renew-red-light.com/
199.34.228.159301 Moved Permanently 239 B IP 199.34.228.159:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash d6eece0aeb8c9ae0877dbdebb79bb782
c43d4aa700f7377648c51de8fc76bcc0c7f1c134
106d7b79a27af2d086abb1aa36768967ddf4e5bae123489db94bd6986fd3aa3b
GET / HTTP/1.1
Host: renew-red-light.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Sep 2022 19:07:18 GMT
Server: Apache
Location: http://www.renew-red-light.com/
Content-Length: 239
Keep-Alive: timeout=10, max=60
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b9adda4796e3cda8d92753c46964621c
5f1eba1f6085b23dea088a91fe6f8947172f9f62
a0577a8fcfa81b3f86d99566eb4429655b93a238ffd1a3752bc9aae3d969deea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A0577A8FCFA81B3F86D99566EB4429655B93A238FFD1A3752BC9AAE3D969DEEA"
Last-Modified: Tue, 06 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10461
Expires: Tue, 06 Sep 2022 22:01:39 GMT
Date: Tue, 06 Sep 2022 19:07:18 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 06 Sep 2022 19:04:22 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: foWljZexze_x9y_ZkovNLmww46nHN4Isq49hUMa1ZPpX0sJhEwPSIA==
Age: 176
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 06 Sep 2022 01:15:18 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 6hIFsDjcxZsdI_uh1KRnH7c3CiQNm5X2AQILdIpx24jSFcI0QbRMgA==
age: 64321
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 19:07:18 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.renew-red-light.com/
199.34.228.159200 OK 11 kB IP 199.34.228.159:0
Hash 3e14a31ca110183718bdca25aac8f182
75bd3d6a8af5b116162ab3766e7fb86dcd0a97e2
040020c46dd74f308207c2356d00ad1a78b593ad546de0170a0dda9e9e65d2d2
GET / HTTP/1.1
Host: www.renew-red-light.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 19:07:18 GMT
Server: Apache
Vary: X-W-SSL,Accept-Encoding,User-Agent
Set-Cookie: is_mobile=0; path=/; domain=www.renew-red-light.com
language=en; expires=Tue, 20-Sep-2022 19:07:18 GMT; Max-Age=1209600; path=/
Cache-Control: private
ETag: W/"e0bdf0938b39cff005983e196ed512ae-gzip"
Content-Encoding: gzip
X-Host: blu30.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 11434
Keep-Alive: timeout=10, max=74
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
fonts.googleapis.com/css?family=Quattrocento:400,700&subset=latin,latin-ext
142.250.74.10200 OK 385 B URL HTTP/1.1 fonts.googleapis.com/css?family=Quattrocento:400,700&subset=latin,latin-ext
IP 142.250.74.10:0
Hash 0d582c553aef3f4aa73d81d99a9f6506
8ca4ed9070410fd919077a23d6090f35a525a49c
decf04b0960798013cc8282f7e95ddd63d865031e34a6d63fbc696a6b03b7e23
GET /css?family=Quattrocento:400,700&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.renew-red-light.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Tue, 06 Sep 2022 19:07:19 GMT
Date: Tue, 06 Sep 2022 19:07:19 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=Crimson+Text:400,700,400italic,700italic&subset=latin,latin-ext
142.250.74.10200 OK 544 B URL HTTP/1.1 fonts.googleapis.com/css?family=Crimson+Text:400,700,400italic,700italic&subset=latin,latin-ext
IP 142.250.74.10:0
Hash 2c83ffa07891befbc2fa4635fe4c88a3
0890cc8d3a42b1d593446e5e1009cf076fb02104
e6d3e72ed00f75507b6297fb73954dd08bddf0cf83b129e5e56e33c3931e9aa3
GET /css?family=Crimson+Text:400,700,400italic,700italic&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.renew-red-light.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Tue, 06 Sep 2022 19:07:19 GMT
Date: Tue, 06 Sep 2022 19:07:19 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=Montserrat:400,700&subset=latin,latin-ext
142.250.74.10200 OK 521 B URL HTTP/1.1 fonts.googleapis.com/css?family=Montserrat:400,700&subset=latin,latin-ext
IP 142.250.74.10:0
Hash b52e405858cd07e929b5387c0ed0d1de
8dc157b5ece5222f0f175eee9379a699dee76cd8
e289bd897465ef8c6c74d81d09ee98cf500d744073df727158f6323caf335547
GET /css?family=Montserrat:400,700&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.renew-red-light.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Tue, 06 Sep 2022 19:07:19 GMT
Date: Tue, 06 Sep 2022 19:07:19 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=Playfair+Display:400,700,400italic,700italic&subset=latin,latin-ext
142.250.74.10200 OK 558 B URL HTTP/1.1 fonts.googleapis.com/css?family=Playfair+Display:400,700,400italic,700italic&subset=latin,latin-ext
IP 142.250.74.10:0
Hash de2df5765e9a8a64221d1bef18ff7825
6ba2e1fc90d3b8d134761cc55c21c84a8cf0fe3b
43737a44af8b68628ee3ef39ecab4749dfd0ca4808e78fdec75bc7be7d96a387
GET /css?family=Playfair+Display:400,700,400italic,700italic&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.renew-red-light.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Tue, 06 Sep 2022 19:07:19 GMT
Date: Tue, 06 Sep 2022 19:07:19 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=Lora:400,700,400italic,700italic&subset=latin,latin-ext
142.250.74.10200 OK 603 B URL HTTP/1.1 fonts.googleapis.com/css?family=Lora:400,700,400italic,700italic&subset=latin,latin-ext
IP 142.250.74.10:0
Hash 12c9e8dd24f193e282f3e350296740b4
af62d74779c35a32dac013fdd63143d236069edf
1e50404b012030e1101f29006d7caadceeaf8e1c7aeab508113a1ec23da16f66
GET /css?family=Lora:400,700,400italic,700italic&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.renew-red-light.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Tue, 06 Sep 2022 19:07:19 GMT
Date: Tue, 06 Sep 2022 19:07:19 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
cdn2.editmysite.com/js/site/footerSignup.js?buildTime=1662479164
151.101.85.46200 OK 1.4 kB URL HTTP/1.1 cdn2.editmysite.com/js/site/footerSignup.js?buildTime=1662479164
IP 151.101.85.46:0
File type ASCII text, with very long lines (3600), with no line terminators
Hash 121a5b9688d8e70ee7bb06cc79491f76
3a28220baa7d8879270c8311bed7dddefa7e43e9
181716c84474c9eb6685a809d69dda5d49ce44dfbf64c5dee89a3091e23def40
GET /js/site/footerSignup.js?buildTime=1662479164 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.renew-red-light.com/
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/javascript
Last-Modified: Tue, 06 Sep 2022 15:26:51 GMT
ETag: "631766bb-e10"
Expires: Tue, 20 Sep 2022 15:50:21 GMT
Cache-Control: max-age=1209600
X-Host: grn62.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 1372
Accept-Ranges: bytes
Date: Tue, 06 Sep 2022 19:07:19 GMT
Age: 11818
Connection: keep-alive
X-Served-By: cache-sjc10053-SJC, cache-bma1667-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 56
X-Timer: S1662491239.040157,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1655386200&
151.101.85.46200 OK 33 kB URL HTTP/1.1 cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1655386200&
IP 151.101.85.46:0
File type HTML document, Unicode text, UTF-8 text, with very long lines (64997)
Hash 40ee71f2f2de93b9561845efa9a0cbbc
13451e3fb165d1ad524d9863d8344eab4a2fe353
41a33daf28fc89ce06f3c6a6029d078c20a0f42f07d6ec3dc7127d206dcec5fe
GET /js/lang/en/stl.js?buildTime=1655386200& HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.renew-red-light.com/
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/javascript
Last-Modified: Mon, 29 Aug 2022 23:12:57 GMT
