe9eCGrwdDmJmPl-93EDdQvEs_zGBuBTDaYZVia-Xpsf9q91ShM
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
scontent-arn2-1.xx.fbcdn.net/v/t51.36329-10/328285042_111985468378419_1278931278527584478_n.jpg?stp=dst-jpg_p280x280&_nc_cat=104&ccb=1-7&_nc_sid=08861d&_nc_ohc=Y9_37si-k1sAX-pEJG_&_nc_ht=scontent-arn2-1.xx&oh=00_AfDb-JbbvfoyVTybzUhOXLBevVU2-KD0YiWp7MuMWDBuBg&oe=63E16968
31.13.72.12200 OK 29 kB URL HTTP/2 scontent-arn2-1.xx.fbcdn.net/v/t51.36329-10/328285042_111985468378419_1278931278527584478_n.jpg?stp=dst-jpg_p280x280&_nc_cat=104&ccb=1-7&_nc_sid=08861d&_nc_ohc=Y9_37si-k1sAX-pEJG_&_nc_ht=scontent-arn2-1.xx&oh=00_AfDb-JbbvfoyVTybzUhOXLBevVU2-KD0YiWp7MuMWDBuBg&oe=63E16968
IP 31.13.72.12:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 280x498, components 3\012- data
Hash f3170575fa4c856f86a23d61762df216
e571b6131347f7b475f0b598ffdf180c2d4b0018
fe99a871df37d72723ec252486e29658d8734bc904a3baf76aa800d78adb7dd7
GET /v/t51.36329-10/328285042_111985468378419_1278931278527584478_n.jpg?stp=dst-jpg_p280x280&_nc_cat=104&ccb=1-7&_nc_sid=08861d&_nc_ohc=Y9_37si-k1sAX-pEJG_&_nc_ht=scontent-arn2-1.xx&oh=00_AfDb-JbbvfoyVTybzUhOXLBevVU2-KD0YiWp7MuMWDBuBg&oe=63E16968 HTTP/1.1
Host: scontent-arn2-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;sc_p:200:WSE_NOT_SET
last-modified: Wed, 01 Feb 2023 22:33:44 GMT
x-needle-checksum: 836247699
content-type: image/jpeg
content-length: 29152
content-digest: adler32=818994999
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
accept-ranges: bytes
x-fb-trip-id: 2074150462
date: Thu, 02 Feb 2023 16:50:49 GMT
x-fb-edge-debug: vZ0volqhJQl_qvqZavHdhsztO4jvC_UUVgY6nl_dzfl1HuHOFosOZ0Ap1fWdX0-z2GPqjt8PpGahQnlnv40_kAId769ihix9p3KvVlJWfYM
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
scontent-arn2-2.xx.fbcdn.net/v/t39.30808-6/328502269_845323156528490_3573717497386368674_n.jpg?stp=dst-jpg_p110x80&_nc_cat=105&ccb=1-7&_nc_sid=110474&_nc_ohc=LX3suH9F4P8AX9A_UBP&_nc_ht=scontent-arn2-2.xx&oh=00_AfAUcnuVDiArvGzV3CV0c3wpn7CASxPS7ziCUBXb2LOeIg&oe=63E08CA8
157.240.194.27200 OK 3.4 kB URL HTTP/2 scontent-arn2-2.xx.fbcdn.net/v/t39.30808-6/328502269_845323156528490_3573717497386368674_n.jpg?stp=dst-jpg_p110x80&_nc_cat=105&ccb=1-7&_nc_sid=110474&_nc_ohc=LX3suH9F4P8AX9A_UBP&_nc_ht=scontent-arn2-2.xx&oh=00_AfAUcnuVDiArvGzV3CV0c3wpn7CASxPS7ziCUBXb2LOeIg&oe=63E08CA8
IP 157.240.194.27:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 110x147, components 3\012- data
Hash 4ac1d78e2e2ee634d027731341d65a75
55b460c8203a874f677bafefbcd6074d909dec0d
3c1f4e9347a56bc4164c477949ce815bf6a476a22fd272b5997bfd3334b6be5c
GET /v/t39.30808-6/328502269_845323156528490_3573717497386368674_n.jpg?stp=dst-jpg_p110x80&_nc_cat=105&ccb=1-7&_nc_sid=110474&_nc_ohc=LX3suH9F4P8AX9A_UBP&_nc_ht=scontent-arn2-2.xx&oh=00_AfAUcnuVDiArvGzV3CV0c3wpn7CASxPS7ziCUBXb2LOeIg&oe=63E08CA8 HTTP/1.1
Host: scontent-arn2-2.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Tue, 31 Jan 2023 19:45:23 GMT
x-haystack-needlechecksum: 532419906
x-needle-checksum: 1395174885
content-type: image/jpeg
content-digest: adler32=708545083
content-length: 3389
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
accept-ranges: bytes
x-fb-trip-id: 2074150462
date: Thu, 02 Feb 2023 16:50:49 GMT
x-fb-edge-debug: -Cm350RPZ3s7uFelCkU3vLcVfE9YX6WtXx670CqR8PEFLyYXJt4wYA3k4cZCzwAGIsmDvu1flp1ROiyHklbEzhuiIPeuOIkG0cQQQMuhjcE
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
scontent-arn2-1.xx.fbcdn.net/v/t39.30808-6/327934347_919675219199542_7573850075319409795_n.jpg?stp=dst-jpg_s370x247&_nc_cat=107&ccb=1-7&_nc_sid=8024bb&_nc_ohc=3_v6PfCgXwkAX-3n70X&_nc_oc=AQn38p5SZMYT0Tk-shk-5rplhp0MKdp4tAqJqXYlj6xewPippInxA3H4dAGmw5nqOtI&_nc_ht=scontent-arn2-1.xx&oh=00_AfDUyccR96jLTfgEPrjkH5qzMYMopMQxNjXRAkzU_jtRxw&oe=63E15A35
31.13.72.12200 OK 18 kB URL HTTP/2 scontent-arn2-1.xx.fbcdn.net/v/t39.30808-6/327934347_919675219199542_7573850075319409795_n.jpg?stp=dst-jpg_s370x247&_nc_cat=107&ccb=1-7&_nc_sid=8024bb&_nc_ohc=3_v6PfCgXwkAX-3n70X&_nc_oc=AQn38p5SZMYT0Tk-shk-5rplhp0MKdp4tAqJqXYlj6xewPippInxA3H4dAGmw5nqOtI&_nc_ht=scontent-arn2-1.xx&oh=00_AfDUyccR96jLTfgEPrjkH5qzMYMopMQxNjXRAkzU_jtRxw&oe=63E15A35
IP 31.13.72.12:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 329x247, components 3\012- data
