45.77.88.79/zehir/z3hir.arm6
45.77.88.79301 Moved Permanently 162 B URL HTTP/1.1 45.77.88.79/zehir/z3hir.arm6
IP 45.77.88.79:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
NIDS Severity Alert suricata medium ET HUNTING Suspicious GET Request for .arm file File
GET /zehir/z3hir.arm6 HTTP/1.1
Host: 45.77.88.79
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Content-Length: 162
Location: https://tinypng.com
Strict-Transport-Security: max-age=31536000
X-Frame-Options: SAMEORIGIN
Via: 1.1 google
Date: Fri, 31 Mar 2023 05:15:22 GMT
Cache-Control: public
Content-Type: text/html
Age: 10220
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 7af19a5145a4ee99bdf18831bad04bfd
7bdd2a4785b999ef54a2644211d2b2b7190fb8e1
3237bf0111ecdec3615c4d2d49a602f48f800335d0194f52b600bdaefbd63ed0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3237BF0111ECDEC3615C4D2D49A602F48F800335D0194F52B600BDAEFBD63ED0"
Last-Modified: Thu, 30 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8393
Expires: Fri, 31 Mar 2023 10:25:35 GMT
Date: Fri, 31 Mar 2023 08:05:42 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash cca063332ba9a89eadd62a8dd7f81a9b
d473b2a7a32c964599ff3bac8f98fa578f03d1d1
02fb74c7c695ad99f7f2fd7c02ae2b88e2da1c5db339f883333d9090291931dc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "02FB74C7C695AD99F7F2FD7C02AE2B88E2DA1C5DB339F883333D9090291931DC"
Last-Modified: Wed, 29 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10094
Expires: Fri, 31 Mar 2023 10:53:56 GMT
Date: Fri, 31 Mar 2023 08:05:42 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 7f03faaba3392caae6dae54467bfdf6d
57ea1f14e8bfbcca8190c706d708c9fda12442c1
02ac551ba61fcbc6b04f244df065948b181a8a258db5c2e197aae66fdfcea8ee
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Type, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 31 Mar 2023 07:16:10 GMT
content-type: application/json
age: 2973
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 76218c893040d958ae1c4231cdd2133c
6a7b336dee91d4aec26ace0a5883ecdfac52e68f
d35492b04d16ed00e9e195e7c84c99aa6a2b8a93abeb656baae0918986f0a7e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D35492B04D16ED00E9E195E7C84C99AA6A2B8A93ABEB656BAAE0918986F0A7E4"
Last-Modified: Wed, 29 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8783
Expires: Fri, 31 Mar 2023 10:32:06 GMT
Date: Fri, 31 Mar 2023 08:05:43 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: mQnQ0dUqvRBubZJXu2JwKNgffEkDT1nXWTOYqEKK+dG7Hlxa/g9Jkx+pox/rEtxah9edbHuuuAA=
x-amz-request-id: 6V0B1MMCF1BEEV01
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 31 Mar 2023 08:03:16 GMT
age: 147
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 6d3e6d30bed6bf149fb834005b73e2ae
c2f07d93d7905a435eddc4738e528caf011bc20a
0be476bf1147508a340fbabf75121f1d9222424b9df52d30554413af39742da3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0BE476BF1147508A340FBABF75121F1D9222424B9DF52D30554413AF39742DA3"
Last-Modified: Wed, 29 Mar 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21552
Expires: Fri, 31 Mar 2023 14:04:55 GMT
Date: Fri, 31 Mar 2023 08:05:43 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 08:05:43 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
tinypng.com/
35.190.0.251200 OK 5.9 kB IP 35.190.0.251:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (15667), with no line terminators
Hash 2b8b527a3201bb15a586743018509fbb
5ebfb50a0ca2907ed9f6adb664e9a8931fc01205
e9a0e1955423c314e55d9c89a777facd5b6074765bb90fce39840dca3677cbed
GET / HTTP/1.1
Host: tinypng.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
content-encoding: gzip
via: 1.1 google
content-length: 5915
date: Fri, 31 Mar 2023 08:00:45 GMT
age: 298
last-modified: Wed, 01 Mar 2023 19:44:03 GMT
etag: W/"63ffab03-3d41"
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: max-age=600,public
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 6d3e6d30bed6bf149fb834005b73e2ae
c2f07d93d7905a435eddc4738e528caf011bc20a
0be476bf1147508a340fbabf75121f1d9222424b9df52d30554413af39742da3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0BE476BF1147508A340FBABF75121F1D9222424B9DF52D30554413AF39742DA3"
Last-Modified: Wed, 29 Mar 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21552
Expires: Fri, 31 Mar 2023 14:04:55 GMT
Date: Fri, 31 Mar 2023 08:05:43 GMT
Connection: keep-alive
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 934435daf7494aa2525d0556a06916f8
cf46914dedf6c86f7f3cd60acd61e775795c5586
76bab0b78c5a798682460a1cb164c48d67154ed99bb6cee630dd793b31c0501e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5419
Cache-Control: max-age=150245
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 08:05:43 GMT
Etag: "64262711-1d7"
Expires: Sun, 02 Apr 2023 01:49:48 GMT
Last-Modified: Fri, 31 Mar 2023 00:19:29 GMT
Server: ECAcc (ska/F757)
X-Cache: HIT
Content-Length: 471
js.stripe.com/v3/
151.101.128.176200 OK 125 kB IP 151.101.128.176:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 125 kB (124550 bytes)
Hash 66af412a7c93a4cce24bbebda1a429ad
a8ede66aaf0d0870d97cadca8ac914af487ba590
d26ab71b8fccb252203e804c62142f04e93e7b387c36eefd72499a15005e2b3e
GET /v3/ HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinypng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 30 Mar 2023 20:21:57 GMT
etag: "ed997a2348184ecc5728d9c5d352fa30"
cache-control: max-age=60
content-type: text/javascript; charset=utf-8
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
server: Fastly
content-encoding: br
accept-ranges: bytes
date: Fri, 31 Mar 2023 08:05:43 GMT
via: 1.1 varnish
age: 33
x-request-id: 6eb94f7a-208d-417b-8b6b-2e794977963c
x-served-by: cache-bma1677-BMA
x-cache: HIT
x-cache-hits: 9
vary: Accept-Encoding
timing-allow-origin: *
content-length: 124550
