linux4.cloudserve.pw/
207.180.212.249200 OK 5.5 kB IP 207.180.212.249:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (478)
Hash 8b251e7c7e94089ca90a300337f5a741
a872a6367ab3c3af507448f43b78b4cf4bf0e0b6
739dd95df399d5fc942217c2391e934611597a6a73b3a9a462c5064036b8ba6f
Analyzer Verdict Alert fortinet Malware
NIDS Severity Alert suricata low ET INFO HTTP Request to a *.pw domain
GET / HTTP/1.1
Host: linux4.cloudserve.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 19:20:51 GMT
Content-Type: text/html
Content-Length: 5454
Last-Modified: Sun, 24 Jan 2021 22:28:06 GMT
Connection: keep-alive
ETag: "600df476-154e"
X-Powered-By: PleskLin
Accept-Ranges: bytes
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash dca68db7aea32f6683ce8d542c078f04
19c495238df74fca680e21f18627ff94de5dd2e5
35cab3987fc0e4a41b305cb208c1e33fa38ce8bdfd9f386c3dc0411dd4d5ac61
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35CAB3987FC0E4A41B305CB208C1E33FA38CE8BDFD9F386C3DC0411DD4D5AC61"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8546
Expires: Wed, 08 Feb 2023 21:43:17 GMT
Date: Wed, 08 Feb 2023 19:20:51 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 565c1bbc5c1c40be1988b3bf6fd9dc1a
cfdba5bc597130461dd67bf6cda53183be592493
60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D"
Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2356
Expires: Wed, 08 Feb 2023 20:00:07 GMT
Date: Wed, 08 Feb 2023 19:20:51 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash cc14b0d2f7c451f6431dc87ba54d1d60
bab8bfda6fa3e2f17125353f5147211787dc25d0
b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD"
Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5138
Expires: Wed, 08 Feb 2023 20:46:29 GMT
Date: Wed, 08 Feb 2023 19:20:51 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Backoff, Alert, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 08 Feb 2023 18:36:41 GMT
content-type: application/json
age: 2650
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: bPao2M00eErMii2OBghGhWcen/3nK2Ig92BHEwl9d+taJykCRqIaFaBKeDr3rPwp0bolOm6zvPA=
x-amz-request-id: 3V1F9XZSEEYPB54B
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 08 Feb 2023 18:46:04 GMT
age: 2087
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
linux4.cloudserve.pw/css/style.css
207.180.212.249200 OK 7.4 kB URL HTTP/1.1 linux4.cloudserve.pw/css/style.css
IP 207.180.212.249:0
Hash 57f41a54c8c34de3b3271b7025e59933
4a2c63df8f357f69e03cdf6fba82fb4d5eb34580
e20e724a7f0bd02f347e3af4f4494f3b04166ac5e4eaf4821a184f31dca43394
NIDS Severity Alert suricata low ET INFO HTTP Request to a *.pw domain
GET /css/style.css HTTP/1.1
Host: linux4.cloudserve.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 19:20:52 GMT
Content-Type: text/css
Content-Length: 7366
Last-Modified: Thu, 27 Feb 2020 09:13:48 GMT
Connection: keep-alive
ETag: "5e57884c-1cc6"
X-Powered-By: PleskLin
Accept-Ranges: bytes
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 19:20:51 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:300,400,600&subset=latin,latin-ext,cyrillic,cyrillic-ext,greek,greek-ext,vietnamese
142.250.74.74200 OK 683 B URL HTTP/1.1 fonts.googleapis.com/css?family=Open+Sans:300,400,600&subset=latin,latin-ext,cyrillic,cyrillic-ext,greek,greek-ext,vietnamese
IP 142.250.74.74:0
Hash de9c94484e44b4bc78f62411bf1b805f
39713343e05d428f90e12ac6ed3dda9416667690
177aa23e39767ba7ed72838fe483ffbfd243a37f5ca2031f3720bc3baff33302
GET /css?family=Open+Sans:300,400,600&subset=latin,latin-ext,cyrillic,cyrillic-ext,greek,greek-ext,vietnamese HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Wed, 08 Feb 2023 19:20:52 GMT
Date: Wed, 08 Feb 2023 19:20:52 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
linux4.cloudserve.pw/img/logo.png
207.180.212.249200 OK 18 kB URL HTTP/1.1 linux4.cloudserve.pw/img/logo.png
IP 207.180.212.249:0
File type PNG image data, 133 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 4ecdddf53fa4b4b108649508cbd1c849
ae874dd2fe3a2ae2d9097111cba8fb9bcfc0c335
b3a52ce017d5ac916dbc75595f345f49075ee73c2c8fac31b430295487efeec4
NIDS Severity Alert suricata low ET INFO HTTP Request to a *.pw domain
GET /img/logo.png HTTP/1.1
Host: linux4.cloudserve.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 19:20:52 GMT
Content-Type: image/png
Content-Length: 18187
Last-Modified: Thu, 27 Feb 2020 09:13:48 GMT
Connection: keep-alive
ETag: "5e57884c-470b"
X-Powered-By: PleskLin
Accept-Ranges: bytes
linux4.cloudserve.pw/img/blog.png
207.180.212.249200 OK 2.3 kB URL HTTP/1.1 linux4.cloudserve.pw/img/blog.png
IP 207.180.212.249:0
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash f7891a5403c402960ecb0ae37decbc65
105e9ffa2949e7460075e120277b61a4d656e495
68c47af57438cc7a864c4ed04ceffc2d66ace8792792f5ba66f6b4caedcced2b
NIDS Severity Alert suricata low ET INFO HTTP Request to a *.pw domain
GET /img/blog.png HTTP/1.1
Host: linux4.cloudserve.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/css/style.css
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 19:20:52 GMT
Content-Type: image/png
Content-Length: 2328
Last-Modified: Thu, 27 Feb 2020 09:13:48 GMT
Connection: keep-alive
ETag: "5e57884c-918"
X-Powered-By: PleskLin
Accept-Ranges: bytes
