Overview

URL hs8vno.webwave.dev/
IP185.30.124.158
ASNeTOP sp. z o.o.
Location Poland
Report completed2022-07-06 17:27:25 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2022-07-06 2 hs8vno.webwave.dev/ Phishing
2022-07-06 2 hs8vno.webwave.dev/ Phishing
2022-07-06 2 hs8vno.webwave.dev/service-worker.js Phishing
2022-07-06 2 hs8vno.webwave.dev/ Phishing
2022-07-06 2 hs8vno.webwave.dev/manifest.json Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (18)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
[Mnemonic Passive DNS] firefox.settings.services.mozilla.com (2) 867 2016-03-17 08:25:01 UTC 2020-05-25 20:01:47 UTC 54.230.111.118
[Mnemonic Passive DNS] fonts.gstatic.com (1) 0 2017-01-30 04:59:51 UTC 2022-07-06 04:41:59 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
[Mnemonic Passive DNS] www.google-analytics.com (1) 40 2017-01-30 05:00:06 UTC 2022-07-06 06:00:56 UTC 142.250.74.174
[Mnemonic Passive DNS] www.google.no (1) 25607 2012-05-21 14:04:11 UTC 2014-08-11 22:10:14 UTC 142.250.74.3
[Mnemonic Passive DNS] img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-07-06 15:18:09 UTC 34.120.237.76
[Mnemonic Passive DNS] hs8vno.webwave.dev (15) 0 No data No data 185.73.228.142 Unknown ranking
[Mnemonic Passive DNS] r3.o.lencr.org (7) 344 2020-12-02 08:52:13 UTC 2022-07-06 04:41:34 UTC 23.36.76.226
[Mnemonic Passive DNS] contile.services.mozilla.com (1) 1114 No data No data 34.117.237.239
[Mnemonic Passive DNS] www.google.com (1) 7 2012-05-22 04:23:54 UTC 2022-07-06 10:15:37 UTC 142.250.74.164
[Mnemonic Passive DNS] hs8vno.webwave.dev (15) 0 No data No data 185.30.124.158 Unknown ranking
[Mnemonic Passive DNS] status.thawte.com (3) 5123 2017-11-27 12:33:51 UTC 2022-07-06 05:06:55 UTC 93.184.220.29
[Mnemonic Passive DNS] ocsp.pki.goog (12) 175 2017-06-14 07:23:31 UTC 2022-07-06 04:42:12 UTC 142.250.74.3
[Mnemonic Passive DNS] www.googletagmanager.com (1) 75 2017-01-30 05:00:47 UTC 2022-07-06 04:42:41 UTC 142.250.74.72
[Mnemonic Passive DNS] yourbrand-18274.kxcdn.com (10) 0 2021-02-17 06:16:41 UTC 2022-07-04 12:52:18 UTC 82.102.27.18 Domain (kxcdn.com) ranked at: 17796
[Mnemonic Passive DNS] ocsp.digicert.com (1) 86 2012-11-29 12:49:49 UTC 2022-07-06 12:49:14 UTC 93.184.220.29
[Mnemonic Passive DNS] content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-07-06 04:55:23 UTC 54.230.111.64
[Mnemonic Passive DNS] push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2022-07-06 04:47:23 UTC 35.166.180.72
[Mnemonic Passive DNS] stats.g.doubleclick.net (1) 96 2017-01-30 04:59:59 UTC 2022-07-06 04:42:45 UTC 173.194.222.155


Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 185.30.124.158

Date UQ / IDS / BL URL IP
2022-08-19 20:08:19 +0000
0 - 0 - 12 https://qp1ctm.webwave.dev/ 185.30.124.158
2022-08-18 15:33:31 +0000
0 - 0 - 6 mdrul6.webwave.dev/victoria-2-spolszczenie?ww (...) 185.30.124.158
2022-08-15 14:00:18 +0000
0 - 0 - 2 fzbfhn.webwave.dev/ 185.30.124.158
2022-08-11 15:44:28 +0000
0 - 0 - 19 wxfmhy.webwave.dev/ 185.30.124.158
2022-08-05 18:57:26 +0000
0 - 0 - 8 qefnuo.webwave.dev/ 185.30.124.158
2022-08-03 19:55:28 +0000
0 - 0 - 8 oea4t2.webwave.dev/ 185.30.124.158
2022-08-02 10:33:58 +0000
0 - 0 - 16 https://up2r28.webwave.dev/ 185.30.124.158
2022-08-01 21:40:35 +0000
0 - 0 - 30 https://ofihah.webwave.dev/ 185.30.124.158
2022-07-31 21:53:04 +0000
0 - 0 - 2 www.fzbfhn.webwave.dev/ 185.30.124.158
2022-07-28 05:17:21 +0000
0 - 0 - 19 https://fzbfhn.webwave.dev/login/process1.php 185.30.124.158

Last 10 reports on ASN: eTOP sp. z o.o.

Date UQ / IDS / BL URL IP
2022-08-19 20:08:19 +0000
0 - 0 - 12 https://qp1ctm.webwave.dev/ 185.30.124.158
2022-08-18 15:33:31 +0000
0 - 0 - 6 mdrul6.webwave.dev/victoria-2-spolszczenie?ww (...) 185.30.124.158
2022-08-15 21:13:59 +0000
0 - 0 - 16 fzbfhn.webwave.dev/login/process1.php 185.73.228.142
2022-08-15 14:00:18 +0000
0 - 0 - 2 fzbfhn.webwave.dev/ 185.30.124.158
2022-08-11 15:44:28 +0000
0 - 0 - 19 wxfmhy.webwave.dev/ 185.30.124.158
2022-08-10 01:50:16 +0000
0 - 0 - 20 uqclpg.webwave.dev/ 185.73.228.142
2022-08-06 11:17:50 +0000
0 - 0 - 16 https://wxfmhy.webwave.dev/ 185.73.228.142
2022-08-05 18:57:26 +0000
0 - 0 - 8 qefnuo.webwave.dev/ 185.30.124.158
2022-08-04 11:45:48 +0000
0 - 0 - 1 www.abxg-api.iprospectdev.pl/nhd.nbbs/cnse.php 79.133.194.90
2022-08-03 19:55:28 +0000
0 - 0 - 8 oea4t2.webwave.dev/ 185.30.124.158

No other reports on domain: webwave.dev



JavaScript

Executed Scripts (14)


Executed Evals (1)

#1 JavaScript::Eval (size: 2665, repeated: 1) - SHA256: 34e16f1edbde20fe93d11cc49fd9fd6a64542d8bdc61186a811675cccc617547