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash ab61862f016dea85f8aa55e59369d905
a5e81f13052b9e9184caf05a9740c345a40d1f22
e0d580c313088d524a5338e63e4acf9f3f3cb45a54f2528c5d1c4915d71b255b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E0D580C313088D524A5338E63E4ACF9F3F3CB45A54F2528C5D1C4915D71B255B"
Last-Modified: Thu, 30 Mar 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9792
Expires: Fri, 31 Mar 2023 10:48:55 GMT
Date: Fri, 31 Mar 2023 08:05:43 GMT
Connection: keep-alive
cdn.carbonads.com/carbon.js?serve=CK7DTKJW&placement=tinypngcom
151.139.128.10200 OK 5.2 kB URL HTTP/2 cdn.carbonads.com/carbon.js?serve=CK7DTKJW&placement=tinypngcom
IP 151.139.128.10:0
File type ASCII text, with very long lines (14418), with no line terminators
Hash 3f4d2734914326c537c400e28b9a67ba
f890903af3fcc68be3800fb7e7f537f9c38b4169
ee4df237680523f0cbb44b1a4bbbc20eab6e0fe3282d66f529c580904a013245
GET /carbon.js?serve=CK7DTKJW&placement=tinypngcom HTTP/1.1
Host: cdn.carbonads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinypng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 31 Mar 2023 08:05:43 GMT
cache-control: max-age=3600
content-encoding: gzip
content-length: 5158
content-type: application/javascript
last-modified: Tue, 28 Mar 2023 15:07:01 GMT
accept-ranges: bytes
x-amz-id-2: uTwkbWPX0uk9EbewjB6Kvo8PlJ+7Pb1drCnyP4xTtXo8QqCHbLcZYJMPVTrUbC6I8RhQNIIg5ueVX4nxRfCgZw==
x-amz-request-id: R6GERA43YYVPNSR6
etag: "6032ecb6b9e2a9cd8340d0dd535b400d"
x-amz-server-side-encryption: AES256
server: AmazonS3
x-hw: 1680249943.cds065.sk1.hn,1680249943.cds014.sk1.c
access-control-allow-origin: *
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.117.65.55101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.117.65.55:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: IEzRGPxgfvKIMblPZQ5aAQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: pR9X9GvOtB0Pr85+tcIAp+zsyVs=
Date: Fri, 31 Mar 2023 08:05:43 GMT
Via: 1.1 google
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 66d3c8a2dc7656b819dfe99dd74ef41b
9ac102973657c13264a7a17ad2e3ffc6f4d1f570
23346d5aae2c9440f6a6d9c1d366003dfaefd1cc83212ce033bfdc30e5054cc6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 08:05:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Last-Modified, Expires, Retry-After, Cache-Control, Alert, Backoff, Pragma, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 31 Mar 2023 07:17:26 GMT
age: 2897
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.142200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.142:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinypng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Fri, 31 Mar 2023 08:05:11 GMT
expires: Fri, 31 Mar 2023 10:05:11 GMT
cache-control: public, max-age=7200
age: 32
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 7d0ec6484ded5f6259df0130049ec787
4851d22f409d2b5a154c1de69e389be2aae5dfe5
add44469e93d2161f6f9c6c7830543470fdfc2fc4e3b3d7713292f99a4da7ac2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2893
Cache-Control: max-age=89389
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 08:05:43 GMT
Etag: "64254337-1d7"
Expires: Sat, 01 Apr 2023 08:55:32 GMT
Last-Modified: Thu, 30 Mar 2023 08:07:19 GMT
Server: ECAcc (ska/F73A)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 66d3c8a2dc7656b819dfe99dd74ef41b
9ac102973657c13264a7a17ad2e3ffc6f4d1f570
23346d5aae2c9440f6a6d9c1d366003dfaefd1cc83212ce033bfdc30e5054cc6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 08:05:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 7ea999a491ab4009f8658e78af2bfb94
f0cbd3d48c9081acfdeb53adf55135dba5bbe08b
d159c0baaa0869f3e69e16ea482178e6184d68cb6f5ae8a6156955488fd415fe
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 08:05:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-32370906-1&cid=636425112.1680249944&jid=1214180873&gjid=1261301707&_gid=716007830.1680249944&_u=YEBAAAAAAAAAAC~&z=1949325761
108.177.14.155200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-32370906-1&cid=636425112.1680249944&jid=1214180873&gjid=1261301707&_gid=716007830.1680249944&_u=YEBAAAAAAAAAAC~&z=1949325761
IP 108.177.14.155:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-32370906-1&cid=636425112.1680249944&jid=1214180873&gjid=1261301707&_gid=716007830.1680249944&_u=YEBAAAAAAAAAAC~&z=1949325761 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://tinypng.com
Connection: keep-alive
Referer: https://tinypng.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://tinypng.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 31 Mar 2023 08:05:44 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 7ea999a491ab4009f8658e78af2bfb94
f0cbd3d48c9081acfdeb53adf55135dba5bbe08b
d159c0baaa0869f3e69e16ea482178e6184d68cb6f5ae8a6156955488fd415fe
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 08:05:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 170927b059d00036e47007a075d11723
5e2eec1e9ab600950977ddafa1eb7277fcb4b080
bf72a8afb573a5b964e0bc7ac8ae4c9962feb2b249d2206843c229195e300fae
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 08:05:44 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 28 Mar 2023 16:48:27 GMT
Expires: Tue, 04 Apr 2023 16:48:26 GMT
Etag: "5e2eec1e9ab600950977ddafa1eb7277fcb4b080"
Cache-Control: max-age=376361,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7b0716c96d600b39-OSL
srv.carbonads.net/ads/CK7DTKJW.json?segment=placement:tinypngcom&callback=_carbonads_go
138.68.230.22200 OK 1.4 kB URL HTTP/2 srv.carbonads.net/ads/CK7DTKJW.json?segment=placement:tinypngcom&callback=_carbonads_go
IP 138.68.230.22:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (2634), with no line terminators
Hash 222653224a7c37f0c63b51a433a476f9