ETag: "630d47f9-2c44e"
Expires: Tue, 13 Sep 2022 10:03:26 GMT
Cache-Control: max-age=1209600
X-Host: blu61.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 32802
Accept-Ranges: bytes
Date: Tue, 06 Sep 2022 19:07:19 GMT
Age: 637432
Connection: keep-alive
X-Served-By: cache-sjc10043-SJC, cache-bma1657-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 2, 1
X-Timer: S1662491239.040457,VS0,VE2
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
cdn2.editmysite.com/css/social-icons.css?buildtime=1655386200
151.101.85.46200 OK 1.6 kB URL HTTP/1.1 cdn2.editmysite.com/css/social-icons.css?buildtime=1655386200
IP 151.101.85.46:0
File type ASCII text, with very long lines (13080)
Hash 7178c54e4ef735bdf6404ed4e2f4cedd
ec83fe8f55f1f6f82d3dc73370cea7bf71f3eadf
a1dbe57f50fe21267a98d94c4aae0e649ecbd49882a6f448409d91930aab1a33
GET /css/social-icons.css?buildtime=1655386200 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.renew-red-light.com/
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1639
Server: nginx
Content-Type: text/css
Last-Modified: Tue, 30 Aug 2022 19:50:18 GMT
ETag: W/"630e69fa-3319"
Expires: Wed, 14 Sep 2022 08:43:35 GMT
Cache-Control: max-age=1209600
X-Host: blu62.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Tue, 06 Sep 2022 19:07:19 GMT
Age: 555823
X-Served-By: cache-sjc10033-SJC, cache-bma1626-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 1
X-Timer: S1662491239.040873,VS0,VE1
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
cdn2.editmysite.com/css/sites.css?buildTime=1655386200
151.101.85.46200 OK 30 kB URL HTTP/1.1 cdn2.editmysite.com/css/sites.css?buildTime=1655386200
IP 151.101.85.46:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash d10158b22b553f723d99dc78eaee6390
80f2d6670cfb0d01cd20c471cf8e3e6465ddd3f6
939c7a8e1ad74a44e0c847e38533e69e36454b6805d25acf3fb0cb5c472d245e
GET /css/sites.css?buildTime=1655386200 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.renew-red-light.com/
HTTP/1.1 200 OK
Server: nginx
Content-Type: text/css
Last-Modified: Mon, 29 Aug 2022 23:13:51 GMT
ETag: W/"630d482f-347ac"
Expires: Tue, 13 Sep 2022 11:24:47 GMT
Cache-Control: max-age=1209600
X-Host: blu117.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 29746
Accept-Ranges: bytes
Date: Tue, 06 Sep 2022 19:07:19 GMT
Age: 632552
Connection: keep-alive
X-Served-By: cache-sjc10060-SJC, cache-bma1680-BMA
X-Cache: MISS, HIT
X-Cache-Hits: 0, 1
X-Timer: S1662491239.038573,VS0,VE1
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
cdn2.editmysite.com/js/site/main.js?buildTime=1655386200
151.101.85.46200 OK 146 kB URL HTTP/1.1 cdn2.editmysite.com/js/site/main.js?buildTime=1655386200
IP 151.101.85.46:0
File type ASCII text, with very long lines (32147)
Size 146 kB (146400 bytes)
Hash 81b8673c5d3aa3ab8c0574f2a8f0e3b4
2e0661bc7907d9e2703b3347c3fec579f0aef5d6
0e981f4de6287406ce261fddea24aa05ded4b6a8c4c07283c363c1502071cf40
GET /js/site/main.js?buildTime=1655386200 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.renew-red-light.com/
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 146400
Server: nginx
Content-Type: application/javascript
Last-Modified: Mon, 29 Aug 2022 23:14:16 GMT
ETag: "630d4848-74804"
Expires: Tue, 13 Sep 2022 09:01:13 GMT
Cache-Control: max-age=1209600
X-Host: grn97.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Tue, 06 Sep 2022 19:07:19 GMT
Age: 641166
X-Served-By: cache-sjc10064-SJC, cache-bma1666-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 1
X-Timer: S1662491239.040141,VS0,VE2
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1655386200
151.101.85.46200 OK 159 kB URL HTTP/1.1 cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1655386200
IP 151.101.85.46:0
File type ASCII text, with very long lines (32007)
Size 159 kB (158975 bytes)
Hash c29a5e4fd4ee0d3b7cd0597f2b9b602b
bb134ed641467954f4a724167dc7ea56a03e7fa8
bf9850a7e6dd269898b78ecf07a34438bc300cad0bbb2d280e10ccadf81646b2
Analyzer Verdict Alert fortinet Malware
GET /js/site/main-customer-accounts-site.js?buildTime=1655386200 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.renew-red-light.com/
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/javascript
Last-Modified: Mon, 29 Aug 2022 23:14:16 GMT
ETag: "630d4848-8250f"
Expires: Tue, 13 Sep 2022 12:54:14 GMT
Cache-Control: max-age=1209600
X-Host: blu128.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 158975
Accept-Ranges: bytes
Date: Tue, 06 Sep 2022 19:07:19 GMT
Age: 627185
Connection: keep-alive
X-Served-By: cache-sjc10065-SJC, cache-bma1667-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 1
X-Timer: S1662491239.090687,VS0,VE1
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
www.renew-red-light.com/files/main_style.css?1655395890
199.34.228.159200 OK 6.6 kB URL HTTP/1.1 www.renew-red-light.com/files/main_style.css?1655395890
IP 199.34.228.159:0
File type ASCII text, with very long lines (670)
Hash aa7e7bec6f7a2df0f21ccc54d76074b0
3b67553db3d244277ba6eba1c62ce4b315537199
3a4a7c152a47b8d9a95d89dd6e9e0bdd170e98f568499a311af8aabdfdf414c6
GET /files/main_style.css?1655395890 HTTP/1.1
Host: www.renew-red-light.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.renew-red-light.com/
Cookie: is_mobile=0; language=en
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Sep 2022 19:07:19 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: grn127.sf2p.intern.weebly.net
Content-Encoding: gzip
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 06 Sep 2022 18:38:18 GMT
Cache-Control: max-age=3600
Expires: Tue, 06 Sep 2022 18:43:14 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ZMDTMDLGBB2JFtxC8gfBQoa8E_O7N5fS24EUtwXWYYjJEPSWuAcvSw==
Age: 1741
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 521428b0e694b41561bc2ed785219929
45bf3b914325f9d646879bd16bb01feb8f29f2d4
9e2c58593cb9b9baae14e338253ca44b199d965e106ddc70c700f66f0203465a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 19:07:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js
142.250.74.42200 OK 34 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js
IP 142.250.74.42:0
File type ASCII text, with very long lines (65483)
Hash a54a444f20643b131117dc2112cca05f
074964746b12ff1d30f7656310d6154ae1cc98b5
aa3ca8485dd777d4d880b38c1cf3bc2fc290d28a79ba3e3e43cba1f653132830
GET /ajax/libs/jquery/1.8.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.renew-red-light.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33593
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Sep 2022 09:37:50 GMT
expires: Sun, 03 Sep 2023 09:37:50 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 293369
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e8952752ad4a452a575522a7eb737217
c5554fa2af05d7a7117032b0f99352de08988346
8c182bed7bbd843774a2136823b30a4cb707e2a5386f71d01640aa3558888bf7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5288
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 19:07:19 GMT
Last-Modified: Tue, 06 Sep 2022 17:39:11 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 521428b0e694b41561bc2ed785219929
45bf3b914325f9d646879bd16bb01feb8f29f2d4
