r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9fbe85f42e8ae8ae41cc12df5f98b141
949fa36ff0f22f72565fd584bef094dd4de23037
184d3e4df4bce559b4d7c4836372f5fd2de9782a96b04d364230b7d695d737d8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "184D3E4DF4BCE559B4D7C4836372F5FD2DE9782A96B04D364230B7D695D737D8"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14019
Expires: Thu, 26 Jan 2023 21:51:28 GMT
Date: Thu, 26 Jan 2023 17:57:49 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2405562765b49b2782ebd2e2994851d5
be7ac8e558f7875bb1fb86ab5ec674424a5ff269
422cfa907461cb7b93b9089d600052f9e94951e5e0c93d97651905002e48ad3e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "422CFA907461CB7B93B9089D600052F9E94951E5E0C93D97651905002E48AD3E"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15262
Expires: Thu, 26 Jan 2023 22:12:11 GMT
Date: Thu, 26 Jan 2023 17:57:49 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 49049f3c92aad686cd7ff28ecd2a5a4f
9cc2bc9c055450dbc4fae93eabe4ef8509b3ff57
02cf421968192286bb174ff0e6c818a843c4eca61a02cd493e6f95bb58a37015
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "02CF421968192286BB174FF0E6C818A843C4ECA61A02CD493E6F95BB58A37015"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9661
Expires: Thu, 26 Jan 2023 20:38:50 GMT
Date: Thu, 26 Jan 2023 17:57:49 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 26 Jan 2023 17:42:55 GMT
content-type: application/json
age: 894
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: k5sv0Yr0+37OEa6jP3n+wvM26I3GLQOjtR9vp9XbyMzYv0A7OfGhC+XLz8ttaAuHwNvEPm7luQV3/Ax89+2RGg==
x-amz-request-id: JA8EHT6CWQ1B8KCW
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 26 Jan 2023 17:49:04 GMT
age: 525
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:57:49 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 26 Jan 2023 17:41:40 GMT
age: 970
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1e2970e1480a4759282d63bb213051e4
ed5194d4d25dfc199821129be5d74be0ce49197d
18e19ea4c9c262cb9a94f89172eef2604222e779346589d470bf2e95ea295563
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "18E19EA4C9C262CB9A94F89172EEF2604222E779346589D470BF2E95EA295563"
Last-Modified: Tue, 24 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14204
Expires: Thu, 26 Jan 2023 21:54:34 GMT
Date: Thu, 26 Jan 2023 17:57:50 GMT
Connection: keep-alive
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 6imRrOrCZS1dZaWzSJFm/w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ZsjWq73/Mj690kJ87wfYq050ThQ=
win2012r2.com/
302 Moved Temporarily 138 B IP
ASN #9371 SAKURA Internet Inc.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash aff950cab4c0265e21d401db15f1026d
f03e18461817f7a6546c8bf8fa8d686d7e30aca0
753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0
GET / HTTP/1.1
Host: win2012r2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Thu, 26 Jan 2023 17:57:51 GMT
Content-Type: text/html
Content-Length: 138
Connection: keep-alive
Location: https://win2012r2.com/
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2753
Expires: Thu, 26 Jan 2023 18:43:45 GMT
Date: Thu, 26 Jan 2023 17:57:52 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2753
Expires: Thu, 26 Jan 2023 18:43:45 GMT
Date: Thu, 26 Jan 2023 17:57:52 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2753
Expires: Thu, 26 Jan 2023 18:43:45 GMT
Date: Thu, 26 Jan 2023 17:57:52 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2753
Expires: Thu, 26 Jan 2023 18:43:45 GMT
Date: Thu, 26 Jan 2023 17:57:52 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2753
Expires: Thu, 26 Jan 2023 18:43:45 GMT
Date: Thu, 26 Jan 2023 17:57:52 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg
200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ba0a42dadf6a976df148f652e9cc1844
4d825b74865effa4a858ddcad1d0969671facc07
7276a38c9ba6b13a06f24ab8b802f210f98c5541df53fbcd8e879a14d2957d95
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6418a71b-f89d-45d1-bc77-36d6312f560b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5943
x-amzn-requestid: 6774f4a4-ed83-49df-868f-4517c2af914b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUXxNF2UIAMFlYw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a007-75b1e8975c3f4b503e0a1c5b;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:32:55 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: VATQ0SjZfM_btXwR4M5keLmd-EE6717EHEiXrF2zpHNrli93EhN6Rw==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 21:48:42 GMT
age: 72550
etag: "4d825b74865effa4a858ddcad1d0969671facc07"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c7f25e5-06eb-4d3f-99e2-edacd0739efb.jpeg
200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c7f25e5-06eb-4d3f-99e2-edacd0739efb.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cfe699b31f96add9f1439af1ff1191eb
f77a833a69b69eef4a39e404c102f624e96b52c0
44312979ac13221e5c3328ad590f0f3dc7da00380c07c433382cd81c47b717f8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c7f25e5-06eb-4d3f-99e2-edacd0739efb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14856
x-amzn-requestid: e7d931f7-d086-42b9-a1f3-c8253b82eba6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fSY_OHw7IAMFj6Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d0d52e-4fd95c5f5a64861720a1ee60;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 07:07:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2yzeIjHl8sUO9s5n2sZfN6DSWOVDVQl-xdSrNmHu-yWXj_7VJJk5qA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 07:39:30 GMT
age: 37102
etag: "f77a833a69b69eef4a39e404c102f624e96b52c0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7458f7a9b2070055df6f1d496794e43e
0f5d2a6d846f4f8f85dd7e8089e643cacc57d8a9
373097662c419eef9f4a19ce9f3bcead70f6eafbf0acf44806685eece43ce251
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12758
x-amzn-requestid: c3540562-8c62-4957-9528-7ae952daebaa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e9gf1E87oAMFpsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c87acb-49fd3f78275937e24d23fca3;Sampled=0
x-amzn-remapped-date: Wed, 18 Jan 2023 23:03:39 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mjK4GJ3UCEuHk4XqmXdZCWHTVvJeX8Z2HFaem2GYzqfqlPSd_h6DfA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 07:33:59 GMT
age: 37433
etag: "0f5d2a6d846f4f8f85dd7e8089e643cacc57d8a9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3177e0c-fa06-470b-bb9e-800d246a5096.jpeg
200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3177e0c-fa06-470b-bb9e-800d246a5096.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4e013ee2e3a5287de55de4c2437a279d
f2b0a5738ec9e3b178b2bf5513de3e604b86eadf
f174d5678154412cdbf71f93c345d28cfb8bad7c190fa31dd78e9314c510f7ca
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb3177e0c-fa06-470b-bb9e-800d246a5096.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8648
x-amzn-requestid: 19beb9c1-4e85-47ba-9275-7fb5d25f055f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUYMlENLoAMFhIg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a0b6-016533de5b42b3a573a66c78;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:35:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: jkExt4JNW6KtzDm8mDdb-AvXWXeyZr14XifDN_XVzKiwFAru_1HcSA==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 21:55:21 GMT
age: 72151
etag: "f2b0a5738ec9e3b178b2bf5513de3e604b86eadf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa3e6d9a5-dd7d-4337-a00f-a145350a1a29.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa3e6d9a5-dd7d-4337-a00f-a145350a1a29.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 653bf5a34e9f99c9eef73a21d98d792f
c70d46aa2210c4f7c397fa20e1225b7d0734ac35
9f928ec6f194340e5543a4bf757aac31d545def67a56ae804a2039a3effd3fe0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa3e6d9a5-dd7d-4337-a00f-a145350a1a29.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10379
x-amzn-requestid: 419e5a80-cb6d-4904-9545-a0f815149701
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUYMREwmIAMFhQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a0b4-64c49f7d49687d9e5324ec64;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:35:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: rZHSgPIPZyea2griEvL-3semlrUDichGSL8Rin4YeYKN909f9e0lyQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 21:41:09 GMT
age: 73003
etag: "c70d46aa2210c4f7c397fa20e1225b7d0734ac35"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8017df09-37d9-4c4b-9051-0442b3eb8fbf.jpeg
200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8017df09-37d9-4c4b-9051-0442b3eb8fbf.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 17e1b6f3caa98b0e0972802408dd3f93
07e48bf3565e00d093d72dd4ada606f5d39a4838
7094ef64e04573bea7a81bbcc8ab59d721c5ef433e3fa9203e5861040ced549c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8017df09-37d9-4c4b-9051-0442b3eb8fbf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9285
x-amzn-requestid: 526bd945-31d8-490e-af9d-5e6fc6ea3561
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fUYT2HzvoAMFYYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1a0e5-6812fe4354bbdac4472e7e81;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 21:36:37 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QEH9CmjfV8QZFNxFz_tEk06i_ELUSNC2QjdTF4K3xc3vS651BZ3NlQ==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 25 Jan 2023 21:52:28 GMT
age: 72324
etag: "07e48bf3565e00d093d72dd4ada606f5d39a4838"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 0bf8fccb276521254634abcdcb4b3f0d
a5b7ffa58daf7d1ea3e312b68533d4d0271348f4
991b03387ddbe0b07a9aee23ea7a98863fa85035cb26e631e0d22a1b999ee487
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 17:57:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.jsdelivr.net/npm/swiper@8/swiper-bundle.min.css?ver=6.1.1
200 OK 4.6 kB URL HTTP/2 cdn.jsdelivr.net/npm/swiper@8/swiper-bundle.min.css?ver=6.1.1
IP
File type ASCII text, with very long lines (16237)
Hash 61b9bac3be6957581751d6b52017fd27
828edb922ef7983d0aca75788d576f6ca0641941
c0065135c9aa8f665ae831ece49f0af6609771691f4d4add7ec21dfdf90f70e5
GET /npm/swiper@8/swiper-bundle.min.css?ver=6.1.1 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 8.4.6
x-jsd-version-type: version
etag: W/"406d-/hm2og5hBlBNDYFyco4pV8ralFs"
content-encoding: gzip
accept-ranges: bytes
date: Thu, 26 Jan 2023 17:57:54 GMT
age: 40888
x-served-by: cache-fra-eddf8230033-FRA, cache-bma1650-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 4589
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 82e3abc4a7b17efedca67cf215f4bb60
e20e55d87591af7db3a4bcfc429048f85e389b85
df8901d4d87686fb11e17986f5d53cf513f675b4dd71f0a2e35c7ffbefa7fb9e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 17:57:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-49545071-4
200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-49545071-4
IP
File type ASCII text, with very long lines (1759)
Hash f425bc0cb3a6d015896c66c66c1bb1a6
d8b02e74c972a0dc57cc300c1a66e77651633ccb
147c9135b2d882cbef3b3a7e353c21c9df4b74d6dd238d855102eab4208da49d
GET /gtag/js?id=UA-49545071-4 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 26 Jan 2023 17:57:54 GMT
expires: Thu, 26 Jan 2023 17:57:54 GMT
cache-control: private, max-age=900
last-modified: Thu, 26 Jan 2023 17:03:59 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44013
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-2G2FZZXW0F
200 OK 80 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-2G2FZZXW0F
IP
File type ASCII text, with very long lines (25680)
Hash c63f921532c57165868465244f25df09
17c91987428b1ba8e6fa2dd6309b26f9ba1f1f6e
335ee0ff87f4944ef6f6648fe926c9f35cbdfcb541cd760ac929df6bb9645add
GET /gtag/js?id=G-2G2FZZXW0F HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 26 Jan 2023 17:57:54 GMT
expires: Thu, 26 Jan 2023 17:57:54 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 79940
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
IP
Hash b672e329116faae18684f70234b343bb
1397e363e9a8f60d6f8e553ce5f64ae49e273416
edbebc7904add92eb2b690bd2477c5a3fbcb6327c7084702e2f1dc30a74b22ba
POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 26 Jan 2023 17:57:54 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "290FABCC5682EEB673D61C45595B39EB57FAD07F"
Expires: Fri, 27 Jan 2023 05:00:00 GMT
Last-Modified: Thu, 26 Jan 2023 17:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1042
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78fb22377fe1b509-OSL
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 0bf8fccb276521254634abcdcb4b3f0d
a5b7ffa58daf7d1ea3e312b68533d4d0271348f4
991b03387ddbe0b07a9aee23ea7a98863fa85035cb26e631e0d22a1b999ee487
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 17:57:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
win2012r2.com/win2012r2/wp-content/themes/cocoon-master/webfonts/icomoon/fonts/icomoon.woff
200 OK 7.9 kB URL HTTP/2 win2012r2.com/win2012r2/wp-content/themes/cocoon-master/webfonts/icomoon/fonts/icomoon.woff
IP
ASN #9371 SAKURA Internet Inc.
File type Web Open Font Format, TrueType, length 13000, version 1.5\012- data
Hash 59fd9298fb43e572046555a68cf8ef15
72749a08126018f5839744f236fc4a5f7de97042
7eeb330ae627ecfa49778f59e6be39690cc1dad8ca6baa65c1e91d6265be5874
GET /win2012r2/wp-content/themes/cocoon-master/webfonts/icomoon/fonts/icomoon.woff HTTP/1.1
Host: win2012r2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://win2012r2.com/
Connection: keep-alive
Cookie: PHPSESSID=c7d28bffe45b9992004547ec337fb21c; asp_transient_id=04da5ee327dc858ce6c4c9410de3fa52
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:57:54 GMT
content-length: 7911
last-modified: Wed, 04 Jan 2023 12:40:06 GMT
etag: "32c8-5f16f7bf3a39b-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
win2012r2.com/win2012r2/wp-content/themes/cocoon-master/skins/skin-colors-blue/style.css?ver=6.1.1&fver=20230104124005
200 OK 1.6 kB URL HTTP/2 win2012r2.com/win2012r2/wp-content/themes/cocoon-master/skins/skin-colors-blue/style.css?ver=6.1.1&fver=20230104124005
IP
ASN #9371 SAKURA Internet Inc.