0944ddb084f3264c8bfe3572dd22cfb84a534f1b
df4442c2549305a85bee4b3dc4eca51cd41186919cd46e7c063d58173884494a
GET /ads/CK7DTKJW.json?segment=placement:tinypngcom&callback=_carbonads_go HTTP/1.1
Host: srv.carbonads.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinypng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: application/javascript; charset=utf-8
server: //srv.buysellads.com
vary: Accept-Encoding
content-length: 1447
date: Fri, 31 Mar 2023 08:05:44 GMT
X-Firefox-Spdy: h2
cdn4.buysellads.net/uu/1/122891/1660240905-MEMBER-AREAS_Carbon-Ads_260x200-2.png
151.139.128.10200 OK 33 kB URL HTTP/2 cdn4.buysellads.net/uu/1/122891/1660240905-MEMBER-AREAS_Carbon-Ads_260x200-2.png
IP 151.139.128.10:0
File type PNG image data, 260 x 200, 8-bit colormap, non-interlaced\012- data
Hash 89a406bd04f3b08d0368ae03dbb84f32
81a8d308e4fd4fe114b085235fa4962c01308d60
ccc182ada8e3404c56769b116ddcfc7c73d7b13d9fcd7b3f53991d457999727b
GET /uu/1/122891/1660240905-MEMBER-AREAS_Carbon-Ads_260x200-2.png HTTP/1.1
Host: cdn4.buysellads.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinypng.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 31 Mar 2023 08:05:45 GMT
cache-control: max-age=3600
content-length: 32977
content-type: image/png
last-modified: Thu, 11 Aug 2022 18:01:46 GMT
accept-ranges: bytes
x-amz-id-2: fN4uWO13aAzTwNExzM04qjkH+pbmpxb770slhszkrZYs2tBcw54kzwA71aafTF5JAN7n1gqWaEY=
x-amz-request-id: 6AWF2KBQ6NW2R3P4
etag: "89a406bd04f3b08d0368ae03dbb84f32"
server: AmazonS3
x-hw: 1680249945.cds204.sk1.hn,1680249945.cds243.sk1.c
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0d892e9f5f8b07396f1f57f5a466863d
c39780de29f58ee41378759d514a0072fc3a1554
eb717db57f5890dd6d0bb0444adeb04c628bbd0c4a50505eaceed278558c8dd0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 08:05:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ad.doubleclick.net/ddm/trackimp/N718679.452584BUYSELLADS.COM/B29090009.354632582;dc_trk_aid=545821851;dc_trk_cid=183807839;ord=168024994;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;gdpr=$;gdpr_consent=$;ltd=?
142.250.74.134200 OK 42 B URL HTTP/2 ad.doubleclick.net/ddm/trackimp/N718679.452584BUYSELLADS.COM/B29090009.354632582;dc_trk_aid=545821851;dc_trk_cid=183807839;ord=168024994;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;gdpr=$;gdpr_consent=$;ltd=?
IP 142.250.74.134:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ddm/trackimp/N718679.452584BUYSELLADS.COM/B29090009.354632582;dc_trk_aid=545821851;dc_trk_cid=183807839;ord=168024994;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;gdpr=$;gdpr_consent=$;ltd=? HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinypng.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 31 Mar 2023 08:05:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 31-Mar-2023 08:20:45 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
js.stripe.com/v3/m-outer-93afeeb17bc37e711759584dbfc50d47.html
151.101.128.176200 OK 122 B URL HTTP/2 js.stripe.com/v3/m-outer-93afeeb17bc37e711759584dbfc50d47.html
IP 151.101.128.176:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 0fb49bf445ceac1dcb1b6c5d284a57a1
8988f3ceef20a494a419e595e8d802a0dc663c7a
5e0d98b9fefc9f5ccf02b5ac4f4e4de3fe727a1ac97a4cd778efd58062afd5e8
GET /v3/m-outer-93afeeb17bc37e711759584dbfc50d47.html HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinypng.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Nov 2022 20:03:40 GMT
etag: "93afeeb17bc37e711759584dbfc50d47"
cache-control: max-age=31536000
content-type: text/html; charset=utf-8
content-security-policy: base-uri 'none'; connect-src 'self' https://r.stripe.com; default-src 'self'; font-src 'none'; form-action 'none'; frame-src https://m.stripe.network; img-src https://q.stripe.com; media-src 'none'; object-src 'none'; script-src 'self'; style-src 'self'; report-uri https://q.stripe.com/csp-report
content-security-policy-report-only: base-uri 'none'; connect-src 'self' https://r.stripe.com; default-src 'self'; font-src 'none'; form-action 'none'; frame-src https://m.stripe.network; img-src https://q.stripe.com; media-src 'none'; object-src 'none'; script-src 'self'; style-src 'self'; report-uri https://q.stripe.com/csp-report
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
server: Fastly
content-encoding: br
accept-ranges: bytes
date: Fri, 31 Mar 2023 08:05:45 GMT
via: 1.1 varnish
age: 11880020
x-request-id: bba3e982-1757-49c3-962e-ee7dab25840e
x-served-by: cache-bma1677-BMA
x-cache: HIT
x-cache-hits: 343913
vary: Accept-Encoding
timing-allow-origin: *
content-length: 122
X-Firefox-Spdy: h2
js.stripe.com/v3/fingerprinted/js/m-outer-8cb24ab2d649fd36a488d04d8c457933.js
151.101.128.176200 OK 332 B URL HTTP/2 js.stripe.com/v3/fingerprinted/js/m-outer-8cb24ab2d649fd36a488d04d8c457933.js
IP 151.101.128.176:0
File type ASCII text, with very long lines (526)
Hash ada7d17b721f065b91d249c998f2967e
1c686ed2c2218a3889b7d9a9b1acdf851b0bf563
12125f2ad96bb800b475309dcc276eeddffd6db095e29fe1f8514b3f8c7e544a
GET /v3/fingerprinted/js/m-outer-8cb24ab2d649fd36a488d04d8c457933.js HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.stripe.com/v3/m-outer-93afeeb17bc37e711759584dbfc50d47.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Nov 2022 20:03:40 GMT
etag: "f8f6a4584135f737b26927596ce6e0a7"
cache-control: max-age=31536000
content-type: text/javascript; charset=utf-8
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
server: Fastly
content-encoding: br
accept-ranges: bytes
date: Fri, 31 Mar 2023 08:05:45 GMT
via: 1.1 varnish
age: 11880021
x-request-id: 6ec2d1f0-ed50-494d-a30c-17be07bc89e1
x-served-by: cache-bma1677-BMA
x-cache: HIT
x-cache-hits: 278367
vary: Accept-Encoding
timing-allow-origin: *
content-length: 332