9e2c58593cb9b9baae14e338253ca44b199d965e106ddc70c700f66f0203465a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 19:07:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.renew-red-light.com/files/templateArtifacts.js?1655395890
199.34.228.159200 OK 1.6 kB URL HTTP/1.1 www.renew-red-light.com/files/templateArtifacts.js?1655395890
IP 199.34.228.159:0
File type exported SGML document, ASCII text, with very long lines (1630)
Hash e0836e8203c22b8e4086f27e91e86f5a
28235e77f5a895c8cd411aff4a6ef4e6f7d419c2
32dbc4a2eeca39a57d35670f00e2cf59e03c279521e47506c56c5c36d8b664b6
GET /files/templateArtifacts.js?1655395890 HTTP/1.1
Host: www.renew-red-light.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.renew-red-light.com/
Cookie: is_mobile=0; language=en
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Sep 2022 19:07:19 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: grn84.sf2p.intern.weebly.net
Content-Encoding: gzip
cdn2.editmysite.com/images/site/footer/footer-toast-published-image-1.png
151.101.85.46200 OK 9.7 kB URL HTTP/1.1 cdn2.editmysite.com/images/site/footer/footer-toast-published-image-1.png
IP 151.101.85.46:0
File type PNG image data, 199 x 97, 8-bit colormap, non-interlaced\012- data
Hash 6e0f7ad31bf187e0d88fc5787573ba71
14e8b85cc32a01c8901e4ac0160582d29a45e9e6
580ef6409e067a4ec4a427400c7d6216184869e2da53343df20753cc1f8a46cd
GET /images/site/footer/footer-toast-published-image-1.png HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.renew-red-light.com/
HTTP/1.1 200 OK
X-GUploader-UploadID: ADPycdtBep7ROccdUt9-QNl5VbmRIpCUwFb5y0r5I6-vVE2nBsM9PCbzHI6xHxQIvmEjxA2YbetFcXQVHBR8TKD8jioOTQFmXNb8
x-goog-generation: 1549995548326466
x-goog-metageneration: 3
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 9677
x-goog-hash: crc32c=QhrKCw==, md5=bg960xvxh+DYj8V4dXO6cQ==
x-goog-storage-class: STANDARD
Server: UploadServer
Expires: Sun, 17 Apr 2022 00:19:21 GMT
Cache-Control: public, max-age=86400, s-maxage=259200
Last-Modified: Tue, 12 Feb 2019 18:19:08 GMT
ETag: "6e0f7ad31bf187e0d88fc5787573ba71"
Content-Type: image/png
Content-Length: 9677
Accept-Ranges: bytes
Date: Tue, 06 Sep 2022 19:07:19 GMT
Via: 1.1 varnish
Age: 153219
Connection: keep-alive
X-Served-By: cache-bma1667-BMA
X-Cache: HIT
X-Cache-Hits: 1007
X-Timer: S1662491239.332652,VS0,VE0
Access-Control-Allow-Origin: *
www.renew-red-light.com/files/theme/custom.js?1570137717
199.34.228.159200 OK 1.8 kB URL HTTP/1.1 www.renew-red-light.com/files/theme/custom.js?1570137717
IP 199.34.228.159:0
Hash 17da665a1a7e21ed9787d7251b707343
a69b47d92bb45f5305e4325ef2782a0132d51c73
4958b591154a835ddda0838cde60113f9d438d0eedd71712c85044f68c806c90
GET /files/theme/custom.js?1570137717 HTTP/1.1
Host: www.renew-red-light.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.renew-red-light.com/
Cookie: is_mobile=0; language=en
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Sep 2022 19:07:19 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sun, 13 Mar 2022 23:25:41 GMT
x-rgw-object-type: Normal
ETag: W/"a8cdf2852674b9b682c1be61454a75a0"
x-amz-request-id: tx00000000000000004430e-006258b624-4d62951-las
X-Storage-Bucket: z4e2f
X-Storage-Object: 4e2f6074e5a0daab0f207bd3b9fc89b10a5383c373bfc8c54fe5dabfd48f240e
X-Host: blu14.sf2p.intern.weebly.net
Content-Encoding: gzip
use.typekit.net/nxe1ajf.js
23.36.76.122200 OK 6.7 kB URL HTTP/2 use.typekit.net/nxe1ajf.js
IP 23.36.76.122:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (2258)
Hash 9189ca8b387979d5f2feeae6aad5ee64
938a8a1410b1927887df90e08aca8f587fb82fec
0429adbc18a19bede29b164f41a4ab37e2193bb45ec37471cc361c3292536f28
GET /nxe1ajf.js HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.renew-red-light.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/javascript;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: public, max-age=600, stale-while-revalidate=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 6739
date: Tue, 06 Sep 2022 19:07:19 GMT
X-Firefox-Spdy: h2
fonts.gstatic.com/s/quattrocento/v17/OZpbg_xvsDZQL_LKIF7q4jP_eE3vcKnY.woff2
142.250.74.163200 OK 36 kB URL HTTP/1.1 fonts.gstatic.com/s/quattrocento/v17/OZpbg_xvsDZQL_LKIF7q4jP_eE3vcKnY.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 35952, version 1.0\012- data
Hash 1ede9b49c70635ad07115dc802702118
a7cea5ca5f71b4fed7fc4a69434091c87faf71f5
5e232623c90033b45c4ca98c53ff6b4b5b6c54b1c2da2f05a3a1a7e68e2ca8f5
GET /s/quattrocento/v17/OZpbg_xvsDZQL_LKIF7q4jP_eE3vcKnY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.renew-red-light.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 35952
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 01 Sep 2022 15:04:57 GMT
Expires: Fri, 01 Sep 2023 15:04:57 GMT
Cache-Control: public, max-age=31536000
Age: 446542
Last-Modified: Wed, 27 Apr 2022 16:14:34 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/lora/v26/0QIvMX1D_JOuMwr7Iw.woff2
142.250.74.163200 OK 36 kB URL HTTP/1.1 fonts.gstatic.com/s/lora/v26/0QIvMX1D_JOuMwr7Iw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 35660, version 1.0\012- data
Hash 0d0d3e5824e5e67a9e993960df2b67a9
328d67bb1d5899a7809df9f4385181863fd035f1
38da98e06ba18c4204f547d30572cd81a2dd3fd5438d306856d2617480ee8639
GET /s/lora/v26/0QIvMX1D_JOuMwr7Iw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.renew-red-light.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 35660
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 06 Sep 2022 01:39:47 GMT
Expires: Wed, 06 Sep 2023 01:39:47 GMT
Cache-Control: public, max-age=31536000
Age: 62852
Last-Modified: Mon, 15 Aug 2022 18:07:59 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/lora/v26/0QIhMX1D_JOuMw_LIftL.woff2
142.250.74.163200 OK 39 kB URL HTTP/1.1 fonts.gstatic.com/s/lora/v26/0QIhMX1D_JOuMw_LIftL.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 39056, version 1.0\012- data
Hash ab20a3cbee44939ad33cb2d162484f23
f4df3e71cc8aebd85b6207d4ac35c76c602c2779
0a1dc89a4a29593bd35cc4811bfedd9765eeca4a9ef57323eec2cff14c9f9c5b
GET /s/lora/v26/0QIhMX1D_JOuMw_LIftL.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.renew-red-light.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 39056
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 06 Sep 2022 02:28:08 GMT
Expires: Wed, 06 Sep 2023 02:28:08 GMT
Cache-Control: public, max-age=31536000
Age: 59951
Last-Modified: Mon, 15 Aug 2022 18:05:31 GMT
Content-Type: font/woff2
www.renew-red-light.com/files/theme/plugins.js?1570137717
199.34.228.159200 OK 16 kB URL HTTP/1.1 www.renew-red-light.com/files/theme/plugins.js?1570137717
IP 199.34.228.159:0
Hash 43e6b0bb6eb6524188831a282f7656d7
44e73fe367fc1fb8efee7eefac557b7d76ef0f44
9001fcfe93ceab40de4bb3535fc61335318c56d4440b53070cac27a26fef42bb
GET /files/theme/plugins.js?1570137717 HTTP/1.1
Host: www.renew-red-light.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.renew-red-light.com/
Cookie: is_mobile=0; language=en
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Sep 2022 19:07:19 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sun, 24 Apr 2022 01:56:38 GMT
x-rgw-object-type: Normal
ETag: W/"2b8d85f1ea01d2c3e8b962eac8d76a5c"