Hash ed2ab3324d29224d3c15d9df595793e6
8d6f9b26d38e5459b4b83127dcf00b76ad8ec59e
40e2f72de0e2dc3a5e3d43b7e4c4dc62a35b3517a1d2c4d274545143eec5fbf0
GET /v/t39.30808-6/327934347_919675219199542_7573850075319409795_n.jpg?stp=dst-jpg_s370x247&_nc_cat=107&ccb=1-7&_nc_sid=8024bb&_nc_ohc=3_v6PfCgXwkAX-3n70X&_nc_oc=AQn38p5SZMYT0Tk-shk-5rplhp0MKdp4tAqJqXYlj6xewPippInxA3H4dAGmw5nqOtI&_nc_ht=scontent-arn2-1.xx&oh=00_AfDUyccR96jLTfgEPrjkH5qzMYMopMQxNjXRAkzU_jtRxw&oe=63E15A35 HTTP/1.1
Host: scontent-arn2-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:200:HS_ESUCCESS
last-modified: Tue, 31 Jan 2023 15:56:19 GMT
x-haystack-needlechecksum: 1826821128
x-needle-checksum: 3339364866
content-type: image/jpeg
content-length: 17605
content-digest: adler32=2503251951
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
cache-control: max-age=1209600, no-transform
accept-ranges: bytes
x-fb-trip-id: 2074150462
date: Thu, 02 Feb 2023 16:50:49 GMT
x-fb-edge-debug: jhh4iz8cXveEOdeX7i24YQDoDH9niBCjIiHOxFKiR07ajPwn4rPm3SyjLOXcMSl56VW-9xqqt3NAiJxLraKFrKdfnx9V3JA0CH--vSHn6Iw
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
video-arn2-1.xx.fbcdn.net/v/t39.25447-2/328435390_581420450695321_7275826571323405783_n.mp4?_nc_cat=111&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfcjJfYXZjX2dlbjFhdmNfbGNfcTUwX2ZyYWdfMl92aWRlbyJ9&_nc_ohc=BPtioM8AziQAX_TITMl&_nc_ht=video-arn2-1.xx&oh=00_AfDXWduBdriq1OXby7yWzNPRL_qXhcB0DiQ8qv9qey8SvA&oe=63E0AED8&bytestart=934&byteend=41805
31.13.72.14200 OK 41 kB URL HTTP/2 video-arn2-1.xx.fbcdn.net/v/t39.25447-2/328435390_581420450695321_7275826571323405783_n.mp4?_nc_cat=111&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfcjJfYXZjX2dlbjFhdmNfbGNfcTUwX2ZyYWdfMl92aWRlbyJ9&_nc_ohc=BPtioM8AziQAX_TITMl&_nc_ht=video-arn2-1.xx&oh=00_AfDXWduBdriq1OXby7yWzNPRL_qXhcB0DiQ8qv9qey8SvA&oe=63E0AED8&bytestart=934&byteend=41805
IP 31.13.72.14:0
Hash 5353ebdcd533a6cd9214eb462fcef50f
7c45a318ddf22be86b7093a0597f0e169747f7a6
77663f6c1177bfb0610d26add160612df027c5bf8aa92ba4880778c74daa90d1
GET /v/t39.25447-2/328435390_581420450695321_7275826571323405783_n.mp4?_nc_cat=111&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfcjJfYXZjX2dlbjFhdmNfbGNfcTUwX2ZyYWdfMl92aWRlbyJ9&_nc_ohc=BPtioM8AziQAX_TITMl&_nc_ht=video-arn2-1.xx&oh=00_AfDXWduBdriq1OXby7yWzNPRL_qXhcB0DiQ8qv9qey8SvA&oe=63E0AED8&bytestart=934&byteend=41805 HTTP/1.1
Host: video-arn2-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;sc_p:206:WSE_NOT_SET
last-modified: Tue, 31 Jan 2023 20:50:41 GMT
content-type: video/mp4
x-needle-checksum: 2753709937
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-digest: adler32=2753709937
content-length: 40872
accept-ranges: bytes
x-fb-trip-id: 436667874
date: Thu, 02 Feb 2023 16:50:49 GMT
cache-control: max-age=1209600, no-transform
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
video-arn2-1.xx.fbcdn.net/v/t39.25447-2/328435390_581420450695321_7275826571323405783_n.mp4?_nc_cat=111&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfcjJfYXZjX2dlbjFhdmNfbGNfcTUwX2ZyYWdfMl92aWRlbyJ9&_nc_ohc=BPtioM8AziQAX_TITMl&_nc_ht=video-arn2-1.xx&oh=00_AfDXWduBdriq1OXby7yWzNPRL_qXhcB0DiQ8qv9qey8SvA&oe=63E0AED8&bytestart=0&byteend=841
31.13.72.14200 OK 842 B URL HTTP/2 video-arn2-1.xx.fbcdn.net/v/t39.25447-2/328435390_581420450695321_7275826571323405783_n.mp4?_nc_cat=111&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfcjJfYXZjX2dlbjFhdmNfbGNfcTUwX2ZyYWdfMl92aWRlbyJ9&_nc_ohc=BPtioM8AziQAX_TITMl&_nc_ht=video-arn2-1.xx&oh=00_AfDXWduBdriq1OXby7yWzNPRL_qXhcB0DiQ8qv9qey8SvA&oe=63E0AED8&bytestart=0&byteend=841
IP 31.13.72.14:0
File type ISO Media, MP4 Base Media v5 \012- data
Hash 2eaa53cc4cc9cab9bfe395b80a8b584d
9da298200b5f1bbea8393b38a3682997fab0dee2
8e70216b098d6398b0755d6de7243b4d94ef7835ed03f6435599dc7acc42ebf0
GET /v/t39.25447-2/328435390_581420450695321_7275826571323405783_n.mp4?_nc_cat=111&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfcjJfYXZjX2dlbjFhdmNfbGNfcTUwX2ZyYWdfMl92aWRlbyJ9&_nc_ohc=BPtioM8AziQAX_TITMl&_nc_ht=video-arn2-1.xx&oh=00_AfDXWduBdriq1OXby7yWzNPRL_qXhcB0DiQ8qv9qey8SvA&oe=63E0AED8&bytestart=0&byteend=841 HTTP/1.1
Host: video-arn2-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;sc_p:206:WSE_NOT_SET
