r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7e05c8461bd2dc5a149f71e2c465ea29
705983959c887e243cb55a8a1796757b579ee977
4d9ea085d5dda9dabed11af9847c2b0aa6182358673b356a4e2bd631e22a9922
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D9EA085D5DDA9DABED11AF9847C2B0AA6182358673B356A4E2BD631E22A9922"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8158
Expires: Fri, 03 Feb 2023 04:34:32 GMT
Date: Fri, 03 Feb 2023 02:18:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e935ea42be4feaed61a824b0b903913e
f966cfa80d65a805cb9d7c6a53b3340865d7c51a
eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3123
Expires: Fri, 03 Feb 2023 03:10:37 GMT
Date: Fri, 03 Feb 2023 02:18:34 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 03 Feb 2023 01:43:33 GMT
content-type: application/json
age: 2101
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9a76feabb767086ae0fa54e0ffbf763f
3655d78994a1e9838340669462728b67c8c12e54
bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6743
Expires: Fri, 03 Feb 2023 04:10:57 GMT
Date: Fri, 03 Feb 2023 02:18:34 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: sa6sJBMXBvg8huu/JwzOvmSjrbgAafQlOvgUxh5Ud36K2TfTfWN7j4WvaEROzD3/x1zUVY/2CqM=
x-amz-request-id: N6GBKQSPK843RY3R
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 03 Feb 2023 01:23:20 GMT
age: 3314
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 02:18:34 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.rsgroup.asia/
116.251.204.85301 Moved Permanently 233 B IP 116.251.204.85:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3a5e48123b134f71502d5bbb0e1da6ee
ce3011518bf35a8387a3adfc47517b9d48ea7641
c7d30195e5ab22bfe9ca75767645be51836ccce71ada053edcf6b7cb1362d444
NIDS Severity Alert suricata medium ET INFO HTTP Request to a *.asia domain
GET / HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 03 Feb 2023 02:18:34 GMT
Server: Apache
Location: https://www.rsgroup.asia/
Content-Length: 233
Keep-Alive: timeout=60, max=10000
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 03 Feb 2023 02:07:19 GMT
age: 675
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14510
Expires: Fri, 03 Feb 2023 06:20:24 GMT
Date: Fri, 03 Feb 2023 02:18:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8e6b394465630a9caa96d45fe94b8905
a33ec741fb3e2ac7ab360fe41d2edd39b1f5882d
a8a8c732534ba5c4ed6df746c9d6c9af3f748bc8498c2b0de3909b38f4e515b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8A8C732534BA5C4ED6DF746C9D6C9AF3F748BC8498C2B0DE3909B38F4E515B1"
Last-Modified: Thu, 02 Feb 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21534
Expires: Fri, 03 Feb 2023 08:17:29 GMT
Date: Fri, 03 Feb 2023 02:18:35 GMT
Connection: keep-alive
push.services.mozilla.com/
35.163.1.35101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.163.1.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: c4MrbWt+6nJoH6lhu3xL1w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ZHMZZ37f/Q7mq2XxCoglGdaRT6M=
www.rsgroup.asia/wp-content/cache/wpfc-minified/d7rxu71x/653cd.css
116.251.204.85200 OK 895 B URL HTTP/2 www.rsgroup.asia/wp-content/cache/wpfc-minified/d7rxu71x/653cd.css
IP 116.251.204.85:0
Hash d43a51730889289356623ae3521396b2
c9f9954ce50aa1171c81e69ea5ba348ccba7b19d
a7c400c8bb72b1765cc7d0cb380fea9fcc9f49636eec081a25d389e9ebb26f70
GET /wp-content/cache/wpfc-minified/d7rxu71x/653cd.css HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Fri, 28 Jan 2022 06:04:19 GMT
etag: "9ca-5d69e34a41c0f-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 895
content-type: text/css
date: Fri, 03 Feb 2023 02:18:35 GMT
server: Apache
X-Firefox-Spdy: h2
www.rsgroup.asia/wp-content/cache/wpfc-minified/mkplplfn/653cd.css
116.251.204.85200 OK 868 B URL HTTP/2 www.rsgroup.asia/wp-content/cache/wpfc-minified/mkplplfn/653cd.css
IP 116.251.204.85:0
File type ASCII text, with very long lines (3160), with no line terminators