x-amz-request-id: tx000000000000001b40535-0062847a75-b9fbc64-sfo1
X-Storage-Bucket: zb635
X-Storage-Object: b6353ca52760aba4e7547ae9861db68158dc2af0f4febece55e5c775ee4449f5
X-Host: grn77.sf2p.intern.weebly.net
Content-Encoding: gzip
fonts.gstatic.com/s/quattrocento/v17/OZpEg_xvsDZQL_LKIF7q4jP3w2j6.woff2
142.250.74.163200 OK 36 kB URL HTTP/1.1 fonts.gstatic.com/s/quattrocento/v17/OZpEg_xvsDZQL_LKIF7q4jP3w2j6.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 35872, version 1.0\012- data
Hash 62d2afa37918c2d8841c75898eadd68f
d6da38ee9ba1db21b7ee298f0018c2010d5ad882
fe65e8f74381d5afc5a63c298f62b26c4b68531e9e2792e6fa63f4af24842596
GET /s/quattrocento/v17/OZpEg_xvsDZQL_LKIF7q4jP3w2j6.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.renew-red-light.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 35872
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 01 Sep 2022 14:05:14 GMT
Expires: Fri, 01 Sep 2023 14:05:14 GMT
Cache-Control: public, max-age=31536000
Age: 450125
Last-Modified: Wed, 27 Apr 2022 16:12:18 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/crimsontext/v19/wlp2gwHKFkZgtmSR3NB0oRJfbwhT.woff2
142.250.74.163200 OK 25 kB URL HTTP/1.1 fonts.gstatic.com/s/crimsontext/v19/wlp2gwHKFkZgtmSR3NB0oRJfbwhT.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 25184, version 1.0\012- data
Hash 23eec75ba54d389a0188abbb596b7614
daa4672ad515a108325f52116e9a49aab8cdd5fa
538c7067580f457dd3dd98ebaabeb19405c12bdd01674d3db8fd9948ee73c862
GET /s/crimsontext/v19/wlp2gwHKFkZgtmSR3NB0oRJfbwhT.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.renew-red-light.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 25184
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 31 Aug 2022 04:32:32 GMT
Expires: Thu, 31 Aug 2023 04:32:32 GMT
Cache-Control: public, max-age=31536000
Age: 570887
Last-Modified: Tue, 24 May 2022 18:26:18 GMT
Content-Type: font/woff2
www.renew-red-light.com/uploads/1/4/2/1/142129055/renew-red-light-merged-red.jpg
199.34.228.159200 OK 4.8 kB URL HTTP/1.1 www.renew-red-light.com/uploads/1/4/2/1/142129055/renew-red-light-merged-red.jpg
IP 199.34.228.159:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 161x100, components 3\012- data
Hash 9c7866386b230170332a897aaea1045a
2647b5948fbe1a94d64c3d5c1a5e24800b8c49e2
376063e89d81b9b123c6a4c51ea1fa3f8a9b2558acecde791c713da8ff897a15
GET /uploads/1/4/2/1/142129055/renew-red-light-merged-red.jpg HTTP/1.1
Host: www.renew-red-light.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.renew-red-light.com/
Cookie: is_mobile=0; language=en
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Sep 2022 19:07:19 GMT
Content-Type: image/jpeg
Content-Length: 4819
Connection: keep-alive
Last-Modified: Mon, 06 Jun 2022 20:15:08 GMT
x-rgw-object-type: Normal
ETag: "9c7866386b230170332a897aaea1045a"
x-amz-request-id: tx0000000000000373335ce-0063179a67-c0351c8-sfo1
X-Storage-Bucket: z3760
X-Storage-Object: 376063e89d81b9b123c6a4c51ea1fa3f8a9b2558acecde791c713da8ff897a15
X-Host: grn139.sf2p.intern.weebly.net
Accept-Ranges: bytes, bytes
push.services.mozilla.com/
52.89.255.30101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.89.255.30:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: q/CTSof6NNn+4Ec2XhCBOQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: UwPotByFx7KAhb8HZDoVQkpS7cg=
use.typekit.net/af/1da05b/0000000000000000000132df/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
23.36.76.122200 OK 27 kB URL HTTP/2 use.typekit.net/af/1da05b/0000000000000000000132df/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3
IP 23.36.76.122:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), TrueType, length 26888, version 1.0\012- data
Hash 6c288957e1ea69636d76b434a53c65ef
b8e0e2074136f3b167567d532312cc0f838bdf5f
c763917e443b5583abccb9674edfaf82deada941ad5894d28c672c632fcd64dc
GET /af/1da05b/0000000000000000000132df/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.renew-red-light.com
Connection: keep-alive
Referer: http://www.renew-red-light.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 26888
etag: "49d80c15efa35e0c65ed7e265d2c0333b309aa4e"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Tue, 06 Sep 2022 19:07:19 GMT
X-Firefox-Spdy: h2
use.typekit.net/af/099730/0000000000000000000132e6/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i9&v=3
23.36.76.122200 OK 28 kB URL HTTP/2 use.typekit.net/af/099730/0000000000000000000132e6/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i9&v=3
IP 23.36.76.122:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), CFF, length 27788, version 1.0\012- data
Hash ccc7b72fb1a80abb8cbafa94de34a554
0c68982548e2af3c6d6e8c49128be51e3f5dd0d1
3d25e0efebb8648cd1fcb31872cf5200c2e577259ad589b6e802bb1d95d03efe
GET /af/099730/0000000000000000000132e6/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i9&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.renew-red-light.com
Connection: keep-alive
Referer: http://www.renew-red-light.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 27788
etag: "d76106a15ff619ce03b2c3ca28b4559b159b1b63"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Tue, 06 Sep 2022 19:07:19 GMT
X-Firefox-Spdy: h2
use.typekit.net/af/32d3ee/0000000000000000000132e0/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i4&v=3
23.36.76.122200 OK 27 kB URL HTTP/2 use.typekit.net/af/32d3ee/0000000000000000000132e0/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i4&v=3
IP 23.36.76.122:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), TrueType, length 26568, version 1.0\012- data
Hash 69d7f21af427ec644440343c1bcd0606
186c5445f00e61e82a73ce3207965ce28c410f72
2a1074cd5044c672760ad745fdbbd125381d63a86f5380b57a1dd28ad0da0d75
GET /af/32d3ee/0000000000000000000132e0/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=i4&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.renew-red-light.com
Connection: keep-alive
Referer: http://www.renew-red-light.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 26568
etag: "c11943bfe7851ce643a829e2f815ebf55030b555"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Tue, 06 Sep 2022 19:07:19 GMT
X-Firefox-Spdy: h2
use.typekit.net/af/031bc7/0000000000000000000132e5/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n9&v=3
23.36.76.122200 OK 29 kB URL HTTP/2 use.typekit.net/af/031bc7/0000000000000000000132e5/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n9&v=3
IP 23.36.76.122:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), CFF, length 29052, version 1.0\012- data
Hash 3437e060c8710bccafd202e3da9a25dc
8e1bbee3d09332165b23156a05b43641f8d9f913
0656089e2e797a739897875d68a79ca62256a3c76ab3f4c31cb2f363cd778fee
GET /af/031bc7/0000000000000000000132e5/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n9&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.renew-red-light.com
Connection: keep-alive
Referer: http://www.renew-red-light.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 29052
etag: "a6e56bc1473094b110819c4cfa4169b4a97bd255"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Tue, 06 Sep 2022 19:07:19 GMT