last-modified: Tue, 31 Jan 2023 20:50:41 GMT
content-type: video/mp4
x-needle-checksum: 2753709937
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-digest: adler32=2753709937
content-length: 842
accept-ranges: bytes
x-fb-trip-id: 436667874
date: Thu, 02 Feb 2023 16:50:49 GMT
cache-control: max-age=1209600, no-transform
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
video-arn2-1.xx.fbcdn.net/v/t39.25447-2/328435390_581420450695321_7275826571323405783_n.mp4?_nc_cat=111&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfcjJfYXZjX2dlbjFhdmNfbGNfcTUwX2ZyYWdfMl92aWRlbyJ9&_nc_ohc=BPtioM8AziQAX_TITMl&_nc_ht=video-arn2-1.xx&oh=00_AfDXWduBdriq1OXby7yWzNPRL_qXhcB0DiQ8qv9qey8SvA&oe=63E0AED8&bytestart=842&byteend=933
31.13.72.14200 OK 92 B URL HTTP/2 video-arn2-1.xx.fbcdn.net/v/t39.25447-2/328435390_581420450695321_7275826571323405783_n.mp4?_nc_cat=111&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfcjJfYXZjX2dlbjFhdmNfbGNfcTUwX2ZyYWdfMl92aWRlbyJ9&_nc_ohc=BPtioM8AziQAX_TITMl&_nc_ht=video-arn2-1.xx&oh=00_AfDXWduBdriq1OXby7yWzNPRL_qXhcB0DiQ8qv9qey8SvA&oe=63E0AED8&bytestart=842&byteend=933
IP 31.13.72.14:0
Hash 13c27fb28116b4846800ea439d38e2eb
05c2dd97042e255effd9b2cd5823466dbb7dbd90
00b1238e3d2229b1e397d0364e55e7a3e30915e80a115b700d0edffcf7fc2362
GET /v/t39.25447-2/328435390_581420450695321_7275826571323405783_n.mp4?_nc_cat=111&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfcjJfYXZjX2dlbjFhdmNfbGNfcTUwX2ZyYWdfMl92aWRlbyJ9&_nc_ohc=BPtioM8AziQAX_TITMl&_nc_ht=video-arn2-1.xx&oh=00_AfDXWduBdriq1OXby7yWzNPRL_qXhcB0DiQ8qv9qey8SvA&oe=63E0AED8&bytestart=842&byteend=933 HTTP/1.1
Host: video-arn2-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;sc_p:206:WSE_NOT_SET
last-modified: Tue, 31 Jan 2023 20:50:41 GMT
content-type: video/mp4
x-needle-checksum: 2753709937
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-digest: adler32=2753709937
content-length: 92
accept-ranges: bytes
x-fb-trip-id: 436667874
date: Thu, 02 Feb 2023 16:50:49 GMT
cache-control: max-age=1209600, no-transform
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/v2.3/plugins/page.php?app_id=249643311490&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df358087b83fe67e%26domain%3Dblog.krtraining.com%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fblog.krtraining.com%252Ff8b500174a36f6%26relation%3Dparent.parent&container_width=260&height=432&hide_cover=false&hide_cta=false&href=https%3A%2F%2Fwww.facebook.com%2FKR-Training-88736058818%2F&locale=en_US&sdk=joey&show_facepile=false&small_header=false&tabs=timeline&width=340
157.240.205.35200 OK 362 kB URL HTTP/2 www.facebook.com/v2.3/plugins/page.php?app_id=249643311490&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df358087b83fe67e%26domain%3Dblog.krtraining.com%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fblog.krtraining.com%252Ff8b500174a36f6%26relation%3Dparent.parent&container_width=260&height=432&hide_cover=false&hide_cta=false&href=https%3A%2F%2Fwww.facebook.com%2FKR-Training-88736058818%2F&locale=en_US&sdk=joey&show_facepile=false&small_header=false&tabs=timeline&width=340
IP 157.240.205.35:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (19934)
Size 362 kB (361805 bytes)
Hash e181c4fb3ced3422bed83ba8571a9a8a
f449792651246316c8a47cda3beb7961bb9a5f4a
2ec407c97dbee32755e63fa21dfad4534978946feb671484646010fdef73e4d1
GET /v2.3/plugins/page.php?app_id=249643311490&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df358087b83fe67e%26domain%3Dblog.krtraining.com%26is_canvas%3Dfalse%26origin%3Dhttps%253A%252F%252Fblog.krtraining.com%252Ff8b500174a36f6%26relation%3Dparent.parent&container_width=260&height=432&hide_cover=false&hide_cta=false&href=https%3A%2F%2Fwww.facebook.com%2FKR-Training-88736058818%2F&locale=en_US&sdk=joey&show_facepile=false&small_header=false&tabs=timeline&width=340 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.krtraining.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: unsafe-none
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
facebook-api-version: v9.0
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: 7YHX9KJbZKM4OTBqJR6f667X7hKZIDNZtFN3BMwzJlVtyAG8COewxGexW0Xk8vWMhl2o+VS3GiqJWL9oj7ZLog==