                                        (function(jQuery) {
    jQuery.fn.extend({
        cookiesEU: function(options) {
            var defaults = {
                text: '<p>Nasza strona internetowa u|ywa plik�w cookies (tzw. ciasteczka) w celach statystycznych, reklamowych oraz funkcjonalnych. Dziki nim mo|emy indywidualnie dostosowa stron do twoich potrzeb. Ka|dy mo|e zaakceptowa pliki cookies albo ma mo|liwo[ wyBczenia ich w przegldarce, dziki czemu nie bd zbierane |adne informacje. <a href="http://ciasteczka.eu/#jak-wylaczyc-ciasteczka" title="" onclick="window.open(this.href); return false;">Dowiedz si wicej jak je wyBczy.</a></p>',
                close: 'x',
                parent: jQuery('body'),
                show_close: true,
                position: 'top',
                cookie_name: 'cookies-accepted',
                auto_accept: true,
                box_class: '',
                use_default_css: true,
                box_css: '',
                inner_css: '',
                text_css: '',
                close_css: '',
                animation: 'slide',
                time: 500,
                test: false
            };
            var o = jQuery.extend(defaults, options);
            if (o.use_default_css == true) {
                o.box_css = 'position: relative; z-index: 999; overflow: hidden; background-color: #fff; color: #777; font-size: 12px; line-height: 120%;' + o.box_css;
                o.inner_css = 'position: relative; padding: 2px 10px;' + o.inner_css;
                o.text_css = 'padding-right: 100px;' + o.text_css;
                o.close_css = 'position: absolute; top: 0; right: 0; padding: 5px 10px; display: block; background-color: #888; color: #fff; text-transform: uppercase; text-decoration: none;' + o.close_css
            }
            jQuery('#cookiesEU-box').remove();
            var box = jQuery('<div id="cookiesEU-box" class="' + o.box_class + '" style="' + o.box_css + '"><div class="cookiesEU-inner" style="' + o.inner_css + '">' + '<div class="cookiesEU-text" style="' + o.text_css + '">' + o.text + '</div>' + '</div></div>');
            if (o.show_close == true) box.find('.cookiesEU-inner').append('<a href="#" class="cookiesEU-close" style="' + o.close_css + '">' + o.close + '</a>');
            if (readCookie(o.cookie_name) == null) {
                if (o.position == 'top') o.parent.prepend(box);
                else if (o.position == 'bottom') o.parent.append(box);
                else o.parent.append(box);
                if (!o.test && o.auto_accept) createCookie(o.cookie_name, 1, 365)
            };
            box.find('a.cookiesEU-close').click(function(e) {
                e.preventDefault();
                if (!o.test && !o.auto_accept) createCookie(o.cookie_name, 1, 365);
                if (o.animation == 'slide') box.slideUp(o.time);
                else if (o.animation == 'fade') box.fadeOut(o.time);
                else box.hide()
            });

            function createCookie(name, value, days) {
                if (days) {
                    var date = new Date();
                    date.setTime(date.getTime() + (days * 24 * 60 * 60 * 1000));
                    var expires = "; expires=" + date.toGMTString()
                } else var expires = "";
                document.cookie = name + "=" + value + expires + "; path=/"
            };

            function readCookie(name) {
                var nameEQ = name + "=";
                var ca = document.cookie.split(';');
                for (var i = 0; i < ca.length; i++) {
                    var c = ca[i];
                    while (c.charAt(0) == ' ') c = c.substring(1, c.length);
                    if (c.indexOf(nameEQ) == 0) return c.substring(nameEQ.length, c.length)
                }
                return null
            }
        }
    })
})(jQuery);
                                    

Executed Writes (0)



HTTP Transactions (65)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: hs8vno.webwave.dev
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         185.73.228.142
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Wed, 06 Jul 2022 17:27:11 GMT
Server: Apache
Content-Security-Policy: frame-ancestors webwavecms.com webwave.me ro.webwave.me webwave.ro webwave.com.au templates.webwave.me szablony.webwavecms.com templates.webwave.com.au sabloane.webwave.ro;
Location: https://hs8vno.webwave.dev/
Cache-Control: max-age=0
Expires: Wed, 06 Jul 2022 17:27:11 GMT
Content-Length: 303


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   303
Md5:    fd6e25c07aead3e68e05e5b0264d85ee
Sha1:   529c2a6b8a8a06a1ef49e347c04bec3d9cca3ce0
Sha256: 358726b3129977756b7d91bd172987c6edbbfc45fad674d3244c302f8b43a190

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.118
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Backoff, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 06 Jul 2022 16:56:08 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: nwTEE7gg1GgPOcVYGSs-w9HOXdJm8jZf-4BQpgknDpKsLe_GncGFlQ==
Age: 1864


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    91dd975a7b17b2922dd23c0e49314e40
Sha1:   57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
Sha256: 09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "5CA12512DFBE8A007255191678A4ECD570026D865AE741C0D3025D8FE1A58659"
Last-Modified: Mon, 04 Jul 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15230
Expires: Wed, 06 Jul 2022 21:41:02 GMT
Date: Wed, 06 Jul 2022 17:27:12 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-08-10-12-10-21.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.64
HTTP/2 200 OK
                                        
content-type: binary/octet-stream
content-length: 5348
last-modified: Tue, 21 Jun 2022 12:10:22 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 06 Jul 2022 03:26:46 GMT
etag: "581454acdd98f34fd3fbabd0977ade29"
x-cache: Hit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BalyTlAFSxhHSqlW9vEDvqj-Om1V-UnwVnEdWWnn8do3RbdQKJdCQA==
age: 50427
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    581454acdd98f34fd3fbabd0977ade29
Sha1:   d8d86c0b513137aeb85de01cea7b272c35eb6ab4
Sha256: e98f8f33ba5ed59c3cfdf2ae54957ed32652cf0899f3c8db4b5872e3ece1e4eb
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "7C2C31DE05D1F7B8304EFB27DD1F3A8D59360C93C35EDE5C8CB1782E9EAA6497"
Last-Modified: Mon, 04 Jul 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6544
Expires: Wed, 06 Jul 2022 19:16:16 GMT
Date: Wed, 06 Jul 2022 17:27:12 GMT
Connection: keep-alive

                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
                                        
server: nginx
date: Wed, 06 Jul 2022 17:27:12 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET / HTTP/1.1 
Host: hs8vno.webwave.dev
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         185.30.124.158
HTTP/1.1 200 200
Content-Type: text/html;charset=utf-8
                                        
Date: Tue, 05 Jul 2022 21:28:54 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Content-Security-Policy: frame-ancestors webwavecms.com webwave.me ro.webwave.me webwave.ro webwave.com.au szablony.webwavecms.com templates.webwave.me templates.webwave.com.au sabloane.webwave.ro ;
X-Application-Context: application:production
Cache-Control: max-age=0
Expires: Tue, 05 Jul 2022 21:28:54 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
cacheable: true
X-Varnish: 127681679 102907268
Age: 71897
Via: 1.1 varnish (Varnish/6.1)
Set-Cookie: cache-with-varnish=true
Accept-Ranges: bytes
Content-Length: 37679


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (64539)
Size:   37679
Md5:    a1a6fb63420ab896351b316cfe208e6f
Sha1:   f612694ca1086c78d9658ec1ab868bab71b7f094
Sha256: 548449c996cd5487181960b8bac2b12aee5405ecb9300ae0f6704689107e0535

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: status.thawte.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2511
Cache-Control: max-age=126219
Date: Wed, 06 Jul 2022 17:27:12 GMT
Etag: "62c5062d-1d7"
Expires: Fri, 08 Jul 2022 04:30:51 GMT
Last-Modified: Wed, 06 Jul 2022 03:49:01 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: status.thawte.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1956
Cache-Control: max-age=125664
Date: Wed, 06 Jul 2022 17:27:12 GMT
Etag: "62c5062d-1d7"
Expires: Fri, 08 Jul 2022 04:21:36 GMT
Last-Modified: Wed, 06 Jul 2022 03:49:01 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: status.thawte.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1956
Cache-Control: max-age=125664
Date: Wed, 06 Jul 2022 17:27:12 GMT
Etag: "62c5062d-1d7"
Expires: Fri, 08 Jul 2022 04:21:36 GMT
Last-Modified: Wed, 06 Jul 2022 03:49:01 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 06 Jul 2022 17:27:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /gtag/js?id=UA-45772854-2 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hs8vno.webwave.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
                                        