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 0d892e9f5f8b07396f1f57f5a466863d
c39780de29f58ee41378759d514a0072fc3a1554
eb717db57f5890dd6d0bb0444adeb04c628bbd0c4a50505eaceed278558c8dd0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 08:05:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
m.stripe.network/inner.html
151.101.128.176200 OK 527 B URL HTTP/2 m.stripe.network/inner.html
IP 151.101.128.176:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (930), with no line terminators
Hash e02352ef72e8a9563463c07174b0e50f
7a41613f7eae0819d1a4785eae3617fdbb33b9b3
2275fff71f8cbf1f25a1af7f7bbe5ecbc868ed0b16d345a8ce31770f66fc8ea5
GET /inner.html HTTP/1.1
Host: m.stripe.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.stripe.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=300, public
content-type: text/html; charset=utf-8
content-security-policy: base-uri 'none'; connect-src https://m.stripe.network https://m.stripe.com; default-src 'none'; font-src https://m.stripe.network https://fonts.gstatic.com; form-action 'none'; frame-src https://m.stripe.network https://js.stripe.com; img-src https://m.stripe.network https://m.stripe.com https://b.stripecdn.com; script-src https://m.stripe.network 'sha256-e/Jqu4k9Gk1ZCWO6StAsfhF3i7qgIwfuitaD1g9DyvE='; style-src https://m.stripe.network; report-uri https://q.stripe.com/csp-report
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
server: Fastly
content-encoding: gzip
accept-ranges: bytes
date: Fri, 31 Mar 2023 08:05:45 GMT
via: 1.1 varnish
age: 221
x-request-id: 1cedea10-7df1-430a-8929-c68ba3e14182
x-served-by: cache-bma1677-BMA
x-cache: HIT
x-cache-hits: 149
x-timer: S1680249945.273170,VS0,VE0
vary: Accept-Encoding, Origin
content-length: 527
X-Firefox-Spdy: h2
m.stripe.network/out-4.5.42.js
151.101.128.176200 OK 16 kB URL HTTP/2 m.stripe.network/out-4.5.42.js
IP 151.101.128.176:0
File type Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Hash 0b880c6e7a381ef1f81263cf34c54e79
af46e0111cb22576b07084f4b49be7b41b5fc3ca
115ea79f002c0c2e3405178f66ce92ecb5173e7678f692ab65d6bbf526880b7b
GET /out-4.5.42.js HTTP/1.1
Host: m.stripe.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.stripe.network/inner.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=300, public
content-type: text/javascript; charset=utf-8
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
server: Fastly
content-encoding: gzip
accept-ranges: bytes
date: Fri, 31 Mar 2023 08:05:45 GMT
via: 1.1 varnish
age: 82
x-request-id: a7c14fe5-4dca-4a4d-8645-c0908be81775
x-served-by: cache-bma1677-BMA
x-cache: HIT
x-cache-hits: 57
x-timer: S1680249945.295467,VS0,VE0
vary: Accept-Encoding, Origin
content-length: 16031
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/styles.fb3b47b3e9d047987de6.js
143.204.55.102200 OK 113 B URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/styles.fb3b47b3e9d047987de6.js
IP 143.204.55.102:0
File type ASCII text, with no line terminators
Hash c4cd0ec66d58e5b1d8600a8535dea587
718a3fc762c0e6d18913ab48573be80ae1982b00
e10f2eaa1030a33de83af183d66b205537c02c311ea9150bf66b43d29b0caf1b
GET /_next/static/chunks/styles.fb3b47b3e9d047987de6.js HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 113
date: Mon, 04 Jul 2022 21:53:46 GMT
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Wed, 11 May 2022 18:49:15 GMT
etag: W/"71-180b4742ff8"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: OImJHJRmuHI-C3lUmIebjr954pW5wKETtQGRyNqXUAv3Shji10O7XA==
age: 23278319
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
143.204.55.102200 OK 12 kB URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
IP 143.204.55.102:0
Hash 3a092f8f13dc664b01f124ef63fcf564
8ecc0dcd6f04785b64b27f616b6adcbaebdbb394
fe076b423429b0de48eeb4ab1fb4c47bad475dd4ade47ed5ef396597b101653c
GET /landing?preferLocal=true HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinypng.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
date: Fri, 31 Mar 2023 08:05:45 GMT
x-powered-by: Next.js
etag: "168a-M5+xtPHcNnqeQI6vuY7LNFuF9Sg"
vary: Accept-Encoding
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: F6Cd-vCixpHZFYmqpMWbq4iFr2EfEIuLsMErhI1Vsh54qLCW0BokOA==
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19199
Expires: Fri, 31 Mar 2023 13:25:44 GMT
Date: Fri, 31 Mar 2023 08:05:45 GMT
Connection: keep-alive
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/pages/_app-fb120dae492e1286aa14.js
143.204.55.102200 OK 7.8 kB URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/pages/_app-fb120dae492e1286aa14.js
IP 143.204.55.102:0
Hash c589315bd52a546bee22e596e6f8e221
3cf5e7ae94b826acb4d3d54a2e2c1a60bcf597c5
46472a325a359dd749a72483c68a92cee2768106311e26e0ba78f71f4ccd5a2c
GET /_next/static/chunks/pages/_app-fb120dae492e1286aa14.js HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Wed, 22 Feb 2023 12:49:41 GMT
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Wed, 22 Feb 2023 12:40:13 GMT
etag: W/"5a70-186792377c8"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: T1umTV26gois3IFzf_j81GDh2NNBVv1DXEvUbkh-hezZ04OoEj_rjQ==
age: 3179764
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/pages/landing-02155a0345a57bba1ae8.js
143.204.55.102200 OK 2.0 kB URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/pages/landing-02155a0345a57bba1ae8.js
IP 143.204.55.102:0
Hash 80fc6657b2b8a9de1db8d519236fc0bb
6f40906e9c785e6515e854b2fc6b0c8de5778bb0
8a51045b9723a8a2d2d713d733204f72ddda4cef097a46d4e14eb5284cae2cf3
GET /_next/static/chunks/pages/landing-02155a0345a57bba1ae8.js HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Wed, 22 Feb 2023 12:49:52 GMT
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Wed, 22 Feb 2023 12:40:13 GMT