File type Unicode text, UTF-8 text, with very long lines (412)
Hash 0a0decfb0f042b6e5e68445e7917be22
dc487ca6bdd6ad4e3f0affef6f9529799ebdb5c0
30e67df4e54b3ff373a4e2a293f36043f74d5bc44c4d258f2dfd60e5ca4a2106
GET /win2012r2/wp-content/themes/cocoon-master/skins/skin-colors-blue/style.css?ver=6.1.1&fver=20230104124005 HTTP/1.1
Host: win2012r2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://win2012r2.com/
Connection: keep-alive
Cookie: PHPSESSID=c7d28bffe45b9992004547ec337fb21c; asp_transient_id=04da5ee327dc858ce6c4c9410de3fa52
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:57:54 GMT
content-type: text/css
content-length: 1625
last-modified: Wed, 04 Jan 2023 12:40:05 GMT
etag: "12cf-5f16f7be485e1-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Thu, 02 Feb 2023 17:57:54 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jquery-migrate/1.4.1/jquery-migrate.min.js?ver=1.4.1
200 OK 3.6 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery-migrate/1.4.1/jquery-migrate.min.js?ver=1.4.1
IP
File type ASCII text, with very long lines (9959)
Hash 908acf0ea0e8da0309bb2965bfbcab4f
f379a68308437c642db8dd82ecc0e4dc319d760b
33b0296cb0341be709cb2609ea40e77a4942d7db113d8e9a7184f684f927deee
GET /ajax/libs/jquery-migrate/1.4.1/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 17:57:55 GMT
content-type: application/javascript; charset=utf-8
content-length: 3550
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec2-2748"
last-modified: Mon, 04 May 2020 16:11:46 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 68086
expires: Tue, 16 Jan 2024 17:57:55 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rXmQx1z0lbJSsOKOIU9A5V%2BiSbySxvRJYQxd2UoNxvtf8whKcZVOJu%2FQQmUQBwyUE5%2FDt5Yt8GeUIHcLq7DPuc7SgRaKhuNUfCh%2FvnNWYSLdQsHsGjwsNmMELiMGcJikpWi5ZYWU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 78fb223b7c180b02-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 715f2a2c57230b2e1aedef83c76e0cbc
df5a219b8564a6c8fbe802e574ba625be7f204ca
ca239808557d30d1df2527ae94987866734b640bfd631282414a39eac87b872c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 17:57:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js?ver=1.12.4
200 OK 34 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js?ver=1.12.4
IP
File type ASCII text, with very long lines (32077)
Hash fd2b58574f9637ba7ef639267349d848
6eda5ea93f549ceb5693f6f1c038893fa56a510d
75627d4b97e5e6294a8f88f5eeaf9b616696dc8600db9701c47ef05f067880ec
GET /ajax/libs/jquery/1.12.4/jquery.min.js?ver=1.12.4 HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33951
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 21 Jan 2023 18:53:28 GMT
expires: Sun, 21 Jan 2024 18:53:28 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 428667
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 715f2a2c57230b2e1aedef83c76e0cbc
df5a219b8564a6c8fbe802e574ba625be7f204ca
ca239808557d30d1df2527ae94987866734b640bfd631282414a39eac87b872c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 17:57:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
region1.google-analytics.com/g/collect?v=2&tid=G-2G2FZZXW0F>m=2oe1p0&_p=1133363444&cid=1003012007.1674755875&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674755874&sct=1&seg=0&dl=https%3A%2F%2Fwin2012r2.com%2F&dt=Windows%20%E5%AE%9F%E8%B7%B5%E3%82%AC%E3%82%A4%E3%83%89&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-2G2FZZXW0F>m=2oe1p0&_p=1133363444&cid=1003012007.1674755875&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674755874&sct=1&seg=0&dl=https%3A%2F%2Fwin2012r2.com%2F&dt=Windows%20%E5%AE%9F%E8%B7%B5%E3%82%AC%E3%82%A4%E3%83%89&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-2G2FZZXW0F>m=2oe1p0&_p=1133363444&cid=1003012007.1674755875&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674755874&sct=1&seg=0&dl=https%3A%2F%2Fwin2012r2.com%2F&dt=Windows%20%E5%AE%9F%E8%B7%B5%E3%82%AC%E3%82%A4%E3%83%89&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://win2012r2.com
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://win2012r2.com
date: Thu, 26 Jan 2023 17:57:55 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
m.media-amazon.com/images/I/51h26W2HOPS._SL160_.jpg
200 OK 7.0 kB URL HTTP/2 m.media-amazon.com/images/I/51h26W2HOPS._SL160_.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 113x160, components 3\012- data
Hash b5e886b99352e812f34b873fe17f8103
65abef00a7b73ef71089413e65a0a001ee62c45b
5f3ce4cf85e75c13da918e05577691c3e3d971f273c5b4f3648d7f2878925951
GET /images/I/51h26W2HOPS._SL160_.jpg HTTP/1.1
Host: m.media-amazon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 6951
server: Server
date: Tue, 10 Jan 2023 09:07:10 GMT
x-amz-ir-id: 3bea8f77-0134-45ca-aa57-ccaa666197ab
expires: Mon, 05 Jan 2043 02:12:41 GMT
cache-control: max-age=630720000,public
surrogate-key: x-cache-778 /images/I/51h26W2HOPS
timing-allow-origin: https://www.amazon.in, https://www.amazon.com
edge-cache-tag: x-cache-778,/images/I/51h26W2HOPS
access-control-allow-origin: *
last-modified: Mon, 10 May 2021 06:45:33 GMT
x-nginx-cache-status: HIT
accept-ranges: bytes
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
age: 1414244
server-timing: provider;desc="cf"
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZsLcZD9Re8qTBQwRXTEvXnTQg9UAW1qZrE5dJ1lrtSnVCyopugWfSQ==
X-Firefox-Spdy: h2
win2012r2.com/win2012r2/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1&fver=20221115074537
200 OK 12 kB URL HTTP/2 win2012r2.com/win2012r2/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1&fver=20221115074537
IP
ASN #9371 SAKURA Internet Inc.
File type ASCII text, with very long lines (47826)
Hash 8fa87dd23394a22621248ec378d2af59
9305bc637a89b1700d7f56a19a80bd32b0feb2f7
c162f7de24fa2d4e93e0da254ef287ff72f4a3e03f42443265097968351388dc
GET /win2012r2/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1&fver=20221115074537 HTTP/1.1
Host: win2012r2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://win2012r2.com/
Connection: keep-alive
Cookie: PHPSESSID=c7d28bffe45b9992004547ec337fb21c; asp_transient_id=04da5ee327dc858ce6c4c9410de3fa52
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:57:54 GMT
content-type: text/css
content-length: 12518
last-modified: Tue, 15 Nov 2022 19:45:37 GMT
etag: "172a9-5ed8799a91e22-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Thu, 02 Feb 2023 17:57:54 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
m.media-amazon.com/images/I/41Y2tAewYCL._SL75_.jpg
200 OK 984 B URL HTTP/2 m.media-amazon.com/images/I/41Y2tAewYCL._SL75_.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 53x75, components 3\012- data
Hash f079e18dc41c5b080e393c88e4321432
b1361d9471510df5e788c61b14b0c9f675240b12
97323dde5928ff80853be723353d13adc90f6ce5fd0b28c0f9e7e58f9b997847
GET /images/I/41Y2tAewYCL._SL75_.jpg HTTP/1.1
Host: m.media-amazon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 984
server: Server
date: Wed, 04 Jan 2023 06:35:13 GMT
x-amz-ir-id: f5f12cbc-b623-49eb-9246-1250a8d0ea75
expires: Tue, 30 Dec 2042 06:35:13 GMT
cache-control: max-age=630720000,public
surrogate-key: x-cache-639 /images/I/41Y2tAewYCL
timing-allow-origin: https://www.amazon.in, https://www.amazon.com
edge-cache-tag: x-cache-639,/images/I/41Y2tAewYCL
access-control-allow-origin: *
last-modified: Tue, 03 Jul 2012 04:56:46 GMT
x-nginx-cache-status: MISS
accept-ranges: bytes
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
age: 1941762
server-timing: provider;desc="cf"
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: LJ4JSfY6E4XIdjjbM7tlATas999-bZnqcSCGNv7W2HSJ_XjNlNbkdQ==
X-Firefox-Spdy: h2
m.media-amazon.com/images/I/51W3GJV1X-L._SL160_.jpg
200 OK 5.1 kB URL HTTP/2 m.media-amazon.com/images/I/51W3GJV1X-L._SL160_.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 113x160, components 3\012- data
Hash 7e071b895a6d3cb234ac9247370aca05
bae403688d460836b71b90b9df8ff03846a6dff7
e6f29a4dd4eea310a6b1a206fa1228f50ed9bd2ea5fda3484bec68c16fe4ddbf
GET /images/I/51W3GJV1X-L._SL160_.jpg HTTP/1.1
Host: m.media-amazon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 5051
server: Server
date: Wed, 28 Dec 2022 18:21:51 GMT
x-amz-ir-id: 9bc4b19e-56ff-4607-91e6-db8d7061e547
expires: Fri, 19 Dec 2042 00:32:30 GMT
cache-control: max-age=630720000,public
surrogate-key: x-cache-550 /images/I/51W3GJV1X-L
timing-allow-origin: https://www.amazon.in, https://www.amazon.com
edge-cache-tag: x-cache-550,/images/I/51W3GJV1X-L
access-control-allow-origin: *
last-modified: Mon, 30 Nov 2020 07:20:24 GMT
x-nginx-cache-status: HIT
accept-ranges: bytes
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
age: 2504164
server-timing: provider;desc="cf"
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: A1JLaRrnut50usAttRzg8J4hGIgKfUdzt4uiUVUxYYyllrXgIOYNUA==
X-Firefox-Spdy: h2
m.media-amazon.com/images/I/51-9K4G3M9L._SL75_.jpg
200 OK 1.0 kB URL HTTP/2 m.media-amazon.com/images/I/51-9K4G3M9L._SL75_.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 53x75, components 3\012- data
Hash 6d82c3f75b5d12c8c4f5cc4d146ec778
199486df62369ec271a9b765c7ea26f1490dcbea
4287f33176bce35e77b81e3a822b410dfa99490380a0d034b57383445cdf56b6
GET /images/I/51-9K4G3M9L._SL75_.jpg HTTP/1.1
Host: m.media-amazon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 1039
server: Server
date: Thu, 05 Jan 2023 01:40:20 GMT
x-amz-ir-id: 3942ba9f-4f2a-4443-8551-21e928161d94
expires: Wed, 31 Dec 2042 01:40:20 GMT
cache-control: max-age=630720000,public
surrogate-key: x-cache-010 /images/I/51-9K4G3M9L
timing-allow-origin: https://www.amazon.in, https://www.amazon.com
edge-cache-tag: x-cache-010,/images/I/51-9K4G3M9L
access-control-allow-origin: *
last-modified: Tue, 03 Jul 2012 04:56:58 GMT
x-nginx-cache-status: MISS
accept-ranges: bytes
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
age: 1873054
server-timing: provider;desc="cf"
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: xnv-02nU2W0QN8NIxRbYqtoITK_l_QdOxbXMQGMlFRlEhT0FoOqBuw==
X-Firefox-Spdy: h2
win2012r2.com/win2012r2/wp-content/themes/cocoon-child-master/style.css?ver=6.1.1&fver=20200404011823
200 OK 315 B URL HTTP/2 win2012r2.com/win2012r2/wp-content/themes/cocoon-child-master/style.css?ver=6.1.1&fver=20200404011823
IP
ASN #9371 SAKURA Internet Inc.
Hash 0fbf4be0655e02f0d7e621c661deac75
fd0e2b7e2f3c4d90fb7d00e8fcd624f634232ce1
78a578097116be7af47da2542395a242950878d5ae1eedbba2d422dcd68f27ba
GET /win2012r2/wp-content/themes/cocoon-child-master/style.css?ver=6.1.1&fver=20200404011823 HTTP/1.1
Host: win2012r2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://win2012r2.com/
Connection: keep-alive
Cookie: PHPSESSID=c7d28bffe45b9992004547ec337fb21c; asp_transient_id=04da5ee327dc858ce6c4c9410de3fa52; _ga_2G2FZZXW0F=GS1.1.1674755874.1.0.1674755874.0.0.0; _ga=GA1.1.1003012007.1674755875
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:57:55 GMT
content-type: text/css
content-length: 315
last-modified: Sat, 04 Apr 2020 13:18:23 GMT
etag: "2cf-5a276de4d45c0-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Thu, 02 Feb 2023 17:57:55 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
m.media-amazon.com/images/I/511jUNQR7XL._SL75_.jpg
200 OK 956 B URL HTTP/2 m.media-amazon.com/images/I/511jUNQR7XL._SL75_.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 53x75, components 3\012- data
Hash c87fb3232f43f817e9756afbc04a2c87
ae76a3c04470cc20ccd65f9df18fba2ee8f75a91
3671e6900c159955d63576b8a35ef0011b79382c9d5dcc539361d2659ba9e766
GET /images/I/511jUNQR7XL._SL75_.jpg HTTP/1.1
Host: m.media-amazon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 956
server: Server
date: Tue, 10 Jan 2023 11:57:48 GMT
x-amz-ir-id: 163f1a2b-b088-4414-b0a4-049548c11637
expires: Mon, 05 Jan 2043 11:57:48 GMT
cache-control: max-age=630720000,public
surrogate-key: x-cache-867 /images/I/511jUNQR7XL
timing-allow-origin: https://www.amazon.in, https://www.amazon.com
edge-cache-tag: x-cache-867,/images/I/511jUNQR7XL
access-control-allow-origin: *
last-modified: Tue, 03 Jul 2012 04:56:53 GMT
x-nginx-cache-status: MISS
accept-ranges: bytes
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
age: 1404007
server-timing: provider;desc="cf"
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: mxID0-fQzvxecjIwFxjWiMFvu1suziciiNtvroOkin7PEfAtwr9hlg==
X-Firefox-Spdy: h2
win2012r2.com/win2012r2/wp-content/themes/cocoon-child-master/keyframes.css?ver=6.1.1&fver=20200404011823
200 OK 136 B URL HTTP/2 win2012r2.com/win2012r2/wp-content/themes/cocoon-child-master/keyframes.css?ver=6.1.1&fver=20200404011823
IP
ASN #9371 SAKURA Internet Inc.
File type Unicode text, UTF-8 text, with no line terminators
Hash 3d9af4de4240a0f95a6018f584fd0eeb
5f36d5bdb8468c1655ea7d25d25365f68be73526
9270d3f9a313a4b51332281d5a354c64720a34ad4752586f2745f3b6c7f9737b
GET /win2012r2/wp-content/themes/cocoon-child-master/keyframes.css?ver=6.1.1&fver=20200404011823 HTTP/1.1
Host: win2012r2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://win2012r2.com/
Connection: keep-alive
Cookie: PHPSESSID=c7d28bffe45b9992004547ec337fb21c; asp_transient_id=04da5ee327dc858ce6c4c9410de3fa52; _ga_2G2FZZXW0F=GS1.1.1674755874.1.0.1674755874.0.0.0; _ga=GA1.1.1003012007.1674755875
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:57:55 GMT
content-type: text/css
content-length: 136
last-modified: Sat, 04 Apr 2020 13:18:23 GMT
etag: "82-5a276de4d45c0-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Thu, 02 Feb 2023 17:57:55 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
m.media-amazon.com/images/I/41MjTupTFrL._SL75_.jpg
200 OK 929 B URL HTTP/2 m.media-amazon.com/images/I/41MjTupTFrL._SL75_.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 53x75, components 3\012- data
Hash d3fd05079ac04e2eb1defd50fdacd64b
a2bac8bf22206537e14b41cfe1090101440a8ded
6aac539047711f7990c266f2787c69ecbec346c7d8e7207d2d3c95d6deb45281
GET /images/I/41MjTupTFrL._SL75_.jpg HTTP/1.1
Host: m.media-amazon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 929
server: Server
date: Tue, 03 Jan 2023 20:09:38 GMT
x-amz-ir-id: cd1c744f-19c3-4315-8b3f-b16458d52e58
expires: Sun, 28 Dec 2042 00:35:34 GMT
cache-control: max-age=630720000,public
surrogate-key: x-cache-706 /images/I/41MjTupTFrL
timing-allow-origin: https://www.amazon.in, https://www.amazon.com
edge-cache-tag: x-cache-706,/images/I/41MjTupTFrL
access-control-allow-origin: *
last-modified: Tue, 03 Jul 2012 04:55:35 GMT
x-nginx-cache-status: HIT
accept-ranges: bytes
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
age: 1979297
server-timing: provider;desc="cf"
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: pEri__d6qx4itqRoCEV84NHLIRYfznUYn0ubVk3-MCILGBCEm3A_yg==
X-Firefox-Spdy: h2
win2012r2.com/win2012r2/wp-content/plugins/content-protector/assets/public/cookie.js?ver=6.1.1&fver=20230104075708
200 OK 823 B URL HTTP/2 win2012r2.com/win2012r2/wp-content/plugins/content-protector/assets/public/cookie.js?ver=6.1.1&fver=20230104075708
IP
ASN #9371 SAKURA Internet Inc.