linux4.cloudserve.pw/img/globe.png
207.180.212.249200 OK 50 kB URL HTTP/1.1 linux4.cloudserve.pw/img/globe.png
IP 207.180.212.249:0
File type PNG image data, 546 x 480, 8-bit/color RGB, non-interlaced\012- data
Hash 396b2938f45c3eee4188c34fc1c5021e
0716af0793e6a9f2b62a6c21038f703b88656c09
49c6d2c4fc8143dd2389df5d6da8ff30128a1257a72ce2ddc922e4267bcb2f92
NIDS Severity Alert suricata low ET INFO HTTP Request to a *.pw domain
GET /img/globe.png HTTP/1.1
Host: linux4.cloudserve.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/css/style.css
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 19:20:52 GMT
Content-Type: image/png
Content-Length: 49609
Last-Modified: Thu, 27 Feb 2020 09:13:48 GMT
Connection: keep-alive
ETag: "5e57884c-c1c9"
X-Powered-By: PleskLin
Accept-Ranges: bytes
assets.plesk.com/static/default-website-content/public/default-website-index.js
185.76.9.26200 OK 11 kB URL HTTP/2 assets.plesk.com/static/default-website-content/public/default-website-index.js
IP 185.76.9.26:0
ASN #60068 Datacamp Limited
Hash a5ba58bf06a098ff21f6b7c8eb0760c2
1628a7eaac389705b81787d11ba0747e248280a2
67b89b36206a84610fc926eb8d7510de53b492e09a892734e53e6c4fb1621ab7
GET /static/default-website-content/public/default-website-index.js HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:20:52 GMT
content-type: application/javascript; charset=utf-8
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Mon, 02 Jan 2023 12:00:26 GMT
access-control-allow-origin: *
etag: W/"63b2c75a-61d9"
expires: Mon, 02 Jan 2023 12:14:06 GMT
cache-control: max-age=600
x-proxy-cache: HIT
x-github-request-id: 9530:1371:1051493:170A5D7:63B2C873
via: 1.1 varnish
age: 0
x-served-by: cache-bma1682-BMA
x-cache-hits: 0
x-timer: S1672661107.317296,VS0,VE93
vary: Accept-Encoding
x-fastly-request-id: 6a9c9f88d6e51cd65db15ce169290277569a005e
x-accel-expires: @1675884449
server: CDN77-Turbo
x-77-nzt: AblMCRRaFhP/ywAAAA
x-77-nzt-ray: af585630b9680acb14f6e36373ec3605
x-cache: HIT
x-age: 203
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
linux4.cloudserve.pw/img/twitter.png
207.180.212.249200 OK 2.3 kB URL HTTP/1.1 linux4.cloudserve.pw/img/twitter.png
IP 207.180.212.249:0
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash 49f00313f6add19cd5da23ea1409fe05
0bec70d41ddd47e300b16ce0d0895c1c3c745191
039ac96482995b80fa192cd487bc668e2acec3f84b3fb908a9624e9888acbc10
NIDS Severity Alert suricata low ET INFO HTTP Request to a *.pw domain
GET /img/twitter.png HTTP/1.1
Host: linux4.cloudserve.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/css/style.css
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 19:20:52 GMT
Content-Type: image/png
Content-Length: 2302
Last-Modified: Thu, 27 Feb 2020 09:13:48 GMT
Connection: keep-alive
ETag: "5e57884c-8fe"
X-Powered-By: PleskLin
Accept-Ranges: bytes
linux4.cloudserve.pw/img/php.png
207.180.212.249200 OK 2.7 kB URL HTTP/1.1 linux4.cloudserve.pw/img/php.png
IP 207.180.212.249:0
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash 5abb55bb92e559b1f2bc9cdc60fcde0f
eac4fb611e27717456fe1b870f6f49ce913a9f45
031a4f0056658d99cbc6ce65b9a690f5f1ebecb80a328a9b394ad964eabac309
NIDS Severity Alert suricata low ET INFO HTTP Request to a *.pw domain
GET /img/php.png HTTP/1.1
Host: linux4.cloudserve.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/css/style.css
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 19:20:52 GMT
Content-Type: image/png
Content-Length: 2695
Last-Modified: Thu, 27 Feb 2020 09:13:48 GMT
Connection: keep-alive
ETag: "5e57884c-a87"
X-Powered-By: PleskLin
Accept-Ranges: bytes
linux4.cloudserve.pw/img/linkedin.png
207.180.212.249200 OK 737 B URL HTTP/1.1 linux4.cloudserve.pw/img/linkedin.png
IP 207.180.212.249:0
File type PNG image data, 64 x 64, 8-bit colormap, non-interlaced\012- data
Hash 8ee7e0a3a9ae1040a9b53725d2caed7c
285751bc16a373c05d92eadcafbce62bd981b527
e62ac2523b7b620400d81820050aa6cdde9ab60585b6c648bac7e0520e604637
NIDS Severity Alert suricata low ET INFO HTTP Request to a *.pw domain
GET /img/linkedin.png HTTP/1.1
Host: linux4.cloudserve.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/css/style.css
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 19:20:52 GMT
Content-Type: image/png
Content-Length: 737
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Thu, 27 Feb 2020 09:13:48 GMT
ETag: "2e1-59f8b23863faf"
Accept-Ranges: bytes
X-Powered-By: PleskLin
linux4.cloudserve.pw/img/fastcgi.png
207.180.212.249200 OK 3.5 kB URL HTTP/1.1 linux4.cloudserve.pw/img/fastcgi.png
IP 207.180.212.249:0
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash 88f914b6f6b89e824c09740e2fad4435
bcd2269a1c973a83ab15dced6200e01e2ff82a8c
18d6f33ca2f57b6a0d2bbe9088a5a2390ce38372d8ac90c09fa13c99ad71c685
NIDS Severity Alert suricata low ET INFO HTTP Request to a *.pw domain
GET /img/fastcgi.png HTTP/1.1
Host: linux4.cloudserve.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/css/style.css
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 19:20:52 GMT
Content-Type: image/png
Content-Length: 3521
Last-Modified: Thu, 27 Feb 2020 09:13:48 GMT
Connection: keep-alive
ETag: "5e57884c-dc1"
X-Powered-By: PleskLin
Accept-Ranges: bytes