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/wsnbn/snowday262.js
151.101.85.46200 OK 26 kB URL HTTP/1.1 cdn2.editmysite.com/js/wsnbn/snowday262.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (2512)
Hash 234327230add9a5a5d61a48829ea4565
7966cc0e4bd76f88ff193c8a99a067de804b7129
bb696c58d9ae5fa635b3ff22efdf60de9ac2f8ef9df5e2f2d58dd5f8dc99df75
GET /js/wsnbn/snowday262.js HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.renew-red-light.com/
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/javascript
Last-Modified: Tue, 30 Aug 2022 19:50:08 GMT
ETag: "630e69f0-124fe"
Expires: Thu, 15 Sep 2022 08:38:41 GMT
Cache-Control: max-age=1209600
X-Host: grn123.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 25752
Accept-Ranges: bytes
Date: Tue, 06 Sep 2022 19:07:19 GMT
Age: 469719
Connection: keep-alive
X-Served-By: cache-sjc10034-SJC, cache-bma1667-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 5501
X-Timer: S1662491240.594434,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
cdn2.editmysite.com/css/free-footer-v3.css?buildtime=1662479164
151.101.85.46200 OK 886 B URL HTTP/1.1 cdn2.editmysite.com/css/free-footer-v3.css?buildtime=1662479164
IP 151.101.85.46:0
File type ASCII text, with very long lines (2632)
Hash 5c465ace654da8d0e367f91e7751ae62
f218f483eccbba5be90abf97eff819569329f8b7
0c91c8e311bc809644913a2ff023585ba587ecfc834ba3cd152544e75d422bd9
GET /css/free-footer-v3.css?buildtime=1662479164 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.renew-red-light.com/
HTTP/1.1 200 OK
Server: nginx
Content-Type: text/css
Last-Modified: Tue, 06 Sep 2022 15:26:22 GMT
ETag: "6317669e-a49"
Expires: Tue, 20 Sep 2022 15:50:21 GMT
Cache-Control: max-age=1209600
X-Host: grn28.sf2p.intern.weebly.net
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Content-Length: 886
Accept-Ranges: bytes
Date: Tue, 06 Sep 2022 19:07:19 GMT
Age: 11818
Connection: keep-alive
X-Served-By: cache-sjc10077-SJC, cache-bma1667-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 54
X-Timer: S1662491240.658311,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 21d1b5be072df45253749eeb3290be82
4ac9978797c085289b9fcc2fe9a57b619e1c78c9
9ea779e1ad86a4a7c403b574908e2dc60d079b366ab1cf439b34c73c9a9c64c9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 19:07:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?_=1662491233820
142.250.74.164200 OK 553 B URL HTTP/2 www.google.com/recaptcha/api.js?_=1662491233820
IP 142.250.74.164:0
File type ASCII text, with very long lines (850), with no line terminators
Hash 528455474b03fa8ad71a558347e43fe1
597b34487415fa60028f80afd7ab2cf27383ace5
af9ee6f9ce7bd44e5dbbfcab2a528e062f9dec4640a98a396170d46c494dafb5
GET /recaptcha/api.js?_=1662491233820 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.renew-red-light.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Tue, 06 Sep 2022 19:07:19 GMT
date: Tue, 06 Sep 2022 19:07:19 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 553
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
p.typekit.net/p.gif?s=1&k=nxe1ajf&ht=tk&h=www.renew-red-light.com&f=10294.10295.10304.10305&a=3024360&js=1.21.0&app=typekit&e=js&_=1662491233910
23.36.76.122200 OK 35 B URL HTTP/2 p.typekit.net/p.gif?s=1&k=nxe1ajf&ht=tk&h=www.renew-red-light.com&f=10294.10295.10304.10305&a=3024360&js=1.21.0&app=typekit&e=js&_=1662491233910
IP 23.36.76.122:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 81144d75b3e69e9aa2fa3e9d83a64d03
f0fbc60b50edf5b2a0b76e0aa0537b76bf346ffc
9b9265c69a5cc295d1ab0d04e0273b3677db1a6216ce2ccf4efc8c277ed84b39
GET /p.gif?s=1&k=nxe1ajf&ht=tk&h=www.renew-red-light.com&f=10294.10295.10304.10305&a=3024360&js=1.21.0&app=typekit&e=js&_=1662491233910 HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.renew-red-light.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=604800
content-type: image/gif
cross-origin-resource-policy: cross-origin
etag: "61c32ad2-23"
last-modified: Wed, 22 Dec 2021 13:40:34 GMT
server: nginx
content-length: 35
unused62: 8096267
date: Tue, 06 Sep 2022 19:07:19 GMT
X-Firefox-Spdy: h2
cdn2.editmysite.com/images/landing-pages/global/logotype.svg
151.101.85.46200 OK 1.5 kB URL HTTP/1.1 cdn2.editmysite.com/images/landing-pages/global/logotype.svg
IP 151.101.85.46:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2858)
Hash 0d1c9fb7005532e7b245cfdf1280d805
2466421992f1fb0e44829833aaee7afc0e5ac7cc
8691b92eed1360903b2182d81e491c80141d0cd051366ce3e8c4f359538eb1ff
GET /images/landing-pages/global/logotype.svg HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn2.editmysite.com/css/free-footer-v3.css?buildtime=1662479164
HTTP/1.1 200 OK
X-GUploader-UploadID: ADPycdu3WKYd9ihxZuRayD6zmSn-Rh8hU-WhLx9GBozTTJsb87kK47MR6siKtjK0iSd4SSX9DCkFdQpI7nLFZ-DLDWoTdA
x-goog-generation: 1539207420450301
x-goog-metageneration: 3
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 3507
x-goog-hash: crc32c=vgUlyw==, md5=vGHctDGhTFCAde7/T3RSOg==
x-goog-storage-class: STANDARD
Server: UploadServer
Expires: Sun, 12 Jun 2022 23:57:38 GMT
Cache-Control: public, max-age=86400, s-maxage=259200
Last-Modified: Wed, 10 Oct 2018 21:37:00 GMT
ETag: "bc61dcb431a14c508075eeff4f74523a"
Content-Type: image/svg+xml
Content-Encoding: gzip
Content-Length: 1488
Accept-Ranges: bytes
Date: Tue, 06 Sep 2022 19:07:19 GMT
Via: 1.1 varnish
Age: 154798
Connection: keep-alive
X-Served-By: cache-bma1667-BMA
X-Cache: HIT
X-Cache-Hits: 865
X-Timer: S1662491240.742172,VS0,VE0
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 8fc7316fab55e89a81536e926eab6f83
7fcab743b176312e76999b39a1b2a3b97dbeb10f
8178b9805611209f5c47dce32da555117870a90648e026d08cc691a4103169a7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 19:07:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn2.editmysite.com/fonts/SQ_Market/sqmarket-medium.woff2
151.101.85.46200 OK 31 kB URL HTTP/1.1 cdn2.editmysite.com/fonts/SQ_Market/sqmarket-medium.woff2
IP 151.101.85.46:0
File type Web Open Font Format (Version 2), TrueType, length 30768, version 1.393\012- data
Hash 2344124773c71bf4fa4ad407e7c3a467
3394a43ab1efab8a22a1f07222f7f02a9e12cbb8
bd4d2e29f503390e4951af9232fc43780b43d349647188d8f3f600835f16afb7
GET /fonts/SQ_Market/sqmarket-medium.woff2 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.renew-red-light.com
Connection: keep-alive
Referer: http://www.renew-red-light.com/
HTTP/1.1 200 OK
Server: nginx
Content-Type: font/woff2
Last-Modified: Tue, 30 Aug 2022 14:34:36 GMT
ETag: "630e1ffc-7830"
Expires: Wed, 14 Sep 2022 08:35:40 GMT
Cache-Control: max-age=1209600
X-Host: grn61.sf2p.intern.weebly.net
Via: 1.1 varnish, 1.1 varnish
Content-Length: 30768
Accept-Ranges: bytes
Date: Tue, 06 Sep 2022 19:07:19 GMT
Age: 556299
Connection: keep-alive
X-Served-By: cache-sjc10073-SJC, cache-bma1631-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 2, 1526
X-Timer: S1662491240.750547,VS0,VE0
Access-Control-Allow-Origin: *
www.renew-red-light.com/uploads/1/4/2/1/142129055/published/immune-support-final.jpg?1655173411
199.34.228.159200 OK 28 kB URL HTTP/1.1 www.renew-red-light.com/uploads/1/4/2/1/142129055/published/immune-support-final.jpg?1655173411