etag: W/"d93-186792377c8"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -isefen_0oSSR996YR5EgWsIpudWF_8ctbb3bKkeilht_wFK8550XQ==
age: 3179753
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/framework.34bf141b0d86c4565ece.js
143.204.55.102200 OK 44 kB URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/framework.34bf141b0d86c4565ece.js
IP 143.204.55.102:0
Hash 842f0f53f3fe0290c6f1e0b628d441ef
43136254aab1621fdf6bf80742d6f998b36d04f1
7f51f6d4c6a0548cc3632e94951b3c4e15e20b7a467fbccf965da150bb48b305
GET /_next/static/chunks/framework.34bf141b0d86c4565ece.js HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Sun, 03 Jul 2022 00:28:42 GMT
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Wed, 11 May 2022 18:49:15 GMT
etag: W/"1fc95-180b4742ff8"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: n7ULfQ47lMQ_jWMK5CqnpnlhI4A65wVfWMt1d-L__UKuVpadRF90gw==
age: 23441823
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16522
Expires: Fri, 31 Mar 2023 12:41:07 GMT
Date: Fri, 31 Mar 2023 08:05:45 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb5ac5665-fe23-4026-a00b-567f98678f9e.webp
34.120.237.76200 OK 80 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb5ac5665-fe23-4026-a00b-567f98678f9e.webp
IP 34.120.237.76:0
File type gzip compressed data, from Unix\012- data
Hash d5919416d60f6a63674964e4d057a1b4
9feb07a3f7c4b4c8c18f4dd604e535db1f8ef0f5
0878dda3ef3ba44be81b7e9f2a36572de6f3e1dfac23363452f93028fefc03c2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb5ac5665-fe23-4026-a00b-567f98678f9e.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10706
x-amzn-requestid: 2e382033-306f-40ed-b259-76790e5e3ac9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUlmGujoAMFamQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260156-3856db4579fce52a18219166;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: pcFiVnrSVAh6gQ3VuQDE32650Yoj5bcTJrishSOFVpR3DHh4lUvdag==
via: 1.1 8ead054384c1626556ee4410cad35692.cloudfront.net (CloudFront), 1.1 4d8620b80ebe37d366388e117039aa8e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 22:05:16 GMT
age: 36029
etag: "c3f1113bad672968f22e63693ef4481f7f5616fe"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/f0212d6ee1b3c9ea0d1377f576927b73d63306d0.b0ea5ba55910f1de9291.js
143.204.55.102200 OK 21 kB URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/f0212d6ee1b3c9ea0d1377f576927b73d63306d0.b0ea5ba55910f1de9291.js
IP 143.204.55.102:0
Hash bab3b07a4d9379498de08c63d7466386
b1b8f8fdd043f7ad5c0572039b4bfdfd781768de
c37bd4203748ed855daba08bcaa90c3ca2b808005b18cdfddfda77cb6936af59
GET /_next/static/chunks/f0212d6ee1b3c9ea0d1377f576927b73d63306d0.b0ea5ba55910f1de9291.js HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Wed, 22 Feb 2023 12:49:28 GMT
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Wed, 22 Feb 2023 12:40:13 GMT
etag: W/"62e7-186792377c8"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: bnEYUyJ64CZEaBV-FqbJbMLMs3gYMLYRurSqJitMb4Qlkca-_X_fjg==
age: 3179777
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/9fd8c5e27f99fce506e2e5d3b010ddba7982b0f2.7fb5a86b2706698b7a7e.js
143.204.55.102200 OK 39 kB URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/9fd8c5e27f99fce506e2e5d3b010ddba7982b0f2.7fb5a86b2706698b7a7e.js
IP 143.204.55.102:0
Hash f75b46dfe86f3f200711cd1fee857586
521792d14a51c3bd6e7b278219997093b387f591
54b384d16b68603f909d8aac4e21778eaa34fce941d7b33ea7ac00f5bb75fbde
GET /_next/static/chunks/9fd8c5e27f99fce506e2e5d3b010ddba7982b0f2.7fb5a86b2706698b7a7e.js HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Wed, 22 Feb 2023 12:49:51 GMT
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Wed, 22 Feb 2023 12:40:13 GMT
etag: W/"1b629-186792377c8"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: h_WpLcq-MWI6myc3eef7HvNOBald4zHRSEu0eJ67S_4OmG3uiMga0A==
age: 3179753
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/9f53a5e1838f3d4edd0881ed4356c1a4045f0c7f.175278f709b52ba552af.js
143.204.55.102200 OK 63 kB URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/9f53a5e1838f3d4edd0881ed4356c1a4045f0c7f.175278f709b52ba552af.js
IP 143.204.55.102:0
Hash 10538412f466cdab2fe8d04635ad98a5
b84d3d43cc0e59956e4531cd0c1c5b805f9e989c
70231dffb2a0c812d61d5628e6078648f412ed2acc8952ec261a0430569a5c7b
GET /_next/static/chunks/9f53a5e1838f3d4edd0881ed4356c1a4045f0c7f.175278f709b52ba552af.js HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Wed, 22 Feb 2023 12:49:28 GMT
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Wed, 22 Feb 2023 12:40:13 GMT
etag: W/"34095-186792377c8"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: fUyWkQD4AlWfobhyYDbT5IboB1DMMhuJeXmWxFxOb-jq5_53ZTMlLg==
age: 3179777
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/ecdc3a18010e3f0f77a82f9f4c597ff1caa989ad.0069769f0aea34bacf33.js
143.204.55.102200 OK 14 kB URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/ecdc3a18010e3f0f77a82f9f4c597ff1caa989ad.0069769f0aea34bacf33.js
IP 143.204.55.102:0
Hash 4f360568079369ddf853f7b4d163758e
d8de7d241fe29f8e52fadb25e0ceff1afeb43799
b1a144067f216c52d212c465d33c4001e826f3fab028b31495c067f5b31d0f3e
GET /_next/static/chunks/ecdc3a18010e3f0f77a82f9f4c597ff1caa989ad.0069769f0aea34bacf33.js HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Wed, 22 Feb 2023 12:49:51 GMT
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Wed, 22 Feb 2023 12:40:13 GMT
etag: W/"27b4-186792377c8"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 9d9ZIIIsErkG9Key--8oQHnfPfVOAAwIjErGoqMebScMlRC8g1Ou9g==
age: 3179753
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/51b1440a0a665627a6ad39500567b3ecdc733cf3.ab0be441c438669d1771.js
143.204.55.102200 OK 24 kB URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/51b1440a0a665627a6ad39500567b3ecdc733cf3.ab0be441c438669d1771.js