assets.plesk.com/static/default-website-content/public/fonts/lato-v16-latin-700-f1405b.woff2
185.76.9.26200 OK 23 kB URL HTTP/2 assets.plesk.com/static/default-website-content/public/fonts/lato-v16-latin-700-f1405b.woff2
IP 185.76.9.26:0
ASN #60068 Datacamp Limited
File type Web Open Font Format (Version 2), TrueType, length 22992, version 1.0\012- data
Hash 1efbd38aa76ddae2580fedf378276333
8a49976f2470ba2a1db6144245355d3b889312e4
8d3ca80fa271e94b0c36cf3053b0f806b7a42bb3395b424c99dc0bd218f0ac20
GET /static/default-website-content/public/fonts/lato-v16-latin-700-f1405b.woff2 HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://linux4.cloudserve.pw
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:20:52 GMT
content-type: font/woff2
content-length: 22992
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Mon, 02 Jan 2023 12:00:26 GMT
access-control-allow-origin: *
etag: "63b2c75a-59d0"
expires: Mon, 02 Jan 2023 12:14:51 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: FD44:183A:1090A39:174A79E:63B2C862
via: 1.1 varnish
age: 0
x-served-by: cache-bma1666-BMA
x-cache-hits: 0
x-timer: S1672661091.282553,VS0,VE102
vary: Accept-Encoding
x-fastly-request-id: b745fd9848b86fae166ce7f05eb89a8ee24751b9
x-accel-expires: @1675884449
server: CDN77-Turbo
x-77-nzt: AblMCRTkXhL/ywAAAA
x-77-nzt-ray: af585630b9680acb14f6e363083bb110
x-cache: HIT
x-age: 203
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/guy-cc224f.png
185.76.9.26200 OK 10 kB URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/guy-cc224f.png
IP 185.76.9.26:0
ASN #60068 Datacamp Limited
File type PNG image data, 144 x 286, 8-bit/color RGBA, non-interlaced\012- data
Hash 508c30a08de6e9a033e045a6979f76d7
8bbde0114d14ef4e0687fab5cc70e3bd4d96c233
40d72d259fff82a177cd2c2f2a1bd0024ec04a2cd5a19d5596187755cc2ae5f2
GET /static/default-website-content/public/img/guy-cc224f.png HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:20:52 GMT
content-type: image/png
content-length: 9999
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Mon, 02 Jan 2023 12:00:26 GMT
access-control-allow-origin: *
etag: "63b2c75a-270f"
expires: Mon, 02 Jan 2023 12:13:36 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 899A:056E:10B5F31:176F340:63B2C818
via: 1.1 varnish
age: 0
x-served-by: cache-bma1657-BMA
x-cache-hits: 0
x-timer: S1672661016.343590,VS0,VE105
vary: Accept-Encoding
x-fastly-request-id: a59a52e1cca300a0655ab6314af85e56e7191a1f
x-accel-expires: @1675884382
server: CDN77-Turbo
x-77-nzt: AblMCRRTg5b/DgEAAA
x-77-nzt-ray: af585630b9680acb14f6e363dedcaf10
x-cache: HIT
x-age: 270
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/fonts/lato-v16-latin-regular-65e877.woff2
185.76.9.26200 OK 24 kB URL HTTP/2 assets.plesk.com/static/default-website-content/public/fonts/lato-v16-latin-regular-65e877.woff2
IP 185.76.9.26:0
ASN #60068 Datacamp Limited
File type Web Open Font Format (Version 2), TrueType, length 23484, version 1.0\012- data
Hash b4d2c4c39853ee244272c04999b230ba
c82e22dde9716c40ba20e6c7ed03a1b66556de15
c3c0d3f472358aac78455515c4800771426770c22698e2486d39fdb5505634e1
GET /static/default-website-content/public/fonts/lato-v16-latin-regular-65e877.woff2 HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://linux4.cloudserve.pw
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:20:52 GMT
content-type: font/woff2
content-length: 23484
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Mon, 02 Jan 2023 12:00:26 GMT
access-control-allow-origin: *
etag: "63b2c75a-5bbc"
expires: Mon, 02 Jan 2023 12:13:36 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: DBC0:0517:F72459:162AA4A:63B2C818
via: 1.1 varnish
age: 0
x-served-by: cache-bma1673-BMA
x-cache-hits: 0
x-timer: S1672661017.538522,VS0,VE95
vary: Accept-Encoding
x-fastly-request-id: d672e1bf4d80c1b86de1c938d498821d9f3d206a
x-accel-expires: @1675884449
server: CDN77-Turbo
x-77-nzt: AblMCRQAFp//ywAAAA
x-77-nzt-ray: af585630366a87cd14f6e36397175811
x-cache: HIT
x-age: 203
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
linux4.cloudserve.pw/img/ssi.png
207.180.212.249200 OK 1.7 kB URL HTTP/1.1 linux4.cloudserve.pw/img/ssi.png
IP 207.180.212.249:0
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash 36c1301e51a319d54151bc8fb4128a14
2b7aab55d57bf5846fe67f7abcd24ca12ded4547
614b9e2e11cbc04c95e8a3ab508246fd5e653e6672277b59e2983eb2aa9a3f04
NIDS Severity Alert suricata low ET INFO HTTP Request to a *.pw domain
GET /img/ssi.png HTTP/1.1
Host: linux4.cloudserve.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/css/style.css
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 19:20:52 GMT
Content-Type: image/png
Content-Length: 1706
Last-Modified: Thu, 27 Feb 2020 09:13:48 GMT
Connection: keep-alive
ETag: "5e57884c-6aa"
X-Powered-By: PleskLin
Accept-Ranges: bytes
assets.plesk.com/static/default-website-content/public/img/header-domain-page-98961e.png
185.76.9.26200 OK 192 kB URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/header-domain-page-98961e.png
IP 185.76.9.26:0
ASN #60068 Datacamp Limited
File type PNG image data, 998 x 840, 8-bit/color RGBA, non-interlaced\012- data
Size 192 kB (191877 bytes)
Hash 15b75d100a555e3f0d84c59d81dd46e8
435e0f337cf2fb81d65fa4aa1c14caaa109f5bc6