IP 199.34.228.159:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 623x412, components 3\012- data
Hash bff354f0016c16b3ebe8fd077985e2b3
1f670287c26f59d3efb048052be16eb7ed1532cb
1a5be5250a04fe65f63300b8f87ac82833c5de9cb9024591525dac77e283f016
GET /uploads/1/4/2/1/142129055/published/immune-support-final.jpg?1655173411 HTTP/1.1
Host: www.renew-red-light.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.renew-red-light.com/
Cookie: is_mobile=0; language=en
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Sep 2022 19:07:19 GMT
Content-Type: image/jpeg
Content-Length: 27931
Connection: keep-alive
Last-Modified: Tue, 14 Jun 2022 02:23:31 GMT
x-rgw-object-type: Normal
ETag: "bff354f0016c16b3ebe8fd077985e2b3"
x-amz-request-id: tx00000000000003787776a-0063179a67-c03521c-sfo1
X-Storage-Bucket: z1a5b
X-Storage-Object: 1a5be5250a04fe65f63300b8f87ac82833c5de9cb9024591525dac77e283f016
X-Host: grn46.sf2p.intern.weebly.net
Accept-Ranges: bytes, bytes
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
35.82.13.103200 OK 0 B URL HTTP/1.1 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP 35.82.13.103:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://www.renew-red-light.com/
Origin: http://www.renew-red-light.com
Connection: keep-alive
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 19:07:20 GMT
Content-Length: 0
Connection: keep-alive
Server: nginx
Access-Control-Allow-Origin: http://www.renew-red-light.com
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: Content-Type, SP-Anonymous
Access-Control-Max-Age: 5
www.renew-red-light.com/uploads/1/4/2/1/142129055/published/white-yoga-1_1.png?1655173405
199.34.228.159200 OK 170 kB URL HTTP/1.1 www.renew-red-light.com/uploads/1/4/2/1/142129055/published/white-yoga-1_1.png?1655173405
IP 199.34.228.159:0
File type PNG image data, 569 x 416, 8-bit/color RGBA, non-interlaced\012- data
Size 170 kB (170306 bytes)
Hash 99189f8a432b5c512861cd62371bfe0e
f45ca95c7d8e826fbada8d6b5b11ee65b92a2d8d
b1cac41f837c3467e5cc4d08a280bd6b74abc53cf1c9362b17ebbfb134267ba6
GET /uploads/1/4/2/1/142129055/published/white-yoga-1_1.png?1655173405 HTTP/1.1
Host: www.renew-red-light.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.renew-red-light.com/
Cookie: is_mobile=0; language=en
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Sep 2022 19:07:19 GMT
Content-Type: image/png
Content-Length: 170306
Connection: keep-alive
Last-Modified: Tue, 14 Jun 2022 02:23:25 GMT
x-rgw-object-type: Normal
ETag: "99189f8a432b5c512861cd62371bfe0e"
x-amz-request-id: tx0000000000000378fd20c-0063179a67-c0351b0-sfo1
X-Storage-Bucket: zb1ca
X-Storage-Object: b1cac41f837c3467e5cc4d08a280bd6b74abc53cf1c9362b17ebbfb134267ba6
X-Host: blu71.sf2p.intern.weebly.net
Accept-Ranges: bytes, bytes
www.renew-red-light.com/files/theme/fonts/Unite_700.otf?1655395890
199.34.228.159200 OK 90 kB URL HTTP/1.1 www.renew-red-light.com/files/theme/fonts/Unite_700.otf?1655395890
IP 199.34.228.159:0
File type OpenType font data\012- data
Hash fa11c3ca7b2301d6b8da51b04985fb05
a9b9dae4568883ef65d130a8237343185d463f2a
36906b2b3f6a199b3c59e6d862bfb36ed52d5c8de14ce46da8a8c5890250eb17
GET /files/theme/fonts/Unite_700.otf?1655395890 HTTP/1.1
Host: www.renew-red-light.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.renew-red-light.com/files/main_style.css?1655395890
Cookie: is_mobile=0; language=en
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Sep 2022 19:07:19 GMT
Content-Type: font/otf
Content-Length: 89928
Connection: keep-alive
Last-Modified: Fri, 08 May 2020 19:36:11 GMT
ETag: "fa11c3ca7b2301d6b8da51b04985fb05"
x-amz-request-id: tx0000000000000001ea383-0061629352-1ff9432-las
X-Storage-Bucket: z3690
X-Storage-Object: 36906b2b3f6a199b3c59e6d862bfb36ed52d5c8de14ce46da8a8c5890250eb17
X-Host: grn46.sf2p.intern.weebly.net
Accept-Ranges: bytes
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
35.82.13.103200 OK 2 B URL HTTP/1.1 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP 35.82.13.103:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json; charset=UTF-8
Content-Length: 1777
Origin: http://www.renew-red-light.com
Connection: keep-alive
Referer: http://www.renew-red-light.com/
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 19:07:20 GMT
Content-Type: text/plain; charset=UTF-8
Content-Length: 2
Connection: keep-alive
Server: nginx
Set-Cookie: sp=17fab4cd-09d6-4980-8d19-8bec8530bd0d; Expires=Wed, 06 Sep 2023 19:07:20 GMT; Domain=; Path=/; Secure; SameSite=None
P3P: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
Access-Control-Allow-Origin: http://www.renew-red-light.com
Access-Control-Allow-Credentials: true
www.renew-red-light.com/files/theme/fonts/Unite_500.otf?1655395890
199.34.228.159200 OK 86 kB URL HTTP/1.1 www.renew-red-light.com/files/theme/fonts/Unite_500.otf?1655395890
IP 199.34.228.159:0
File type OpenType font data\012- data
Hash 1f55925e52b9e71fd57108874184060d
e8acc9022336f58bb5ee2e2d4d98b51bebf45990
f02b5750f291a5bd474f7cdbcb7b3fa79f2016c6af20d661b490b9bf945d41fc
GET /files/theme/fonts/Unite_500.otf?1655395890 HTTP/1.1
Host: www.renew-red-light.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.renew-red-light.com/files/main_style.css?1655395890
Cookie: is_mobile=0; language=en
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Sep 2022 19:07:19 GMT
Content-Type: font/otf
Content-Length: 86528
Connection: keep-alive
Last-Modified: Fri, 08 May 2020 19:36:11 GMT
x-rgw-object-type: Normal
ETag: "1f55925e52b9e71fd57108874184060d"
x-amz-request-id: tx000000000000000d90b42-0061a7158a-a9f41e7-sfo1
X-Storage-Bucket: zf02b
X-Storage-Object: f02b5750f291a5bd474f7cdbcb7b3fa79f2016c6af20d661b490b9bf945d41fc
X-Host: grn79.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.renew-red-light.com/uploads/1/4/2/1/142129055/published/adobestock-84258555_2.png?1655323946
199.34.228.159200 OK 131 kB URL HTTP/1.1 www.renew-red-light.com/uploads/1/4/2/1/142129055/published/adobestock-84258555_2.png?1655323946
IP 199.34.228.159:0
File type PNG image data, 407 x 446, 8-bit/color RGBA, non-interlaced\012- data
Size 131 kB (130552 bytes)
Hash e13c03ffd6a4a5861ea53d9702575793
d8f1f088827752991a498f30a49e1b442ecdaf72
687b4cf882174a86d404e021e8bc6270b55a126a37fce3755eef747c92c47ff7
GET /uploads/1/4/2/1/142129055/published/adobestock-84258555_2.png?1655323946 HTTP/1.1
Host: www.renew-red-light.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.renew-red-light.com/
Cookie: is_mobile=0; language=en
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Sep 2022 19:07:19 GMT
Content-Type: image/png
Content-Length: 130552
Connection: keep-alive
Last-Modified: Fri, 12 Apr 2019 21:23:40 GMT
x-rgw-object-type: Normal
ETag: "e13c03ffd6a4a5861ea53d9702575793"
x-amz-request-id: tx000000000000037b34bf6-0063179a67-bfe36ba-sfo1
X-Storage-Bucket: z687b
X-Storage-Object: 687b4cf882174a86d404e021e8bc6270b55a126a37fce3755eef747c92c47ff7
X-Host: grn139.sf2p.intern.weebly.net
Accept-Ranges: bytes, bytes
www.renew-red-light.com/uploads/1/4/2/1/142129055/background-images/872293141.png