IP 143.204.55.102:0
Hash c70326c0c50cae6006090fff5c939dc2
c7871a410b6e8d57244f9c7a34e498841831cd6f
389b50ba6322e761d5d162ef05d753d4a2c5c1b63efb9a959195750a8bc1939f
GET /_next/static/chunks/51b1440a0a665627a6ad39500567b3ecdc733cf3.ab0be441c438669d1771.js HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Mon, 06 Mar 2023 21:42:59 GMT
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Mon, 06 Mar 2023 21:31:06 GMT
etag: W/"e240-186b8d5d190"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: dDlRr-f5WHJAk90edt2pcTqD0IFoy5aH9xZJ_PrC2czOxI0LeEJDag==
age: 2110966
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/bc22179d.a081f06757f1603acde3.js
143.204.55.102200 OK 15 kB URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/bc22179d.a081f06757f1603acde3.js
IP 143.204.55.102:0
Hash c1d1964c0a18ea1aaf9e0e5b7cd9cb27
eae010009211fee2c8e8fb4f5478164a89d2928b
30ac377a9b76bdcf720cd1750bcf4e9ac2c08cdfdbbb781521cf37814dba9fba
GET /_next/static/chunks/bc22179d.a081f06757f1603acde3.js HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Tue, 24 Jan 2023 02:16:55 GMT
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Thu, 19 Jan 2023 09:52:03 GMT
etag: W/"d96e-185c97149b8"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 98GdX6dPfVySXVXxhLiMQmUZiMgC84KlHRSdu0qs-9F45MlNh6NNhQ==
age: 5723329
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/pages/kb-1688adce3ff8411c8fa7.js
143.204.55.102200 OK 526 B URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/pages/kb-1688adce3ff8411c8fa7.js
IP 143.204.55.102:0
File type ASCII text, with very long lines (526), with no line terminators
Hash 3e68005aadff2182917dcdd2044c80ce
8e50d4d011c46a11c31955afe5d22826a647d0a5
d9ab10d0907b1f7ad65a3ca6d879c7293ec88bb8a76a25c3bdc2d84efa9d5e40
GET /_next/static/chunks/pages/kb-1688adce3ff8411c8fa7.js HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 526
date: Wed, 22 Feb 2023 12:51:10 GMT
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Wed, 22 Feb 2023 12:40:13 GMT
etag: W/"20e-186792377c8"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ToprPqS9dC_UahZoe1T82uIBAnOEYtVCAkQ1LFuOHSvjqeO4wNN8Jg==
age: 3179675
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/api/fonts
143.204.55.102200 OK 14 kB URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/api/fonts
IP 143.204.55.102:0
Hash e9e7bdab9ec6b2b9c7d8a28f41380e4f
8ecd410ec1e6dd208772304c7a5ed337253173c7
03240d61c3ccd69c84292adf32aea0553cdfd3e57df36d433e31f93f32e76abf
GET /api/fonts HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
date: Fri, 31 Mar 2023 08:05:45 GMT
cache-control: max-age=86400, must-revalidate
vary: Accept-Encoding
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: fSStjKGFLGiv9rhk0tImpFFQYVh7xujZRdV7sPYTGQtbtxIepsYo1g==
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash b46c4b207e1889d698720f490efeb062
e8ce8936c9fc6ffdf5791bc675fc0b6b1b23dbe1
428e5c5ddffa73399288e314cd744f1c8abf1cc48d39ad053f2d6d6bd7823035
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=138071
Date: Fri, 31 Mar 2023 08:05:45 GMT
Etag: "642603d3-1d7"
Expires: Sat, 01 Apr 2023 22:26:56 GMT
Last-Modified: Thu, 30 Mar 2023 21:49:07 GMT
Server: ECAcc (nya/78C0)
X-Cache: Miss from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Cgbk2PKxfc0OxQk5kslgKRJueKhZTrs58qO-j2-hBRI5i95wfuXFWw==
Age: 2269
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash b46c4b207e1889d698720f490efeb062
e8ce8936c9fc6ffdf5791bc675fc0b6b1b23dbe1
428e5c5ddffa73399288e314cd744f1c8abf1cc48d39ad053f2d6d6bd7823035
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=137831
Date: Fri, 31 Mar 2023 08:05:45 GMT
Etag: "642603d3-1d7"
Expires: Sat, 01 Apr 2023 22:22:56 GMT
Last-Modified: Thu, 30 Mar 2023 21:49:07 GMT
Server: ECAcc (nya/1C3C)
X-Cache: Miss from cloudfront
Via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: BK3oSqiE3ni2PIHh2pHAEH5budAUhy2vD_KRlRvmNoEWaIjtao58oA==
Age: 2029
graphql.production.groovehq.com/graphql
3.215.10.148204 No Content 0 B URL HTTP/2 graphql.production.groovehq.com/graphql
IP 3.215.10.148:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /graphql HTTP/1.1
Host: graphql.production.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-groove-graphql,x-request-id
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/
Origin: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 204 No Content
date: Fri, 31 Mar 2023 08:05:46 GMT
x-powered-by: Express
x-request-id: 26ef500c-e99a-4e9b-9aa9-b470aeee1d66
access-control-allow-origin: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
vary: Origin, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-headers: content-type,x-groove-graphql,x-request-id
access-control-max-age: 600
access-control-expose-headers: x-runtime
X-Firefox-Spdy: h2
m.stripe.com/6
35.160.102.209200 OK 156 B IP 35.160.102.209:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 32e0aba7d7732a5492b2940a580f9ed4
2988dd55abe385dd8994b28f8279c715e1c35072
696d4a5380624324e0dba4577408807f627c1935f59dea17255e2bd3cc7fa1d9
POST /6 HTTP/1.1
Host: m.stripe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2236
Origin: https://m.stripe.network
Connection: keep-alive
Referer: https://m.stripe.network/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 08:05:46 GMT
content-length: 156
set-cookie: m=8f04805a-5825-4529-a4e6-060d8822ff69b71b48;Expires=Sun, 30-Mar-2025 08:05:46 GMT;Secure;HttpOnly; SameSite=None
x-content-type-options: nosniff
x-stripe-server-envoy-start-time-us: 1680249946063030
x-stripe-server-envoy-upstream-service-time-ms: 2
x-stripe-bg-intended-route-color: blue
x-stripe-client-envoy-start-time-us: 1680249946062321
access-control-allow-origin: https://m.stripe.network
access-control-allow-credentials: true
access-control-allow-headers: Content-Type