f2fd07b6c6a69ba71eb8513377f052f5b692d610a2e890151084e7fcfb09799d
GET /static/default-website-content/public/img/header-domain-page-98961e.png HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:20:52 GMT
content-type: image/png
content-length: 191877
permissions-policy: interest-cohort=()
last-modified: Mon, 02 Jan 2023 12:00:26 GMT
access-control-allow-origin: *
etag: "63b2c75a-2ed85"
expires: Mon, 02 Jan 2023 12:16:13 GMT
cache-control: max-age=600
x-proxy-cache: HIT
x-github-request-id: 2152:D7EF:12F8BD9:13E7EEB:63B2C918
via: 1.1 varnish
age: 165
x-served-by: cache-bma1645-BMA
x-cache-hits: 1
x-timer: S1672661437.383295,VS0,VE2
vary: Accept-Encoding
x-fastly-request-id: 430ca60752ebee5220cc113ab96cce2521bc6396
x-accel-expires: @1675884115
server: CDN77-Turbo
x-77-nzt: AblMCRTT8B3/GQIAAA
x-77-nzt-ray: af585630b9680acb14f6e36389fdad10
x-cache: HIT
x-age: 537
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
linux4.cloudserve.pw/img/knowledge-base.png
207.180.212.249200 OK 1.5 kB URL HTTP/1.1 linux4.cloudserve.pw/img/knowledge-base.png
IP 207.180.212.249:0
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash 0c1ea46ae67d053a893854c4c4d4cc84
dd1d9378fde23fb9da4dcfaf43431a420ab11f45
3e070b868ea022d3950d2c9d5cdbea9901b15fae3bc2a3bf9cf4ce6a585d9203
NIDS Severity Alert suricata low ET INFO HTTP Request to a *.pw domain
GET /img/knowledge-base.png HTTP/1.1
Host: linux4.cloudserve.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/css/style.css
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 19:20:52 GMT
Content-Type: image/png
Content-Length: 1495
Last-Modified: Thu, 27 Feb 2020 09:13:48 GMT
Connection: keep-alive
ETag: "5e57884c-5d7"
X-Powered-By: PleskLin
Accept-Ranges: bytes
linux4.cloudserve.pw/img/facebook.png
207.180.212.249200 OK 1.9 kB URL HTTP/1.1 linux4.cloudserve.pw/img/facebook.png
IP 207.180.212.249:0
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash cb76fd023bb8bfb9dabae1b74019fd66
ca91a9cb8662e8af82146cf507c8380bab9e11ab
6216c4e00e4557d3db7efbe6d44b68bcc46823d60ffcad289b409a9dd73ff813
NIDS Severity Alert suricata low ET INFO HTTP Request to a *.pw domain
GET /img/facebook.png HTTP/1.1
Host: linux4.cloudserve.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/css/style.css
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 Feb 2023 19:20:52 GMT
Content-Type: image/png
Content-Length: 1933
Last-Modified: Thu, 27 Feb 2020 09:13:48 GMT
Connection: keep-alive
ETag: "5e57884c-78d"
X-Powered-By: PleskLin
Accept-Ranges: bytes
assets.plesk.com/static/default-website-content/public/favicon-2d0e10.ico
185.76.9.26200 OK 114 kB URL HTTP/2 assets.plesk.com/static/default-website-content/public/favicon-2d0e10.ico
IP 185.76.9.26:0
ASN #60068 Datacamp Limited
File type MS Windows icon resource - 7 icons, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel, -128x-128, 32 bits/pixel\012- data
Size 114 kB (113459 bytes)
Hash 1db747255c64a30f9236e9d929e986ca
384023452346aa087d40c93c23ca2f5e32ff1b1f
88baf40feb43463a8f6aa6543e88bdbe33f0db9a317486e786eee1e5c76a9544
GET /static/default-website-content/public/favicon-2d0e10.ico HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:20:52 GMT
content-type: image/vnd.microsoft.icon
content-length: 113459
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Mon, 02 Jan 2023 12:00:26 GMT
access-control-allow-origin: *
etag: "63b2c75a-1bb33"
expires: Mon, 02 Jan 2023 12:13:42 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 1F7E:2669:1152023:180B499:63B2C81E
via: 1.1 varnish
age: 570
x-served-by: cache-bma1666-BMA
x-cache-hits: 1
x-timer: S1672661593.097195,VS0,VE2
vary: Accept-Encoding
x-fastly-request-id: 2e331d70e8570c8230905cf7403ad3c19b1904d7
x-accel-expires: @1675884219
server: CDN77-Turbo
x-77-nzt: AblMCRTn6Zr/sQEAAA
x-77-nzt-ray: af585630b9680acb14f6e3630c758614
x-cache: HIT
x-age: 433
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Content-Type, Pragma, ETag, Retry-After, Backoff, Expires, Alert, Cache-Control, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 08 Feb 2023 19:14:52 GMT
age: 360
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 9b88bae61bca33aba8aa99f6128db8d9
a07b61fb2458917699613fcae68710941b595416
54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA"
Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12748
Expires: Wed, 08 Feb 2023 22:53:20 GMT
Date: Wed, 08 Feb 2023 19:20:52 GMT
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash cb5149a74e68509386c296dd4152a2bd
43c7180440483f7fb376fafd29cb97fbd6cd787f
d68c716705cffdaefb5efd4904972d374073008d84b65ffc28e624422e4399c4
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=124757
Date: Wed, 08 Feb 2023 19:20:52 GMT
Etag: "63e333a2-1d7"
Expires: Fri, 10 Feb 2023 06:00:09 GMT
Last-Modified: Wed, 08 Feb 2023 05:31:14 GMT
Server: ECS (nyb/1D07)
X-Cache: Miss from cloudfront
Via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: TrAUnb3WNEJi0rmDT5qa6W18mBwMIv_A7a6z_4-B2E0L3ISWwxMZ8A==
Age: 1735
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash cb5149a74e68509386c296dd4152a2bd
43c7180440483f7fb376fafd29cb97fbd6cd787f
d68c716705cffdaefb5efd4904972d374073008d84b65ffc28e624422e4399c4
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=128588