Hash 7346537ea78b4f134147a17a9f6aa327
ed93c3576c33d69fac1a8061134a1e7cc833df18
7dcff96cde2d7f30c8417dacaa1515f4d93cbb3f5ca7490dbe966c43d8e1d4f4
GET /wp-content/cache/wpfc-minified/mkplplfn/653cd.css HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Fri, 28 Jan 2022 06:04:19 GMT
etag: "c58-5d69e34a41c0f-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 868
content-type: text/css
date: Fri, 03 Feb 2023 02:18:35 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.67200 OK 471 B IP 142.250.74.67:0
Hash bbeb609cbf32a8842bf96a124588e65e
40c0f548bcb714731f62df5a27cad21adef0463d
502c60a18a13b84598933731d182aafd4b83576bfc56451b36f9238c621a571d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 02:18:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.rsgroup.asia/wp-content/cache/wpfc-minified/eirlqtg6/653cd.css
116.251.204.85200 OK 10 kB URL HTTP/2 www.rsgroup.asia/wp-content/cache/wpfc-minified/eirlqtg6/653cd.css
IP 116.251.204.85:0
File type Unicode text, UTF-8 text, with very long lines (65515)
Hash 0a05a7b0e404b4b33b707a1c2dc8f4bf
ae83f01c363e4ae754d080d997ab907095b7fb9f
548f4daf1f8c670d1644b492fa3c91a9d2f738ef7c1c37ab5d325e1f3e9b2f22
GET /wp-content/cache/wpfc-minified/eirlqtg6/653cd.css HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Fri, 28 Jan 2022 06:04:19 GMT
etag: "139e3-5d69e34a41c0f-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 10400
content-type: text/css
date: Fri, 03 Feb 2023 02:18:35 GMT
server: Apache
X-Firefox-Spdy: h2
www.rsgroup.asia/wp-content/themes/dfd-ronneby/style.css
116.251.204.85200 OK 374 B URL HTTP/2 www.rsgroup.asia/wp-content/themes/dfd-ronneby/style.css
IP 116.251.204.85:0
File type ASCII text, with CRLF line terminators
Hash 69597a702d88288492bd16d192473317
9d2506c15191c837ffaf156d6d86f910561f277a
8747f7a82960cad6a30d850925740a21cd8b00be217a717a48c843192944a539
GET /wp-content/themes/dfd-ronneby/style.css HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Tue, 04 Jan 2022 12:28:39 GMT
etag: "275-5d4c0c6e4af8a-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 374
content-type: text/css
date: Fri, 03 Feb 2023 02:18:35 GMT
server: Apache
X-Firefox-Spdy: h2
www.rsgroup.asia/wp-content/cache/wpfc-minified/7u99pv4k/653cd.css
116.251.204.85200 OK 6.0 kB URL HTTP/2 www.rsgroup.asia/wp-content/cache/wpfc-minified/7u99pv4k/653cd.css
IP 116.251.204.85:0
File type ASCII text, with very long lines (32417), with no line terminators
Hash ce5d705819a202df9188654e21d001d0
5abd7a11a0819a277cff91912510dc42f6585981
7535ef51411e57572331cab8e6ae3e4fc953c03e3ee228d5b84c5f0d3766cda9
GET /wp-content/cache/wpfc-minified/7u99pv4k/653cd.css HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Fri, 28 Jan 2022 06:04:19 GMT
etag: "7ea1-5d69e34a41c0f-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 5962
content-type: text/css
date: Fri, 03 Feb 2023 02:18:35 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.67200 OK 471 B IP 142.250.74.67:0
Hash bbeb609cbf32a8842bf96a124588e65e
40c0f548bcb714731f62df5a27cad21adef0463d
502c60a18a13b84598933731d182aafd4b83576bfc56451b36f9238c621a571d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 02:18:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.rsgroup.asia/wp-content/cache/wpfc-minified/jqzbz48w/653cd.css
116.251.204.85200 OK 13 kB URL HTTP/2 www.rsgroup.asia/wp-content/cache/wpfc-minified/jqzbz48w/653cd.css
IP 116.251.204.85:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash fd684a85a8df53cd0992fe54ff9f0d2f
5ab90339384a23b602945388ff48081af8feb965
aefdc6683bd2d02f714373a7ace6deee2700c1e64a449a0af4f1e3f5f8a4f83e
GET /wp-content/cache/wpfc-minified/jqzbz48w/653cd.css HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Fri, 28 Jan 2022 06:04:19 GMT
etag: "1a604-5d69e34a3a6e0-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 13161