strict-transport-security: max-age=31556926; includeSubDomains; preload
content-type: application/json;charset=utf-8
X-Firefox-Spdy: h2
graphql.production.groovehq.com/graphql
3.215.10.148200 OK 14 kB URL HTTP/2 graphql.production.groovehq.com/graphql
IP 3.215.10.148:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (13945), with no line terminators
Hash be82e124d99ccdbea8e7869909014e96
77aa742314d72502fda2cc7b9201e3e7bc7ac9d5
71ac06b2da8039f72c41e0e3a091c91db57be565bc4473d20b9b11249c7fed01
POST /graphql HTTP/1.1
Host: graphql.production.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/
content-type: application/json
x-groove-graphql: widget
x-request-id: c255ec98-a0d4-4fed-ac11-6f397af380e2
Origin: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
Content-Length: 305
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 08:05:46 GMT
content-type: application/json; charset=utf-8
content-length: 13998
x-powered-by: Express
x-request-id: c255ec98-a0d4-4fed-ac11-6f397af380e2
access-control-allow-origin: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
vary: Origin
access-control-allow-credentials: true
access-control-expose-headers: x-runtime
x-runtime: 87
etag: W/"36ae-d6p0IxTXJQL9osx7kgHj57x6ydU"
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/fonts/ibmplexsans/modern/400-latin.woff2
143.204.55.102200 OK 13 kB URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/fonts/ibmplexsans/modern/400-latin.woff2
IP 143.204.55.102:0
File type Web Open Font Format (Version 2), TrueType, length 13044, version 1.0\012- data
Hash c3a65ab369c0fce2b38f5ae05566203b
a60838a2e0c6c942b678169211f9223720997540
d40ffbc9035e897e3e4848f7e74cacb481ac28bb136b3538849dc16166aeeab4
GET /fonts/ibmplexsans/modern/400-latin.woff2 HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/api/fonts
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: font/woff2
content-length: 13044
date: Fri, 31 Mar 2023 08:05:46 GMT
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Mon, 06 Mar 2023 21:28:34 GMT
etag: W/"32f4-186b8d37fd0"
x-cache: Miss from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: GbxiUU8via4rO5P_ULuBJ0qjN7ndU9MT10hU_y_gg8M03cuCWitloQ==
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/fonts/ibmplexsans/modern/500-latin.woff2
143.204.55.102200 OK 14 kB URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/fonts/ibmplexsans/modern/500-latin.woff2
IP 143.204.55.102:0
File type Web Open Font Format (Version 2), TrueType, length 13868, version 1.0\012- data
Hash eaad6ed2140476b792c9bc7d6ff87792
63bba8639684a1e578d244464a26055a8ef7465e
ccf52de0e6857554412f6b158f03c2d735c3a5a9958f56340942e20bcf5c0952
GET /fonts/ibmplexsans/modern/500-latin.woff2 HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/api/fonts
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: font/woff2
content-length: 13868
date: Fri, 31 Mar 2023 08:05:46 GMT
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Mon, 06 Mar 2023 21:28:34 GMT
etag: W/"362c-186b8d37fd0"
x-cache: Miss from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: eldyiBHbxbpPLIZxlf-2Ag20o-3l5lhA3p-wzzVhFHjXetJZqALjwA==
X-Firefox-Spdy: h2
www.dropbox.com/static/api/2/dropins.js
162.125.71.18200 OK 0 B URL HTTP/2 www.dropbox.com/static/api/2/dropins.js
IP 162.125.71.18:0
GET /static/api/2/dropins.js HTTP/1.1
Host: www.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinypng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: envoy
date: Fri, 31 Mar 2023 08:05:44 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
last-modified: Fri, 31 Mar 2023 05:55:38 GMT
x-content-type-options: nosniff
x-cached: HIT
expires: Fri, 31 Mar 2023 09:05:44 GMT
access-control-allow-origin: *
timing-allow-origin: https://www.dropbox.com
content-encoding: br
cache-control: no-cache, no-store
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-dropbox-response-origin: remote
x-dropbox-request-id: ba68f5006db942f99ed6257352d93404
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/pages/index-502a0de4ddc1cd81b298.js
143.204.55.102200 OK 0 B URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/pages/index-502a0de4ddc1cd81b298.js
IP 143.204.55.102:0
GET /_next/static/chunks/pages/index-502a0de4ddc1cd81b298.js HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Mon, 06 Mar 2023 21:43:00 GMT
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Mon, 06 Mar 2023 21:31:06 GMT
etag: W/"45f6-186b8d5d190"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: tYezceIbeMZo78rpj3p0KtfOeNf3sfPS4wagzxVH22EBS6pUbo1t5w==
age: 2110965
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/commons.97128cde355ecc75f767.js
143.204.55.102200 OK 0 B URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/commons.97128cde355ecc75f767.js
IP 143.204.55.102:0
GET /_next/static/chunks/commons.97128cde355ecc75f767.js HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Mon, 23 May 2022 03:44:18 GMT
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Wed, 11 May 2022 18:49:15 GMT
etag: W/"b6fc-180b4742ff8"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: FbWudeROgL4DStXEXqmX2348OMWETJD807CwhBmoo0uIFmOuBXewag==
age: 26972487
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/6b859938.1ce9891448442a263ac4.js
143.204.55.102200 OK 0 B URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/6b859938.1ce9891448442a263ac4.js
IP 143.204.55.102:0
GET /_next/static/chunks/6b859938.1ce9891448442a263ac4.js HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Tue, 03 Jan 2023 07:34:49 GMT
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Thu, 27 Oct 2022 20:56:20 GMT
etag: W/"112c4-1841b3b4520"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: jOacKbHLcVIYTJz-66dNm6rFt0bhGic16uiLP0ZMyhcvelEXC9-rzg==