199.34.228.159200 OK 12 kB URL HTTP/1.1 www.renew-red-light.com/uploads/1/4/2/1/142129055/background-images/872293141.png
IP 199.34.228.159:0
File type PNG image data, 1440 x 435, 8-bit/color RGBA, non-interlaced\012- data
Hash 09ba61d17ad4656bf904f2887daf593a
c062f48011eb70c945b2417ab71061cc68e4ea6f
6d7ba12543240e9b3c4cda45878ef0280c718ff06f7be3807aacd2bb51c6a615
GET /uploads/1/4/2/1/142129055/background-images/872293141.png HTTP/1.1
Host: www.renew-red-light.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.renew-red-light.com/
Cookie: is_mobile=0; language=en
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Sep 2022 19:07:20 GMT
Content-Type: image/png; charset=binary
Content-Length: 12397
Connection: keep-alive
Last-Modified: Thu, 28 May 2020 00:19:01 GMT
ETag: "09ba61d17ad4656bf904f2887daf593a"
x-amz-request-id: tx000000000000003060973-0061665937-1ff9432-las
X-Storage-Bucket: z6d7b
X-Storage-Object: 6d7ba12543240e9b3c4cda45878ef0280c718ff06f7be3807aacd2bb51c6a615
X-Host: blu49.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.renew-red-light.com/uploads/1/4/2/1/142129055/background-images/1755947231.jpg
199.34.228.159200 OK 125 kB URL HTTP/1.1 www.renew-red-light.com/uploads/1/4/2/1/142129055/background-images/1755947231.jpg
IP 199.34.228.159:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2070x1052, components 3\012- data
Size 125 kB (125030 bytes)
Hash 776188f8673dd2f3891ba9422b31b47b
e97676ae82e7c1f56f736df52a2a455ace651106
8f073ca6e162ea3264885ebe981ae3aa6af1f38520dde812b2ff55abfb83a81d
GET /uploads/1/4/2/1/142129055/background-images/1755947231.jpg HTTP/1.1
Host: www.renew-red-light.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.renew-red-light.com/
Cookie: is_mobile=0; language=en
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Sep 2022 19:07:19 GMT
Content-Type: image/jpeg
Content-Length: 125030
Connection: keep-alive
Last-Modified: Tue, 07 Jun 2022 16:43:22 GMT
x-rgw-object-type: Normal
ETag: "776188f8673dd2f3891ba9422b31b47b"
x-amz-request-id: tx00000000000003736642c-0063179a67-c033918-sfo1
X-Storage-Bucket: z8f07
X-Storage-Object: 8f073ca6e162ea3264885ebe981ae3aa6af1f38520dde812b2ff55abfb83a81d
X-Host: grn70.sf2p.intern.weebly.net
Accept-Ranges: bytes, bytes
www.google-analytics.com/ga.js
142.250.74.174200 OK 17 kB URL HTTP/1.1 www.google-analytics.com/ga.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1305)
Hash 01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /ga.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.renew-red-light.com/
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 17168
Date: Tue, 06 Sep 2022 19:04:44 GMT
Expires: Tue, 06 Sep 2022 21:04:44 GMT
Cache-Control: public, max-age=7200
Age: 156
Last-Modified: Wed, 13 Apr 2022 21:02:38 GMT
Content-Type: text/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash eb53024bbd41c1d8f88fa7b9becb704a
c87f5ac53cff6e3436c15551f8092f1e0215cb79
f2f589c71f9426ead1c60e4707982aa501b785a6040c95214db905a5cff8a777
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 19:07:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/recaptcha/releases/duyHVVR9Brf6N2GewjkPRfsA/recaptcha__en.js
142.250.74.163200 OK 158 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/duyHVVR9Brf6N2GewjkPRfsA/recaptcha__en.js
IP 142.250.74.163:0
File type HTML document, ASCII text, with very long lines (579)
Size 158 kB (158056 bytes)
Hash d63a69f898e1d00cfc7c871744ded8c4
e166540eccb571c95c8c1135c2168cf5df306991
ed7892ca1498d6dfc0ff8b354ab8c409eed81b1fa77b427467815d0c7f45021c
GET /recaptcha/releases/duyHVVR9Brf6N2GewjkPRfsA/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.renew-red-light.com
Connection: keep-alive
Referer: http://www.renew-red-light.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 158056
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Sep 2022 21:31:14 GMT
expires: Sat, 02 Sep 2023 21:31:14 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 02 Sep 2022 18:40:58 GMT
content-type: text/javascript
age: 336966
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.renew-red-light.com/favicon.ico
199.34.228.159200 OK 4.3 kB URL HTTP/1.1 www.renew-red-light.com/favicon.ico
IP 199.34.228.159:0
File type MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Hash 4d27526198ac873ccec96935198e0fb9
b98d8b73ad6a0f7477c3397561b4aab37bf262aa
40a2146151863bcf46c786d596e81a308d1b0d26d74635be441e92656f29b1b4
GET /favicon.ico HTTP/1.1
Host: www.renew-red-light.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.renew-red-light.com/
Cookie: is_mobile=0; language=en; _snow_ses.f2bf=*; _snow_id.f2bf=cc95c5fc-3223-4d60-8333-4fb41de74a9a.1662491234.1.1662491234.1662491234.9c240fe8-1867-4539-9305-dcd3f8cc69d1
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Sep 2022 19:07:20 GMT
Content-Type: image/x-icon
Content-Length: 4286
Connection: keep-alive
Last-Modified: Fri, 24 Sep 2021 21:48:12 GMT
ETag: "4d27526198ac873ccec96935198e0fb9"
x-amz-request-id: tx00000000000000009c47b-0061627849-1ff7556-las
X-Storage-Bucket: z40a2
X-Storage-Object: 40a2146151863bcf46c786d596e81a308d1b0d26d74635be441e92656f29b1b4
X-Host: grn46.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.renew-red-light.com/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]
199.34.228.159200 OK 348 B URL HTTP/1.1 www.renew-red-light.com/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]
IP 199.34.228.159:0
File type JSON data\012- , ASCII text, with very long lines (348), with no line terminators
Hash a944dd688c99d2901d6719be713271c0
4f5454d5d434829baf46671638610791758725d9
adb97e1bc686c58b4286f1208d2bd969687c6cf3e2fc468697dfd956d260de49
POST /ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails] HTTP/1.1
Host: www.renew-red-light.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 83
Origin: http://www.renew-red-light.com
Connection: keep-alive
Referer: http://www.renew-red-light.com/
Cookie: is_mobile=0; language=en; _snow_ses.f2bf=*; _snow_id.f2bf=cc95c5fc-3223-4d60-8333-4fb41de74a9a.1662491234.1.1662491234.1662491234.9c240fe8-1867-4539-9305-dcd3f8cc69d1
HTTP/1.1 200 OK
Date: Tue, 06 Sep 2022 19:07:20 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: grn119.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 348
Keep-Alive: timeout=10, max=70
Connection: Keep-Alive
Content-Type: application/json
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2318
Expires: Tue, 06 Sep 2022 19:45:58 GMT
Date: Tue, 06 Sep 2022 19:07:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2318
Expires: Tue, 06 Sep 2022 19:45:58 GMT
Date: Tue, 06 Sep 2022 19:07:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2318
Expires: Tue, 06 Sep 2022 19:45:58 GMT
Date: Tue, 06 Sep 2022 19:07:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2318
Expires: Tue, 06 Sep 2022 19:45:58 GMT
Date: Tue, 06 Sep 2022 19:07:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2318
Expires: Tue, 06 Sep 2022 19:45:58 GMT
Date: Tue, 06 Sep 2022 19:07:20 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ad09c5e-a115-4ff7-9742-809e93046365.jpeg
34.120.237.76200 OK 4.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ad09c5e-a115-4ff7-9742-809e93046365.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c81f3df885bdee8cac46ea9495e6b63b