Date: Wed, 08 Feb 2023 19:20:52 GMT
Etag: "63e333a2-1d7"
Expires: Fri, 10 Feb 2023 07:04:00 GMT
Last-Modified: Wed, 08 Feb 2023 05:31:14 GMT
Server: ECS (nyb/1D2E)
X-Cache: Miss from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: TNDJhwc0apygKlNT2tsGCHSZvmLWo4gTuOFivhCFfIZfloqUMyIjkg==
Age: 5566
push.services.mozilla.com/
54.187.102.159101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.187.102.159:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: +bl7QmYMnLOoGFGs9v8aaQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: glvlB7pyos7P9lqY+K/DK03PKZw=
firehose.us-west-2.amazonaws.com/
35.89.72.29200 OK 20 B URL HTTP/1.1 firehose.us-west-2.amazonaws.com/
IP 35.89.72.29:0
Hash 3970e82605c7d109bb348fc94e9eecc0
e03849ea786b9f7b28a35c17949e85a93eb1cff1
f5d031af01f137ae07fa71720fab94d16cc8a2a59868766002918b7c240f3967
OPTIONS / HTTP/1.1
Host: firehose.us-west-2.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type,x-amz-content-sha256,x-amz-date,x-amz-target,x-amz-user-agent
Referer: http://linux4.cloudserve.pw/
Origin: http://linux4.cloudserve.pw
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amzn-RequestId: e3bd62c9-5c8b-d337-bfe0-9a9c5111ff61
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Access-Control-Allow-Headers: authorization,content-type,x-amz-content-sha256,x-amz-date,x-amz-target,x-amz-user-agent
Access-Control-Allow-Methods: POST
Access-Control-Expose-Headers: x-amzn-RequestId,x-amzn-ErrorType,x-amz-request-id,x-amz-id-2,x-amzn-ErrorMessage,Date
Access-Control-Max-Age: 172800
Content-Length: 20
Date: Wed, 08 Feb 2023 19:20:52 GMT
firehose.us-west-2.amazonaws.com/
35.89.72.29200 OK 244 B URL HTTP/1.1 firehose.us-west-2.amazonaws.com/
IP 35.89.72.29:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 601f090ef5675c83c3af17577958faa7
6c26e8415ccdda38e58727d4532a91d015d390ea
147e1255d7683a83614108eb386f59352ced193b3da5bdac7949393c99051a9f
POST / HTTP/1.1
Host: firehose.us-west-2.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Amz-User-Agent: aws-sdk-js/2.1286.0 callback
Content-Type: application/x-amz-json-1.1
X-Amz-Target: Firehose_20150804.PutRecord
X-Amz-Content-Sha256: c70632decbad3f75f0679046fa14e2bdae5677ae35750463214d921a7e0b1a6a
X-Amz-Date: 20230208T192148Z
Authorization: AWS4-HMAC-SHA256 Credential=AKIAR4YEYRJL6JKBNRGP/20230208/us-west-2/firehose/aws4_request, SignedHeaders=host;x-amz-content-sha256;x-amz-date;x-amz-target;x-amz-user-agent, Signature=bbcf524841753578b3b9f14e6b58a75951673aebf18d508d695daeb472aa9dd7
Content-Length: 108
Origin: http://linux4.cloudserve.pw
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amzn-RequestId: ea94f88b-c008-a06a-b6c9-00decd928c3c
Access-Control-Allow-Origin: *
Content-Encoding: gzip
x-amz-id-2: qOmcttG41WqQyMoLtGvFnrS3j/1E0h3uWCt7ggVRrUbDCNyH4AQGBYR/FMGfejH7CPXeFexkdC+MMiYT8hkLuhSEcru6B17O
Access-Control-Expose-Headers: x-amzn-RequestId,x-amzn-ErrorType,x-amz-request-id,x-amz-id-2,x-amzn-ErrorMessage,Date
Content-Type: application/x-amz-json-1.1
Content-Length: 244
Date: Wed, 08 Feb 2023 19:20:52 GMT
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12332
Expires: Wed, 08 Feb 2023 22:46:26 GMT
Date: Wed, 08 Feb 2023 19:20:54 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12332
Expires: Wed, 08 Feb 2023 22:46:26 GMT
Date: Wed, 08 Feb 2023 19:20:54 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12332
Expires: Wed, 08 Feb 2023 22:46:26 GMT
Date: Wed, 08 Feb 2023 19:20:54 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12332
Expires: Wed, 08 Feb 2023 22:46:26 GMT
Date: Wed, 08 Feb 2023 19:20:54 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06b5f2a3-c53c-4690-b548-2c3d0f556f73.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06b5f2a3-c53c-4690-b548-2c3d0f556f73.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 02fde25be5ded120af759d19d8304f73
8d2a4d9ab5947113ce0737d4d4bed3e30a971026
7cdf26668cca22f28eee047d3fcf30cea8d97b1d8804fe2132728f26cd11558d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06b5f2a3-c53c-4690-b548-2c3d0f556f73.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8629
x-amzn-requestid: cc20d28e-3937-4826-97ef-100fb5dd2645
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_O7LFn3oAMF61A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c514-6e764236604212fa26dab38a;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:39:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: GIAPTJF7sfpuubLSngEDMrowvBWW5c1xRlyVf7PQ3o6rGWdFITVioA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:44:01 GMT
age: 77813
etag: "8d2a4d9ab5947113ce0737d4d4bed3e30a971026"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce53bc9b-2505-4efd-9151-fa75ed70138a.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce53bc9b-2505-4efd-9151-fa75ed70138a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash be9f475292d4b5b0502d4381ccdf455b
ecb943b48c822b086ea699d802f8f1bb5ee26651
ed22a5102709dc7a067107a6c0cde26931f7781065de9cee49e22de6b9086e31
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce53bc9b-2505-4efd-9151-fa75ed70138a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8703