age: 7518655
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/pages/contact-d2101d6e66e8e4ca74df.js
143.204.55.102200 OK 0 B URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/pages/contact-d2101d6e66e8e4ca74df.js
IP 143.204.55.102:0
GET /_next/static/chunks/pages/contact-d2101d6e66e8e4ca74df.js HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Wed, 22 Feb 2023 12:49:52 GMT
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Wed, 22 Feb 2023 12:40:13 GMT
etag: W/"1097-186792377c8"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: F93vVGVdt25C1kxgl9L75OtgAG9WsPEjRB6JMyE_PUGlJZBB7CLPNQ==
age: 3179753
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/YdqhoZziZq4JNHSH5PX6i/_buildManifest.js
143.204.55.102200 OK 0 B URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/YdqhoZziZq4JNHSH5PX6i/_buildManifest.js
IP 143.204.55.102:0
GET /_next/static/YdqhoZziZq4JNHSH5PX6i/_buildManifest.js HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Mon, 06 Mar 2023 21:42:59 GMT
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Mon, 06 Mar 2023 21:31:06 GMT
etag: W/"d68-186b8d5d190"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: mcXDMnQn4MS7rFi7Yej5ZGA0IOqt_gOmg3nZr3p6cJ4nSJb_Re-Vdg==
age: 2110966
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/api/loader
143.204.55.102200 OK 0 B URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/api/loader
IP 143.204.55.102:0
GET /api/loader HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinypng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Fri, 31 Mar 2023 08:05:43 GMT
cache-control: no-store, must-revalidate
vary: Accept-Encoding
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: BSxx6krVx8QkeFMTCGpCDCqhiwh1boMl2WR9XZwraj6e5w74unN14w==
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/api/shim/27299f7da6676b065f217a683a418325
143.204.55.102200 OK 0 B URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/api/shim/27299f7da6676b065f217a683a418325
IP 143.204.55.102:0
GET /api/shim/27299f7da6676b065f217a683a418325 HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinypng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Fri, 31 Mar 2023 08:05:43 GMT
cache-control: public, max-age=31557600
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Fo_kpewQB-2K6qkzp7sNVuSjzjgjtpfjI9LffJgx8AUtz_6eUbsJCA==
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/webpack-7409908a8e7c184fa236.js
143.204.55.102200 OK 0 B URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/webpack-7409908a8e7c184fa236.js
IP 143.204.55.102:0
GET /_next/static/chunks/webpack-7409908a8e7c184fa236.js HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Wed, 22 Feb 2023 12:49:51 GMT
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Wed, 22 Feb 2023 12:40:13 GMT
etag: W/"11b5-186792377c8"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: l3HDaKhO2lNxJo4eEjcgnsbmLlqDWKLWiQxhhBLtk438Nep7c_TRCA==
age: 3179754
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/8aa1b6689c9902f4ace2ba2b4a90b3959c03588e.3e0361c5c0ad732d228a.js
143.204.55.102200 OK 0 B URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/8aa1b6689c9902f4ace2ba2b4a90b3959c03588e.3e0361c5c0ad732d228a.js
IP 143.204.55.102:0
GET /_next/static/chunks/8aa1b6689c9902f4ace2ba2b4a90b3959c03588e.3e0361c5c0ad732d228a.js HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Mon, 06 Mar 2023 21:43:00 GMT
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Mon, 06 Mar 2023 21:31:06 GMT
etag: W/"421b-186b8d5d190"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: bd2RwUgugDkmLwFO7kAlm2y6GyiSFBuRhIJdvaEQLbJab0o6ZxiewQ==
age: 2110965
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/1c723d293cad925a7b8092c0c383afec982c5454.a4abb429d87c1ec8cf42.js
143.204.55.102200 OK 0 B URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/1c723d293cad925a7b8092c0c383afec982c5454.a4abb429d87c1ec8cf42.js
IP 143.204.55.102:0
GET /_next/static/chunks/1c723d293cad925a7b8092c0c383afec982c5454.a4abb429d87c1ec8cf42.js HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Wed, 22 Feb 2023 12:49:52 GMT
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Wed, 22 Feb 2023 12:40:13 GMT
etag: W/"5d85-186792377c8"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: j7AUqMUWiliX3p-eTX9oF2jxkAfO25EDjwhrRDBOeXm1upRQNizW9A==
age: 3179753
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/15c33ad6009fe842923832869367f2db3e810d18.442a8a1a4b42146d304d.js
143.204.55.102200 OK 0 B URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/15c33ad6009fe842923832869367f2db3e810d18.442a8a1a4b42146d304d.js
IP 143.204.55.102:0
GET /_next/static/chunks/15c33ad6009fe842923832869367f2db3e810d18.442a8a1a4b42146d304d.js HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Wed, 22 Feb 2023 12:49:52 GMT
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Wed, 22 Feb 2023 12:40:13 GMT
etag: W/"1ffa9-186792377c8"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Ayj5J0b-fpmqhw6V_VR86297AYYA8hTQtfYdemQr7CkJcCL-QfL3CQ==
age: 3179753
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/004c2ef8caa5266c76b669dc17f6cf0b25fa5168.089d58b355e999a662a8.js
143.204.55.102200 OK 0 B URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/004c2ef8caa5266c76b669dc17f6cf0b25fa5168.089d58b355e999a662a8.js
IP 143.204.55.102:0
GET /_next/static/chunks/004c2ef8caa5266c76b669dc17f6cf0b25fa5168.089d58b355e999a662a8.js HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Wed, 22 Feb 2023 12:49:52 GMT
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Wed, 22 Feb 2023 12:40:13 GMT
etag: W/"817ae-186792377c8"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: jZR-5ECitrq2ljNux9isjx7gPVvBITtXinEr7Y4TYweUHeIMKvDJtQ==
age: 3179753
X-Firefox-Spdy: h2