File type ASCII text, with very long lines (1650)
Hash e2f57a4120d8cc544ca82a4d9ba29349
7389ca32745bf2423255f60a6d0fc2027c7eb860
e710e100fc8d4552424ff736c09ccd6970b58e6e9fcd2026ad3ffc13d23561df
GET /win2012r2/wp-content/plugins/content-protector/assets/public/cookie.js?ver=6.1.1&fver=20230104075708 HTTP/1.1
Host: win2012r2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://win2012r2.com/
Connection: keep-alive
Cookie: PHPSESSID=c7d28bffe45b9992004547ec337fb21c; asp_transient_id=04da5ee327dc858ce6c4c9410de3fa52; _ga_2G2FZZXW0F=GS1.1.1674755874.1.0.1674755874.0.0.0; _ga=GA1.1.1003012007.1674755875
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:57:55 GMT
content-type: application/javascript
content-length: 823
last-modified: Wed, 04 Jan 2023 07:57:08 GMT
etag: "691-5f16b87f72452-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Thu, 02 Feb 2023 17:57:55 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
m.media-amazon.com/images/I/51MgH8Jmr3L._SL500_.jpg
200 OK 35 kB URL HTTP/2 m.media-amazon.com/images/I/51MgH8Jmr3L._SL500_.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 354x500, components 3\012- data
Hash 419bee48b0a116d316194113f2be024b
fff3b8dd71c12ef8104dac10a20895b05e942d34
66d6818017cedc0ba60ab4c12e31e9b4d3014e7989c4c4be89efaf5b0d6cd640
GET /images/I/51MgH8Jmr3L._SL500_.jpg HTTP/1.1
Host: m.media-amazon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 35429
server: Server
date: Sun, 25 Dec 2022 18:08:42 GMT
x-amz-ir-id: ede140b6-4cd0-4390-943d-7869fa488a85
expires: Thu, 18 Dec 2042 23:43:31 GMT
cache-control: max-age=630720000,public
surrogate-key: x-cache-197 /images/I/51MgH8Jmr3L
timing-allow-origin: https://www.amazon.in, https://www.amazon.com
edge-cache-tag: x-cache-197,/images/I/51MgH8Jmr3L
access-control-allow-origin: *
last-modified: Fri, 08 Jun 2012 11:23:00 GMT
x-nginx-cache-status: HIT
accept-ranges: bytes
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
age: 2764153
server-timing: provider;desc="cf"
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: TtxGQanUUbAfQQLMbfK1ZL6zubwtY8wDEtJBYq5DncQyXC8bFX4G9w==
X-Firefox-Spdy: h2
win2012r2.com/win2012r2/wp-content/plugins/content-protector/assets/public/passster-public.min.js?ver=3.5.5.9&fver=20230104075708
200 OK 1.2 kB URL HTTP/2 win2012r2.com/win2012r2/wp-content/plugins/content-protector/assets/public/passster-public.min.js?ver=3.5.5.9&fver=20230104075708
IP
ASN #9371 SAKURA Internet Inc.
File type ASCII text, with very long lines (5112), with no line terminators
Hash 3896e917b199ba2330f436f8e81af647
c74b7436d3b1e04e2f9cfbcf0d2553fdbdda0029
20f6d163ef51700dda38f37da27880d2ca95678114768e8ed8aa667fb759e79c
GET /win2012r2/wp-content/plugins/content-protector/assets/public/passster-public.min.js?ver=3.5.5.9&fver=20230104075708 HTTP/1.1
Host: win2012r2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://win2012r2.com/
Connection: keep-alive
Cookie: PHPSESSID=c7d28bffe45b9992004547ec337fb21c; asp_transient_id=04da5ee327dc858ce6c4c9410de3fa52; _ga_2G2FZZXW0F=GS1.1.1674755874.1.0.1674755874.0.0.0; _ga=GA1.1.1003012007.1674755875
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:57:55 GMT
content-type: application/javascript
content-length: 1155
last-modified: Wed, 04 Jan 2023 07:57:08 GMT
etag: "13f8-5f16b87f725bf-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Thu, 02 Feb 2023 17:57:55 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
m.media-amazon.com/images/I/51-9K4G3M9L._SL500_.jpg
200 OK 40 kB URL HTTP/2 m.media-amazon.com/images/I/51-9K4G3M9L._SL500_.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 352x500, components 3\012- data
Hash 0b919bfea21a11aa880d63ffb7513440
442623eb78de8fefd93a73aa2fb8cffffba66f47
2717805b5508a66115f7cca94821e386db439668fd909b6fd3318a8829c09978
GET /images/I/51-9K4G3M9L._SL500_.jpg HTTP/1.1
Host: m.media-amazon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 40074
server: Server
date: Sun, 01 Jan 2023 12:14:20 GMT
x-amz-ir-id: 2e188d20-663f-467f-a874-8cd90170013c
expires: Thu, 25 Dec 2042 17:03:33 GMT
cache-control: max-age=630720000,public
surrogate-key: x-cache-303 /images/I/51-9K4G3M9L
timing-allow-origin: https://www.amazon.in, https://www.amazon.com
edge-cache-tag: x-cache-303,/images/I/51-9K4G3M9L
access-control-allow-origin: *
last-modified: Tue, 03 Jul 2012 04:56:58 GMT
x-nginx-cache-status: HIT
accept-ranges: bytes
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
age: 2180615
server-timing: cdn-cache-hit,cdn-pop;desc="OSL50-P1",cdn-rid;desc="9Psv3vH3_FZYCB1BhPa-MFlcFFg_nUrjrKeCq-GGKLOUmlI1r7GCZQ==",cdn-hit-layer;desc="REC",cdn-downstream-fbl;dur=26,provider;desc="cf"
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9Psv3vH3_FZYCB1BhPa-MFlcFFg_nUrjrKeCq-GGKLOUmlI1r7GCZQ==
X-Firefox-Spdy: h2
m.media-amazon.com/images/I/41MjTupTFrL._SL500_.jpg
200 OK 28 kB URL HTTP/2 m.media-amazon.com/images/I/41MjTupTFrL._SL500_.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 352x500, components 3\012- data
Hash 0fe3a5f39edffb6b361f3a68f16a5891
caffc96c88cf154dc1df212a7c91d6f2be7fbffa
29f46eaa508c2dd91918388bebf8ccb6ebbfb7acefe4b83e1f1eaae02ec32838
GET /images/I/41MjTupTFrL._SL500_.jpg HTTP/1.1
Host: m.media-amazon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 27906
server: Server
date: Wed, 11 Jan 2023 04:22:13 GMT
x-amz-ir-id: 91ec578f-c5f9-43bb-abf0-f40c39239137
expires: Sat, 03 Jan 2043 12:48:01 GMT
cache-control: max-age=630720000,public
surrogate-key: x-cache-099 /images/I/41MjTupTFrL
timing-allow-origin: https://www.amazon.in, https://www.amazon.com
edge-cache-tag: x-cache-099,/images/I/41MjTupTFrL
access-control-allow-origin: *
last-modified: Tue, 03 Jul 2012 04:55:35 GMT
x-nginx-cache-status: HIT
accept-ranges: bytes
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
age: 1344942
server-timing: provider;desc="cf"
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: n6oy7s7vOw8C08rIL59qB2T3KpmqKOaMja9rbIJm1Yxd5-US2dd_dA==
X-Firefox-Spdy: h2
m.media-amazon.com/images/I/41Y2tAewYCL._SL500_.jpg
200 OK 24 kB URL HTTP/2 m.media-amazon.com/images/I/41Y2tAewYCL._SL500_.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 352x500, components 3\012- data
Hash 6a7326b4ddabda50e6415ab8688d04e7
8b36ddacc269c441d496ac996bc4dc48407a1905
8839432fd7bbb63cd88e7a4e45ac8390ef47f88db106149a0e1ec13e71de2a8b
GET /images/I/41Y2tAewYCL._SL500_.jpg HTTP/1.1
Host: m.media-amazon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 23596
server: Server
date: Wed, 28 Dec 2022 20:24:20 GMT
x-amz-ir-id: a817534f-8f5a-4ee0-a938-abab8c672b27
expires: Sat, 20 Dec 2042 16:19:08 GMT
cache-control: max-age=630720000,public
surrogate-key: x-cache-478 /images/I/41Y2tAewYCL
timing-allow-origin: https://www.amazon.in, https://www.amazon.com
edge-cache-tag: x-cache-478,/images/I/41Y2tAewYCL
access-control-allow-origin: *
last-modified: Tue, 03 Jul 2012 04:56:46 GMT
x-nginx-cache-status: HIT
accept-ranges: bytes
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
age: 2496815
server-timing: provider;desc="cf"
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: WKqi0cudpIs1us2gYz7psbidomJfaZXBLX-xib6bjCcGvFBE2c_PeQ==
X-Firefox-Spdy: h2
m.media-amazon.com/images/I/511jUNQR7XL._SL500_.jpg
200 OK 39 kB URL HTTP/2 m.media-amazon.com/images/I/511jUNQR7XL._SL500_.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 352x500, components 3\012- data
Hash c4ed685273f467465747080e8d965a53
67f669cb909b60799f715e07c98e406c1c74d035
87b2150756c72e799ce6743c4dccf66b16d7edc967a2e724c710c6f8d843c3cd
GET /images/I/511jUNQR7XL._SL500_.jpg HTTP/1.1
Host: m.media-amazon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 38581
server: Server
date: Fri, 13 Jan 2023 09:49:56 GMT
x-amz-ir-id: 27934849-74ec-41cf-a1b2-ae0c49be014e
expires: Thu, 08 Jan 2043 09:49:56 GMT
cache-control: max-age=630720000,public
surrogate-key: x-cache-264 /images/I/511jUNQR7XL
timing-allow-origin: https://www.amazon.in, https://www.amazon.com
edge-cache-tag: x-cache-264,/images/I/511jUNQR7XL
access-control-allow-origin: *
last-modified: Tue, 03 Jul 2012 04:56:53 GMT
x-nginx-cache-status: MISS
accept-ranges: bytes
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
age: 1152478
server-timing: provider;desc="cf"
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lUpjfx29KuoiUfg125TXOy5iuknMhjUAisDiwWPXJlbtqQHQs-H_Dw==
X-Firefox-Spdy: h2
m.media-amazon.com/images/I/31IbgwvNCML._SL75_.jpg
200 OK 457 B URL HTTP/2 m.media-amazon.com/images/I/31IbgwvNCML._SL75_.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 53x75, components 3\012- data
Hash 16adaefa836986e3c19863e404e1b763
1b3326368441368d22afebee51c7949fdf6721a6
73607ffdbfe216ea8008cc8d16df159a6f6deafe568bc5d29ed1addfecba124a
GET /images/I/31IbgwvNCML._SL75_.jpg HTTP/1.1
Host: m.media-amazon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 457
server: Server
date: Mon, 09 Jan 2023 23:09:05 GMT
x-amz-ir-id: bb39cfd8-cd8e-4adf-a2b1-271beaa61755
expires: Sun, 04 Jan 2043 23:09:05 GMT
cache-control: max-age=630720000,public
surrogate-key: x-cache-564 /images/I/31IbgwvNCML
timing-allow-origin: https://www.amazon.in, https://www.amazon.com
edge-cache-tag: x-cache-564,/images/I/31IbgwvNCML
access-control-allow-origin: *
last-modified: Tue, 03 Jul 2012 04:55:57 GMT
x-nginx-cache-status: MISS
accept-ranges: bytes
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
age: 1450129
server-timing: provider;desc="cf"
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 8MJXIofLPYxV9gOprg24HGNHJo-RyzygwgFYzth2OFruzbnklW9DFw==
X-Firefox-Spdy: h2
m.media-amazon.com/images/I/31IbgwvNCML._SL500_.jpg
200 OK 9.2 kB URL HTTP/2 m.media-amazon.com/images/I/31IbgwvNCML._SL500_.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 352x500, components 3\012- data
Hash 689c08dd51ebe2809933165fa3d1dc02
cae0296e028a3b4dc9a5e0eb9944aeeb0dbe9922
70cb3ad488703f463eac4a271284d7f3731a96ae478159149867a2ec1e5d7010
GET /images/I/31IbgwvNCML._SL500_.jpg HTTP/1.1
Host: m.media-amazon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 9154
server: Server
date: Fri, 13 Jan 2023 10:47:21 GMT
x-amz-ir-id: 8adb4c0c-b3ee-4152-b708-61b5cba9c4ea
expires: Thu, 08 Jan 2043 10:47:21 GMT
cache-control: max-age=630720000,public
surrogate-key: x-cache-225 /images/I/31IbgwvNCML
timing-allow-origin: https://www.amazon.in, https://www.amazon.com
edge-cache-tag: x-cache-225,/images/I/31IbgwvNCML
access-control-allow-origin: *
last-modified: Tue, 03 Jul 2012 04:55:57 GMT
x-nginx-cache-status: MISS
accept-ranges: bytes
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
age: 1149033
server-timing: provider;desc="cf"
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: sZy9Cxab9YRTHWpgR6Vev7zhmjDYv4G7_SHTKZ32liC9e-zbrscrHQ==
X-Firefox-Spdy: h2
m.media-amazon.com/images/I/51JHbWYwPdL._SL160_.jpg
200 OK 7.0 kB URL HTTP/2 m.media-amazon.com/images/I/51JHbWYwPdL._SL160_.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 112x160, components 3\012- data
Hash db2add2c8ca18c9d5b55f61657b68f3a
951d6f85676d2bb916d9114e08fe01486a8ec58e
d1c28684c1127f23c6f51ea550fc7878d6e39500ea959250df8247b6799222c2
GET /images/I/51JHbWYwPdL._SL160_.jpg HTTP/1.1
Host: m.media-amazon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 6975
server: Server
date: Thu, 05 Jan 2023 09:30:24 GMT
x-amz-ir-id: a0b3b7d3-c34a-42ef-9ac0-6deac9fc12bd
expires: Wed, 31 Dec 2042 06:25:05 GMT
cache-control: max-age=630720000,public
surrogate-key: x-cache-684 /images/I/51JHbWYwPdL
timing-allow-origin: https://www.amazon.in, https://www.amazon.com
edge-cache-tag: x-cache-684,/images/I/51JHbWYwPdL
access-control-allow-origin: *
last-modified: Tue, 05 Dec 2017 05:16:33 GMT
x-nginx-cache-status: HIT
accept-ranges: bytes
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
age: 1844851
server-timing: provider;desc="cf"
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: WnIxrb4GGyTasj5Clr8yz3nfAkcF-o9-RJEuul6Cr7TBotpPU0sL5g==
X-Firefox-Spdy: h2
m.media-amazon.com/images/I/51h26W2HOPS._SL500_.jpg
200 OK 48 kB URL HTTP/2 m.media-amazon.com/images/I/51h26W2HOPS._SL500_.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 352x500, components 3\012- data
Hash 792066fff8e30738486eede520819123
678fcf2209c2d874d99800f559af52af32eb19d4
ba24954758e0a0f6aabe8e5953882fd731597f1bd7fd24912f4bd1f2f2ac7151
GET /images/I/51h26W2HOPS._SL500_.jpg HTTP/1.1
Host: m.media-amazon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 47870
server: Server
date: Fri, 13 Jan 2023 10:47:22 GMT
x-amz-ir-id: 47c6363a-7b96-416c-8e57-c1b81d0c3689
expires: Wed, 07 Jan 2043 18:49:13 GMT
cache-control: max-age=630720000,public
surrogate-key: x-cache-346 /images/I/51h26W2HOPS
timing-allow-origin: https://www.amazon.in, https://www.amazon.com
edge-cache-tag: x-cache-346,/images/I/51h26W2HOPS
access-control-allow-origin: *
last-modified: Mon, 10 May 2021 06:45:33 GMT
x-nginx-cache-status: HIT
accept-ranges: bytes
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
age: 1149032
server-timing: provider;desc="cf"
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: edUKZbfl0M_mP9uP1DIVso5tNlpj8Bfi51aisPYXFimoJuIhIk5g0A==
X-Firefox-Spdy: h2
m.media-amazon.com/images/I/51JHbWYwPdL._SL500_.jpg
200 OK 60 kB URL HTTP/2 m.media-amazon.com/images/I/51JHbWYwPdL._SL500_.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 351x500, components 3\012- data
Hash 7c7ca57c3bb7243cfe4f20983978d4b0
af1149e819d023cfef1d1c5af0e5a95b7cd87154
53f00ffa5708e1e6017271d794ee7dabe8f6cd21ff80392575af7895b0593271
GET /images/I/51JHbWYwPdL._SL500_.jpg HTTP/1.1
Host: m.media-amazon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 59733
server: Server
date: Sun, 08 Jan 2023 13:19:40 GMT
x-amz-ir-id: e0ac48e9-5cfc-434f-857b-ea401262c44c
expires: Thu, 01 Jan 2043 17:19:12 GMT
cache-control: max-age=630720000,public
surrogate-key: x-cache-275 /images/I/51JHbWYwPdL
timing-allow-origin: https://www.amazon.in, https://www.amazon.com
edge-cache-tag: x-cache-275,/images/I/51JHbWYwPdL
access-control-allow-origin: *
last-modified: Tue, 05 Dec 2017 05:16:33 GMT
x-nginx-cache-status: HIT
accept-ranges: bytes
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
age: 1571895
server-timing: provider;desc="cf"
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Sy6q6sPKbzbiXO8zEZPDYwDqq4c8F6ryuejIoWq3pRkdk2yHWjynUw==
X-Firefox-Spdy: h2
win2012r2.com/win2012r2/wp-content/uploads/2022/02/20220205_header_logo.png
200 OK 15 kB URL HTTP/2 win2012r2.com/win2012r2/wp-content/uploads/2022/02/20220205_header_logo.png
IP
ASN #9371 SAKURA Internet Inc.
