| track.supercosmo.xyz/244e7031-09c8-4f66-b30b-c6c57e4e4385 | 18.192.108.151 | 302 | 0 B |
URL HTTP/1.1track.supercosmo.xyz/244e7031-09c8-4f66-b30b-c6c57e4e4385 IP18.192.108.151:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET /244e7031-09c8-4f66-b30b-c6c57e4e4385 HTTP/1.1
Host: track.supercosmo.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302
Server: nginx
Date: Mon, 24 Oct 2022 14:03:55 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, pre-check=0, post-check=0
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Location: https://mxgoodwins.digital/mxmonetizer/index.php?brand=Desktop&cep=YFS3VwLB0JA-pU8czfbit2NyFNQF85uc8BP72C_fFm6HgO98I7Y7UtS6K9x-DTUO1bALabr_307bJMfFxXvqf27tosjm-bRURFXriYAn378qeFtK_71YPGnZRItp_uMCY57tL2qlfUdEJeqZKOUsHkGvBWxIzRQft4okLs1hUnVMySJ5bvDr08cTlWCV0VpcF7wM0FpAgI0XwlaCtbcPM0JGZgKcFZ3x23VSUb8icn_hyqCWC-FSJpA6MHxan_Nf76VD2xIqr64sJ57S0stkQ00YjLNjA6UzKZIubXe6TLomgTKSM2pM_1IyRETETLa_FiWMuuLyHJqZXAcLFtKojzOLjCsXai9qVNshbITKdqTHUJn6GlwnS7_J_eZ9zQZo&lptoken=16df66bd628e206f3532
Pragma: no-cache
Set-Cookie: 244e7031-09c8-4f66-b30b-c6c57e4e4385-v4=ZlCOGPyZ7_sQBT79A9Hge1qAgradsziEgtHuO5NKFGE; Max-Age=86400; Expires=Tue, 25-Oct-2022 14:03:55 GMT; Domain=track.supercosmo.xyz; Path=/; HttpOnly
cep-v4=o6oJnMUxzLX-DU82pxFHZnDQxDsvLb-cyZXQEmNg0XKfPGBgWRB7LhJ76zfiMCJ_Upjmyp_4YpC0dTY-Q3UuYtq7peXwFbZD1faDQ0E0kUdmTaD3s2b2hfbcLq4sRXh8iS9Qgz-YNg1LyL4xdi0gRbs4uX5wCqa-WVS1mLQPBM_pXoEtHdpEcZlgnzfr6iaicp0P7RiVu6B-o_BfGcHL905y0OBd7MdehARjroD7Z14XpcoW-WhovYHshFi-OcY-NzOvzhTPN-DqX0X_ajeIOaafKfL1_2nXPHszhzNgNTIxo6k0tzoAUTDQXP3dEQhRLMiuAC5S4HZZHmnePPpqsAWhj7Kptl8jRG7KiWp5pvMQRAZhmQk444lkb088jHgh; Max-Age=86400; Expires=Tue, 25-Oct-2022 14:03:55 GMT; Domain=track.supercosmo.xyz; Path=/; HttpOnly
|
|
| firefox.settings.services.mozilla.com/v1/ | 143.204.55.27 | 200 OK | 939 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/ IP143.204.55.27:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashbdb8b66c705a7b996496d780f50c00b5 403ae92039fcc933870f51f913f78ccaf9652256 c923ed2539f4ce9f4d43743c402fbb2060a52a4cbedbf14c5f5742ab718073d6
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 24 Oct 2022 13:23:33 GMT
Expires: Mon, 24 Oct 2022 14:06:41 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: QAcDbA47Q5bYwhOJaxBlJkmzPL18vhbZh2M59g3UiNA3Ym0idfEjzw==
Age: 2422
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash73c4166ca864f777db2cc1cd8658a7c2 c56b66b0b7c8516d4d5bfafe0c166711c78f3d25 310c633350812c064e159275b6dbbdba6d6a5991a54ccfcc23459320c6513572
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "310C633350812C064E159275B6DBBDBA6D6A5991A54CCFCC23459320C6513572"
Last-Modified: Sat, 22 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6857
Expires: Mon, 24 Oct 2022 15:58:12 GMT
Date: Mon, 24 Oct 2022 14:03:55 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashae56efd62a0d9249d98573172eb8b28b 5ff4e9959be677ad76c26ca73f9ef4feb9fa2f28 82d9ee4948fce839f7edb1f8490c4213cded3912464a4169b0bf6a61278694bd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "82D9EE4948FCE839F7EDB1F8490C4213CDED3912464A4169B0BF6A61278694BD"
Last-Modified: Sat, 22 Oct 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10021
Expires: Mon, 24 Oct 2022 16:50:57 GMT