date: Thu, 02 Feb 2023 16:50:47 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
video-arn2-2.xx.fbcdn.net/v/t66.30100-2/316299675_1234473360491311_7707102031461492455_n.mp4?_nc_cat=108&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbG5fYXVkaW9fdjEifQ%3D%3D&_nc_ohc=kpfBKlccxjMAX_bQdal&_nc_oc=AQkR7ZaT7GhnNWhCmLuPXJCoAclqwwVC5PGy17YEvgbDp90pRotuhp2xmnWBpPpXrtU&_nc_ht=video-arn2-2.xx&oh=00_AfDGngAvMluaC2C9R6VXw5z0jZcrl8eKKsCFPqLjCCH40A&oe=63E11F1B&bytestart=0&byteend=782
157.240.194.21200 OK 783 B URL HTTP/2 video-arn2-2.xx.fbcdn.net/v/t66.30100-2/316299675_1234473360491311_7707102031461492455_n.mp4?_nc_cat=108&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbG5fYXVkaW9fdjEifQ%3D%3D&_nc_ohc=kpfBKlccxjMAX_bQdal&_nc_oc=AQkR7ZaT7GhnNWhCmLuPXJCoAclqwwVC5PGy17YEvgbDp90pRotuhp2xmnWBpPpXrtU&_nc_ht=video-arn2-2.xx&oh=00_AfDGngAvMluaC2C9R6VXw5z0jZcrl8eKKsCFPqLjCCH40A&oe=63E11F1B&bytestart=0&byteend=782
IP 157.240.194.21:0
File type ISO Media, MP4 Base Media v5 \012- data
Hash d6eb8cbc81fbcc1a5b0476338bf67f86
c3b08fcf4ce48e884e59cc163a7c11658251c17f
7092443b1234491c2f5af5e3593bd839d62f614fc34ce956a261a2663b7270a4
GET /v/t66.30100-2/316299675_1234473360491311_7707102031461492455_n.mp4?_nc_cat=108&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbG5fYXVkaW9fdjEifQ%3D%3D&_nc_ohc=kpfBKlccxjMAX_bQdal&_nc_oc=AQkR7ZaT7GhnNWhCmLuPXJCoAclqwwVC5PGy17YEvgbDp90pRotuhp2xmnWBpPpXrtU&_nc_ht=video-arn2-2.xx&oh=00_AfDGngAvMluaC2C9R6VXw5z0jZcrl8eKKsCFPqLjCCH40A&oe=63E11F1B&bytestart=0&byteend=782 HTTP/1.1
Host: video-arn2-2.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;sc_p:206:WSE_NOT_SET
last-modified: Wed, 01 Feb 2023 22:34:07 GMT
content-type: video/mp4
x-needle-checksum: 3765799213
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-digest: adler32=3765799213
content-length: 783
accept-ranges: bytes
x-fb-trip-id: 436667874
date: Thu, 02 Feb 2023 16:50:49 GMT
cache-control: max-age=1209600, no-transform
access-control-allow-origin: https://www.facebook.com
vary: Origin
x-fb-edge-debug: TI7XfRem7kbsiw1lxsCErSEq0JVukIMo0VuH1Mji70NKPQWvdmoC4EVZ1slde_TxxrzofqaYmbxXjZ7GR2dPP0IVHy085_nS8Xwc2fqJ80A
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz
157.240.205.11200 OK 817 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz
IP 157.240.205.11:0
Hash c9dd3a299dd6ad295817f1b102853d7e
b57c98eaa1b240a79d1173650dcf6e95270b3b1c
ada6195f7796d1ca0967ccfa55c410dc77d683752506e93fe2be93ab68777e54
GET /rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Wed, 31 Jan 2024 06:01:16 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
origin-agent-cluster: ?0
content-md5: GtFa/ANPMQQnyBsHWWA6Kw==
x-fb-debug: DNp4HLoo5qFXDFXv6nhmUc1faBUTKjQsYrdr151EegnG850QGHK21N3VcaVIkS/eV4VhMBbq4U0HQ0ebYFsRzQ==
priority: u=3,i
content-length: 12334
x-fb-trip-id: 1679558926
date: Thu, 02 Feb 2023 16:50:47 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
video-arn2-1.xx.fbcdn.net/v/t42.1790-2/327810478_592049302270278_5935101484714197569_n.mp4?_nc_cat=101&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfYXVkaW9fYWFjcF82NF9mcmFnXzJfYXVkaW8ifQ%3D%3D&_nc_ohc=zWd85JxKs54AX8WFqep&_nc_ht=video-arn2-1.xx&oh=00_AfD2kqMCKBhYxNEkD88NRXKvJRHYIDbyWSKyL2gQI4wvBg&oe=63DC0713&bytestart=993&byteend=18827
31.13.72.14200 OK 18 kB URL HTTP/2 video-arn2-1.xx.fbcdn.net/v/t42.1790-2/327810478_592049302270278_5935101484714197569_n.mp4?_nc_cat=101&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfYXVkaW9fYWFjcF82NF9mcmFnXzJfYXVkaW8ifQ%3D%3D&_nc_ohc=zWd85JxKs54AX8WFqep&_nc_ht=video-arn2-1.xx&oh=00_AfD2kqMCKBhYxNEkD88NRXKvJRHYIDbyWSKyL2gQI4wvBg&oe=63DC0713&bytestart=993&byteend=18827
IP 31.13.72.14:0
Hash d5e606e672cf8ba0d157d26f5e738a07
cb3b345d334b6162437921610ee849a57d892216
42511d11f79c4eda4ffa69309debf3cbdbb440742a4a1adc450b2daed9d3cc1c
GET /v/t42.1790-2/327810478_592049302270278_5935101484714197569_n.mp4?_nc_cat=101&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfYXVkaW9fYWFjcF82NF9mcmFnXzJfYXVkaW8ifQ%3D%3D&_nc_ohc=zWd85JxKs54AX8WFqep&_nc_ht=video-arn2-1.xx&oh=00_AfD2kqMCKBhYxNEkD88NRXKvJRHYIDbyWSKyL2gQI4wvBg&oe=63DC0713&bytestart=993&byteend=18827 HTTP/1.1
Host: video-arn2-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-storage-error-category: dfs:none;sc_p:206:WSE_NOT_SET