File type PNG image data, 379 x 54, 8-bit/color RGBA, non-interlaced\012- data
Hash 3d2cf277ddbf0e05286904e9697364aa
1b736e836a40c5081cfba816d6cb37a63296b9f1
66aba593ecfcd9118c34760e0dc5a394156919f19f64087a485ff0ef77541b58
GET /win2012r2/wp-content/uploads/2022/02/20220205_header_logo.png HTTP/1.1
Host: win2012r2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://win2012r2.com/
Connection: keep-alive
Cookie: PHPSESSID=c7d28bffe45b9992004547ec337fb21c; asp_transient_id=04da5ee327dc858ce6c4c9410de3fa52; _ga_2G2FZZXW0F=GS1.1.1674755874.1.0.1674755874.0.0.0; _ga=GA1.1.1003012007.1674755875
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:57:55 GMT
content-type: image/png
content-length: 15000
last-modified: Sat, 05 Feb 2022 13:44:59 GMT
etag: "3aa5-5d74592ca4cc0-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 25 Feb 2023 17:57:55 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
m.media-amazon.com/images/I/51MgH8Jmr3L._SL160_.jpg
200 OK 5.4 kB URL HTTP/2 m.media-amazon.com/images/I/51MgH8Jmr3L._SL160_.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 113x160, components 3\012- data
Hash a478679ef065554660f806718aaaa79f
01282735d06e867827016a322f6f6a11a6aed881
2ca1e6a629f1fccf27efc1dd88e8916ec11f43f5f7f48408ba56b3cbc5b3e682
GET /images/I/51MgH8Jmr3L._SL160_.jpg HTTP/1.1
Host: m.media-amazon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 5398
server: Server
date: Thu, 05 Jan 2023 09:30:27 GMT
x-amz-ir-id: 21f6d6b8-9568-45f6-846f-6fa23c76f63d
expires: Fri, 26 Dec 2042 12:56:59 GMT
cache-control: max-age=630720000,public
surrogate-key: x-cache-845 /images/I/51MgH8Jmr3L
timing-allow-origin: https://www.amazon.in, https://www.amazon.com
edge-cache-tag: x-cache-845,/images/I/51MgH8Jmr3L
access-control-allow-origin: *
last-modified: Fri, 08 Jun 2012 11:23:00 GMT
x-nginx-cache-status: HIT
accept-ranges: bytes
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
age: 1844848
server-timing: provider;desc="cf"
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9M6j670INrOTNdTkngfMa9XhnWBKGVnVUiZ6BuqPl2f7meGNLK1lGg==
X-Firefox-Spdy: h2
m.media-amazon.com/images/I/51xzvyKj6CL._SL75_.jpg
200 OK 978 B URL HTTP/2 m.media-amazon.com/images/I/51xzvyKj6CL._SL75_.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 53x75, components 3\012- data
Hash ee20270d5c5987ac2a30c75f2c7abeaa
e30a3ebb0260c505c1ddf7c258e191be649aff5d
d938b206ce5406bd4d7f8e0a3071e940ce46f8252fbdf935aacb0795cda147b0
GET /images/I/51xzvyKj6CL._SL75_.jpg HTTP/1.1
Host: m.media-amazon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 978
server: Server
date: Thu, 05 Jan 2023 01:40:18 GMT
x-amz-ir-id: 53b81df5-29c4-45c6-90b9-94372655d6e7
expires: Wed, 31 Dec 2042 01:40:18 GMT
cache-control: max-age=630720000,public
surrogate-key: x-cache-734 /images/I/51xzvyKj6CL
timing-allow-origin: https://www.amazon.in, https://www.amazon.com
edge-cache-tag: x-cache-734,/images/I/51xzvyKj6CL
access-control-allow-origin: *
last-modified: Tue, 03 Jul 2012 04:55:55 GMT
x-nginx-cache-status: MISS
accept-ranges: bytes
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
age: 1873057
server-timing: provider;desc="cf"
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: WgnbJgQJeOF9y6L-gXxqW-UAKbDhGqg_4IycYkd-xToy7Lmde5x_6g==
X-Firefox-Spdy: h2
m.media-amazon.com/images/I/51xzvyKj6CL._SL500_.jpg
200 OK 42 kB URL HTTP/2 m.media-amazon.com/images/I/51xzvyKj6CL._SL500_.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 352x500, components 3\012- data
Hash ead5dc4106929412153a9a2cc9062e6a
fac5fa9dfdee88aa452653a8d853cff4379d2a3e
e26414960308896fb2016762b5ef96f2e0647f74991d06ebdbd110dd5d857b68
GET /images/I/51xzvyKj6CL._SL500_.jpg HTTP/1.1
Host: m.media-amazon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 42298
server: Server
date: Sun, 01 Jan 2023 12:14:16 GMT
x-amz-ir-id: 9e25d6d5-8c2f-4130-bd9d-f079d0f0bbfb
expires: Mon, 22 Dec 2042 06:50:22 GMT
cache-control: max-age=630720000,public
surrogate-key: x-cache-614 /images/I/51xzvyKj6CL
timing-allow-origin: https://www.amazon.in, https://www.amazon.com
edge-cache-tag: x-cache-614,/images/I/51xzvyKj6CL
access-control-allow-origin: *
last-modified: Tue, 03 Jul 2012 04:55:55 GMT
x-nginx-cache-status: HIT
accept-ranges: bytes
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
age: 2180619
server-timing: provider;desc="cf"
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: e6VbHGAgIb8OTwznVP-3TNbu-oEMzEqwzesx5I0IkbFqj1s44dJDaA==
X-Firefox-Spdy: h2
m.media-amazon.com/images/I/51W3GJV1X-L._SL500_.jpg
200 OK 38 kB URL HTTP/2 m.media-amazon.com/images/I/51W3GJV1X-L._SL500_.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 352x500, components 3\012- data
Hash 4f16c9fe40e04b5b5238bf5518ad2777
c77e9db6c5a10c23ded0f08303d323da6908b5a4
64db10e0b7d69e7e09ff74743f0259a765585a8967531af4daeb40d258e5bd8b
GET /images/I/51W3GJV1X-L._SL500_.jpg HTTP/1.1
Host: m.media-amazon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 37614
server: Server
date: Fri, 13 Jan 2023 09:10:07 GMT
x-amz-ir-id: c64deff1-40cd-4c8d-9278-c113912d3289
expires: Thu, 08 Jan 2043 08:12:19 GMT
cache-control: max-age=630720000,public
surrogate-key: x-cache-880 /images/I/51W3GJV1X-L
timing-allow-origin: https://www.amazon.in, https://www.amazon.com
edge-cache-tag: x-cache-880,/images/I/51W3GJV1X-L
access-control-allow-origin: *
last-modified: Mon, 30 Nov 2020 07:20:24 GMT
x-nginx-cache-status: HIT
accept-ranges: bytes
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
age: 1154868
server-timing: provider;desc="cf"
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: km1H1r1ybQ5rVTUwgfDhuBWrA2en6Wh4gylFCDv919ZZuJa9Io5nag==
X-Firefox-Spdy: h2
win2012r2.com/
200 OK 231 kB IP
ASN #9371 SAKURA Internet Inc.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (45109), with CRLF, LF line terminators
Size 231 kB (230980 bytes)
Hash eff45e6c4e73fabbbd5778a0778c636e
cad5c37c05bf45ab19fadd3e8a2bbabdd579d8b2
03331720853043d971f0f394d5faf935712a3d23a7e66581122cc0bff1a15ce7
GET / HTTP/1.1
Host: win2012r2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:57:53 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/7.4.33
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=c7d28bffe45b9992004547ec337fb21c; path=/
asp_transient_id=04da5ee327dc858ce6c4c9410de3fa52; expires=Thu, 02-Feb-2023 17:57:52 GMT; Max-Age=604800; path=/
PHPSESSID=c7d28bffe45b9992004547ec337fb21c; path=/
link: <https://win2012r2.com/wp-json/>; rel="https://api.w.org/"
X-Firefox-Spdy: h2
m.media-amazon.com/images/I/41GcGJkZ-6L._SL500_.jpg
200 OK 18 kB URL HTTP/2 m.media-amazon.com/images/I/41GcGJkZ-6L._SL500_.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 354x500, components 3\012- data
Hash 927487144a7c62b6b482b33351c3a11e
e582c2f7572ad803edc3d84d1039e7961102f747
e70ccc38bf898b1817805bd8def4cf0eae93857e93472955187168ba534d319e
GET /images/I/41GcGJkZ-6L._SL500_.jpg HTTP/1.1
Host: m.media-amazon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 17999
server: Server
date: Wed, 04 Jan 2023 08:50:07 GMT
x-amz-ir-id: a9be9c70-e3d7-42b4-a263-658c46707675
expires: Tue, 30 Dec 2042 07:00:03 GMT
cache-control: max-age=630720000,public
surrogate-key: x-cache-188 /images/I/41GcGJkZ-6L
timing-allow-origin: https://www.amazon.in, https://www.amazon.com
edge-cache-tag: x-cache-188,/images/I/41GcGJkZ-6L
access-control-allow-origin: *
last-modified: Mon, 02 Dec 2019 09:01:09 GMT
x-nginx-cache-status: HIT
accept-ranges: bytes
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
age: 1933668
server-timing: provider;desc="cf"
x-cache: Hit from cloudfront
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2NGWSLMo3fmXB7dLW6jG3c-RgMBd54YJU4v14y3FPQDd1ZO8kT4-0g==
X-Firefox-Spdy: h2
win2012r2.com/win2012r2/wp-content/plugins/eazy-ad-unblocker/images/refresh.png
200 OK 483 B URL HTTP/2 win2012r2.com/win2012r2/wp-content/plugins/eazy-ad-unblocker/images/refresh.png
IP
ASN #9371 SAKURA Internet Inc.
File type PNG image data, 32 x 32, 8-bit gray+alpha, non-interlaced\012- data
Hash 5011b4ec60cfac62451fcf372a5141fa
99a3a26cb059dcead541ac5b52b02ab15f5d077e
d7d5370b8b490374045523ff2ffa82dfc3b8a0e36ddf41b69d60059540cf852c
GET /win2012r2/wp-content/plugins/eazy-ad-unblocker/images/refresh.png HTTP/1.1
Host: win2012r2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://win2012r2.com/
Connection: keep-alive
Cookie: PHPSESSID=c7d28bffe45b9992004547ec337fb21c; asp_transient_id=04da5ee327dc858ce6c4c9410de3fa52; _ga_2G2FZZXW0F=GS1.1.1674755874.1.0.1674755874.0.0.0; _ga=GA1.1.1003012007.1674755875
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:57:55 GMT
content-type: image/png
content-length: 483
last-modified: Sun, 25 Sep 2022 10:32:59 GMT
etag: "1cc-5e97def60c6aa-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 25 Feb 2023 17:57:55 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
win2012r2.com/win2012r2/wp-content/plugins/eazy-ad-unblocker/css/themes/smoothness/jquery-ui.min.css.php?ver=6.1.1&fver=20220925103259
200 OK 7.4 kB URL HTTP/2 win2012r2.com/win2012r2/wp-content/plugins/eazy-ad-unblocker/css/themes/smoothness/jquery-ui.min.css.php?ver=6.1.1&fver=20220925103259
IP
ASN #9371 SAKURA Internet Inc.
File type ASCII text, with very long lines (48443), with no line terminators
Hash 812e5f5e5eafd25d13bfe50237c68241
58ae8f50c417ab63e0efa83ca5ca6114dea06a6b
05fa22a365ebd732ea8a1c4d2e628d8fcb97a5c710248f4d88a47fb9beadfaff
GET /win2012r2/wp-content/plugins/eazy-ad-unblocker/css/themes/smoothness/jquery-ui.min.css.php?ver=6.1.1&fver=20220925103259 HTTP/1.1
Host: win2012r2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://win2012r2.com/
Connection: keep-alive
Cookie: PHPSESSID=c7d28bffe45b9992004547ec337fb21c; asp_transient_id=04da5ee327dc858ce6c4c9410de3fa52; _ga_2G2FZZXW0F=GS1.1.1674755874.1.0.1674755874.0.0.0; _ga=GA1.1.1003012007.1674755875
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:57:55 GMT
content-type: text/css;charset=utf-8
content-length: 7420
x-powered-by: PHP/7.4.33
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
win2012r2.com/win2012r2/wp-content/plugins/eazy-ad-unblocker/css/style.css.php?ver=1.1.12&fver=20220925103259
200 OK 333 B URL HTTP/2 win2012r2.com/win2012r2/wp-content/plugins/eazy-ad-unblocker/css/style.css.php?ver=1.1.12&fver=20220925103259
IP
ASN #9371 SAKURA Internet Inc.