x-amzn-requestid: 6456aa7d-11f7-4066-a833-9ac5312c0c24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_O7JGLTIAMFqdQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c513-0679a75676cdc19251c81bdd;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:39:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: DLVp9hiUjE2w5BiukFfUMALWxvcobbJcJRO-7CdXj3cy6rAdFhPRFQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 18:24:47 GMT
etag: "ecb943b48c822b086ea699d802f8f1bb5ee26651"
content-type: image/jpeg
age: 3367
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a8e532-be72-47cc-8389-e8f28ffc3c2a.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a8e532-be72-47cc-8389-e8f28ffc3c2a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 33b061f03be149fea0df63b42a8ec226
e5e491c6ef8b6234450a34ee5df28b9a58a8ad43
a5970bbb40be173878cd2e920bd1a6ed27775fbdc222bb66ccbc5969984882f1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a8e532-be72-47cc-8389-e8f28ffc3c2a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4269
x-amzn-requestid: df152b3a-fa15-4dac-96f9-41b9ea8e5136
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_OkQH5PoAMFl1g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c481-63636a42419209fb0c17eceb;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:37:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 0hu3nATq26ngjS5942rJgt7AcT4wjG0mFfNrtsajSN2PpdAOYhTjFg==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:43:42 GMT
age: 77832
etag: "e5e491c6ef8b6234450a34ee5df28b9a58a8ad43"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7e586b8-49f5-40c3-b0d4-f6cdfc375a2b.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7e586b8-49f5-40c3-b0d4-f6cdfc375a2b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 18a84ae645223aba0709b5e16c0207f7
0b865e797846520ccc6fff6fb2ee38d8836bd2c0
b1e4868045f074a84e3de1d82ec3ae22f6d2a1a4131b2a40bcce7f3f5375aff7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc7e586b8-49f5-40c3-b0d4-f6cdfc375a2b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9760
x-amzn-requestid: d5d8fdde-048f-4705-9fa4-99fd7d29d804
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f582DETSIAMFmEA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e0a826-52a3b175584df1914260c8ae;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 07:11:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: wUaruDuqNDIlR6CWz9G7DAofcvS7UNmtPM7C2ve-RRbp57J43rWPxQ==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 06:31:19 GMT
age: 46175
etag: "0b865e797846520ccc6fff6fb2ee38d8836bd2c0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5abcabc9-1cda-4d86-8630-67943159604b.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5abcabc9-1cda-4d86-8630-67943159604b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4bb0e725719ac378134b01b6473a6581
a8a1780c88e8ae219048bed28ecfbd8019d9af35
187d4e83edc0af857334f84bd6853234193d4654d06c43367f39b4e125defe08
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5abcabc9-1cda-4d86-8630-67943159604b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6679
x-amzn-requestid: 97c19ad5-c127-4dc1-b529-1eca84645316
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f59MzHgloAMFwow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e0a8b8-79d6b8d31b69153d4929b7b7;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 07:14:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: x_tr-xummuF51PvAM4y3DgvLWuJOwxgquKO8baQfcoN6ta5M3ll7ug==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 06:24:59 GMT
age: 46555
etag: "a8a1780c88e8ae219048bed28ecfbd8019d9af35"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e47a0b9-4a27-4f39-8f25-f88789a2408f.jpeg
34.120.237.76200 OK 3.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e47a0b9-4a27-4f39-8f25-f88789a2408f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0594f78c4fdfed5dd2e0666312555f40
db903b9a3f387c1510170f8d16dd4d289f7df83f
8874083a529064657b18be58147ae7df5fe79c822c4bd2a023fdf3df7186a62e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e47a0b9-4a27-4f39-8f25-f88789a2408f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3712
x-amzn-requestid: 44c7e7bd-1a95-49b6-9b0a-f8aff3725ded
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ftbOtH-lIAMF0xw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dba591-2fb19c33646c3d327681e9f9;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 11:59:13 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: sVwR-c7kM4uiKGOFghJniRstdw0koagyIkWdJqIyZ0NYo4dU-o12oA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 19:06:57 GMT
age: 837
etag: "db903b9a3f387c1510170f8d16dd4d289f7df83f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/try-online-demo-e76f32.svg
185.76.9.26200 OK 0 B URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/try-online-demo-e76f32.svg
IP 185.76.9.26:0
ASN #60068 Datacamp Limited
GET /static/default-website-content/public/img/try-online-demo-e76f32.svg HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:20:52 GMT
content-type: image/svg+xml
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Mon, 02 Jan 2023 12:00:26 GMT
access-control-allow-origin: *
etag: W/"63b2c75a-6e9"
expires: Mon, 02 Jan 2023 12:13:36 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 4F06:0131:1023AB1:16DC696:63B2C818