Date: Mon, 24 Oct 2022 14:03:56 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash67d5a988edcda47bc3b3b3f65d32b4b6 d4f0e0da8b3690cc7da925026d3414b68c7d954f 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 7DanGiapPrkW8flmyEh0xB/MPoBtFdC7Y42Cg3g0UeawpC6hUecIHMCxxLkSzVpkc5wA2B9Kn64=
x-amz-request-id: 1AW7M215XGEM7VM7
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 24 Oct 2022 13:08:31 GMT
age: 3325
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 24 Oct 2022 14:03:56 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| mxgoodwins.digital/mxmonetizer/img/loader.gif | 217.69.13.14 | 200 OK | 1.6 kB |
URL HTTP/2mxgoodwins.digital/mxmonetizer/img/loader.gif IP217.69.13.14:0
File typeGIF image data, version 89a, 128 x 15\012- data Hash08e97d5e5060e42634268c5e8c425d18 694968120010617fdcabde621b6e0690d01b44fd 92d619282a3d1a329605067fb43a6987b74e454aed2ffbd15974152c07ae7c0a
GET /mxmonetizer/img/loader.gif HTTP/1.1
Host: mxgoodwins.digital
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mxgoodwins.digital/mxmonetizer/index.php?brand=Desktop&cep=YFS3VwLB0JA-pU8czfbit2NyFNQF85uc8BP72C_fFm6HgO98I7Y7UtS6K9x-DTUO1bALabr_307bJMfFxXvqf27tosjm-bRURFXriYAn378qeFtK_71YPGnZRItp_uMCY57tL2qlfUdEJeqZKOUsHkGvBWxIzRQft4okLs1hUnVMySJ5bvDr08cTlWCV0VpcF7wM0FpAgI0XwlaCtbcPM0JGZgKcFZ3x23VSUb8icn_hyqCWC-FSJpA6MHxan_Nf76VD2xIqr64sJ57S0stkQ00YjLNjA6UzKZIubXe6TLomgTKSM2pM_1IyRETETLa_FiWMuuLyHJqZXAcLFtKojzOLjCsXai9qVNshbITKdqTHUJn6GlwnS7_J_eZ9zQZo&lptoken=16df66bd628e206f3532
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 24 Oct 2022 14:03:56 GMT
content-type: image/gif
content-length: 1633
last-modified: Sat, 18 Apr 2020 05:51:20 GMT
etag: "661-5a38a414e0600"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| mxgoodwins.digital/mxmonetizer/css/boilerplate.css | 217.69.13.14 | 200 OK | 3.3 kB |
URL HTTP/2mxgoodwins.digital/mxmonetizer/css/boilerplate.css IP217.69.13.14:0
File typeUnicode text, UTF-8 text, with CRLF line terminators Hashbeb48377080dad1791935646ebddf5c2 d527f21df5d3a7a8c64106164788d1782cc0272e fccd3ed5e4d74f245bf90b916c54d37c3f7fcaaa30c931f2146b1ce06891fffc
GET /mxmonetizer/css/boilerplate.css HTTP/1.1
Host: mxgoodwins.digital
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mxgoodwins.digital/mxmonetizer/index.php?brand=Desktop&cep=YFS3VwLB0JA-pU8czfbit2NyFNQF85uc8BP72C_fFm6HgO98I7Y7UtS6K9x-DTUO1bALabr_307bJMfFxXvqf27tosjm-bRURFXriYAn378qeFtK_71YPGnZRItp_uMCY57tL2qlfUdEJeqZKOUsHkGvBWxIzRQft4okLs1hUnVMySJ5bvDr08cTlWCV0VpcF7wM0FpAgI0XwlaCtbcPM0JGZgKcFZ3x23VSUb8icn_hyqCWC-FSJpA6MHxan_Nf76VD2xIqr64sJ57S0stkQ00YjLNjA6UzKZIubXe6TLomgTKSM2pM_1IyRETETLa_FiWMuuLyHJqZXAcLFtKojzOLjCsXai9qVNshbITKdqTHUJn6GlwnS7_J_eZ9zQZo&lptoken=16df66bd628e206f3532
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 24 Oct 2022 14:03:56 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 18 Apr 2020 05:51:20 GMT
etag: W/"26d0-5a38a414e0600"
content-encoding: br
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hash4c236f4ca13cd8fafc580bceb0995642 b6a7de7a8d994ed2cfb5ac74b6d7703de515ecdb 671228953eba5b2678df03acebb493e411752c6f5f72ff7f1e485032241d4aeb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 14:03:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| mxgoodwins.digital/mxmonetizer/js/respond.min.js | 217.69.13.14 | 200 OK | 2.2 kB |
URL HTTP/2mxgoodwins.digital/mxmonetizer/js/respond.min.js IP217.69.13.14:0