last-modified: Tue, 31 Jan 2023 19:45:49 GMT
content-type: video/mp4
x-needle-checksum: 3212754828
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-digest: adler32=3212754828
content-length: 17835
accept-ranges: bytes
x-fb-trip-id: 436667874
date: Thu, 02 Feb 2023 16:50:49 GMT
cache-control: max-age=1209600, no-transform
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
video-arn2-1.xx.fbcdn.net/v/t42.1790-2/327810478_592049302270278_5935101484714197569_n.mp4?_nc_cat=101&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfYXVkaW9fYWFjcF82NF9mcmFnXzJfYXVkaW8ifQ%3D%3D&_nc_ohc=zWd85JxKs54AX8WFqep&_nc_ht=video-arn2-1.xx&oh=00_AfD2kqMCKBhYxNEkD88NRXKvJRHYIDbyWSKyL2gQI4wvBg&oe=63DC0713&bytestart=817&byteend=992
31.13.72.14200 OK 176 B URL HTTP/2 video-arn2-1.xx.fbcdn.net/v/t42.1790-2/327810478_592049302270278_5935101484714197569_n.mp4?_nc_cat=101&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfYXVkaW9fYWFjcF82NF9mcmFnXzJfYXVkaW8ifQ%3D%3D&_nc_ohc=zWd85JxKs54AX8WFqep&_nc_ht=video-arn2-1.xx&oh=00_AfD2kqMCKBhYxNEkD88NRXKvJRHYIDbyWSKyL2gQI4wvBg&oe=63DC0713&bytestart=817&byteend=992
IP 31.13.72.14:0
Hash 3ccc48d7e6f9acda6d90fc4658160cd0
3cfc48418b41e05efcaf7781513fb1f0a8da05da
20ed814253c5c2f0df8c0d01ad562bb5c204e9d2c0fd95eddaa755679d279a6a
GET /v/t42.1790-2/327810478_592049302270278_5935101484714197569_n.mp4?_nc_cat=101&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfYXVkaW9fYWFjcF82NF9mcmFnXzJfYXVkaW8ifQ%3D%3D&_nc_ohc=zWd85JxKs54AX8WFqep&_nc_ht=video-arn2-1.xx&oh=00_AfD2kqMCKBhYxNEkD88NRXKvJRHYIDbyWSKyL2gQI4wvBg&oe=63DC0713&bytestart=817&byteend=992 HTTP/1.1
Host: video-arn2-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-storage-error-category: dfs:none;sc_p:206:WSE_NOT_SET
last-modified: Tue, 31 Jan 2023 19:45:49 GMT
content-type: video/mp4
x-needle-checksum: 3212754828
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-digest: adler32=3212754828
content-length: 176
accept-ranges: bytes
x-fb-trip-id: 436667874
date: Thu, 02 Feb 2023 16:50:49 GMT
cache-control: max-age=1209600, no-transform
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
video-arn2-2.xx.fbcdn.net/v/t66.30100-2/316299675_1234473360491311_7707102031461492455_n.mp4?_nc_cat=108&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbG5fYXVkaW9fdjEifQ%3D%3D&_nc_ohc=kpfBKlccxjMAX_bQdal&_nc_oc=AQkR7ZaT7GhnNWhCmLuPXJCoAclqwwVC5PGy17YEvgbDp90pRotuhp2xmnWBpPpXrtU&_nc_ht=video-arn2-2.xx&oh=00_AfDGngAvMluaC2C9R6VXw5z0jZcrl8eKKsCFPqLjCCH40A&oe=63E11F1B&bytestart=935&byteend=57132
157.240.194.21200 OK 56 kB URL HTTP/2 video-arn2-2.xx.fbcdn.net/v/t66.30100-2/316299675_1234473360491311_7707102031461492455_n.mp4?_nc_cat=108&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbG5fYXVkaW9fdjEifQ%3D%3D&_nc_ohc=kpfBKlccxjMAX_bQdal&_nc_oc=AQkR7ZaT7GhnNWhCmLuPXJCoAclqwwVC5PGy17YEvgbDp90pRotuhp2xmnWBpPpXrtU&_nc_ht=video-arn2-2.xx&oh=00_AfDGngAvMluaC2C9R6VXw5z0jZcrl8eKKsCFPqLjCCH40A&oe=63E11F1B&bytestart=935&byteend=57132
IP 157.240.194.21:0
Hash ad6ce8c1e43b3bf3a7bf809e64716181
68fd1feb1996611f3d1eadab77b8cdd98558892e
2d41a142f5838c84a735efcbe69d268ca73df15b9f4f76f93a413ed8b07e383b
GET /v/t66.30100-2/316299675_1234473360491311_7707102031461492455_n.mp4?_nc_cat=108&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbG5fYXVkaW9fdjEifQ%3D%3D&_nc_ohc=kpfBKlccxjMAX_bQdal&_nc_oc=AQkR7ZaT7GhnNWhCmLuPXJCoAclqwwVC5PGy17YEvgbDp90pRotuhp2xmnWBpPpXrtU&_nc_ht=video-arn2-2.xx&oh=00_AfDGngAvMluaC2C9R6VXw5z0jZcrl8eKKsCFPqLjCCH40A&oe=63E11F1B&bytestart=935&byteend=57132 HTTP/1.1
Host: video-arn2-2.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;sc_p:206:WSE_NOT_SET
last-modified: Wed, 01 Feb 2023 22:34:07 GMT
content-type: video/mp4
x-needle-checksum: 3765799213
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-digest: adler32=3765799213
content-length: 56198
accept-ranges: bytes
x-fb-trip-id: 436667874
date: Thu, 02 Feb 2023 16:50:49 GMT
cache-control: max-age=1209600, no-transform
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
video-arn2-2.xx.fbcdn.net/v/t66.30100-2/316299675_1234473360491311_7707102031461492455_n.mp4?_nc_cat=108&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbG5fYXVkaW9fdjEifQ%3D%3D&_nc_ohc=kpfBKlccxjMAX_bQdal&_nc_oc=AQkR7ZaT7GhnNWhCmLuPXJCoAclqwwVC5PGy17YEvgbDp90pRotuhp2xmnWBpPpXrtU&_nc_ht=video-arn2-2.xx&oh=00_AfDGngAvMluaC2C9R6VXw5z0jZcrl8eKKsCFPqLjCCH40A&oe=63E11F1B&bytestart=783&byteend=934