File type ASCII text, with CRLF line terminators
Hash 59ff302bbda3a78a7f44e079e14e6591
d0c2ba6dccca1192ba0cd64ca5d1d315b9c85228
40777247068a4016b10e78074e6d8126cb7437b2d16198bc614bcdfaaf7bf75f
GET /win2012r2/wp-content/plugins/eazy-ad-unblocker/css/style.css.php?ver=1.1.12&fver=20220925103259 HTTP/1.1
Host: win2012r2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://win2012r2.com/
Connection: keep-alive
Cookie: PHPSESSID=c7d28bffe45b9992004547ec337fb21c; asp_transient_id=04da5ee327dc858ce6c4c9410de3fa52; _ga_2G2FZZXW0F=GS1.1.1674755874.1.0.1674755874.0.0.0; _ga=GA1.1.1003012007.1674755875
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:57:55 GMT
content-type: text/css;charset=utf-8
content-length: 333
x-powered-by: PHP/7.4.33
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
win2012r2.com/win2012r2/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.2&fver=20221228074453
200 OK 3.0 kB URL HTTP/2 win2012r2.com/win2012r2/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.2&fver=20221228074453
IP
ASN #9371 SAKURA Internet Inc.
File type ASCII text, with very long lines (10565), with no line terminators
Hash 20d191fbcefaf143ff6d9f0234b3afd4
85c302c0f4d2393bd1c3fb724a03741a14860b3a
0398c654fccf925b52ce33037cf350414bc27efc9da7db916ee7dbe646541f7a
GET /win2012r2/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.2&fver=20221228074453 HTTP/1.1
Host: win2012r2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://win2012r2.com/
Connection: keep-alive
Cookie: PHPSESSID=c7d28bffe45b9992004547ec337fb21c; asp_transient_id=04da5ee327dc858ce6c4c9410de3fa52; _ga_2G2FZZXW0F=GS1.1.1674755874.1.0.1674755874.0.0.0; _ga=GA1.1.1003012007.1674755875
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:57:55 GMT
content-type: application/javascript
content-length: 3040
last-modified: Wed, 28 Dec 2022 07:44:53 GMT
etag: "2945-5f0de8b42050b-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Thu, 02 Feb 2023 17:57:55 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
win2012r2.com/win2012r2/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.2&fver=20221228074453
200 OK 4.1 kB URL HTTP/2 win2012r2.com/win2012r2/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.2&fver=20221228074453
IP
ASN #9371 SAKURA Internet Inc.
File type HTML document, ASCII text, with very long lines (12652), with no line terminators
Hash 5a8a35c9ae8f9e0fc3dbf35fba73b13a
10d0f2fde01006234322517ef3b4d4b9b6d230bd
913435232b007746db89fde662ff6a8e4bb8c7eea164a785b321fccf39a3e1fe
GET /win2012r2/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.2&fver=20221228074453 HTTP/1.1
Host: win2012r2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://win2012r2.com/
Connection: keep-alive
Cookie: PHPSESSID=c7d28bffe45b9992004547ec337fb21c; asp_transient_id=04da5ee327dc858ce6c4c9410de3fa52; _ga_2G2FZZXW0F=GS1.1.1674755874.1.0.1674755874.0.0.0; _ga=GA1.1.1003012007.1674755875
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:57:55 GMT
content-type: application/javascript
content-length: 4084
last-modified: Wed, 28 Dec 2022 07:44:53 GMT
etag: "316c-5f0de8b4200e2-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Thu, 02 Feb 2023 17:57:55 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
win2012r2.com/win2012r2/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2&fver=20221105094039
200 OK 7.1 kB URL HTTP/2 win2012r2.com/win2012r2/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2&fver=20221105094039
IP
ASN #9371 SAKURA Internet Inc.
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash fc922a895f5f92269c928556b67564f6
8759e1f16a826dd6dd73f4161a65a79a049c4d6f
d7445c88608e9da487d81ef5167866c42ff1099b5f48efda4b5f5ac41aa7d9b8
GET /win2012r2/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2&fver=20221105094039 HTTP/1.1
Host: win2012r2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://win2012r2.com/
Connection: keep-alive
Cookie: PHPSESSID=c7d28bffe45b9992004547ec337fb21c; asp_transient_id=04da5ee327dc858ce6c4c9410de3fa52; _ga_2G2FZZXW0F=GS1.1.1674755874.1.0.1674755874.0.0.0; _ga=GA1.1.1003012007.1674755875
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:57:55 GMT
content-type: application/javascript
content-length: 7097
last-modified: Sat, 05 Nov 2022 09:40:39 GMT
etag: "53c0-5ecb5fbaae533-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Thu, 02 Feb 2023 17:57:55 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
win2012r2.com/win2012r2/wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.2&fver=20221105094039
200 OK 1.1 kB URL HTTP/2 win2012r2.com/win2012r2/wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.2&fver=20221105094039
IP
ASN #9371 SAKURA Internet Inc.
File type ASCII text, with very long lines (3224)
Hash 49567d010e2042c4fa4898d12f450285
8742b051b40d93038e9be3548f9751acbddd447b
6966d73e9645ac2595679ce5fbac4f45452e0fe0e309ef1bfa7e0249153813ea
GET /win2012r2/wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.2&fver=20221105094039 HTTP/1.1
Host: win2012r2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://win2012r2.com/
Connection: keep-alive
Cookie: PHPSESSID=c7d28bffe45b9992004547ec337fb21c; asp_transient_id=04da5ee327dc858ce6c4c9410de3fa52; _ga_2G2FZZXW0F=GS1.1.1674755874.1.0.1674755874.0.0.0; _ga=GA1.1.1003012007.1674755875
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:57:55 GMT
content-type: application/javascript
content-length: 1085
last-modified: Sat, 05 Nov 2022 09:40:39 GMT
etag: "d4a-5ecb5fbaaf2fc-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Thu, 02 Feb 2023 17:57:55 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
win2012r2.com/win2012r2/wp-includes/js/jquery/ui/resizable.min.js?ver=1.13.2&fver=20221105094039
200 OK 5.3 kB URL HTTP/2 win2012r2.com/win2012r2/wp-includes/js/jquery/ui/resizable.min.js?ver=1.13.2&fver=20221105094039
IP
ASN #9371 SAKURA Internet Inc.
File type ASCII text, with very long lines (18523)
Hash 8b78dab66f6e4f574419cd37e59925cb
7c911052771ff381181a8a2a1867fceb08ab80cc
7c9ccb9e6128b09fdd8f74a730d9fa425f5d7551b4bfe5343fcf6506f576f0fc
GET /win2012r2/wp-includes/js/jquery/ui/resizable.min.js?ver=1.13.2&fver=20221105094039 HTTP/1.1
Host: win2012r2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://win2012r2.com/
Connection: keep-alive
Cookie: PHPSESSID=c7d28bffe45b9992004547ec337fb21c; asp_transient_id=04da5ee327dc858ce6c4c9410de3fa52; _ga_2G2FZZXW0F=GS1.1.1674755874.1.0.1674755874.0.0.0; _ga=GA1.1.1003012007.1674755875
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:57:55 GMT
content-type: application/javascript
content-length: 5316
last-modified: Sat, 05 Nov 2022 09:40:39 GMT
etag: "4911-5ecb5fbaae92e-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Thu, 02 Feb 2023 17:57:55 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
win2012r2.com/win2012r2/wp-includes/js/jquery/ui/draggable.min.js?ver=1.13.2&fver=20221105094039
200 OK 4.8 kB URL HTTP/2 win2012r2.com/win2012r2/wp-includes/js/jquery/ui/draggable.min.js?ver=1.13.2&fver=20221105094039
IP
ASN #9371 SAKURA Internet Inc.
File type ASCII text, with very long lines (18142)
Hash 4797af751c8be4bc932e8ee42af302ce
3a0b6f81798440d0683b9df82dd638cebc1dc1c3
5b27e0bb6af098507471f094805ab781ef690df34e86029fcddb8e8140a81242
GET /win2012r2/wp-includes/js/jquery/ui/draggable.min.js?ver=1.13.2&fver=20221105094039 HTTP/1.1
Host: win2012r2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://win2012r2.com/
Connection: keep-alive
Cookie: PHPSESSID=c7d28bffe45b9992004547ec337fb21c; asp_transient_id=04da5ee327dc858ce6c4c9410de3fa52; _ga_2G2FZZXW0F=GS1.1.1674755874.1.0.1674755874.0.0.0; _ga=GA1.1.1003012007.1674755875
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:57:55 GMT
content-type: application/javascript
content-length: 4840
last-modified: Sat, 05 Nov 2022 09:40:39 GMT
etag: "4794-5ecb5fbaae9df-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Thu, 02 Feb 2023 17:57:55 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
win2012r2.com/win2012r2/wp-includes/js/jquery/ui/controlgroup.min.js?ver=1.13.2&fver=20221105094039
200 OK 1.6 kB URL HTTP/2 win2012r2.com/win2012r2/wp-includes/js/jquery/ui/controlgroup.min.js?ver=1.13.2&fver=20221105094039
IP
ASN #9371 SAKURA Internet Inc.
File type ASCII text, with very long lines (4205)
Hash 041ba8a30a772094c8ca2cfaa60cc3d6
71f8da134b08055889ca976fdb5f6d5ab04b97d8
06cf96b2ef94b614f63751076c4f76b48e94cb5a5695e0ec049da02438462e07
GET /win2012r2/wp-includes/js/jquery/ui/controlgroup.min.js?ver=1.13.2&fver=20221105094039 HTTP/1.1
Host: win2012r2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://win2012r2.com/
Connection: keep-alive
Cookie: PHPSESSID=c7d28bffe45b9992004547ec337fb21c; asp_transient_id=04da5ee327dc858ce6c4c9410de3fa52; _ga_2G2FZZXW0F=GS1.1.1674755874.1.0.1674755874.0.0.0; _ga=GA1.1.1003012007.1674755875
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:57:55 GMT
content-type: application/javascript
content-length: 1595
last-modified: Sat, 05 Nov 2022 09:40:39 GMT
etag: "1126-5ecb5fbaaed46-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Thu, 02 Feb 2023 17:57:55 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
win2012r2.com/win2012r2/wp-includes/js/jquery/ui/checkboxradio.min.js?ver=1.13.2&fver=20221105094039
200 OK 1.4 kB URL HTTP/2 win2012r2.com/win2012r2/wp-includes/js/jquery/ui/checkboxradio.min.js?ver=1.13.2&fver=20221105094039
IP
ASN #9371 SAKURA Internet Inc.
File type ASCII text, with very long lines (4123)
Hash 46544e35be72969b54ccae8f2ba3ae82
3240ba1177b7b8bff169a7bf08937564ced8d19f
7b468a7b9f2588f9e891a1d78804451f385f8de171a88f4530acb3b07ba2953b
GET /win2012r2/wp-includes/js/jquery/ui/checkboxradio.min.js?ver=1.13.2&fver=20221105094039 HTTP/1.1
Host: win2012r2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://win2012r2.com/
Connection: keep-alive
Cookie: PHPSESSID=c7d28bffe45b9992004547ec337fb21c; asp_transient_id=04da5ee327dc858ce6c4c9410de3fa52; _ga_2G2FZZXW0F=GS1.1.1674755874.1.0.1674755874.0.0.0; _ga=GA1.1.1003012007.1674755875
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:57:55 GMT
content-type: application/javascript
content-length: 1403
last-modified: Sat, 05 Nov 2022 09:40:39 GMT
etag: "10d5-5ecb5fbaae10f-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Thu, 02 Feb 2023 17:57:55 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
win2012r2.com/win2012r2/wp-includes/js/jquery/ui/button.min.js?ver=1.13.2&fver=20221105094039
200 OK 2.0 kB URL HTTP/2 win2012r2.com/win2012r2/wp-includes/js/jquery/ui/button.min.js?ver=1.13.2&fver=20221105094039
IP
ASN #9371 SAKURA Internet Inc.
File type ASCII text, with very long lines (5959)
Hash abb5bf14d42487ee9c0aa599c5efe535
a86ecec6e39a3d7f58844f22791091f04d78f592
381572623553af7faad80ddd0ee4d0c40f396448d6e36057779f3b2bb23a7992
GET /win2012r2/wp-includes/js/jquery/ui/button.min.js?ver=1.13.2&fver=20221105094039 HTTP/1.1
Host: win2012r2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://win2012r2.com/
Connection: keep-alive
Cookie: PHPSESSID=c7d28bffe45b9992004547ec337fb21c; asp_transient_id=04da5ee327dc858ce6c4c9410de3fa52; _ga_2G2FZZXW0F=GS1.1.1674755874.1.0.1674755874.0.0.0; _ga=GA1.1.1003012007.1674755875
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:57:55 GMT
content-type: application/javascript
content-length: 1967
last-modified: Sat, 05 Nov 2022 09:40:39 GMT
etag: "17fa-5ecb5fbaaeae9-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Thu, 02 Feb 2023 17:57:55 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
win2012r2.com/win2012r2/wp-includes/js/jquery/ui/dialog.min.js?ver=1.13.2&fver=20221105094039
200 OK 3.8 kB URL HTTP/2 win2012r2.com/win2012r2/wp-includes/js/jquery/ui/dialog.min.js?ver=1.13.2&fver=20221105094039
IP
ASN #9371 SAKURA Internet Inc.
File type ASCII text, with very long lines (12780)
Hash 5448d9892c5cd0618a0ac5d36f115e08
6fbb0241511c3edac55d9fdb1b40ef1e688554e1
955414e5c8285ea4aad988c34a4207de63d90206f676f5bb4ae9b342e0486082
GET /win2012r2/wp-includes/js/jquery/ui/dialog.min.js?ver=1.13.2&fver=20221105094039 HTTP/1.1
Host: win2012r2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://win2012r2.com/
Connection: keep-alive
Cookie: PHPSESSID=c7d28bffe45b9992004547ec337fb21c; asp_transient_id=04da5ee327dc858ce6c4c9410de3fa52; _ga_2G2FZZXW0F=GS1.1.1674755874.1.0.1674755874.0.0.0; _ga=GA1.1.1003012007.1674755875
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:57:55 GMT
content-type: application/javascript
content-length: 3786
last-modified: Sat, 05 Nov 2022 09:40:39 GMT
etag: "329f-5ecb5fbaae35d-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Thu, 02 Feb 2023 17:57:55 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
win2012r2.com/win2012r2/wp-content/plugins/eazy-ad-unblocker/js/custom.js?ver=1.1.12&fver=20220925103259
200 OK 3.5 kB URL HTTP/2 win2012r2.com/win2012r2/wp-content/plugins/eazy-ad-unblocker/js/custom.js?ver=1.1.12&fver=20220925103259
IP
ASN #9371 SAKURA Internet Inc.