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 06 Jul 2022 17:27:12 GMT
expires: Wed, 06 Jul 2022 17:27:12 GMT
cache-control: private, max-age=900
last-modified: Wed, 06 Jul 2022 16:55:56 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 40372
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1596)
Size:   40372
Md5:    136bc749893410ba4f39c517e33e28b0
Sha1:   9d6243b8241bdece0b212f9891917d548815129f
Sha256: a557e91ac8302bd60bd0a1522c6a3aa6fe3f5d2f6da36c7bc828f060022c9cb5
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 06 Jul 2022 17:27:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /files/dynamicContent/sites/hs8vno/css/webpage_9/l409dm9p.css HTTP/1.1 
Host: yourbrand-18274.kxcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hs8vno.webwave.dev/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         82.102.27.18
HTTP/2 200 OK
                                        
server: keycdn-engine
date: Wed, 06 Jul 2022 17:27:12 GMT
content-type: text/css
content-length: 1991
last-modified: Sat, 04 Jun 2022 19:18:49 GMT
etag: "48a2-5e0a41bcc3c18-gzip"
cache-control: max-age=31536000
expires: Thu, 06 Jul 2023 17:27:12 GMT
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN
link: <https://webwave.me/files/dynamicContent/sites/hs8vno/css/webpage_9/l409dm9p.css>; rel="canonical"
x-cache: MISS
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (18594), with no line terminators
Size:   1991
Md5:    599bd68c33fc86de9a6e272c05fa3493
Sha1:   21db2f92875f586a07154c01a811ba4d5d36a120
Sha256: 6a56c9200345ac964ada9843a190d84c2d08bce534bc4a3ea70c60574d19aefa
                                        
                                            GET /files/staticContent/3.33/websitesResources/js/com/webwave/bottomBar/madeByBanner-58b187d65d0e2505a5be783c9b216267.js HTTP/1.1 
Host: yourbrand-18274.kxcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hs8vno.webwave.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         82.102.27.18
HTTP/2 200 OK
                                        
server: keycdn-engine
date: Wed, 06 Jul 2022 17:27:12 GMT
content-type: application/javascript
content-length: 256
last-modified: Thu, 02 Jun 2022 06:59:58 GMT
etag: "161-5e0718dc55780-gzip"
cache-control: max-age=31536000
expires: Thu, 06 Jul 2023 17:27:12 GMT
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN
link: <https://webwave.me/files/staticContent/3.33/websitesResources/js/com/webwave/bottomBar/madeByBanner-58b187d65d0e2505a5be783c9b216267.js>; rel="canonical"
x-cache: MISS
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (312)
Size:   256
Md5:    581267c5a38e1d575143a447f4cc1c54
Sha1:   3ce6a6d5c496d257c7aa00decf99d0522a90d9d0
Sha256: 5c6015dee7d2653b283c7dd9034a1a2be5e3565783efc230bebb272e2fe9d232
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 06 Jul 2022 17:27:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.118
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 06 Jul 2022 16:35:03 GMT
Cache-Control: max-age=3600
Expires: Wed, 06 Jul 2022 16:51:00 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: uyexzLNp2MvdP3hwEHkd9NIBWUs97RRg1Ryra8CDzdHGJlyPDBD3Eg==
Age: 3137


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 06 Jul 2022 17:27:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2635
Cache-Control: 'max-age=158059'
Date: Wed, 06 Jul 2022 17:27:13 GMT
Last-Modified: Wed, 06 Jul 2022 16:43:18 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 06 Jul 2022 17:27:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/raleway/v27/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrE.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://hs8vno.webwave.dev
Connection: keep-alive
Referer: https://hs8vno.webwave.dev/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21264
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Jun 2022 19:47:13 GMT
expires: Thu, 29 Jun 2023 19:47:13 GMT
cache-control: public, max-age=31536000
age: 596400
last-modified: Wed, 27 Apr 2022 15:53:13 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 21264, version 1.0\012- data
Size:   21264
Md5:    65fd804f91c799cc26b01c5cc338aa07
Sha1:   08917d8f018ed77b0a42f18d7ccf044d46d5b670
Sha256: 8b70efc57dd27f773ed2d4ea3bac776caf346124c36fd73cba96176de33d7ec3
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 06 Jul 2022 17:27:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /files/dynamicContent/sites/hs8vno/images/.CURRENT_LIB/2880_hs8vno_img_c0d8294ac22e5294a75386a20d6d51c0.jpg HTTP/1.1 
Host: yourbrand-18274.kxcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hs8vno.webwave.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         82.102.27.18
HTTP/2 200 OK
                                        
server: keycdn-engine
date: Wed, 06 Jul 2022 17:27:13 GMT
content-type: image/jpeg
content-length: 198176
last-modified: Sat, 04 Jun 2022 17:51:01 GMT
etag: "30620-5e0a2e1d95f51"
cache-control: max-age=31536000
expires: Thu, 06 Jul 2023 17:27:13 GMT
x-frame-options: SAMEORIGIN
link: <https://webwave.me/files/dynamicContent/sites/hs8vno/images/.CURRENT_LIB/2880_hs8vno_img_c0d8294ac22e5294a75386a20d6d51c0.jpg>; rel="canonical"
x-cache: MISS
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, baseline, precision 8, 2880x2048, components 3\012- data
Size:   198176
Md5:    65ef62341a9c99ee31bab408377518a6
Sha1:   218cc68bd9979744b2657d32a5915b1671afedb4
Sha256: 85a4229fca733e494f01b28904e87f19105911eebee9015e1d40be9144a0b39b
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: +sOEg7pUPX6D/PdNCzn+5Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         35.166.180.72
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: IiY8YOFscg7WzmoPHQT8OpIPgdo=

                                        
                                            GET /lib/hs8vno/favicon.ico HTTP/1.1 
Host: yourbrand-18274.kxcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hs8vno.webwave.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         82.102.27.18
HTTP/2 200 OK
                                        
server: keycdn-engine
date: Wed, 06 Jul 2022 17:27:13 GMT
content-type: image/vnd.microsoft.icon
content-length: 1256
last-modified: Tue, 31 May 2022 11:32:26 GMT
etag: "10be-5e04d2083dd35-gzip"
cache-control: max-age=31536000
expires: Thu, 06 Jul 2023 17:27:13 GMT
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN
link: <https://webwave.me/lib/hs8vno/favicon.ico>; rel="canonical"
x-cache: MISS
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Size:   1256
Md5:    c03fcef5b4cdd0ccb42b1e8df13a3319
Sha1:   aa018c55ec5301e4c89f593138e230d93eebea84
Sha256: 0585a395beba72d4c88edf49e6997a0039d1329b1d35e365fb3be6e9f2a474cc
                                        