157.240.194.21200 OK 152 B URL HTTP/2 video-arn2-2.xx.fbcdn.net/v/t66.30100-2/316299675_1234473360491311_7707102031461492455_n.mp4?_nc_cat=108&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbG5fYXVkaW9fdjEifQ%3D%3D&_nc_ohc=kpfBKlccxjMAX_bQdal&_nc_oc=AQkR7ZaT7GhnNWhCmLuPXJCoAclqwwVC5PGy17YEvgbDp90pRotuhp2xmnWBpPpXrtU&_nc_ht=video-arn2-2.xx&oh=00_AfDGngAvMluaC2C9R6VXw5z0jZcrl8eKKsCFPqLjCCH40A&oe=63E11F1B&bytestart=783&byteend=934
IP 157.240.194.21:0
Hash 48807deb4808541981cec4b622ee5e87
54b5cb64d4c6b1b0d740fd5e6dd3ccb3e2fae449
a9b41b8824d3709aa1e4d1c9ccb9300c69c4b8eed68e4dd6a53b2e8e879c6427
GET /v/t66.30100-2/316299675_1234473360491311_7707102031461492455_n.mp4?_nc_cat=108&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfbG5fYXVkaW9fdjEifQ%3D%3D&_nc_ohc=kpfBKlccxjMAX_bQdal&_nc_oc=AQkR7ZaT7GhnNWhCmLuPXJCoAclqwwVC5PGy17YEvgbDp90pRotuhp2xmnWBpPpXrtU&_nc_ht=video-arn2-2.xx&oh=00_AfDGngAvMluaC2C9R6VXw5z0jZcrl8eKKsCFPqLjCCH40A&oe=63E11F1B&bytestart=783&byteend=934 HTTP/1.1
Host: video-arn2-2.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;sc_p:206:WSE_NOT_SET
last-modified: Wed, 01 Feb 2023 22:34:07 GMT
content-type: video/mp4
x-needle-checksum: 3765799213
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-digest: adler32=3765799213
content-length: 152
accept-ranges: bytes
x-fb-trip-id: 436667874
date: Thu, 02 Feb 2023 16:50:49 GMT
cache-control: max-age=1209600, no-transform
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
video-arn2-1.xx.fbcdn.net/v/t66.30100-2/319227035_1191631845061101_6047845881525212319_n.mp4?_nc_cat=106&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfaGlnaF8yX3YxIn0%3D&_nc_ohc=oauPZkqQe1cAX9WF2po&_nc_ht=video-arn2-1.xx&oh=00_AfA2tVJXahRCmAGO6oDGX96I3ELTUMHEc0Owck-10mizOw&oe=63E1BD69&bytestart=0&byteend=844
31.13.72.14200 OK 845 B URL HTTP/2 video-arn2-1.xx.fbcdn.net/v/t66.30100-2/319227035_1191631845061101_6047845881525212319_n.mp4?_nc_cat=106&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfaGlnaF8yX3YxIn0%3D&_nc_ohc=oauPZkqQe1cAX9WF2po&_nc_ht=video-arn2-1.xx&oh=00_AfA2tVJXahRCmAGO6oDGX96I3ELTUMHEc0Owck-10mizOw&oe=63E1BD69&bytestart=0&byteend=844
IP 31.13.72.14:0
File type ISO Media, MP4 Base Media v5 \012- data
Hash b555e2684acbeeab6f157fb12110d42f
2b27d835e9cdb0a16d633ca1c7fd73b4e18b8ea2
979e887b5d9ab4d7df1a831770dc8763ec48ffd1931ca36c3e78fcf22bfa2cba
GET /v/t66.30100-2/319227035_1191631845061101_6047845881525212319_n.mp4?_nc_cat=106&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfaGlnaF8yX3YxIn0%3D&_nc_ohc=oauPZkqQe1cAX9WF2po&_nc_ht=video-arn2-1.xx&oh=00_AfA2tVJXahRCmAGO6oDGX96I3ELTUMHEc0Owck-10mizOw&oe=63E1BD69&bytestart=0&byteend=844 HTTP/1.1
Host: video-arn2-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:206:HS_ERANGE_SUCCESS
last-modified: Wed, 01 Feb 2023 22:39:28 GMT
content-type: video/mp4
x-haystack-needlechecksum: 0
x-needle-checksum: 1150007135
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-digest: adler32=1150007135
content-length: 845
accept-ranges: bytes
x-fb-trip-id: 436667874
date: Thu, 02 Feb 2023 16:50:49 GMT
cache-control: max-age=1209600, no-transform
access-control-allow-origin: https://www.facebook.com
vary: Origin
x-fb-edge-debug: 2vku9nILfCT7fK_QWAazY8-m7bQU3atkuXKw9WSVfB6EvF_e3SW-6I2GKG0tQFbBAFQspWWjGSNKEHONs1bWZew2whg-pfIeX6PDjbWOaWo
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
video-arn2-1.xx.fbcdn.net/v/t66.30100-2/319227035_1191631845061101_6047845881525212319_n.mp4?_nc_cat=106&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfaGlnaF8yX3YxIn0%3D&_nc_ohc=oauPZkqQe1cAX9WF2po&_nc_ht=video-arn2-1.xx&oh=00_AfA2tVJXahRCmAGO6oDGX96I3ELTUMHEc0Owck-10mizOw&oe=63E1BD69&bytestart=845&byteend=984
31.13.72.14200 OK 140 B URL HTTP/2 video-arn2-1.xx.fbcdn.net/v/t66.30100-2/319227035_1191631845061101_6047845881525212319_n.mp4?_nc_cat=106&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfaGlnaF8yX3YxIn0%3D&_nc_ohc=oauPZkqQe1cAX9WF2po&_nc_ht=video-arn2-1.xx&oh=00_AfA2tVJXahRCmAGO6oDGX96I3ELTUMHEc0Owck-10mizOw&oe=63E1BD69&bytestart=845&byteend=984
IP 31.13.72.14:0