File type ASCII text, with CRLF line terminators
Hash 3f5d288f14d96b76321ce7182a740128
f4cb3a33725c28d483a75ad55a8501a3459eff18
8a9e48b4c73e6313a08324d0d120acb300d416187e5df0e0311394f643592d6d
GET /win2012r2/wp-content/plugins/eazy-ad-unblocker/js/custom.js?ver=1.1.12&fver=20220925103259 HTTP/1.1
Host: win2012r2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://win2012r2.com/
Connection: keep-alive
Cookie: PHPSESSID=c7d28bffe45b9992004547ec337fb21c; asp_transient_id=04da5ee327dc858ce6c4c9410de3fa52; _ga_2G2FZZXW0F=GS1.1.1674755874.1.0.1674755874.0.0.0; _ga=GA1.1.1003012007.1674755875
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:57:55 GMT
content-type: application/javascript
content-length: 3491
last-modified: Sun, 25 Sep 2022 10:32:59 GMT
etag: "33ca-5e97def60c7ac-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Thu, 02 Feb 2023 17:57:55 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
win2012r2.com/win2012r2/wp-content/plugins/stripe-payments/public/assets/js/stripe-handler-ng.js?ver=2.0.73&fver=20230104075713
200 OK 2.6 kB URL HTTP/2 win2012r2.com/win2012r2/wp-content/plugins/stripe-payments/public/assets/js/stripe-handler-ng.js?ver=2.0.73&fver=20230104075713
IP
ASN #9371 SAKURA Internet Inc.
File type ASCII text, with very long lines (365)
Hash 507fb6eecdf56e4e113e450f96fa8da5
d584e48bcf2d949b0945c26d11abbf790c2543a6
6f4a4c0db358acc6bff6d0c6a96e077c63ee22a4d0cb26c7086f026900a97a78
GET /win2012r2/wp-content/plugins/stripe-payments/public/assets/js/stripe-handler-ng.js?ver=2.0.73&fver=20230104075713 HTTP/1.1
Host: win2012r2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://win2012r2.com/
Connection: keep-alive
Cookie: PHPSESSID=c7d28bffe45b9992004547ec337fb21c; asp_transient_id=04da5ee327dc858ce6c4c9410de3fa52; _ga_2G2FZZXW0F=GS1.1.1674755874.1.0.1674755874.0.0.0; _ga=GA1.1.1003012007.1674755875
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:57:55 GMT
content-type: application/javascript
content-length: 2554
last-modified: Wed, 04 Jan 2023 07:57:13 GMT
etag: "201a-5f16b88438bec-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Thu, 02 Feb 2023 17:57:55 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
win2012r2.com/win2012r2/wp-content/plugins/ad-invalid-click-protector/assets/js/aicp.min.js?ver=1.0&fver=20220405074515
200 OK 429 B URL HTTP/2 win2012r2.com/win2012r2/wp-content/plugins/ad-invalid-click-protector/assets/js/aicp.min.js?ver=1.0&fver=20220405074515
IP
ASN #9371 SAKURA Internet Inc.
File type ASCII text, with very long lines (777), with no line terminators
Hash e6b63fd8556ddd7091e51b7431a4d752
605a77de3570fd0d12bb4f8669f0479ae35cfc36
793cfc4800a8f3fce1e43d259b1fa9dd7ae6122ba2a5a0ef789a276d724d9b9d
GET /win2012r2/wp-content/plugins/ad-invalid-click-protector/assets/js/aicp.min.js?ver=1.0&fver=20220405074515 HTTP/1.1
Host: win2012r2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://win2012r2.com/
Connection: keep-alive
Cookie: PHPSESSID=c7d28bffe45b9992004547ec337fb21c; asp_transient_id=04da5ee327dc858ce6c4c9410de3fa52; _ga_2G2FZZXW0F=GS1.1.1674755874.1.0.1674755874.0.0.0; _ga=GA1.1.1003012007.1674755875
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:57:55 GMT
content-type: application/javascript
content-length: 429
last-modified: Tue, 05 Apr 2022 19:45:15 GMT
etag: "309-5dbed7bd768c0-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Thu, 02 Feb 2023 17:57:55 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
win2012r2.com/win2012r2/wp-content/plugins/ad-invalid-click-protector/assets/js/js.cookie.min.js?ver=3.0.0&fver=20220405074515
200 OK 726 B URL HTTP/2 win2012r2.com/win2012r2/wp-content/plugins/ad-invalid-click-protector/assets/js/js.cookie.min.js?ver=3.0.0&fver=20220405074515
IP
ASN #9371 SAKURA Internet Inc.
File type ASCII text, with very long lines (1464)
Hash 89c893ca8e6b3aa21c92fce5b2454609
bb63339e2ffd810069b13f6d4d7fc1e5dbeb0980
d1701969745b44b3f423bdd136dfa105e22291eba1c8c7d4adf4581291e5895a
GET /win2012r2/wp-content/plugins/ad-invalid-click-protector/assets/js/js.cookie.min.js?ver=3.0.0&fver=20220405074515 HTTP/1.1
Host: win2012r2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://win2012r2.com/
Connection: keep-alive
Cookie: PHPSESSID=c7d28bffe45b9992004547ec337fb21c; asp_transient_id=04da5ee327dc858ce6c4c9410de3fa52; _ga_2G2FZZXW0F=GS1.1.1674755874.1.0.1674755874.0.0.0; _ga=GA1.1.1003012007.1674755875
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:57:55 GMT
content-type: application/javascript
content-length: 726
last-modified: Tue, 05 Apr 2022 19:45:15 GMT
etag: "5dc-5dbed7bd768c0-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Thu, 02 Feb 2023 17:57:55 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
win2012r2.com/win2012r2/wp-content/plugins/ad-invalid-click-protector/assets/js/jquery.iframetracker.min.js?ver=2.1.0&fver=20220405074515
200 OK 1.2 kB URL HTTP/2 win2012r2.com/win2012r2/wp-content/plugins/ad-invalid-click-protector/assets/js/jquery.iframetracker.min.js?ver=2.1.0&fver=20220405074515
IP
ASN #9371 SAKURA Internet Inc.
File type Unicode text, UTF-8 text, with very long lines (3037)
Hash 4a9124a977824dfacf3595fb77b95146
bc9929bff5135ebbd9de596e7f5daa8bdb194e5b
e46298ab6b9f6b2b2b3b5226b872afd9b6650a8b9f2d4886764d4d7c6bd5bd40
GET /win2012r2/wp-content/plugins/ad-invalid-click-protector/assets/js/jquery.iframetracker.min.js?ver=2.1.0&fver=20220405074515 HTTP/1.1
Host: win2012r2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://win2012r2.com/
Connection: keep-alive
Cookie: PHPSESSID=c7d28bffe45b9992004547ec337fb21c; asp_transient_id=04da5ee327dc858ce6c4c9410de3fa52; _ga_2G2FZZXW0F=GS1.1.1674755874.1.0.1674755874.0.0.0; _ga=GA1.1.1003012007.1674755875
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:57:55 GMT
content-type: application/javascript
content-length: 1249
last-modified: Tue, 05 Apr 2022 19:45:15 GMT
etag: "c72-5dbed7bd768c0-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Thu, 02 Feb 2023 17:57:55 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
win2012r2.com/win2012r2/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.2&fver=20221228074453
200 OK 995 B URL HTTP/2 win2012r2.com/win2012r2/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.2&fver=20221228074453
IP
ASN #9371 SAKURA Internet Inc.
Hash a81b8fb4af6a0bfef4d8fb610b7e3fd2
54ac8812d0ee99a38e33f734f34179a77e95e547
6a391fc773bce731189bf93ecf097629718030c411493a92842b12939bee8479
GET /win2012r2/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.2&fver=20221228074453 HTTP/1.1
Host: win2012r2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://win2012r2.com/
Connection: keep-alive
Cookie: PHPSESSID=c7d28bffe45b9992004547ec337fb21c; asp_transient_id=04da5ee327dc858ce6c4c9410de3fa52
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:57:55 GMT
content-type: text/css
content-length: 995
last-modified: Wed, 28 Dec 2022 07:44:53 GMT
etag: "af3-5f0de8b41f2a1-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Thu, 02 Feb 2023 17:57:55 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
win2012r2.com/win2012r2/wp-content/plugins/stripe-payments/public/assets/css/public.css?ver=2.0.73&fver=20230104075713
200 OK 1.3 kB URL HTTP/2 win2012r2.com/win2012r2/wp-content/plugins/stripe-payments/public/assets/css/public.css?ver=2.0.73&fver=20230104075713
IP
ASN #9371 SAKURA Internet Inc.
File type ASCII text, with CRLF line terminators
Hash 3748be62d05981469deb99d997917b0f
97a6fba5c2cdd8d3916fee9d8ba7a52cf3c8ce6e
5fa7bf1e4687977fbcffaaf060fca5cb6b624b7cdc9cddd8440db72816ea5ab9
GET /win2012r2/wp-content/plugins/stripe-payments/public/assets/css/public.css?ver=2.0.73&fver=20230104075713 HTTP/1.1
Host: win2012r2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://win2012r2.com/
Connection: keep-alive
Cookie: PHPSESSID=c7d28bffe45b9992004547ec337fb21c; asp_transient_id=04da5ee327dc858ce6c4c9410de3fa52
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:57:55 GMT
content-type: text/css
content-length: 1334
last-modified: Wed, 04 Jan 2023 07:57:13 GMT
etag: "1228-5f16b88438651-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Thu, 02 Feb 2023 17:57:55 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/requestform.js?siteId=102378&formatId=6
200 OK 20 kB URL HTTP/2 ads.themoneytizer.com/s/requestform.js?siteId=102378&formatId=6
IP
ASN #60068 Datacamp Limited
Hash 075d14c4f9e9ac7908aa28834b0b207a
a605dae51f1e8534337b410d7e53720476c9bbf4
6a43342badba7073cbb49b8118231f962d9c5af0632c01c400d1cc825d8642f6
GET /s/requestform.js?siteId=102378&formatId=6 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 26 Jan 2023 17:57:55 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675360675
server: CDN77-Turbo
x-77-nzt: AblMCQ2OY7Wh
x-77-nzt-ray: c0a4cc28e14a3a2c23bfd26384587716
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: gzip
X-Firefox-Spdy: h2
win2012r2.com/win2012r2/wp-content/plugins/content-protector/assets/public/passster-public.min.css?ver=3.5.5.9&fver=20230104075708
200 OK 669 B URL HTTP/2 win2012r2.com/win2012r2/wp-content/plugins/content-protector/assets/public/passster-public.min.css?ver=3.5.5.9&fver=20230104075708
IP
ASN #9371 SAKURA Internet Inc.
File type ASCII text, with very long lines (2092), with no line terminators
Hash 2f7c52c5a7f823184e5a1b6750e514fc
90df6bf8f6e2e3c2e5286376b78224c3239d768e
402c6a0922dbd6c23e9b26ef3baee9e383932c56d250d27284cbca648cf95086
GET /win2012r2/wp-content/plugins/content-protector/assets/public/passster-public.min.css?ver=3.5.5.9&fver=20230104075708 HTTP/1.1
Host: win2012r2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://win2012r2.com/
Connection: keep-alive
Cookie: PHPSESSID=c7d28bffe45b9992004547ec337fb21c; asp_transient_id=04da5ee327dc858ce6c4c9410de3fa52
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:57:56 GMT
content-type: text/css
content-length: 669
last-modified: Wed, 04 Jan 2023 07:57:08 GMT
etag: "82c-5f16b87f72552-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Thu, 02 Feb 2023 17:57:56 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
win2012r2.com/win2012r2/wp-content/themes/cocoon-master/webfonts/fontawesome/fonts/fontawesome-webfont.woff2?v=4.7.0
200 OK 77 kB URL HTTP/2 win2012r2.com/win2012r2/wp-content/themes/cocoon-master/webfonts/fontawesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
ASN #9371 SAKURA Internet Inc.
Hash 6fed89374f19ce41fa7c10c5b769311b
2231751f23f05e0486e446ffc4dce277e594de02
e2f41978669e5fe32fe7ce44babb716c944a3542c5ca523b345b640823a9f3b3
GET /win2012r2/wp-content/themes/cocoon-master/webfonts/fontawesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: win2012r2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://win2012r2.com/
Connection: keep-alive
Cookie: PHPSESSID=c7d28bffe45b9992004547ec337fb21c; asp_transient_id=04da5ee327dc858ce6c4c9410de3fa52
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:57:54 GMT
last-modified: Wed, 04 Jan 2023 12:40:05 GMT
etag: "12d68-5f16f7be5f6f6-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash e3d49754d3b5f6d6f746121d0f0feca3
8fae7e43b310c21aeba42ca1abb9aebe7ad3495d
53ef66f228478571b18d50fba3db3b12219883854e57d0a2e559bb53007c3c08
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5203
Cache-Control: max-age=126001
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 17:57:57 GMT
Etag: "63d1f403-1d7"
Expires: Sat, 28 Jan 2023 04:57:58 GMT
Last-Modified: Thu, 26 Jan 2023 03:31:15 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
ads.themoneytizer.com/s/gen.js?type=30
200 OK 2.5 kB URL HTTP/2 ads.themoneytizer.com/s/gen.js?type=30
IP
ASN #60068 Datacamp Limited
Hash 5d5b4d82cf8bf5dcacf2862fc311c279
471b3f2c2a9319ec5b59379292c02eb47bd84f3a
744f89900a3791a9866374789b054112b35d59b613aa7c28ff261d3add2192ce
GET /s/gen.js?type=30 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 17:57:55 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675314254
server: CDN77-Turbo
x-77-nzt: AblMCQ1xWwL/VbUAAA
x-77-nzt-ray: c0a4cc28e14a3a2c23bfd263f56c7c16
x-cache: HIT
x-age: 46421
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
win2012r2.com/win2012r2/wp-content/themes/cocoon-master/style.css?ver=6.1.1&fver=20230104124006
200 OK 40 kB URL HTTP/2 win2012r2.com/win2012r2/wp-content/themes/cocoon-master/style.css?ver=6.1.1&fver=20230104124006
IP
ASN #9371 SAKURA Internet Inc.
Hash 35940a8d4f72b084c7346e96cdcd3c3e
570959d20d1333e6db9152d8cc14ed129f46001d
a4ac0b5e30dd6168795fc384ad6450d5a1094f4193f18a33e25aeb6a7ae8ca32
GET /win2012r2/wp-content/themes/cocoon-master/style.css?ver=6.1.1&fver=20230104124006 HTTP/1.1
Host: win2012r2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://win2012r2.com/
Connection: keep-alive
Cookie: PHPSESSID=c7d28bffe45b9992004547ec337fb21c; asp_transient_id=04da5ee327dc858ce6c4c9410de3fa52
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:57:56 GMT
content-type: text/css
content-length: 40353
last-modified: Wed, 04 Jan 2023 12:40:06 GMT
etag: "36cd9-5f16f7bf3aef1-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Thu, 02 Feb 2023 17:57:56 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
win2012r2.com/win2012r2/wp-content/themes/cocoon-master/keyframes.css?ver=6.1.1&fver=20230104124006
200 OK 124 B URL HTTP/2 win2012r2.com/win2012r2/wp-content/themes/cocoon-master/keyframes.css?ver=6.1.1&fver=20230104124006
IP
ASN #9371 SAKURA Internet Inc.
Hash 1518258f3895898a51b34fbbd63403ae
e307dd791ba7d99602e3a3c133770ae8d869e7fc
bf3caf568fd7b2eed972580baecb6f4ca45cdc348f3e03fbf531ca6abdd3a7c9
GET /win2012r2/wp-content/themes/cocoon-master/keyframes.css?ver=6.1.1&fver=20230104124006 HTTP/1.1
Host: win2012r2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://win2012r2.com/
Connection: keep-alive
Cookie: PHPSESSID=c7d28bffe45b9992004547ec337fb21c; asp_transient_id=04da5ee327dc858ce6c4c9410de3fa52
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:57:56 GMT
content-type: text/css
content-length: 124
last-modified: Wed, 04 Jan 2023 12:40:06 GMT
etag: "124-5f16f7bf3aadd-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Thu, 02 Feb 2023 17:57:56 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
win2012r2.com/win2012r2/wp-content/themes/cocoon-master/webfonts/fontawesome/css/font-awesome.min.css?ver=6.1.1&fver=20230104124005
200 OK 7.1 kB URL HTTP/2 win2012r2.com/win2012r2/wp-content/themes/cocoon-master/webfonts/fontawesome/css/font-awesome.min.css?ver=6.1.1&fver=20230104124005
IP
ASN #9371 SAKURA Internet Inc.