                                            GET /files/dynamicContent/sites/hs8vno/images/en/webpage_9/l409dm9n/element_316/Screenshot-2021-08-05-at-07-38-43-AOL.webp HTTP/1.1 
Host: yourbrand-18274.kxcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hs8vno.webwave.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         82.102.27.18
HTTP/2 200 OK
                                        
server: keycdn-engine
date: Wed, 06 Jul 2022 17:27:13 GMT
content-type: audio/unknown
content-length: 1997
last-modified: Sat, 04 Jun 2022 18:44:31 GMT
etag: "4901d7c4-7b6-5e0a3a129119e"
cache-control: max-age=31536000
expires: Thu, 06 Jul 2023 17:27:13 GMT
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN
link: <https://webwave.me/files/dynamicContent/sites/hs8vno/images/en/webpage_9/l409dm9n/element_316/Screenshot-2021-08-05-at-07-38-43-AOL.webp>; rel="canonical"
x-cache: MISS
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 300x169, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   1997
Md5:    fd58e99d42cdfb0f087812a8f8eb104e
Sha1:   ec45108c1b2b6186fb7ba211ac9ffb053043c7c3
Sha256: 198f11f60439e6e9d31bf1f20103320476c5d8275f770aab6c225c4ad2bba7d5
                                        
                                            GET /files/dynamicContent/sites/hs8vno/images/en/webpage_9/l409dm9n/element_313/aol-back.webp HTTP/1.1 
Host: yourbrand-18274.kxcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hs8vno.webwave.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         82.102.27.18
HTTP/2 200 OK
                                        
server: keycdn-engine
date: Wed, 06 Jul 2022 17:27:13 GMT
content-type: image/webp
content-length: 294
last-modified: Sat, 04 Jun 2022 19:18:49 GMT
etag: "296-5e0a41bcb615a-gzip"
cache-control: max-age=31536000
expires: Thu, 06 Jul 2023 17:27:13 GMT
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN
link: <https://webwave.me/files/dynamicContent/sites/hs8vno/images/en/webpage_9/l409dm9n/element_313/aol-back.webp>; rel="canonical"
x-cache: MISS
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image, VP8 encoding, 432x661, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size:   294
Md5:    819025fd32a12f1fbf588d6de919ce5b
Sha1:   0929c61672e7cccd6fe4b4789d02082c060bd3a8
Sha256: 555716394f56d7eafa7a00b9d11d2ccda775a1fa7b60f2497384c7214bb9aafb
                                        
                                            GET /files/dynamicContent/sites/hs8vno/images/en/webpage_9/l409dm9n/element_315/1519856117142.jpg HTTP/1.1 
Host: yourbrand-18274.kxcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hs8vno.webwave.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         82.102.27.18
HTTP/2 200 OK
                                        
server: keycdn-engine
date: Wed, 06 Jul 2022 17:27:13 GMT
content-type: image/jpeg
content-length: 3157
last-modified: Sat, 04 Jun 2022 18:44:31 GMT
etag: "c55-5e0a3a121ddec"
cache-control: max-age=31536000
expires: Thu, 06 Jul 2023 17:27:13 GMT
x-frame-options: SAMEORIGIN
link: <https://webwave.me/files/dynamicContent/sites/hs8vno/images/en/webpage_9/l409dm9n/element_315/1519856117142.jpg>; rel="canonical"
x-cache: MISS
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 200x200, components 3\012- data
Size:   3157
Md5:    b5f4cecf29159f326aa2fe1cb8114cec
Sha1:   1577ebca756e54064b5c8cf69a61f52c6b1ef914
Sha256: e2736c93abd02514fd66c735cd52143c9660ff7a0974db82797cb59e51529f5f
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hs8vno.webwave.dev/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Wed, 06 Jul 2022 16:41:12 GMT
expires: Wed, 06 Jul 2022 18:41:12 GMT
cache-control: public, max-age=7200
age: 2761
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   20006
Md5:    56f5d7f608e25d64207135f045f988cb
Sha1:   901eb59372ae330ae85e1384da93479b21ae1082
Sha256: 1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
                                        
                                            GET /service-worker.js HTTP/1.1 
Host: hs8vno.webwave.dev
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: cache-with-varnish=true; _ga=GA1.2.488775138.1657128434; _gid=GA1.2.1046848039.1657128434; _gat_gtag_UA_45772854_2=1
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         185.30.124.158
HTTP/1.1 200 200
Content-Type: application/javascript;charset=UTF-8
                                        
Date: Wed, 06 Jul 2022 17:27:13 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Content-Security-Policy: frame-ancestors webwavecms.com webwave.me ro.webwave.me webwave.ro webwave.com.au szablony.webwavecms.com templates.webwave.me templates.webwave.com.au sabloane.webwave.ro ;
X-Application-Context: application:production
Cache-Control: max-age=31536000
Expires: Thu, 06 Jul 2023 17:27:13 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
cacheable: true
X-Varnish: 129017607
Age: 0
Via: 1.1 varnish (Varnish/6.1)
Set-Cookie: cache-with-varnish=true
Accept-Ranges: bytes
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  ASCII text
Size:   736
Md5:    acfc8a6797434814c1f993d18c96f9aa
Sha1:   d15e626106cd30e1838daf66ebb731e7be2ac7ae
Sha256: 859c530da9372ae03b86d04f74eb3b1aebc3a48f112a4cb396985c83193cc9eb

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /statistics/saveWebsiteDailyStatistics?websiteId=hs8vno&pageViewsNumber=1&visitsNumber=1&visitsTime=0&uniqueNumber=1&newUsersNumber=1 HTTP/1.1 
Host: hs8vno.webwave.dev
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://hs8vno.webwave.dev/
Cookie: cache-with-varnish=true; _ga=GA1.2.488775138.1657128434; _gid=GA1.2.1046848039.1657128434; _gat_gtag_UA_45772854_2=1; _wavera_hs8vno=hs8vno.2047128434.1657128434.1657128434; _waverb_hs8vno=hs8vno.1657128434; _wavert_hs8vno=1657128434
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         185.30.124.158
HTTP/1.1 200 200
Content-Type: text/html;charset=utf-8
                                        
Date: Wed, 06 Jul 2022 17:27:14 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Content-Security-Policy: frame-ancestors webwavecms.com webwave.me ro.webwave.me webwave.ro webwave.com.au szablony.webwavecms.com templates.webwave.me templates.webwave.com.au sabloane.webwave.ro ;
X-Application-Context: application:production
Cache-Control: max-age=0
Expires: Wed, 06 Jul 2022 17:27:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Set-Cookie: JSESSIONID=D4C84FD35DBFB7AA9E018DB9A3928D8E-n1.worker2_1; Path=/; Secure; HttpOnly ww_worker=.worker2_1; path=/
ttl:
X-Varnish: 129017610
Age: 0
Via: 1.1 varnish (Varnish/6.1)
Accept-Ranges: bytes
Content-Length: 29


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   29
Md5:    d5a78277504e2289baf3d6b62e4caf03
Sha1:   18d1b52aa9bae64ac8cd238f36eb76f53bf3d655
Sha256: e34831cbb0ad0a8626abffba778c68be2a43303c54821ca7809c4cd8d36ecdfb
                                        