File typeHTML document, ASCII text, with very long lines (3103), with CRLF line terminators Hash917a8f7f5f05b6732c9069c83ef60bc1 31161bbadec1112ce35c73c55522750b246e73d1 91f9edda2abc1fee95a931640a21182db8e517f39bdfbe1d5607a9d35d916b1e
GET /mxmonetizer/js/respond.min.js HTTP/1.1
Host: mxgoodwins.digital
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mxgoodwins.digital/mxmonetizer/index.php?brand=Desktop&cep=YFS3VwLB0JA-pU8czfbit2NyFNQF85uc8BP72C_fFm6HgO98I7Y7UtS6K9x-DTUO1bALabr_307bJMfFxXvqf27tosjm-bRURFXriYAn378qeFtK_71YPGnZRItp_uMCY57tL2qlfUdEJeqZKOUsHkGvBWxIzRQft4okLs1hUnVMySJ5bvDr08cTlWCV0VpcF7wM0FpAgI0XwlaCtbcPM0JGZgKcFZ3x23VSUb8icn_hyqCWC-FSJpA6MHxan_Nf76VD2xIqr64sJ57S0stkQ00YjLNjA6UzKZIubXe6TLomgTKSM2pM_1IyRETETLa_FiWMuuLyHJqZXAcLFtKojzOLjCsXai9qVNshbITKdqTHUJn6GlwnS7_J_eZ9zQZo&lptoken=16df66bd628e206f3532
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 24 Oct 2022 14:03:56 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 18 Apr 2020 05:51:20 GMT
etag: W/"c90-5a38a414e0600"
content-encoding: br
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/passionone/v16/PbynFmL8HhTPqbjUzux3JEuR9ls.woff2 | 216.58.207.195 | 200 OK | 7.5 kB |
URL HTTP/2fonts.gstatic.com/s/passionone/v16/PbynFmL8HhTPqbjUzux3JEuR9ls.woff2 IP216.58.207.195:0
File typeWeb Open Font Format (Version 2), TrueType, length 7540, version 1.0\012- data Hash6b7ddab100c1b0132d284a7f6caa79c4 7cdb85a66e11956cfddd77787fa63eb04767a556 eb49ce211df074142d735927bb3e8b655ccf39a7cc444baf02e871bcd47986df
GET /s/passionone/v16/PbynFmL8HhTPqbjUzux3JEuR9ls.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mxgoodwins.digital
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7540
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 18 Oct 2022 04:53:58 GMT
expires: Wed, 18 Oct 2023 04:53:58 GMT
cache-control: public, max-age=31536000
age: 551398
last-modified: Mon, 09 May 2022 18:37:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hashffbfbd6d5d1e91af3c02313339eed0d0 df6457b655ac278fe32f3015bba4cff22dae5b2d 1991ca3e854e53f89b92ce93e01e6094f815b1d2c7c31e664481760211ac200a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 14:03:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 143.204.55.27 | 200 OK | 329 B |
URL HTTP/1.1firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP143.204.55.27:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Mon, 24 Oct 2022 13:33:32 GMT
Expires: Mon, 24 Oct 2022 13:57:55 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 8ZjBKHfmwLM1_fDPN202eGUT0tDXLUs0zKmr0vkuiSmyOeuM47yeuA==
Age: 1824
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash7c6fdc8e76ef5875b5c965ade2df503e 45d548aa2a9d7ede163743274790700878eaea62 d2ff6eacd48af4892a2642e5d7bb925ca683062139f5a5cb4047f6f706830618
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 686
Cache-Control: max-age=152054
Content-Type: application/ocsp-response
Date: Mon, 24 Oct 2022 14:03:57 GMT
Etag: "63564795-1d7"
Expires: Wed, 26 Oct 2022 08:18:11 GMT
Last-Modified: Mon, 24 Oct 2022 08:06:45 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
|
|
| push.services.mozilla.com/ | 52.36.24.174 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP52.36.24.174:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: rzKnCd9Bo7fy9CJ65Yu29Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: iYDp8g/HKUC/KB/D0xbXt13I4t4=