File type ASCII text, with very long lines (30855)
Hash f50eed01fe8884bee73582e8e520e296
e277b6e0e46b8e99cb16bd1d7d8e8cc7939074f0
6ddf5995da24f248493fa6824a9f410a8c0949fdff29b178998638986455145a
GET /win2012r2/wp-content/themes/cocoon-master/webfonts/fontawesome/css/font-awesome.min.css?ver=6.1.1&fver=20230104124005 HTTP/1.1
Host: win2012r2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://win2012r2.com/
Connection: keep-alive
Cookie: PHPSESSID=c7d28bffe45b9992004547ec337fb21c; asp_transient_id=04da5ee327dc858ce6c4c9410de3fa52
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:57:56 GMT
content-type: text/css
content-length: 7059
last-modified: Wed, 04 Jan 2023 12:40:05 GMT
etag: "792a-5f16f7be5d6dd-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Thu, 02 Feb 2023 17:57:56 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
win2012r2.com/win2012r2/wp-content/themes/cocoon-master/webfonts/icomoon/style.css?ver=6.1.1&fver=20230104124006
200 OK 715 B URL HTTP/2 win2012r2.com/win2012r2/wp-content/themes/cocoon-master/webfonts/icomoon/style.css?ver=6.1.1&fver=20230104124006
IP
ASN #9371 SAKURA Internet Inc.
Hash 9dd157b812b75d9d385f14154cc8fd3d
5a53eef2d78b1a72157b0e75ee4ac4a205c3103b
a416fd3a91b290da000fbce614cf48addf6b16c0e52100bb30802e246a3eac8f
GET /win2012r2/wp-content/themes/cocoon-master/webfonts/icomoon/style.css?ver=6.1.1&fver=20230104124006 HTTP/1.1
Host: win2012r2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://win2012r2.com/
Connection: keep-alive
Cookie: PHPSESSID=c7d28bffe45b9992004547ec337fb21c; asp_transient_id=04da5ee327dc858ce6c4c9410de3fa52
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:57:56 GMT
content-type: text/css
content-length: 715
last-modified: Wed, 04 Jan 2023 12:40:06 GMT
etag: "add-5f16f7bf3a56c-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Thu, 02 Feb 2023 17:57:56 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
win2012r2.com/win2012r2/wp-content/themes/cocoon-master/plugins/stickyfill/dist/stickyfill.min.js?ver=6.1.1&fver=20230104124005
200 OK 2.2 kB URL HTTP/2 win2012r2.com/win2012r2/wp-content/themes/cocoon-master/plugins/stickyfill/dist/stickyfill.min.js?ver=6.1.1&fver=20230104124005
IP
ASN #9371 SAKURA Internet Inc.
File type Unicode text, UTF-8 text, with very long lines (6013)
Hash 9aea6ff421df31c9b939de0773f3b33d
10213f5e52fb03d0d73e5e128153c408b68cf601
6b1a9859f792992e2d7544ab29053bfe549127e62b17e372327ec26eb381a1cf
GET /win2012r2/wp-content/themes/cocoon-master/plugins/stickyfill/dist/stickyfill.min.js?ver=6.1.1&fver=20230104124005 HTTP/1.1
Host: win2012r2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://win2012r2.com/
Connection: keep-alive
Cookie: PHPSESSID=c7d28bffe45b9992004547ec337fb21c; asp_transient_id=04da5ee327dc858ce6c4c9410de3fa52; _ga_2G2FZZXW0F=GS1.1.1674755874.1.0.1674755874.0.0.0; _ga=GA1.1.1003012007.1674755875
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:57:56 GMT
content-type: application/javascript
content-length: 2212
last-modified: Wed, 04 Jan 2023 12:40:05 GMT
etag: "17fb-5f16f7be351e5-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Thu, 02 Feb 2023 17:57:56 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
win2012r2.com/win2012r2/wp-content/themes/cocoon-master/javascript.js?ver=6.1.1&fver=20230104124006
200 OK 2.6 kB URL HTTP/2 win2012r2.com/win2012r2/wp-content/themes/cocoon-master/javascript.js?ver=6.1.1&fver=20230104124006
IP
ASN #9371 SAKURA Internet Inc.
Hash 35e74a17ac70bfec216d563240670be0
3d4683b6b45bc2efbf096a3b066c2437affa3d6e
da5c537b8633dd36d21ed1666a5fac60188f3d94464f120f1948a3e79dd06ca9
GET /win2012r2/wp-content/themes/cocoon-master/javascript.js?ver=6.1.1&fver=20230104124006 HTTP/1.1
Host: win2012r2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://win2012r2.com/
Connection: keep-alive
Cookie: PHPSESSID=c7d28bffe45b9992004547ec337fb21c; asp_transient_id=04da5ee327dc858ce6c4c9410de3fa52; _ga_2G2FZZXW0F=GS1.1.1674755874.1.0.1674755874.0.0.0; _ga=GA1.1.1003012007.1674755875
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:57:56 GMT
content-type: application/javascript
content-length: 2649
last-modified: Wed, 04 Jan 2023 12:40:06 GMT
etag: "1d92-5f16f7bf3aa97-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Thu, 02 Feb 2023 17:57:56 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
win2012r2.com/win2012r2/wp-content/themes/cocoon-master/skins/skin-colors-blue/javascript.js?ver=6.1.1&fver=20230104124005
200 OK 61 B URL HTTP/2 win2012r2.com/win2012r2/wp-content/themes/cocoon-master/skins/skin-colors-blue/javascript.js?ver=6.1.1&fver=20230104124005
IP
ASN #9371 SAKURA Internet Inc.
Hash 8ca11894d5058fc092d815c82bb73b6b
d86a8a938775387e84d6dd0a534faf0eadc5aa4c
dce792814c67bc03cf20b5bb4bf6d317f052add475115e305f0c0924df4ad9f0
GET /win2012r2/wp-content/themes/cocoon-master/skins/skin-colors-blue/javascript.js?ver=6.1.1&fver=20230104124005 HTTP/1.1
Host: win2012r2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://win2012r2.com/
Connection: keep-alive
Cookie: PHPSESSID=c7d28bffe45b9992004547ec337fb21c; asp_transient_id=04da5ee327dc858ce6c4c9410de3fa52; _ga_2G2FZZXW0F=GS1.1.1674755874.1.0.1674755874.0.0.0; _ga=GA1.1.1003012007.1674755875
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:57:56 GMT
content-type: application/javascript
content-length: 61
last-modified: Wed, 04 Jan 2023 12:40:05 GMT
etag: "3d-5f16f7be48538"
accept-ranges: bytes
cache-control: max-age=604800
expires: Thu, 02 Feb 2023 17:57:56 GMT
X-Firefox-Spdy: h2
win2012r2.com/win2012r2/wp-content/themes/cocoon-child-master/javascript.js?ver=6.1.1&fver=20200404011823
200 OK 212 B URL HTTP/2 win2012r2.com/win2012r2/wp-content/themes/cocoon-child-master/javascript.js?ver=6.1.1&fver=20200404011823
IP
ASN #9371 SAKURA Internet Inc.
Hash d0aad9ba1b205581492b36f1c9f9aaee
6d01139ecdcb671cf72386acec92a2a9fd5058f0
e55d17342695ea6461e4f925e477a849bf3f6c1d9daa73cf2696c9f40447a25a
GET /win2012r2/wp-content/themes/cocoon-child-master/javascript.js?ver=6.1.1&fver=20200404011823 HTTP/1.1
Host: win2012r2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://win2012r2.com/
Connection: keep-alive
Cookie: PHPSESSID=c7d28bffe45b9992004547ec337fb21c; asp_transient_id=04da5ee327dc858ce6c4c9410de3fa52; _ga_2G2FZZXW0F=GS1.1.1674755874.1.0.1674755874.0.0.0; _ga=GA1.1.1003012007.1674755875
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:57:56 GMT
content-type: application/javascript
content-length: 212
last-modified: Sat, 04 Apr 2020 13:18:23 GMT
etag: "12a-5a276de4d45c0-gzip"
accept-ranges: bytes
cache-control: max-age=604800
expires: Thu, 02 Feb 2023 17:57:56 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 312 B IP
Hash f1d55ab20f757f7fd0b51462c7f4a9b0
e1ec60e23dda34f6bebe9654e9fbcee9374e7d4b
4bc645f135acb91082641116f38ba1a2371b49c50df7dc2527c6fc62601482df
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3300
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 17:57:57 GMT
Last-Modified: Thu, 26 Jan 2023 17:02:57 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 312
ads.themoneytizer.com/s/requestform.js?siteId=102378&formatId=30
200 OK 18 kB URL HTTP/2 ads.themoneytizer.com/s/requestform.js?siteId=102378&formatId=30
IP
ASN #60068 Datacamp Limited
File type ASCII text, with very long lines (25449)
Hash ba9d960952e10a2eec931baf9daf29b2
a6464d319dc5620fec7fe17fb27953468706a5d2
53aca1698c3b6ccbb7dabca698242286e50a80ebf9bb338695ced699f7007c85
GET /s/requestform.js?siteId=102378&formatId=30 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 17:57:55 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675360675
server: CDN77-Turbo
x-77-nzt: AblMCQ1t0zah
x-77-nzt-ray: c0a4cc28e14a3a2c23bfd26364905716
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2c396903b0b464c236fcabab2b6d5880
daa0bdb277827048f33e7f74f1ac3c9d2c026289
ba1814bbae020a67517ef0e23ff545f59fac26994600a064cb02822c15dfb4a3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BA1814BBAE020A67517EF0E23FF545F59FAC26994600A064CB02822C15DFB4A3"
Last-Modified: Wed, 25 Jan 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20197
Expires: Thu, 26 Jan 2023 23:34:34 GMT
Date: Thu, 26 Jan 2023 17:57:57 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2c396903b0b464c236fcabab2b6d5880
daa0bdb277827048f33e7f74f1ac3c9d2c026289
ba1814bbae020a67517ef0e23ff545f59fac26994600a064cb02822c15dfb4a3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BA1814BBAE020A67517EF0E23FF545F59FAC26994600A064CB02822C15DFB4A3"
Last-Modified: Wed, 25 Jan 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20197
Expires: Thu, 26 Jan 2023 23:34:34 GMT
Date: Thu, 26 Jan 2023 17:57:57 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2c396903b0b464c236fcabab2b6d5880
daa0bdb277827048f33e7f74f1ac3c9d2c026289
ba1814bbae020a67517ef0e23ff545f59fac26994600a064cb02822c15dfb4a3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BA1814BBAE020A67517EF0E23FF545F59FAC26994600A064CB02822C15DFB4A3"
Last-Modified: Wed, 25 Jan 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20197
Expires: Thu, 26 Jan 2023 23:34:34 GMT
Date: Thu, 26 Jan 2023 17:57:57 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2c396903b0b464c236fcabab2b6d5880
daa0bdb277827048f33e7f74f1ac3c9d2c026289
ba1814bbae020a67517ef0e23ff545f59fac26994600a064cb02822c15dfb4a3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BA1814BBAE020A67517EF0E23FF545F59FAC26994600A064CB02822C15DFB4A3"
Last-Modified: Wed, 25 Jan 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20197
Expires: Thu, 26 Jan 2023 23:34:34 GMT
Date: Thu, 26 Jan 2023 17:57:57 GMT
Connection: keep-alive
c.tmyzer.com/c/?s=102378&f=30&fi=99
200 OK 0 B URL HTTP/1.1 c.tmyzer.com/c/?s=102378&f=30&fi=99
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/?s=102378&f=30&fi=99 HTTP/1.1
Host: c.tmyzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://win2012r2.com
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 17:57:57 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Access-Control-Allow-Origin: *
X-IPLB-Request-ID: 5B5A2A9A:31F4_36264064:01BB_63D2BF25_4939C2:21820
X-IPLB-Instance: 38436
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash dda854cb90cda40c6a6dbc19eb186eca
0d23775c5af739aac0a41844d09c704ab850a1bd
7c432d209fcf9dde0ca59bf93f76526d98aab474041f19b2d6fe79942ed3a7e2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 17:57:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
c.tmyzer.com/c/?s=102378&f=19&fi=99
200 OK 0 B URL HTTP/1.1 c.tmyzer.com/c/?s=102378&f=19&fi=99
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/?s=102378&f=19&fi=99 HTTP/1.1
Host: c.tmyzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://win2012r2.com
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 17:57:57 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Access-Control-Allow-Origin: *
X-IPLB-Request-ID: 5B5A2A9A:2AD6_36264064:01BB_63D2BF25_4917E5:9ACD
X-IPLB-Instance: 38442
c.tmyzer.com/c/?s=102378&f=11&fi=99
200 OK 0 B URL HTTP/1.1 c.tmyzer.com/c/?s=102378&f=11&fi=99
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/?s=102378&f=11&fi=99 HTTP/1.1
Host: c.tmyzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://win2012r2.com
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 17:57:57 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Access-Control-Allow-Origin: *
X-IPLB-Request-ID: 5B5A2A9A:C3D3_36264064:01BB_63D2BF25_4935B3:9AD0
X-IPLB-Instance: 38442
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
200 OK 0 B URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://win2012r2.com
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Thu, 26 Jan 2023 17:57:57 GMT
expires: Thu, 26 Jan 2023 17:57:57 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 3523753117720480242
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 50333
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
c.tmyzer.com/c/?s=102378&f=6&fi=99
200 OK 0 B URL HTTP/1.1 c.tmyzer.com/c/?s=102378&f=6&fi=99
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c/?s=102378&f=6&fi=99 HTTP/1.1
Host: c.tmyzer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://win2012r2.com
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 26 Jan 2023 17:57:57 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Access-Control-Allow-Origin: *
X-IPLB-Request-ID: 5B5A2A9A:F410_36264064:01BB_63D2BF25_491DE0:9AD2
X-IPLB-Instance: 38442
ads.themoneytizer.com/moneybile.js
200 OK 22 kB URL HTTP/2 ads.themoneytizer.com/moneybile.js
IP
ASN #60068 Datacamp Limited
Hash 3aed7c794b97106c3bc8f5442406d29d
ae70a29d4f4d5709da503a1f2334a5422806d1dc
7a4b88c08727b0ea2cd1b69c93da595aab86a1461b054566caed00dfca885c49
GET /moneybile.js HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 26 Jan 2023 17:57:57 GMT
content-type: application/javascript
last-modified: Fri, 12 Mar 2021 17:07:19 GMT
expires: Fri, 27 Jan 2023 05:04:10 GMT
cache-control: max-age=86400, public, no-transform
pragma: public
x-accel-expires: @1674795850
server: CDN77-Turbo
x-77-nzt: AblMCQ2hRzX/W7UAAA
x-77-nzt-ray: c0a4cc28e14a3a2c25bfd2632a875525
x-cache: HIT
x-age: 46427
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash dda854cb90cda40c6a6dbc19eb186eca
0d23775c5af739aac0a41844d09c704ab850a1bd
7c432d209fcf9dde0ca59bf93f76526d98aab474041f19b2d6fe79942ed3a7e2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 17:57:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
win2012r2.com/win2012r2/wp-content/uploads/2022/02/20220205_profile_icon.png
200 OK 4.6 kB URL HTTP/2 win2012r2.com/win2012r2/wp-content/uploads/2022/02/20220205_profile_icon.png
IP
ASN #9371 SAKURA Internet Inc.