                                            GET /files/dynamicContent/sites/hs8vno/pwa/icon-72x72.png HTTP/1.1 
Host: hs8vno.webwave.dev
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hs8vno.webwave.dev/
Connection: keep-alive
Cookie: cache-with-varnish=true; _ga=GA1.2.488775138.1657128434; _gid=GA1.2.1046848039.1657128434; _gat_gtag_UA_45772854_2=1; _wavera_hs8vno=hs8vno.2047128434.1657128434.1657128434; _waverb_hs8vno=hs8vno.1657128434; _wavert_hs8vno=1657128434
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         185.30.124.158
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 06 Jul 2022 17:27:14 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Content-Security-Policy: frame-ancestors webwavecms.com webwave.me ro.webwave.me webwave.ro webwave.com.au szablony.webwavecms.com templates.webwave.me templates.webwave.com.au sabloane.webwave.ro ;
Last-Modified: Tue, 31 May 2022 11:32:26 GMT
ETag: "e0e-5e04d208592b1"
Accept-Ranges: bytes
Content-Length: 3598
Cache-Control: max-age=31536000
Expires: Thu, 06 Jul 2023 17:27:14 GMT
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  PNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced\012- data
Size:   3598
Md5:    d5c13186f0e011452c3b035f297b2cdb
Sha1:   a5641859069bac92dbce840fdf6a95e554f5320c
Sha256: 529b5340693d9c31caa00f039cb4673a81436ce1b1de3c03df3022be1388e3ec
                                        
                                            GET /files/dynamicContent/sites/hs8vno/pwa/icon-96x96.png HTTP/1.1 
Host: hs8vno.webwave.dev
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hs8vno.webwave.dev/
Connection: keep-alive
Cookie: cache-with-varnish=true; _ga=GA1.2.488775138.1657128434; _gid=GA1.2.1046848039.1657128434; _gat_gtag_UA_45772854_2=1; _wavera_hs8vno=hs8vno.2047128434.1657128434.1657128434; _waverb_hs8vno=hs8vno.1657128434; _wavert_hs8vno=1657128434
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         185.30.124.158
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 06 Jul 2022 17:27:14 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Content-Security-Policy: frame-ancestors webwavecms.com webwave.me ro.webwave.me webwave.ro webwave.com.au szablony.webwavecms.com templates.webwave.me templates.webwave.com.au sabloane.webwave.ro ;
Last-Modified: Tue, 31 May 2022 11:32:26 GMT
ETag: "1428-5e04d2087482e"
Accept-Ranges: bytes
Content-Length: 5160
Cache-Control: max-age=31536000
Expires: Thu, 06 Jul 2023 17:27:14 GMT
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced\012- data
Size:   5160
Md5:    7ed65a7b728aa69e98540c4140463e44
Sha1:   8e44a7ddc306e6457fa54d9c6e6f018fef288952
Sha256: 26aa0908d4b8466bddddc6cd0953b70c0c80620667d29f16b6c2d7c3cc7ee8e8
                                        
                                            GET /statistics/saveVisitorDailyStatistics?websiteId=hs8vno&uniqueVisitorId=2047128434&creationDate=6-7-2022%2017:27:14 HTTP/1.1 
Host: hs8vno.webwave.dev
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://hs8vno.webwave.dev/
Cookie: cache-with-varnish=true; _ga=GA1.2.488775138.1657128434; _gid=GA1.2.1046848039.1657128434; _gat_gtag_UA_45772854_2=1; _wavera_hs8vno=hs8vno.2047128434.1657128434.1657128434; _waverb_hs8vno=hs8vno.1657128434; _wavert_hs8vno=1657128434
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         185.30.124.158
HTTP/1.1 200 200
Content-Type: text/html;charset=utf-8
                                        
Date: Wed, 06 Jul 2022 17:27:14 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Content-Security-Policy: frame-ancestors webwavecms.com webwave.me ro.webwave.me webwave.ro webwave.com.au szablony.webwavecms.com templates.webwave.me templates.webwave.com.au sabloane.webwave.ro ;
X-Application-Context: application:production
Cache-Control: max-age=0
Expires: Wed, 06 Jul 2022 17:27:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
Set-Cookie: JSESSIONID=58486229E9127E12FDB185553A4FACAB-n1.worker2_1; Path=/; Secure; HttpOnly ww_worker=.worker2_1; path=/
ttl:
X-Varnish: 122095075
Age: 0
Via: 1.1 varnish (Varnish/6.1)
Accept-Ranges: bytes
Content-Length: 29


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   29
Md5:    d5a78277504e2289baf3d6b62e4caf03
Sha1:   18d1b52aa9bae64ac8cd238f36eb76f53bf3d655
Sha256: e34831cbb0ad0a8626abffba778c68be2a43303c54821ca7809c4cd8d36ecdfb
                                        
                                            GET /files/dynamicContent/sites/hs8vno/pwa/icon-192x192.png HTTP/1.1 
Host: hs8vno.webwave.dev
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hs8vno.webwave.dev/
Connection: keep-alive
Cookie: cache-with-varnish=true; _ga=GA1.2.488775138.1657128434; _gid=GA1.2.1046848039.1657128434; _gat_gtag_UA_45772854_2=1; _wavera_hs8vno=hs8vno.2047128434.1657128434.1657128434; _waverb_hs8vno=hs8vno.1657128434; _wavert_hs8vno=1657128434
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         185.30.124.158
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 06 Jul 2022 17:27:14 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Content-Security-Policy: frame-ancestors webwavecms.com webwave.me ro.webwave.me webwave.ro webwave.com.au szablony.webwavecms.com templates.webwave.me templates.webwave.com.au sabloane.webwave.ro ;
Last-Modified: Tue, 31 May 2022 11:32:27 GMT
ETag: "35de-5e04d20947714"
Accept-Ranges: bytes
Content-Length: 13790
Cache-Control: max-age=31536000
Expires: Thu, 06 Jul 2023 17:27:14 GMT
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size:   13790
Md5:    6f13d6d8c80df3ed1c9cb77ecaf079cb
Sha1:   52b464ffab5988534b7f8c81d7a39706b14f21c2
Sha256: 63352f241e6278da65c3c6e3105e5fb041ee5adfd4cc7058eca8e41764f350cd
                                        
                                            GET /files/dynamicContent/sites/hs8vno/css/webpage_9/l409dm9p.css HTTP/1.1 
Host: yourbrand-18274.kxcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hs8vno.webwave.dev/
Origin: https://hs8vno.webwave.dev
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         82.102.27.18
HTTP/2 200 OK
                                        
server: keycdn-engine
date: Wed, 06 Jul 2022 17:27:14 GMT
content-type: text/css
content-length: 1991
last-modified: Sat, 04 Jun 2022 19:18:49 GMT
etag: "4902c777-48a2-5e0a41bcc3c18"
cache-control: max-age=31536000
expires: Thu, 06 Jul 2023 17:27:14 GMT
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN
link: <https://webwave.me/files/dynamicContent/sites/hs8vno/css/webpage_9/l409dm9p.css>; rel="canonical"
x-cache: MISS
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (18594), with no line terminators
Size:   1991
Md5:    599bd68c33fc86de9a6e272c05fa3493
Sha1:   21db2f92875f586a07154c01a811ba4d5d36a120
Sha256: 6a56c9200345ac964ada9843a190d84c2d08bce534bc4a3ea70c60574d19aefa
                                        