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashbed68ee568e74be152402c71cbf26510 38092ae53739e8ee13362c84df108bad734c4b64 26cd9ff2fb48cc7fb7c83cc325f4cb4713fc442cc4842baa728c570081be0445
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "26CD9FF2FB48CC7FB7C83CC325F4CB4713FC442CC4842BAA728C570081BE0445"
Last-Modified: Sat, 22 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7491
Expires: Mon, 24 Oct 2022 16:08:49 GMT
Date: Mon, 24 Oct 2022 14:03:58 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashbed68ee568e74be152402c71cbf26510 38092ae53739e8ee13362c84df108bad734c4b64 26cd9ff2fb48cc7fb7c83cc325f4cb4713fc442cc4842baa728c570081be0445
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "26CD9FF2FB48CC7FB7C83CC325F4CB4713FC442CC4842BAA728C570081BE0445"
Last-Modified: Sat, 22 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7491
Expires: Mon, 24 Oct 2022 16:08:49 GMT
Date: Mon, 24 Oct 2022 14:03:58 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashbed68ee568e74be152402c71cbf26510 38092ae53739e8ee13362c84df108bad734c4b64 26cd9ff2fb48cc7fb7c83cc325f4cb4713fc442cc4842baa728c570081be0445
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "26CD9FF2FB48CC7FB7C83CC325F4CB4713FC442CC4842BAA728C570081BE0445"
Last-Modified: Sat, 22 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7491
Expires: Mon, 24 Oct 2022 16:08:49 GMT
Date: Mon, 24 Oct 2022 14:03:58 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashbed68ee568e74be152402c71cbf26510 38092ae53739e8ee13362c84df108bad734c4b64 26cd9ff2fb48cc7fb7c83cc325f4cb4713fc442cc4842baa728c570081be0445
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "26CD9FF2FB48CC7FB7C83CC325F4CB4713FC442CC4842BAA728C570081BE0445"
Last-Modified: Sat, 22 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7491
Expires: Mon, 24 Oct 2022 16:08:49 GMT
Date: Mon, 24 Oct 2022 14:03:58 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e44a0c5-308b-4a3c-a704-fed082e5c701.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e44a0c5-308b-4a3c-a704-fed082e5c701.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashf1a2e95e4cdae92b60d0fde61c6c8312 fa110a433705597d1384e6d5dd0e757090dbe366 bfa8bc3faf60272c250c0b7d220c90bcf9f01267907dd81465ed0a6a4fda8fdc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e44a0c5-308b-4a3c-a704-fed082e5c701.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10639
x-amzn-requestid: 983ddbdb-f97d-44dc-b502-6a555f50217f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aelDaEkBoAMFcRg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6355b548-351c26ae42c01c94616d04b4;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 21:42:32 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: J-VZLP51uG6onthE4ymBDhlNk5KtxsfX_sF-J_pjUHsr5mFrORdvwQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 21:52:34 GMT
age: 58284
etag: "fa110a433705597d1384e6d5dd0e757090dbe366"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1f0cea17-2f8e-4f01-bdfc-54051ca7d7dd.jpeg | 34.120.237.76 | 200 OK | 9.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1f0cea17-2f8e-4f01-bdfc-54051ca7d7dd.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashb3a1ed5537b0d648ce6e0ecb427a3230 2f85566b25b22ee703ba5348bce25434c83c69de d35b1e39b8c6f1adc029eea8f3ffc911426aa49a87261fdb33a770e21ced69ec