File type PNG image data, 480 x 372, 8-bit/color RGBA, non-interlaced\012- data
Hash 9f9299f1b0100f4f3c3d9da2e3717494
9cd79f82ace85691eaf34dcb1bf79e61dda8d387
74ead9159dc501f9ded3911d3ce8312420d3e9b10bac610ed28c6fb730339275
GET /win2012r2/wp-content/uploads/2022/02/20220205_profile_icon.png HTTP/1.1
Host: win2012r2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://win2012r2.com/
Connection: keep-alive
Cookie: PHPSESSID=c7d28bffe45b9992004547ec337fb21c; asp_transient_id=04da5ee327dc858ce6c4c9410de3fa52; _ga_2G2FZZXW0F=GS1.1.1674755874.1.0.1674755874.0.0.0; _ga=GA1.1.1003012007.1674755875
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 26 Jan 2023 17:57:57 GMT
content-type: image/png
content-length: 4637
last-modified: Sat, 05 Feb 2022 13:49:56 GMT
etag: "1531-5d745a47e2900-gzip"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sat, 25 Feb 2023 17:57:57 GMT
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
d2zur9cc2gf1tx.cloudfront.net/a96081b6-db78-48c4-9f82-b93e316fb1f7/notifyme.js
200 OK 26 kB URL HTTP/1.1 d2zur9cc2gf1tx.cloudfront.net/a96081b6-db78-48c4-9f82-b93e316fb1f7/notifyme.js
IP
File type ASCII text, with very long lines (16085)
Hash 8703fc9eead243fe2f47380e962d7fa2
3d9f707259112fa9ccdd1e676f00eadcff71906c
b47b4ca26c57e3dceebd7abd067df9622599bed6bfb11b480f92d09a945cd213
GET /a96081b6-db78-48c4-9f82-b93e316fb1f7/notifyme.js HTTP/1.1
Host: d2zur9cc2gf1tx.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 25704
Connection: keep-alive
Accept-Ranges: bytes
Last-Modified: Mon, 18 Feb 2019 16:54:28 GMT
Server: Apache
Date: Thu, 26 Jan 2023 03:45:34 GMT
X-Cache: Hit from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Q6U2epPH9gQCwAGLjnMkiNkfB2DGTSu6AjzVyGIX_PIs3JWVOpLvOg==
Age: 51166
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-7278989100934226
200 OK 50 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-7278989100934226
IP
File type ASCII text, with very long lines (4879)
Hash f14dd7f2d0be81106f9429d4cd26a52e
df451855112c56342efb3c9688a2c97f95b1cfa3
892fa03dfd7b140a6352ec7bc543985b10726c68f181910b3b641a349e5f7ff9
GET /pagead/js/adsbygoogle.js?client=ca-pub-7278989100934226 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://win2012r2.com
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Thu, 26 Jan 2023 17:57:58 GMT
expires: Thu, 26 Jan 2023 17:57:58 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 15547309508239630393
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 50311
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Thu, 26 Jan 2023 17:46:59 GMT
expires: Thu, 26 Jan 2023 19:46:59 GMT
cache-control: public, max-age=7200
age: 659
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?google_nid=zeotap_ddp&google_cm&zpartnerid=1&env=mWeb&eventType=pageview&id_mid_4=74f50fd7-750d-4529-4dbd-fb20750b3f08&reqId=090c8327-0595-45cb-4bdd-2579c7d1c789&zdid=1258
302 Found 447 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=zeotap_ddp&google_cm&zpartnerid=1&env=mWeb&eventType=pageview&id_mid_4=74f50fd7-750d-4529-4dbd-fb20750b3f08&reqId=090c8327-0595-45cb-4bdd-2579c7d1c789&zdid=1258
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash fb0412bc5dcd64cdf9713cec36417676
1d36c199747993acba1d50e011b9af9451e9b9f9
dda60fd65bc2da56bbb31caee5ab5415ee5f82f17833a3cd4e4f8e28298be988
GET /pixel?google_nid=zeotap_ddp&google_cm&zpartnerid=1&env=mWeb&eventType=pageview&id_mid_4=74f50fd7-750d-4529-4dbd-fb20750b3f08&reqId=090c8327-0595-45cb-4bdd-2579c7d1c789&zdid=1258 HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=zeotap_ddp&google_cm=&zpartnerid=1&env=mWeb&eventType=pageview&id_mid_4=74f50fd7-750d-4529-4dbd-fb20750b3f08&reqId=090c8327-0595-45cb-4bdd-2579c7d1c789&zdid=1258&google_tc=
date: Thu, 26 Jan 2023 17:57:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 447
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 26-Jan-2023 18:12:58 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash d97122742133f124ebe9ec5c50ada96f
bbba8c7969d6523f56dfe7d27aa994c009e1a644
fcc9d9d23c2d229605890553ee7a73ceb33523487f652635f982b6ed14b485e9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5376
Cache-Control: max-age=92305
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 17:57:58 GMT
Etag: "63d16fb7-1d7"
Expires: Fri, 27 Jan 2023 19:36:23 GMT
Last-Modified: Wed, 25 Jan 2023 18:06:47 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 314 B IP
Hash 0f1ba60402ab9eac433f3a75cf52422e
87265442ece1893f4e1ad20cd2a42773735d03e0
c04830a384fb019b37de4b24ff5f0191ffd527b79475b3b8f54303aeaec2630e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2528
Cache-Control: max-age=153565
Content-Type: application/ocsp-response
Date: Thu, 26 Jan 2023 17:57:58 GMT
Etag: "63d26a23-13a"
Expires: Sat, 28 Jan 2023 12:37:23 GMT
Last-Modified: Thu, 26 Jan 2023 11:55:15 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 314
ads.themoneytizer.com/s/gen.js?type=11
200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/gen.js?type=11
IP
ASN #60068 Datacamp Limited
GET /s/gen.js?type=11 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 17:57:55 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675314254
server: CDN77-Turbo
x-77-nzt: AblMCQ1W+Tv/VbUAAA
x-77-nzt-ray: c0a4cc28e14a3a2c23bfd263be4bc717
x-cache: HIT
x-age: 46421
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
cmp.quantcast.com/tcfv2/42/cmp2.js?referer=www.themoneytizer.com
200 OK 0 B URL HTTP/2 cmp.quantcast.com/tcfv2/42/cmp2.js?referer=www.themoneytizer.com
IP
GET /tcfv2/42/cmp2.js?referer=www.themoneytizer.com HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
access-control-max-age: 86400
last-modified: Tue, 05 Jul 2022 18:40:23 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-qc-ineu: True
server: AmazonS3
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: gzip
date: Wed, 25 Jan 2023 01:43:14 GMT
cache-control: max-age=172800
etag: W/"9494b70738cd74c9137e65c29c0b1f3e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 849yLI9KOOLM268ZhkEqiRMSlJ_I6I7T6YOmLCg9LFYXtzmXmdA1mw==
age: 161676
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=147&r=2&j=criteoCallback
200 OK 0 B URL HTTP/2 gum.criteo.com/sync?c=147&r=2&j=criteoCallback
IP
GET /sync?c=147&r=2&j=criteoCallback HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 17:57:57 GMT
content-type: text/javascript; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
expires: 60
server-processing-duration-in-ticks: 823648
strict-transport-security: max-age=31536000; preload;
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
cmp.quantcast.com/choice/6Fv0cGNfc_bw8/www.themoneytizer.com/choice.js
200 OK 0 B URL HTTP/2 cmp.quantcast.com/choice/6Fv0cGNfc_bw8/www.themoneytizer.com/choice.js
IP
GET /choice/6Fv0cGNfc_bw8/www.themoneytizer.com/choice.js HTTP/1.1
Host: cmp.quantcast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 28 Jun 2022 13:53:56 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
cross-origin-resource-policy: cross-origin
content-encoding: br
date: Thu, 26 Jan 2023 17:57:58 GMT
cache-control: max-age=3600
etag: W/"c53bd785b1ee57b613221019d7d72626"
vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin,Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: uKVtzv60RKC5jD3zv4slFTxDNF3U175hw6SGKEg7rRFTdB5xZVUHQA==
age: 28
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/gen.js?type=6
200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/gen.js?type=6
IP
ASN #60068 Datacamp Limited
GET /s/gen.js?type=6 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 26 Jan 2023 17:57:55 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675314253
server: CDN77-Turbo
x-77-nzt: AblMCQ08P6L/VrUAAA
x-77-nzt-ray: c0a4cc28e14a3a2c23bfd263cf836816
x-cache: HIT
x-age: 46422
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/moneyinimage.js
200 OK 0 B URL HTTP/2 ads.themoneytizer.com/moneyinimage.js
IP
ASN #60068 Datacamp Limited
GET /moneyinimage.js HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 26 Jan 2023 17:57:57 GMT
content-type: application/javascript
last-modified: Tue, 21 Dec 2021 17:13:49 GMT
expires: Fri, 27 Jan 2023 05:04:18 GMT
cache-control: max-age=86400, public, no-transform
pragma: public
x-accel-expires: @1674795858
server: CDN77-Turbo
x-77-nzt: AblMCQ3l827/U7UAAA
x-77-nzt-ray: c0a4cc28e14a3a2c25bfd26368df1b28
x-cache: HIT
x-age: 46419
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/IIQUniversalID.js
200 OK 0 B URL HTTP/2 ads.themoneytizer.com/IIQUniversalID.js
IP
ASN #60068 Datacamp Limited
GET /IIQUniversalID.js HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 26 Jan 2023 17:57:57 GMT
content-type: application/javascript
last-modified: Wed, 12 Oct 2022 18:48:43 GMT
expires: Fri, 27 Jan 2023 05:04:10 GMT
cache-control: max-age=86400, public, no-transform
pragma: public
x-accel-expires: @1674795850
server: CDN77-Turbo
x-77-nzt: AblMCQ3LFKf/W7UAAA
x-77-nzt-ray: c0a4cc28e14a3a2c25bfd263adcc4125
x-cache: HIT
x-age: 46427
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/requestform.js?siteId=102378&formatId=11
200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/requestform.js?siteId=102378&formatId=11
IP
ASN #60068 Datacamp Limited
GET /s/requestform.js?siteId=102378&formatId=11 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 17:57:55 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675360675
server: CDN77-Turbo
x-77-nzt: AblMCQ32El+h
x-77-nzt-ray: c0a4cc28e14a3a2c23bfd263b1e4a916
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: gzip
X-Firefox-Spdy: h2
ced.sascdn.com/tag/1097/smart.js
200 OK 0 B URL HTTP/1.1 ced.sascdn.com/tag/1097/smart.js
IP
ASN #20940 Akamai International B.V.
GET /tag/1097/smart.js HTTP/1.1
Host: ced.sascdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 32964
Cache-Control: public, max-age=7200
Expires: Thu, 26 Jan 2023 19:57:58 GMT
Date: Thu, 26 Jan 2023 17:57:58 GMT
Connection: keep-alive
ads.themoneytizer.com/moneybid7_28/build/dist/prebid.js
200 OK 0 B URL HTTP/2 ads.themoneytizer.com/moneybid7_28/build/dist/prebid.js
IP
ASN #60068 Datacamp Limited
GET /moneybid7_28/build/dist/prebid.js HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 26 Jan 2023 17:57:57 GMT
content-type: application/javascript
last-modified: Tue, 17 Jan 2023 14:40:20 GMT
expires: Fri, 27 Jan 2023 05:04:12 GMT
cache-control: max-age=86400, public, no-transform
pragma: public
x-accel-expires: @1674795852
server: CDN77-Turbo
x-77-nzt: AblMCQ0iJ/j/WbUAAA
x-77-nzt-ray: c0a4cc28e14a3a2c25bfd263a3b53727
x-cache: HIT
x-age: 46425
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/lib_fs_close.js
200 OK 0 B URL HTTP/2 ads.themoneytizer.com/lib_fs_close.js
IP
ASN #60068 Datacamp Limited
GET /lib_fs_close.js HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 26 Jan 2023 17:57:57 GMT
content-type: application/javascript
last-modified: Thu, 19 Jan 2023 15:05:03 GMT
expires: Fri, 27 Jan 2023 05:04:13 GMT
cache-control: max-age=86400, public, no-transform
pragma: public
x-accel-expires: @1674795853
server: CDN77-Turbo
x-77-nzt: AblMCQ3aEGz/WLUAAA
x-77-nzt-ray: c0a4cc28e14a3a2c25bfd263528a2128
x-cache: HIT
x-age: 46424
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
spl.zeotap.com/?env=mWeb&eventType=pageview&zdid=1258
200 OK 0 B URL HTTP/2 spl.zeotap.com/?env=mWeb&eventType=pageview&zdid=1258
IP
GET /?env=mWeb&eventType=pageview&zdid=1258 HTTP/1.1
Host: spl.zeotap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://win2012r2.com
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 26 Jan 2023 17:57:57 GMT
content-type: text/html
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-origin: https://win2012r2.com
set-cookie: zc=74f50fd7-750d-4529-4dbd-fb20750b3f08; Path=/; Domain=.zeotap.com; Max-Age=31536000; SameSite=None; Secure
zsc=%033%D0%D5Dy%94%C1%BC%C8%CA%E0%12%84%84%7C%F8%EB%F7%ADJ%02%FF%3DB%8A%CDF%A5P%DC%E2L%03%A0N%C7%2A9%DC%F8An%25%0E0%FDY%A1%C1%DF%CA%60%3D%E4%A8%0B%0D%12%07%9B%B6t%E8%B6%B2%A4%03%F5%85%C0%83%FAuz9p%1Fore%99%93; Path=/; Domain=.zeotap.com; Max-Age=86400; SameSite=None; Secure
vary: Origin
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 78fb224c5883fab8-OSL
content-encoding: br
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/gen.js?type=19
200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/gen.js?type=19
IP
ASN #60068 Datacamp Limited
GET /s/gen.js?type=19 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 17:57:55 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675314250
server: CDN77-Turbo
x-77-nzt: AblMCQ1uQwf/WbUAAA
x-77-nzt-ray: c0a4cc28e14a3a2c23bfd26383fdcd17
x-cache: HIT
x-age: 46425
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ads.themoneytizer.com/s/requestform.js?siteId=102378&formatId=19
200 OK 0 B URL HTTP/2 ads.themoneytizer.com/s/requestform.js?siteId=102378&formatId=19
IP
ASN #60068 Datacamp Limited
GET /s/requestform.js?siteId=102378&formatId=19 HTTP/1.1
Host: ads.themoneytizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://win2012r2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 26 Jan 2023 17:57:55 GMT
content-type: text/html; charset=UTF-8
cache-control: max-age=604800
x-accel-expires: @1675360675
server: CDN77-Turbo
x-77-nzt: AblMCQ3mGxmh
x-77-nzt-ray: c0a4cc28e14a3a2c23bfd26306c22318
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: gzip
X-Firefox-Spdy: h2
49.212.180.105
95.101.10.57
34.160.144.191
54.38.64.100
104.18.20.226
93.184.220.29
185.76.9.19