                                            GET /files/dynamicContent/sites/hs8vno/pwa/icon-384x384.png HTTP/1.1 
Host: hs8vno.webwave.dev
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hs8vno.webwave.dev/
Connection: keep-alive
Cookie: cache-with-varnish=true; _ga=GA1.2.488775138.1657128434; _gid=GA1.2.1046848039.1657128434; _gat_gtag_UA_45772854_2=1; _wavera_hs8vno=hs8vno.2047128434.1657128434.1657128434; _waverb_hs8vno=hs8vno.1657128434; _wavert_hs8vno=1657128434
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         185.30.124.158
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 06 Jul 2022 17:27:14 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Content-Security-Policy: frame-ancestors webwavecms.com webwave.me ro.webwave.me webwave.ro webwave.com.au szablony.webwavecms.com templates.webwave.me templates.webwave.com.au sabloane.webwave.ro ;
Last-Modified: Tue, 31 May 2022 11:32:27 GMT
ETag: "9f4f-5e04d209b6c46"
Accept-Ranges: bytes
Content-Length: 40783
Cache-Control: max-age=31536000
Expires: Thu, 06 Jul 2023 17:27:14 GMT
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  PNG image data, 384 x 384, 8-bit/color RGBA, non-interlaced\012- data
Size:   40783
Md5:    75f938506644344578c762d099212ca1
Sha1:   63159ffe1541ef4ec9bc29cdb7065d4ab5ee04a7
Sha256: 817a3936bcd48cae7211829fa1e69c9ccb89ca07817ed9b14a88bf957426af0e
                                        
                                            GET /files/staticContent/3.33/websitesResources/js/com/webwave/bottomBar/madeByBanner-58b187d65d0e2505a5be783c9b216267.js HTTP/1.1 
Host: yourbrand-18274.kxcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hs8vno.webwave.dev/
Origin: https://hs8vno.webwave.dev
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         82.102.27.18
HTTP/2 200 OK
                                        
server: keycdn-engine
date: Wed, 06 Jul 2022 17:27:14 GMT
content-type: application/javascript
content-length: 256
last-modified: Thu, 02 Jun 2022 06:59:58 GMT
etag: "161-5e0718dc55780-gzip"
cache-control: max-age=31536000
expires: Thu, 06 Jul 2023 17:27:14 GMT
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN
link: <https://webwave.me/files/staticContent/3.33/websitesResources/js/com/webwave/bottomBar/madeByBanner-58b187d65d0e2505a5be783c9b216267.js>; rel="canonical"
x-cache: MISS
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (312)
Size:   256
Md5:    581267c5a38e1d575143a447f4cc1c54
Sha1:   3ce6a6d5c496d257c7aa00decf99d0522a90d9d0
Sha256: 5c6015dee7d2653b283c7dd9034a1a2be5e3565783efc230bebb272e2fe9d232
                                        
                                            GET /files/dynamicContent/sites/hs8vno/pwa/icon-152x152.png HTTP/1.1 
Host: hs8vno.webwave.dev
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hs8vno.webwave.dev/
Connection: keep-alive
Cookie: cache-with-varnish=true; _ga=GA1.2.488775138.1657128434; _gid=GA1.2.1046848039.1657128434; _gat_gtag_UA_45772854_2=1; _wavera_hs8vno=hs8vno.2047128434.1657128434.1657128434; _waverb_hs8vno=hs8vno.1657128434; _wavert_hs8vno=1657128434
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         185.30.124.158
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 06 Jul 2022 17:27:14 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Content-Security-Policy: frame-ancestors webwavecms.com webwave.me ro.webwave.me webwave.ro webwave.com.au szablony.webwavecms.com templates.webwave.me templates.webwave.com.au sabloane.webwave.ro ;
Last-Modified: Tue, 31 May 2022 11:32:26 GMT
ETag: "25e5-5e04d2090509c"
Accept-Ranges: bytes
Content-Length: 9701
Cache-Control: max-age=31536000
Expires: Thu, 06 Jul 2023 17:27:14 GMT
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  PNG image data, 152 x 152, 8-bit/color RGBA, non-interlaced\012- data
Size:   9701
Md5:    e0d2776e37ae1b2d96adf642888ffe51
Sha1:   7c5253e1013e7cece5631c71af531712e4d53f63
Sha256: 920810d13538831fd77ae2ed458bdd5e13ff953a1c2c035faa8d8ad96c7212bb
                                        
                                            GET /files/dynamicContent/sites/hs8vno/pwa/icon-144x144.png HTTP/1.1 
Host: hs8vno.webwave.dev
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hs8vno.webwave.dev/
Connection: keep-alive
Cookie: cache-with-varnish=true; _ga=GA1.2.488775138.1657128434; _gid=GA1.2.1046848039.1657128434; _gat_gtag_UA_45772854_2=1; _wavera_hs8vno=hs8vno.2047128434.1657128434.1657128434; _waverb_hs8vno=hs8vno.1657128434; _wavert_hs8vno=1657128434
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         185.30.124.158
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 06 Jul 2022 17:27:14 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Content-Security-Policy: frame-ancestors webwavecms.com webwave.me ro.webwave.me webwave.ro webwave.com.au szablony.webwavecms.com templates.webwave.me templates.webwave.com.au sabloane.webwave.ro ;
Last-Modified: Tue, 31 May 2022 11:32:26 GMT
ETag: "2368-5e04d208d1482"
Accept-Ranges: bytes
Content-Length: 9064
Cache-Control: max-age=31536000
Expires: Thu, 06 Jul 2023 17:27:14 GMT
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  PNG image data, 144 x 144, 8-bit/color RGBA, non-interlaced\012- data
Size:   9064
Md5:    2f0df51aa03a3ca92725e8287cc292a0
Sha1:   35f7e7fdfc3cd535f14a7b1baecd82196fbd5037
Sha256: 60fdf0c008dc86df8b5cc4a3bcc3672c100b5b3b65ce7e3bc19b465c9939fb45
                                        
                                            GET /files/dynamicContent/sites/hs8vno/pwa/icon-128x128.png HTTP/1.1 
Host: hs8vno.webwave.dev
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hs8vno.webwave.dev/
Connection: keep-alive
Cookie: cache-with-varnish=true; _ga=GA1.2.488775138.1657128434; _gid=GA1.2.1046848039.1657128434; _gat_gtag_UA_45772854_2=1; _wavera_hs8vno=hs8vno.2047128434.1657128434.1657128434; _waverb_hs8vno=hs8vno.1657128434; _wavert_hs8vno=1657128434
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         185.30.124.158
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 06 Jul 2022 17:27:14 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Content-Security-Policy: frame-ancestors webwavecms.com webwave.me ro.webwave.me webwave.ro webwave.com.au szablony.webwavecms.com templates.webwave.me templates.webwave.com.au sabloane.webwave.ro ;
Last-Modified: Tue, 31 May 2022 11:32:26 GMT
ETag: "1de2-5e04d2089e809"
Accept-Ranges: bytes
Content-Length: 7650
Cache-Control: max-age=31536000
Expires: Thu, 06 Jul 2023 17:27:14 GMT
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Size:   7650
Md5:    aab7fd370a77c2c6926d30bf9c4568a6
Sha1:   bfc9e24edaeb8393f4765fd51ebb2b0c1bc4f06d
Sha256: 73fcc9d5ea76c01c6c5d63026cd9b1119e89e58776dab17229f414819544a49e
                                        