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1f0cea17-2f8e-4f01-bdfc-54051ca7d7dd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9549
x-amzn-requestid: e1054150-7691-4446-bc6e-91a4fdccbdc2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aIvfRH0oIAMFkJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634cf92e-41bd300b1693ad1b18368e22;Sampled=0
x-amzn-remapped-date: Mon, 17 Oct 2022 06:41:50 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: X42MkFQC36cQuD150QxORdiO3npJVwAJm8v56o6S4JULV3ttHsZ-1A==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 16:21:20 GMT
age: 78158
etag: "2f85566b25b22ee703ba5348bce25434c83c69de"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F21cfb8fe-4b68-43f0-a196-17c9a1dd3acb.png | 34.120.237.76 | 200 OK | 10 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F21cfb8fe-4b68-43f0-a196-17c9a1dd3acb.png IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashaf3d4b4d16ad8b30805be96afa6472e3 bceb257123711c43994e5a03e9caf22eeee16423 30d7fea8d87522ce3ba2abf2c47e0025af1b7c05d6b4ea9f26aaa1f06aff4a67
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F21cfb8fe-4b68-43f0-a196-17c9a1dd3acb.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10072
x-amzn-requestid: 2f26fcdb-0540-49ea-be46-83c00182fcc3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aelB0FKvoAMFVFg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6355b53e-1be524647e3db4a211e4c4ff;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 21:42:22 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: sNu31Qx0p_Ikus0GsGKRNGVxOGnIRSewAXfkXyzOCmT6bJ1D1Qz-0w==
via: 1.1 e77661e211afe9242e85e573f12d5534.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 22:10:20 GMT
etag: "bceb257123711c43994e5a03e9caf22eeee16423"
content-type: image/jpeg
age: 57218
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F888df8db-5e36-4530-9f02-09268aefe1af.jpeg | 34.120.237.76 | 200 OK | 13 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F888df8db-5e36-4530-9f02-09268aefe1af.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash9896b15d25725efe19642f3e70ec9103 9f030fdc38125b6b523b0d12571d666907a83f4d 88a74f5fd7e694aa473ff0b1a2cc7f2328738dc9acf5c61f2501877dc72ec9bb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F888df8db-5e36-4530-9f02-09268aefe1af.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12770
x-amzn-requestid: c40e1251-15f4-486c-8744-af05d80ff14e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aelkxERXoAMFdvw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6355b61e-1bb648e9150a5cb95d69b3c5;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 21:46:06 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: FS_whBKHlTourjDSpHj_fRbNs3r1zsTU97BpxqWyKHL4XLoc7IWGgw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 21:52:34 GMT
age: 58284
etag: "9f030fdc38125b6b523b0d12571d666907a83f4d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e8ac15f-1a51-4bfe-ab4a-570fc480a976.jpeg | 34.120.237.76 | 200 OK | 4.4 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e8ac15f-1a51-4bfe-ab4a-570fc480a976.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashf12f21779aa94b557db8037ceefd15b2 1698d8d0ff47fc4e6dd20d99ceae84cfcdd69e86 0d33ee5a721c2f940ff1e7d5fae9abba3781f6d37e458a36285718466ecdcd10