Hash 42bcc9977a9aedd220ac7f5044577480
82c49f765132f946cf4f8ace961a45ab6a7a3fcb
878e7d1b794f4b813bd719024ebc6857d5a606936ccf89c0a7475c1d5785a9b3
GET /v/t66.30100-2/319227035_1191631845061101_6047845881525212319_n.mp4?_nc_cat=106&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfaGlnaF8yX3YxIn0%3D&_nc_ohc=oauPZkqQe1cAX9WF2po&_nc_ht=video-arn2-1.xx&oh=00_AfA2tVJXahRCmAGO6oDGX96I3ELTUMHEc0Owck-10mizOw&oe=63E1BD69&bytestart=845&byteend=984 HTTP/1.1
Host: video-arn2-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:206:HS_ERANGE_SUCCESS
last-modified: Wed, 01 Feb 2023 22:39:28 GMT
content-type: video/mp4
x-haystack-needlechecksum: 0
x-needle-checksum: 1150007135
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-digest: adler32=1150007135
content-length: 140
accept-ranges: bytes
x-fb-trip-id: 436667874
date: Thu, 02 Feb 2023 16:50:49 GMT
cache-control: max-age=1209600, no-transform
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
video-arn2-1.xx.fbcdn.net/v/t66.30100-2/319227035_1191631845061101_6047845881525212319_n.mp4?_nc_cat=106&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfaGlnaF8yX3YxIn0%3D&_nc_ohc=oauPZkqQe1cAX9WF2po&_nc_ht=video-arn2-1.xx&oh=00_AfA2tVJXahRCmAGO6oDGX96I3ELTUMHEc0Owck-10mizOw&oe=63E1BD69&bytestart=985&byteend=666219
31.13.72.14200 OK 665 kB URL HTTP/2 video-arn2-1.xx.fbcdn.net/v/t66.30100-2/319227035_1191631845061101_6047845881525212319_n.mp4?_nc_cat=106&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfaGlnaF8yX3YxIn0%3D&_nc_ohc=oauPZkqQe1cAX9WF2po&_nc_ht=video-arn2-1.xx&oh=00_AfA2tVJXahRCmAGO6oDGX96I3ELTUMHEc0Owck-10mizOw&oe=63E1BD69&bytestart=985&byteend=666219
IP 31.13.72.14:0
Size 665 kB (665235 bytes)
Hash 4ce53d7bad495a7d42a039184a14a935
67284864be39bcf9796321a549537bc3be10393e
55aa7e67d246c7a5cb9af37b30fb86e4e98f9c7115cf4a981b1e418b2dc09580
GET /v/t66.30100-2/319227035_1191631845061101_6047845881525212319_n.mp4?_nc_cat=106&ccb=1-7&_nc_sid=5aebc0&efg=eyJ2ZW5jb2RlX3RhZyI6ImRhc2hfaGlnaF8yX3YxIn0%3D&_nc_ohc=oauPZkqQe1cAX9WF2po&_nc_ht=video-arn2-1.xx&oh=00_AfA2tVJXahRCmAGO6oDGX96I3ELTUMHEc0Owck-10mizOw&oe=63E1BD69&bytestart=985&byteend=666219 HTTP/1.1
Host: video-arn2-1.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-storage-error-category: dfs:none;hs_p:206:HS_ERANGE_SUCCESS
last-modified: Wed, 01 Feb 2023 22:39:28 GMT
content-type: video/mp4
x-haystack-needlechecksum: 0
x-needle-checksum: 1150007135
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-digest: adler32=1150007135
content-length: 665235
accept-ranges: bytes
x-fb-trip-id: 436667874
date: Thu, 02 Feb 2023 16:50:49 GMT
cache-control: max-age=1209600, no-transform
access-control-allow-origin: https://www.facebook.com
vary: Origin
x-fb-edge-debug: piwV09AXWqxxiCCZAWgOkUlOJliKHiz4i4Hv7_uDVkJxkUox2tLvMotytglFk8cRwRm0TsS8VDPfKmOpPpMR0Dk06KxLOTpZoA6GyBX97Xo
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d335250-c4ff-42af-b9c2-48711573ab39.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d335250-c4ff-42af-b9c2-48711573ab39.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 86664b4d1fc27ba7b5bff8a245604326
b8c7ef73101a497b6c78ad59aafe66a391fdc3fa
e4596faadf14051299036a79632951d90183dd0635293687edef11985799a752
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d335250-c4ff-42af-b9c2-48711573ab39.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 4814
x-amzn-requestid: 90da23ab-2c54-40ec-8e26-bdf4eeb1e27b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdKWFpvoAMFyPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadbdb-70c4cb89413ed6bd44731d76;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:38:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: axFfTgcGtvqt1RcbyLpovD5Fr7J2Wx9pNwb92m2rwTdj-sGp0bIq-Q==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:59:10 GMT
age: 67902
etag: "b8c7ef73101a497b6c78ad59aafe66a391fdc3fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
c0.wp.com/c/6.1.1/wp-includes/js/jquery/jquery.min.js
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/js/jquery/jquery.min.js
IP 192.0.77.37:0
GET /c/6.1.1/wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.krtraining.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 16:50:46 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 19 Sep 2022 14:16:24 GMT