fc766bca874a352a4acb569577d4cf6527f4f074
e21473f88c613ca33ba6bbe1e0cab338274a06744cdcb088f14873c972445b36
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ad09c5e-a115-4ff7-9742-809e93046365.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4426
x-amzn-requestid: b5b68557-e46d-41cd-9b11-d996aabc0de7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzfYTHHFIAMFjFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631145ce-1d3504367cf6ef724a345564;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 23:52:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: GSRJIWisH465dPqbKyPj1iZk1jAu3RGrgwj1CX3X8A397zv9Nt0cHA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 08:35:06 GMT
age: 37934
etag: "fc766bca874a352a4acb569577d4cf6527f4f074"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1756524-f0d1-4149-aa44-603b827f87d4.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1756524-f0d1-4149-aa44-603b827f87d4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 983e705542fa78b4d5c876e0c1eada7e
5fc951e5236edd282d4975853ca35dab2e55fb17
fa6e478fc213f6cb6c9f33c96c51105262c857bfe313b3d310755be30b1feeb3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1756524-f0d1-4149-aa44-603b827f87d4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6656
x-amzn-requestid: 2703eaf4-1a5a-41a6-859b-47255865efb0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAX-3F2ZIAMFpLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166d2b-6df026de5a9230ed429d08c1;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: FIIvB2jeQ_PBDzi8XRN0jnNxze3OwDbz8TBaIcadRvmQd2EFhCwX7Q==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:44:33 GMT
age: 76967
etag: "5fc951e5236edd282d4975853ca35dab2e55fb17"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4b02d0f-9da0-42dc-a234-02e974e7d286.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4b02d0f-9da0-42dc-a234-02e974e7d286.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c23179b2131543088771e3fa84ff231
ae50ae4aecd962b698c19f2863857b51cea7fcec
660900ca69b1787a734c1dbe3d6b9b19656912b4bc4715964c4325edff57f008
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4b02d0f-9da0-42dc-a234-02e974e7d286.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7855
x-amzn-requestid: d7c8054c-d7d3-4b76-815d-36c3a2e1f6a4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAYn6FwzoAMF40g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166e32-3ededbf27f83503978e0d775;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:46:26 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: QFEoJOq9eyhQH3KTlAB_ctOvGWRfAkPMHiZUa34wae07KaezXFodBg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:57:14 GMT
age: 76206
etag: "ae50ae4aecd962b698c19f2863857b51cea7fcec"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa58df54c-7833-44ce-9519-a44b50319614.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa58df54c-7833-44ce-9519-a44b50319614.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1a87857b93f99eab3118aae97a1c9d22
3aea6a5aaf5ccda356d7e0941b33a7c2e2b13e80
97ce11c0e0efe83d6568f173f9235160157c52b4ab4299823d508c072f113ddc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa58df54c-7833-44ce-9519-a44b50319614.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5775
x-amzn-requestid: dc0a6d9c-5aec-44a3-be54-69cec17f9de1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAYfxE0noAMFz0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166dfe-6c8ec4b03fc761d81c988132;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:45:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: z3WamVQsZqAoYnfPZ0rgyYXGzs1jsv56D1oF4Wzva-H-T8a-xPU8mg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 22:00:00 GMT
age: 76040
etag: "3aea6a5aaf5ccda356d7e0941b33a7c2e2b13e80"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106059e1-95ed-4ffb-b6d2-7b4f160333ed.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106059e1-95ed-4ffb-b6d2-7b4f160333ed.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ec466c0d472e43c11d36bf6fce068205
720d3624a76d060b8e2699e9aa7a320e3efd4878
5553fc24713aae808f5ab81671551b0ae719435f3ced9f25df97d8edf6bfe86f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106059e1-95ed-4ffb-b6d2-7b4f160333ed.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12683
x-amzn-requestid: 6127e5b6-72f6-40df-b400-41a1f147f6da
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xz8XmEe0IAMFQDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63117430-2b27a2683d2d320172cef32e;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 03:10:40 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Mj_IT5g7hGu2AunKK7mvierv5BQ8cAxhnbGaUNsL6hRNu6MRAzIBDw==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 04:31:02 GMT
age: 52578
etag: "720d3624a76d060b8e2699e9aa7a320e3efd4878"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F803e9506-f3ea-4e09-a966-608b8dabf3b0.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F803e9506-f3ea-4e09-a966-608b8dabf3b0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5540d72831e7e7b9fc287f92c48d9f5e
ec19429fa76d9ad47a0578734b011b530b79ebbf
bc27a44853fd17cf51d6bba0db58a755c75a309d9b0cbcd454dfc9d62785f72f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F803e9506-f3ea-4e09-a966-608b8dabf3b0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8134
x-amzn-requestid: 1b2ece5c-784c-4c14-a760-c43d697b1abf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X7FSEE2CIAMFvgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63144f40-2243fc211a76c7e404710c7c;Sampled=0
x-amzn-remapped-date: Sun, 04 Sep 2022 07:09:52 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: f2bMA3sdC6qxijseKXb53WMncdjInfvh-lVvr0W69sgaHEHKCNvLMQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 07:25:52 GMT
age: 42088
etag: "ec19429fa76d9ad47a0578734b011b530b79ebbf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.renew-red-light.com/uploads/1/4/2/1/142129055/mental-health_orig.png
199.34.228.159200 OK 930 kB URL HTTP/1.1 www.renew-red-light.com/uploads/1/4/2/1/142129055/mental-health_orig.png
IP 199.34.228.159:0
File type PNG image data, 1100 x 733, 8-bit/color RGB, non-interlaced\012- data
Size 930 kB (930174 bytes)
Hash b698a69fd590099583b3ff925035c9c7
b85c28e4356e779e3a0db0a28afe64ac9fff3ec8
07d8a5c7660c11717257f550c54b1201bf918f5e90566b9b918dc83e23453fda
GET /uploads/1/4/2/1/142129055/mental-health_orig.png HTTP/1.1
Host: www.renew-red-light.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.renew-red-light.com/
Cookie: is_mobile=0; language=en
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Sep 2022 19:07:19 GMT
Content-Type: image/png
Content-Length: 930174
Connection: keep-alive
Last-Modified: Tue, 14 Jun 2022 21:57:02 GMT
x-rgw-object-type: Normal
ETag: "b698a69fd590099583b3ff925035c9c7"
x-amz-request-id: tx000000000000037877741-0063179a67-c03521c-sfo1
X-Storage-Bucket: z07d8
X-Storage-Object: 07d8a5c7660c11717257f550c54b1201bf918f5e90566b9b918dc83e23453fda
X-Host: blu14.sf2p.intern.weebly.net
Accept-Ranges: bytes, bytes