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e8ac15f-1a51-4bfe-ab4a-570fc480a976.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4434
x-amzn-requestid: 41e95a27-2955-4224-8d2c-f12d1254cda7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aelB0EQboAMFmMw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6355b53e-5cb99b700c84c99c2d9e52d7;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 21:42:22 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 49FYzrcMWfgHbe4smL20px9dbIcXIGCujJ6djuVRT3bEwCkBvgz7Iw==
via: 1.1 27f6faf9790b5a2877fb528fa31f7922.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 21:46:57 GMT
age: 58621
etag: "1698d8d0ff47fc4e6dd20d99ceae84cfcdd69e86"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff7361cd7-8ea8-4a4b-8e5a-6e3ef375eb7e.webp | 34.120.237.76 | 200 OK | 7.2 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff7361cd7-8ea8-4a4b-8e5a-6e3ef375eb7e.webp IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashc16ee3c480c8ee5b51b7dd88375649ae 885e2070d3ea7973fd978e1e9c247ce248afdbbb 4086d5476b9f3b6c06535fc588784c19a52008178cbdeccbff4c98497bd8e428
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff7361cd7-8ea8-4a4b-8e5a-6e3ef375eb7e.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7185
x-amzn-requestid: 5bbcd9f1-fa0a-4591-a38c-b472e2ef148f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aelC7EZ4oAMFmvA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6355b545-754aa64e1249811f2c019641;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 21:42:29 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: U1Xa3qCT8SgSakuW_ts-fzukr1EsY1OWLxLOJbfqsuq7tCD13n7BPg==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 21:49:47 GMT
age: 58451
etag: "885e2070d3ea7973fd978e1e9c247ce248afdbbb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| mxgoodwins.digital/mxmonetizer/js/script.js | 217.69.13.14 | 200 OK | 0 B |
URL HTTP/2mxgoodwins.digital/mxmonetizer/js/script.js IP217.69.13.14:0
GET /mxmonetizer/js/script.js HTTP/1.1
Host: mxgoodwins.digital
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mxgoodwins.digital/mxmonetizer/index.php?brand=Desktop&cep=YFS3VwLB0JA-pU8czfbit2NyFNQF85uc8BP72C_fFm6HgO98I7Y7UtS6K9x-DTUO1bALabr_307bJMfFxXvqf27tosjm-bRURFXriYAn378qeFtK_71YPGnZRItp_uMCY57tL2qlfUdEJeqZKOUsHkGvBWxIzRQft4okLs1hUnVMySJ5bvDr08cTlWCV0VpcF7wM0FpAgI0XwlaCtbcPM0JGZgKcFZ3x23VSUb8icn_hyqCWC-FSJpA6MHxan_Nf76VD2xIqr64sJ57S0stkQ00YjLNjA6UzKZIubXe6TLomgTKSM2pM_1IyRETETLa_FiWMuuLyHJqZXAcLFtKojzOLjCsXai9qVNshbITKdqTHUJn6GlwnS7_J_eZ9zQZo&lptoken=16df66bd628e206f3532
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 24 Oct 2022 14:03:56 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 18 Apr 2020 05:51:20 GMT
etag: W/"9b9-5a38a414e0600"
content-encoding: br
X-Firefox-Spdy: h2
|
|
| mxgoodwins.digital/mxmonetizer/img/subculture-coffee-icon.png | 217.69.13.14 | 404 Not Found | 0 B |
URL HTTP/2mxgoodwins.digital/mxmonetizer/img/subculture-coffee-icon.png IP217.69.13.14:0
GET /mxmonetizer/img/subculture-coffee-icon.png HTTP/1.1
Host: mxgoodwins.digital