content-encoding: br
expires: Fri, 02 Feb 2024 16:50:46 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/p/jetpack/11.7.1/_inc/build/sharedaddy/sharing.min.js
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/p/jetpack/11.7.1/_inc/build/sharedaddy/sharing.min.js
IP 192.0.77.37:0
GET /p/jetpack/11.7.1/_inc/build/sharedaddy/sharing.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.krtraining.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 16:50:46 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 31 May 2022 10:02:49 GMT
content-encoding: br
expires: Fri, 02 Feb 2024 16:50:46 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/p/jetpack/11.7.1/css/jetpack.css
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/p/jetpack/11.7.1/css/jetpack.css
IP 192.0.77.37:0
GET /p/jetpack/11.7.1/css/jetpack.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.krtraining.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 16:50:46 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Mon, 16 Jan 2023 17:26:50 GMT
content-encoding: br
expires: Fri, 02 Feb 2024 16:50:46 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/p/jetpack/11.7.1/_inc/build/facebook-embed.min.js
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/p/jetpack/11.7.1/_inc/build/facebook-embed.min.js
IP 192.0.77.37:0
GET /p/jetpack/11.7.1/_inc/build/facebook-embed.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.krtraining.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 16:50:46 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 11 Jan 2022 17:52:08 GMT
content-encoding: br
expires: Fri, 02 Feb 2024 16:50:46 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/c/6.1.1/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css
IP 192.0.77.37:0
GET /c/6.1.1/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.krtraining.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 16:50:46 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 29 Sep 2020 15:53:06 GMT
content-encoding: br
expires: Fri, 02 Feb 2024 16:50:46 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/p/jetpack/11.7.1/_inc/social-logos/social-logos.min.css
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/p/jetpack/11.7.1/_inc/social-logos/social-logos.min.css
IP 192.0.77.37:0
GET /p/jetpack/11.7.1/_inc/social-logos/social-logos.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.krtraining.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 16:50:46 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 30 Jun 2020 14:24:10 GMT
content-encoding: br
expires: Fri, 02 Feb 2024 16:50:46 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Bitter:700|Gudea:400,700,400italic
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Bitter:700|Gudea:400,700,400italic
IP 142.250.74.106:0
GET /css?family=Bitter:700|Gudea:400,700,400italic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.krtraining.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 Feb 2023 16:50:46 GMT
date: Thu, 02 Feb 2023 16:50:46 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
c0.wp.com/c/6.1.1/wp-includes/css/dist/block-library/style.min.css
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/css/dist/block-library/style.min.css
IP 192.0.77.37:0
GET /c/6.1.1/wp-includes/css/dist/block-library/style.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.krtraining.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 16:50:46 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Fri, 11 Nov 2022 14:56:45 GMT
content-encoding: br
expires: Fri, 02 Feb 2024 16:50:46 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
c0.wp.com/p/jetpack/11.7.1/_inc/build/photon/photon.min.js
192.0.77.37200 OK 0 B URL HTTP/2 c0.wp.com/p/jetpack/11.7.1/_inc/build/photon/photon.min.js
IP 192.0.77.37:0
GET /p/jetpack/11.7.1/_inc/build/photon/photon.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blog.krtraining.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 16:50:46 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 07 Dec 2021 16:56:47 GMT
content-encoding: br
expires: Fri, 02 Feb 2024 16:50:46 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2