                                            GET / HTTP/1.1 
Host: hs8vno.webwave.dev
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hs8vno.webwave.dev/
Connection: keep-alive
Cookie: cache-with-varnish=true; _ga=GA1.2.488775138.1657128434; _gid=GA1.2.1046848039.1657128434; _gat_gtag_UA_45772854_2=1; _wavera_hs8vno=hs8vno.2047128434.1657128434.1657128434; _waverb_hs8vno=hs8vno.1657128434; _wavert_hs8vno=1657128434
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         185.30.124.158
HTTP/1.1 200 200
Content-Type: text/html;charset=utf-8
                                        
Date: Tue, 05 Jul 2022 21:28:54 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Content-Security-Policy: frame-ancestors webwavecms.com webwave.me ro.webwave.me webwave.ro webwave.com.au szablony.webwavecms.com templates.webwave.me templates.webwave.com.au sabloane.webwave.ro ;
X-Application-Context: application:production
Cache-Control: max-age=0
Expires: Tue, 05 Jul 2022 21:28:54 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
cacheable: true
X-Varnish: 123509902 102907268
Age: 71899
Via: 1.1 varnish (Varnish/6.1)
Set-Cookie: cache-with-varnish=true
Accept-Ranges: bytes
Content-Length: 37679


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (64539)
Size:   37679
Md5:    a1a6fb63420ab896351b316cfe208e6f
Sha1:   f612694ca1086c78d9658ec1ab868bab71b7f094
Sha256: 548449c996cd5487181960b8bac2b12aee5405ecb9300ae0f6704689107e0535

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /files/dynamicContent/sites/hs8vno/pwa/icon-512x512.png HTTP/1.1 
Host: hs8vno.webwave.dev
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hs8vno.webwave.dev/
Connection: keep-alive
Cookie: cache-with-varnish=true; _ga=GA1.2.488775138.1657128434; _gid=GA1.2.1046848039.1657128434; _gat_gtag_UA_45772854_2=1; _wavera_hs8vno=hs8vno.2047128434.1657128434.1657128434; _waverb_hs8vno=hs8vno.1657128434; _wavert_hs8vno=1657128434
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         185.30.124.158
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Date: Wed, 06 Jul 2022 17:27:14 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Content-Security-Policy: frame-ancestors webwavecms.com webwave.me ro.webwave.me webwave.ro webwave.com.au szablony.webwavecms.com templates.webwave.me templates.webwave.com.au sabloane.webwave.ro ;
Last-Modified: Tue, 31 May 2022 11:32:28 GMT
ETag: "e337-5e04d20a6f54f"
Accept-Ranges: bytes
Content-Length: 58167
Cache-Control: max-age=31536000
Expires: Thu, 06 Jul 2023 17:27:14 GMT
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN


--- Additional Info ---
Magic:  PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Size:   58167
Md5:    788a1cc097920313ae48046fa1ddcafe
Sha1:   09f205f028e65b6a1c3144a8899c4d6ffd766e51
Sha256: 737ffaa714ac0fac7cd3b8d00fec3c4b26c2a287babe50c459dcb416d0f365ba
                                        
                                            GET /manifest.json HTTP/1.1 
Host: hs8vno.webwave.dev
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://hs8vno.webwave.dev/service-worker.js
Connection: keep-alive
Cookie: cache-with-varnish=true; _ga=GA1.2.488775138.1657128434; _gid=GA1.2.1046848039.1657128434; _gat_gtag_UA_45772854_2=1; _wavera_hs8vno=hs8vno.2047128434.1657128434.1657128434; _waverb_hs8vno=hs8vno.1657128434; _wavert_hs8vno=1657128434
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

                                         
                                         185.30.124.158
HTTP/1.1 200 200
Content-Type: application/json;charset=UTF-8
                                        
Date: Wed, 06 Jul 2022 17:27:14 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips
Content-Security-Policy: frame-ancestors webwavecms.com webwave.me ro.webwave.me webwave.ro webwave.com.au szablony.webwavecms.com templates.webwave.me templates.webwave.com.au sabloane.webwave.ro ;
X-Application-Context: application:production
Cache-Control: max-age=0
Expires: Wed, 06 Jul 2022 17:27:14 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Frame-Options: SAMEORIGIN
cacheable: true
X-Varnish: 120894363
Age: 0
Via: 1.1 varnish (Varnish/6.1)
Set-Cookie: cache-with-varnish=true
Accept-Ranges: bytes
Transfer-Encoding: chunked


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (963), with no line terminators
Size:   273
Md5:    4fd523ded8d8df213a4b4db4b131f00b
Sha1:   aeafaf4471949b537e17d8881b22b62f8c1b539f
Sha256: 236c66d78fc09afef9d8023192bfe0377bae461f02c1b21e5198d8e823322bff

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 06 Jul 2022 17:27:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-45772854-2&cid=488775138.1657128434&jid=1088338013&gjid=518002096&_gid=1046848039.1657128434&_u=YEBAAUAAAAAAAC~&z=1880049404 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://hs8vno.webwave.dev
Connection: keep-alive
Referer: https://hs8vno.webwave.dev/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         173.194.222.155
HTTP/2 200 OK
                                        
access-control-allow-origin: https://hs8vno.webwave.dev
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 06 Jul 2022 17:27:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   4
Md5:    48c0473b7821185d937e685216e2168b
Sha1:   3743e47f8a429a5e87b86cb582d78940733d9d2e
Sha256: 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 06 Jul 2022 17:27:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 06 Jul 2022 17:27:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 06 Jul 2022 17:27:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-45772854-2&cid=488775138.1657128434&jid=1088338013&_u=YEBAAUAAAAAAAC~&z=2039176932 HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hs8vno.webwave.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.3
HTTP/2 200 OK
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 06 Jul 2022 17:27:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j96&tid=UA-45772854-2&cid=488775138.1657128434&jid=1088338013&_u=YEBAAUAAAAAAAC~&z=2039176932 HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hs8vno.webwave.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 200 OK
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 06 Jul 2022 17:27:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 06 Jul 2022 17:27:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 06 Jul 2022 17:27:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "611E864D4A64EB7175BDED94052A41462E3215D329EF82CBEEA70D511B811E8D"
Last-Modified: Mon, 04 Jul 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3052
Expires: Wed, 06 Jul 2022 18:18:06 GMT
Date: Wed, 06 Jul 2022 17:27:14 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "611E864D4A64EB7175BDED94052A41462E3215D329EF82CBEEA70D511B811E8D"
Last-Modified: Mon, 04 Jul 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3052
Expires: Wed, 06 Jul 2022 18:18:06 GMT
Date: Wed, 06 Jul 2022 17:27:14 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "611E864D4A64EB7175BDED94052A41462E3215D329EF82CBEEA70D511B811E8D"
Last-Modified: Mon, 04 Jul 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3052
Expires: Wed, 06 Jul 2022 18:18:06 GMT
Date: Wed, 06 Jul 2022 17:27:14 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "611E864D4A64EB7175BDED94052A41462E3215D329EF82CBEEA70D511B811E8D"
Last-Modified: Mon, 04 Jul 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3052
Expires: Wed, 06 Jul 2022 18:18:06 GMT
Date: Wed, 06 Jul 2022 17:27:14 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "611E864D4A64EB7175BDED94052A41462E3215D329EF82CBEEA70D511B811E8D"
Last-Modified: Mon, 04 Jul 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3052
Expires: Wed, 06 Jul 2022 18:18:06 GMT
Date: Wed, 06 Jul 2022 17:27:14 GMT
Connection: keep-alive