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mxgoodwins.digital/mxmonetizer/index.php?brand=Desktop&cep=YFS3VwLB0JA-pU8czfbit2NyFNQF85uc8BP72C_fFm6HgO98I7Y7UtS6K9x-DTUO1bALabr_307bJMfFxXvqf27tosjm-bRURFXriYAn378qeFtK_71YPGnZRItp_uMCY57tL2qlfUdEJeqZKOUsHkGvBWxIzRQft4okLs1hUnVMySJ5bvDr08cTlWCV0VpcF7wM0FpAgI0XwlaCtbcPM0JGZgKcFZ3x23VSUb8icn_hyqCWC-FSJpA6MHxan_Nf76VD2xIqr64sJ57S0stkQ00YjLNjA6UzKZIubXe6TLomgTKSM2pM_1IyRETETLa_FiWMuuLyHJqZXAcLFtKojzOLjCsXai9qVNshbITKdqTHUJn6GlwnS7_J_eZ9zQZo&lptoken=16df66bd628e206f3532
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 24 Oct 2022 14:03:56 GMT
content-type: text/html; charset=iso-8859-1
vary: Accept-Encoding
content-encoding: br
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Passion+One | 142.250.74.10 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=Passion+One IP142.250.74.10:0
GET /css?family=Passion+One HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mxgoodwins.digital/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 24 Oct 2022 14:03:56 GMT
date: Mon, 24 Oct 2022 14:03:56 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| mxgoodwins.digital/mxmonetizer/js/mootools-core-1.4.5-full-compat-yc.js | 217.69.13.14 | 200 OK | 0 B |
URL HTTP/2mxgoodwins.digital/mxmonetizer/js/mootools-core-1.4.5-full-compat-yc.js IP217.69.13.14:0
GET /mxmonetizer/js/mootools-core-1.4.5-full-compat-yc.js HTTP/1.1
Host: mxgoodwins.digital
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mxgoodwins.digital/mxmonetizer/index.php?brand=Desktop&cep=YFS3VwLB0JA-pU8czfbit2NyFNQF85uc8BP72C_fFm6HgO98I7Y7UtS6K9x-DTUO1bALabr_307bJMfFxXvqf27tosjm-bRURFXriYAn378qeFtK_71YPGnZRItp_uMCY57tL2qlfUdEJeqZKOUsHkGvBWxIzRQft4okLs1hUnVMySJ5bvDr08cTlWCV0VpcF7wM0FpAgI0XwlaCtbcPM0JGZgKcFZ3x23VSUb8icn_hyqCWC-FSJpA6MHxan_Nf76VD2xIqr64sJ57S0stkQ00YjLNjA6UzKZIubXe6TLomgTKSM2pM_1IyRETETLa_FiWMuuLyHJqZXAcLFtKojzOLjCsXai9qVNshbITKdqTHUJn6GlwnS7_J_eZ9zQZo&lptoken=16df66bd628e206f3532
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 24 Oct 2022 14:03:56 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 18 Apr 2020 05:51:20 GMT
etag: W/"1786a-5a38a414e0600"
content-encoding: br
X-Firefox-Spdy: h2
|
|
| mxgoodwins.digital/mxmonetizer/images/coffee-favicon.ico | 217.69.13.14 | 404 Not Found | 0 B |
URL HTTP/2mxgoodwins.digital/mxmonetizer/images/coffee-favicon.ico IP217.69.13.14:0
GET /mxmonetizer/images/coffee-favicon.ico HTTP/1.1
Host: mxgoodwins.digital
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mxgoodwins.digital/mxmonetizer/index.php?brand=Desktop&cep=YFS3VwLB0JA-pU8czfbit2NyFNQF85uc8BP72C_fFm6HgO98I7Y7UtS6K9x-DTUO1bALabr_307bJMfFxXvqf27tosjm-bRURFXriYAn378qeFtK_71YPGnZRItp_uMCY57tL2qlfUdEJeqZKOUsHkGvBWxIzRQft4okLs1hUnVMySJ5bvDr08cTlWCV0VpcF7wM0FpAgI0XwlaCtbcPM0JGZgKcFZ3x23VSUb8icn_hyqCWC-FSJpA6MHxan_Nf76VD2xIqr64sJ57S0stkQ00YjLNjA6UzKZIubXe6TLomgTKSM2pM_1IyRETETLa_FiWMuuLyHJqZXAcLFtKojzOLjCsXai9qVNshbITKdqTHUJn6GlwnS7_J_eZ9zQZo&lptoken=16df66bd628e206f3532
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 24 Oct 2022 14:03:56 GMT
content-type: text/html; charset=iso-8859-1
vary: Accept-Encoding
content-encoding: br
X-Firefox-Spdy: h2
|
|
| mxgoodwins.digital/mxmonetizer/index.php?brand=Desktop&cep=YFS3VwLB0JA-pU8czfbit2NyFNQF85uc8BP72C_fFm6HgO98I7Y7UtS6K9x-DTUO1bALabr_307bJMfFxXvqf27tosjm-bRURFXriYAn378qeFtK_71YPGnZRItp_uMCY57tL2qlfUdEJeqZKOUsHkGvBWxIzRQft4okLs1hUnVMySJ5bvDr08cTlWCV0VpcF7wM0FpAgI0XwlaCtbcPM0JGZgKcFZ3x23VSUb8icn_hyqCWC-FSJpA6MHxan_Nf76VD2xIqr64sJ57S0stkQ00YjLNjA6UzKZIubXe6TLomgTKSM2pM_1IyRETETLa_FiWMuuLyHJqZXAcLFtKojzOLjCsXai9qVNshbITKdqTHUJn6GlwnS7_J_eZ9zQZo&lptoken=16df66bd628e206f3532 | 217.69.13.14 | 200 OK | 0 B |