via: 1.1 varnish
age: 0
x-served-by: cache-bma1671-BMA
x-cache-hits: 0
x-timer: S1672661016.344777,VS0,VE102
vary: Accept-Encoding
x-fastly-request-id: d4ba5d381b82e98db9430caf84533e73683ac0ef
x-accel-expires: @1675884381
server: CDN77-Turbo
x-77-nzt: AblMCRQ4apH/DwEAAA
x-77-nzt-ray: af585630b9680acb14f6e3631b85c40f
x-cache: HIT
x-age: 271
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/facebook-2e0b41.svg
185.76.9.26200 OK 0 B URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/facebook-2e0b41.svg
IP 185.76.9.26:0
ASN #60068 Datacamp Limited
GET /static/default-website-content/public/img/facebook-2e0b41.svg HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:20:52 GMT
content-type: image/svg+xml
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Mon, 02 Jan 2023 12:00:26 GMT
access-control-allow-origin: *
etag: W/"63b2c75a-318"
expires: Mon, 02 Jan 2023 12:13:36 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: A72C:3A7D:1067C6E:17203F0:63B2C818
via: 1.1 varnish
age: 0
x-served-by: cache-bma1626-BMA
x-cache-hits: 0
x-timer: S1672661016.361688,VS0,VE96
vary: Accept-Encoding
x-fastly-request-id: c0043e5142d35dba3f7a265733dcb8d1397722df
x-accel-expires: @1675884449
server: CDN77-Turbo
x-77-nzt: AblMCRQwpOr/ywAAAA
x-77-nzt-ray: af585630b9680acb14f6e36353d32a10
x-cache: HIT
x-age: 203
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/bundle.js
185.76.9.26200 OK 0 B URL HTTP/2 assets.plesk.com/static/default-website-content/public/bundle.js
IP 185.76.9.26:0
ASN #60068 Datacamp Limited
GET /static/default-website-content/public/bundle.js HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:20:52 GMT
content-type: application/javascript; charset=utf-8
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Mon, 02 Jan 2023 12:00:26 GMT
access-control-allow-origin: *
etag: W/"63b2c75a-47d12"
expires: Mon, 02 Jan 2023 12:11:58 GMT
cache-control: max-age=600
x-proxy-cache: HIT
x-github-request-id: 7CA6:B0F7:1134214:121891B:63B2C7F7
via: 1.1 varnish
age: 0
x-served-by: cache-bma1650-BMA
x-cache-hits: 0
x-timer: S1672660984.886140,VS0,VE135
vary: Accept-Encoding
x-fastly-request-id: e4d55b06f35111ee41ec46cb6171983f45d35043
x-accel-expires: @1675884381
server: CDN77-Turbo
x-77-nzt: AblMCRS9k8//DwEAAA
x-77-nzt-ray: af585630b9680acb14f6e36327924910
x-cache: HIT
x-age: 271
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/logo-ebb972.svg
185.76.9.26200 OK 0 B URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/logo-ebb972.svg
IP 185.76.9.26:0
ASN #60068 Datacamp Limited
GET /static/default-website-content/public/img/logo-ebb972.svg HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:20:52 GMT
content-type: image/svg+xml
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Mon, 02 Jan 2023 12:00:26 GMT
access-control-allow-origin: *
etag: W/"63b2c75a-86f"
expires: Mon, 02 Jan 2023 12:13:36 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 6AFE:3368:107664D:172EED4:63B2C818
via: 1.1 varnish
age: 0
x-served-by: cache-bma1674-BMA
x-cache-hits: 0
x-timer: S1672661016.213587,VS0,VE112
vary: Accept-Encoding
x-fastly-request-id: 63b940857d9450d0a18197ffe3942fef95a88414
x-accel-expires: @1675884381
server: CDN77-Turbo
x-77-nzt: AblMCRRGXGP/DwEAAA
x-77-nzt-ray: af585630b9680acb14f6e363eafbb20f
x-cache: HIT
x-age: 271
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/question-mark-circle-2b854e.svg
185.76.9.26200 OK 0 B URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/question-mark-circle-2b854e.svg
IP 185.76.9.26:0
ASN #60068 Datacamp Limited
GET /static/default-website-content/public/img/question-mark-circle-2b854e.svg HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:20:52 GMT
content-type: image/svg+xml
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Mon, 02 Jan 2023 12:00:26 GMT
access-control-allow-origin: *
etag: W/"63b2c75a-1ce"
expires: Mon, 02 Jan 2023 12:13:36 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: A284:3610:1101362:17BAB89:63B2C818
via: 1.1 varnish
age: 0
x-served-by: cache-bma1643-BMA
x-cache-hits: 0
x-timer: S1672661016.213235,VS0,VE103
vary: Accept-Encoding
x-fastly-request-id: 35dfba27b57bfaad353b8b6b9bf727ff6b13aeff
x-accel-expires: @1675884381
server: CDN77-Turbo
x-77-nzt: AblMCRS5N/L/DwEAAA
x-77-nzt-ray: af585630b9680acb14f6e3636953bb0f
x-cache: HIT
x-age: 271
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/developers-blog-1dd547.svg
185.76.9.26200 OK 0 B URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/developers-blog-1dd547.svg
IP 185.76.9.26:0
ASN #60068 Datacamp Limited
GET /static/default-website-content/public/img/developers-blog-1dd547.svg HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:20:52 GMT
content-type: image/svg+xml
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Mon, 02 Jan 2023 12:00:26 GMT
access-control-allow-origin: *
etag: W/"63b2c75a-51f"
expires: Mon, 02 Jan 2023 12:13:41 GMT
cache-control: max-age=600
x-proxy-cache: HIT
x-github-request-id: BE42:7E18:FE7F48:16A0573:63B2C84E
via: 1.1 varnish
age: 0
x-served-by: cache-bma1661-BMA
x-cache-hits: 0
x-timer: S1672661071.693558,VS0,VE104
vary: Accept-Encoding
x-fastly-request-id: a4b833ed4dc24f69207880a9fcac65de08c62b01