                                        
                                            GET /lib/hs8vno/favicon.ico?1657128433840 HTTP/1.1 
Host: yourbrand-18274.kxcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://hs8vno.webwave.dev/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         82.102.27.18
HTTP/2 200 OK
                                        
server: keycdn-engine
date: Wed, 06 Jul 2022 17:27:14 GMT
content-type: image/vnd.microsoft.icon
content-length: 1256
last-modified: Tue, 31 May 2022 11:32:26 GMT
etag: "10be-5e04d2083dd35-gzip"
cache-control: max-age=31536000
expires: Thu, 06 Jul 2023 17:27:14 GMT
vary: Accept-Encoding
content-encoding: gzip
x-frame-options: SAMEORIGIN
link: <https://webwave.me/lib/hs8vno/favicon.ico?1657128433840>; rel="canonical"
x-cache: MISS
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Size:   1256
Md5:    c03fcef5b4cdd0ccb42b1e8df13a3319
Sha1:   aa018c55ec5301e4c89f593138e230d93eebea84
Sha256: 0585a395beba72d4c88edf49e6997a0039d1329b1d35e365fb3be6e9f2a474cc
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1720044-e013-44e2-84e3-3257a39ccd02.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 5911
x-amzn-requestid: fe59dc2c-e538-4a53-89cc-124a1ef18ae4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: U0B0QFbBoAMFrYg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c4b01b-52093f724a31401a2104b0ea;Sampled=0
x-amzn-remapped-date: Tue, 05 Jul 2022 21:41:47 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5m4ltu42g95fcokh1RQ05zAj4rSzrTZqqZKzaG6LwUvFVc3DqXsIqw==
via: 1.1 e77661e211afe9242e85e573f12d5534.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 05 Jul 2022 21:50:40 GMT
age: 70594
etag: "207e445452ff97110a4c9edd38bc8933f70fd71e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5911
Md5:    3d1458480bd23c2411fa6de7ae666502
Sha1:   207e445452ff97110a4c9edd38bc8933f70fd71e
Sha256: c29b4c3afdf7843b5f26688ed8dee581ec08c767569f3f0a99c3b22f9825a966
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde8f4008-69f3-4766-a957-006ebc39d2e4.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 9047
x-amzn-requestid: 8e0eccf9-7f3e-4333-a5d7-a35dd0e068eb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: U0BU0HNmoAMFaQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c4af51-1d81f8e10200694125ede95f;Sampled=0
x-amzn-remapped-date: Tue, 05 Jul 2022 21:38:25 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: p01XdrlrorzmgxXBsOJnDXZr2H4NK0kTKLw9EwA5gpq_BlyCwaub2A==
via: 1.1 1002c05e647d0804e83147cdd205d14a.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Tue, 05 Jul 2022 21:50:18 GMT
age: 70616
etag: "7aa6cd994a565c8b6832d48c1e36b17f33621e90"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9047
Md5:    bb2f16af747cd633f71de1966771b532
Sha1:   7aa6cd994a565c8b6832d48c1e36b17f33621e90
Sha256: b61a354007e630a3be3ae0c2c2336d3dd71cec02eab7b4234ebb40f69561acf0
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F431f287f-9907-47aa-be38-0ff4e6db75fc.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 8553
x-amzn-requestid: 2c1e16d1-357b-493e-bcf7-b4de1a34757f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Utd8tEKYIAMFbmA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c21051-7382cb3050c6f13d70dd3706;Sampled=0
x-amzn-remapped-date: Sun, 03 Jul 2022 21:55:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 9b-i6Ono7HZPLnQTZVWjd00ihgjD2qR-Meg1fdOa2d-SXIITlOM4yw==
via: 1.1 bd6f70221217681265382902c6157c76.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 06 Jul 2022 13:49:18 GMT
age: 13076
etag: "303f4efaa9b98e39a935fc6514d3731d40d2977c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8553
Md5:    e6f97e6b64100081e8bed56216564854
Sha1:   303f4efaa9b98e39a935fc6514d3731d40d2977c
Sha256: 92dd803f1633bd65a2b4ac3223d8aa93dd55ed64c74b338aff62323585a3623c
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a269baa-7158-4db8-9b1d-e4e22ec22920.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 6711
x-amzn-requestid: 5b99a31c-9224-4862-a43f-544d6fa3dbdd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: U0BHsEkmIAMFg_Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c4aefd-571078525a01c4dc72c6ed22;Sampled=0
x-amzn-remapped-date: Tue, 05 Jul 2022 21:37:01 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 8xhNMjh4EBZQrViDk4PaxV5Tk_sBuZ1BGRuVGtAVAGie72R16hmoAA==
via: 1.1 b23fb37cd7fff033ab21e3284f558a28.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Tue, 05 Jul 2022 21:37:02 GMT
etag: "b06f33b2742c3c6de4a449f4227d85e6268bafce"
content-type: image/jpeg
age: 71412
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6711
Md5:    d82ae97bb9569fa288a23c3380a4f4ef
Sha1:   b06f33b2742c3c6de4a449f4227d85e6268bafce
Sha256: e99961f561aaa3ded5fd1c19ce10505a7d016d5d67bbbef5caebad09ba233b56
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc072e61d-3b9b-4f2d-acc8-d26a8adf968d.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 12165
x-amzn-requestid: 796ca673-2ab5-4bd9-b4f1-d2c250c34e3a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: U0BWXH-HoAMFhkg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c4af5b-51c7abd54a523a1f479a7d5b;Sampled=0
x-amzn-remapped-date: Tue, 05 Jul 2022 21:38:35 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: _-zkK-6DIfDVDzXmTOTigF2tM4pfh19MReGO_X26eRhLNFGL3Jc9Aw==
via: 1.1 4c48e9fb20d53d40e9fe273dbdae1098.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Tue, 05 Jul 2022 21:50:29 GMT
age: 70605
etag: "604b4cc5d50ca494df1de2ab8baa486da20d1e4e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12165
Md5:    29949330f4dc3b69747d5534e745fde3
Sha1:   604b4cc5d50ca494df1de2ab8baa486da20d1e4e
Sha256: b98faa2080573124f84254a2f87df3631f257e9a040cf34ebe267a1784d4b954
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bb6c586-bb86-4a54-bd48-f2b5da763e74.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 7117
x-amzn-requestid: 7cfe344b-f098-4260-bb50-6574786e6ee2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: U0BW8HnbIAMFkrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62c4af5f-14a960ac060d2d120cb0ad7c;Sampled=0
x-amzn-remapped-date: Tue, 05 Jul 2022 21:38:39 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0F6ZVkqKywgjh9Qa1DJw_-rdOLcc1tzEll0J58NeawksoIu9nY1a-g==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Tue, 05 Jul 2022 21:52:41 GMT
age: 70473
etag: "01efbdf6b2ab79332bf6a22d36472e294732aa17"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7117
Md5:    b4ead2bdcbc998a5685d65a26e40ce1a
Sha1:   01efbdf6b2ab79332bf6a22d36472e294732aa17
Sha256: 04399a91345db4f89bdbbb9ddb30db0f2a0c29654491b38bb1a30bd40c4f3e48