URL HTTP/2mxgoodwins.digital/mxmonetizer/index.php?brand=Desktop&cep=YFS3VwLB0JA-pU8czfbit2NyFNQF85uc8BP72C_fFm6HgO98I7Y7UtS6K9x-DTUO1bALabr_307bJMfFxXvqf27tosjm-bRURFXriYAn378qeFtK_71YPGnZRItp_uMCY57tL2qlfUdEJeqZKOUsHkGvBWxIzRQft4okLs1hUnVMySJ5bvDr08cTlWCV0VpcF7wM0FpAgI0XwlaCtbcPM0JGZgKcFZ3x23VSUb8icn_hyqCWC-FSJpA6MHxan_Nf76VD2xIqr64sJ57S0stkQ00YjLNjA6UzKZIubXe6TLomgTKSM2pM_1IyRETETLa_FiWMuuLyHJqZXAcLFtKojzOLjCsXai9qVNshbITKdqTHUJn6GlwnS7_J_eZ9zQZo&lptoken=16df66bd628e206f3532 IP217.69.13.14:0
GET /mxmonetizer/index.php?brand=Desktop&cep=YFS3VwLB0JA-pU8czfbit2NyFNQF85uc8BP72C_fFm6HgO98I7Y7UtS6K9x-DTUO1bALabr_307bJMfFxXvqf27tosjm-bRURFXriYAn378qeFtK_71YPGnZRItp_uMCY57tL2qlfUdEJeqZKOUsHkGvBWxIzRQft4okLs1hUnVMySJ5bvDr08cTlWCV0VpcF7wM0FpAgI0XwlaCtbcPM0JGZgKcFZ3x23VSUb8icn_hyqCWC-FSJpA6MHxan_Nf76VD2xIqr64sJ57S0stkQ00YjLNjA6UzKZIubXe6TLomgTKSM2pM_1IyRETETLa_FiWMuuLyHJqZXAcLFtKojzOLjCsXai9qVNshbITKdqTHUJn6GlwnS7_J_eZ9zQZo&lptoken=16df66bd628e206f3532 HTTP/1.1
Host: mxgoodwins.digital
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Mon, 24 Oct 2022 14:03:56 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
content-encoding: br
X-Firefox-Spdy: h2
|
|
| mxgoodwins.digital/mxmonetizer/css/main.css | 217.69.13.14 | 200 OK | 0 B |
URL HTTP/2mxgoodwins.digital/mxmonetizer/css/main.css IP217.69.13.14:0
GET /mxmonetizer/css/main.css HTTP/1.1
Host: mxgoodwins.digital
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mxgoodwins.digital/mxmonetizer/index.php?brand=Desktop&cep=YFS3VwLB0JA-pU8czfbit2NyFNQF85uc8BP72C_fFm6HgO98I7Y7UtS6K9x-DTUO1bALabr_307bJMfFxXvqf27tosjm-bRURFXriYAn378qeFtK_71YPGnZRItp_uMCY57tL2qlfUdEJeqZKOUsHkGvBWxIzRQft4okLs1hUnVMySJ5bvDr08cTlWCV0VpcF7wM0FpAgI0XwlaCtbcPM0JGZgKcFZ3x23VSUb8icn_hyqCWC-FSJpA6MHxan_Nf76VD2xIqr64sJ57S0stkQ00YjLNjA6UzKZIubXe6TLomgTKSM2pM_1IyRETETLa_FiWMuuLyHJqZXAcLFtKojzOLjCsXai9qVNshbITKdqTHUJn6GlwnS7_J_eZ9zQZo&lptoken=16df66bd628e206f3532
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 24 Oct 2022 14:03:56 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 18 Apr 2020 05:51:20 GMT
etag: W/"cb1-5a38a414e0600"
content-encoding: br
X-Firefox-Spdy: h2
|
|
| mxgoodwins.digital/mxmonetizer/img/coffee1.jpg | 217.69.13.14 | 404 Not Found | 0 B |
URL HTTP/2mxgoodwins.digital/mxmonetizer/img/coffee1.jpg IP217.69.13.14:0
GET /mxmonetizer/img/coffee1.jpg HTTP/1.1
Host: mxgoodwins.digital
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mxgoodwins.digital/mxmonetizer/index.php?brand=Desktop&cep=YFS3VwLB0JA-pU8czfbit2NyFNQF85uc8BP72C_fFm6HgO98I7Y7UtS6K9x-DTUO1bALabr_307bJMfFxXvqf27tosjm-bRURFXriYAn378qeFtK_71YPGnZRItp_uMCY57tL2qlfUdEJeqZKOUsHkGvBWxIzRQft4okLs1hUnVMySJ5bvDr08cTlWCV0VpcF7wM0FpAgI0XwlaCtbcPM0JGZgKcFZ3x23VSUb8icn_hyqCWC-FSJpA6MHxan_Nf76VD2xIqr64sJ57S0stkQ00YjLNjA6UzKZIubXe6TLomgTKSM2pM_1IyRETETLa_FiWMuuLyHJqZXAcLFtKojzOLjCsXai9qVNshbITKdqTHUJn6GlwnS7_J_eZ9zQZo&lptoken=16df66bd628e206f3532
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Mon, 24 Oct 2022 14:03:56 GMT
content-type: text/html; charset=iso-8859-1
vary: Accept-Encoding
content-encoding: br
X-Firefox-Spdy: h2
|
|