x-accel-expires: @1675884382
server: CDN77-Turbo
x-77-nzt: AblMCRTa3Ar/DgEAAA
x-77-nzt-ray: af585630b9680acb14f6e36336090910
x-cache: HIT
x-age: 270
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/knowlede-base-e4cf57.svg
185.76.9.26200 OK 0 B URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/knowlede-base-e4cf57.svg
IP 185.76.9.26:0
ASN #60068 Datacamp Limited
GET /static/default-website-content/public/img/knowlede-base-e4cf57.svg HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:20:52 GMT
content-type: image/svg+xml
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Mon, 02 Jan 2023 12:00:26 GMT
access-control-allow-origin: *
etag: W/"63b2c75a-332"
expires: Mon, 02 Jan 2023 12:13:36 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 7D10:79F0:10B2413:176B918:63B2C818
via: 1.1 varnish
age: 0
x-served-by: cache-bma1635-BMA
x-cache-hits: 0
x-timer: S1672661016.344333,VS0,VE97
vary: Accept-Encoding
x-fastly-request-id: 73660022edee140e9ce23f5e7692ddb88082ab86
x-accel-expires: @1675884381
server: CDN77-Turbo
x-77-nzt: AblMCRRLnIj/DwEAAA
x-77-nzt-ray: af585630b9680acb14f6e363ef5edb0f
x-cache: HIT
x-age: 271
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/forum-a9076c.svg
185.76.9.26200 OK 0 B URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/forum-a9076c.svg
IP 185.76.9.26:0
ASN #60068 Datacamp Limited
GET /static/default-website-content/public/img/forum-a9076c.svg HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:20:52 GMT
content-type: image/svg+xml
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Mon, 02 Jan 2023 12:00:26 GMT
access-control-allow-origin: *
etag: W/"63b2c75a-1569"
expires: Mon, 02 Jan 2023 12:13:36 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 80AE:6E39:117806B:1831353:63B2C818
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache-hits: 0
x-timer: S1672661016.345980,VS0,VE101
vary: Accept-Encoding
x-fastly-request-id: 5341c9ecd4c2fa2e9b2d48ec83860e4109e6af9f
x-accel-expires: @1675884381
server: CDN77-Turbo
x-77-nzt: AblMCRRAASb/DwEAAA
x-77-nzt-ray: af585630b9680acb14f6e36390bbff0f
x-cache: HIT
x-age: 271
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/plesk-guides-466bdb.svg
185.76.9.26200 OK 0 B URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/plesk-guides-466bdb.svg
IP 185.76.9.26:0
ASN #60068 Datacamp Limited
GET /static/default-website-content/public/img/plesk-guides-466bdb.svg HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:20:52 GMT
content-type: image/svg+xml
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Mon, 02 Jan 2023 12:00:26 GMT
access-control-allow-origin: *
etag: W/"63b2c75a-8e6"
expires: Mon, 02 Jan 2023 12:14:30 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: F256:4C6A:105BBDD:171424C:63B2C84E
via: 1.1 varnish
age: 0
x-served-by: cache-bma1652-BMA
x-cache-hits: 0
x-timer: S1672661071.689081,VS0,VE101
vary: Accept-Encoding
x-fastly-request-id: ccf844cff2f5dced53eeb9b4704b23f644caa88d
x-accel-expires: @1675884219
server: CDN77-Turbo
x-77-nzt: AblMCRSVzjz/sQEAAA
x-77-nzt-ray: af585630b9680acb14f6e363de2fd10f
x-cache: HIT
x-age: 433
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/video-guides-0ca174.svg
185.76.9.26200 OK 0 B URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/video-guides-0ca174.svg
IP 185.76.9.26:0
ASN #60068 Datacamp Limited
GET /static/default-website-content/public/img/video-guides-0ca174.svg HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:20:52 GMT
content-type: image/svg+xml
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Mon, 02 Jan 2023 12:00:26 GMT
access-control-allow-origin: *
etag: W/"63b2c75a-509"
expires: Mon, 02 Jan 2023 12:13:36 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 0DD4:0517:F7244E:162AA3A:63B2C818
via: 1.1 varnish
age: 0
x-served-by: cache-bma1635-BMA
x-cache-hits: 0
x-timer: S1672661016.345601,VS0,VE102
vary: Accept-Encoding
x-fastly-request-id: 3aa203879daf79ee41c1dbe50b001a722b3f572c
x-accel-expires: @1675884381
server: CDN77-Turbo
x-77-nzt: AblMCRS+uhf/DwEAAA
x-77-nzt-ray: af585630b9680acb14f6e36390ae1210
x-cache: HIT
x-age: 271
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/header-bg-6827b7.svg
185.76.9.26200 OK 0 B URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/header-bg-6827b7.svg
IP 185.76.9.26:0
ASN #60068 Datacamp Limited
GET /static/default-website-content/public/img/header-bg-6827b7.svg HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 08 Feb 2023 19:20:52 GMT
content-type: image/svg+xml
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Mon, 02 Jan 2023 12:00:26 GMT
access-control-allow-origin: *
etag: W/"63b2c75a-132"
expires: Mon, 02 Jan 2023 12:12:52 GMT
cache-control: max-age=600
x-proxy-cache: HIT
x-github-request-id: 6AFE:3368:1076653:172EEDA:63B2C818
via: 1.1 varnish
age: 0
x-served-by: cache-bma1643-BMA
x-cache-hits: 0
x-timer: S1672661016.338763,VS0,VE101
vary: Accept-Encoding
x-fastly-request-id: 41728e9970b1fb6d2515c7a726be877ad92e445c
x-accel-expires: @1675884382
server: CDN77-Turbo
x-77-nzt: AblMCRTZnPH/DgEAAA
x-77-nzt-ray: af585630b9680acb14f6e363212eac10
x-cache: HIT
x-age: 270
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2