content-type: text/css
date: Fri, 03 Feb 2023 02:18:35 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.67200 OK 471 B IP 142.250.74.67:0
Hash bbeb609cbf32a8842bf96a124588e65e
40c0f548bcb714731f62df5a27cad21adef0463d
502c60a18a13b84598933731d182aafd4b83576bfc56451b36f9238c621a571d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 02:18:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15224
Expires: Fri, 03 Feb 2023 06:32:20 GMT
Date: Fri, 03 Feb 2023 02:18:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15224
Expires: Fri, 03 Feb 2023 06:32:20 GMT
Date: Fri, 03 Feb 2023 02:18:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15224
Expires: Fri, 03 Feb 2023 06:32:20 GMT
Date: Fri, 03 Feb 2023 02:18:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15224
Expires: Fri, 03 Feb 2023 06:32:20 GMT
Date: Fri, 03 Feb 2023 02:18:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15224
Expires: Fri, 03 Feb 2023 06:32:20 GMT
Date: Fri, 03 Feb 2023 02:18:36 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feed96488-989b-49ab-8eef-5c9dea89a5ca.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feed96488-989b-49ab-8eef-5c9dea89a5ca.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5314f1087266189144982b464f4aa7a6
438b5a17b9060f6825331348aa3797ab1c15895d
fb7d5ec834d28c99f6430703c002c24a9caf50b7701a369cbd69e51576f1e73c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feed96488-989b-49ab-8eef-5c9dea89a5ca.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5898
x-amzn-requestid: 50d6181d-6804-48ab-bc38-9fcaf4da1bc5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fZALWF5IIAMFv5g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d37a48-2e2e53124ce2f9eb31290ec4;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 07:16:24 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 9Jus6UYlOGiDdqLBxJ387FMtEAST6THfW-oz6gjgFzKzchCdwUCcvQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 04:00:11 GMT
etag: "438b5a17b9060f6825331348aa3797ab1c15895d"
content-type: image/jpeg
age: 80305
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=texgyreadventorregular%7CRaleway:100,200,300,400,500,600,700,800,900,100italic,200italic,300italic,400italic,500italic,600italic,700italic,800italic,900italic%7CDroid%20Serif:400,700,400italic,700italic%7CLora:400,700,400italic,700italic&subset=latin&display=swap&ver=1638847455
142.250.74.74200 OK 6.6 kB URL HTTP/2 fonts.googleapis.com/css?family=texgyreadventorregular%7CRaleway:100,200,300,400,500,600,700,800,900,100italic,200italic,300italic,400italic,500italic,600italic,700italic,800italic,900italic%7CDroid%20Serif:400,700,400italic,700italic%7CLora:400,700,400italic,700italic&subset=latin&display=swap&ver=1638847455
IP 142.250.74.74:0
Hash 3041d7c0b2260d1f4ab78761524360a8
d4aa23e44d10bb5dc89e4afa21e74623f57052d5
de17f1f497674048ddaba729759ef0960ba5e697f36da26fbdae74c25adebb74
GET /css?family=texgyreadventorregular%7CRaleway:100,200,300,400,500,600,700,800,900,100italic,200italic,300italic,400italic,500italic,600italic,700italic,800italic,900italic%7CDroid%20Serif:400,700,400italic,700italic%7CLora:400,700,400italic,700italic&subset=latin&display=swap&ver=1638847455 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 03 Feb 2023 02:18:36 GMT
date: Fri, 03 Feb 2023 02:18:36 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d1adf44-5bff-4d36-99c4-8dd0dc2e5ac2.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d1adf44-5bff-4d36-99c4-8dd0dc2e5ac2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 352e4166a431e781e56cc7f169c7f8ca
866b76c34076cf2e18c6a071336fcf4f581f3c4d
75ba13b601f4b00c5b091eb29e7f6739ffee3e127bd6d3c4b35cc967bb6d354a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d1adf44-5bff-4d36-99c4-8dd0dc2e5ac2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9779
x-amzn-requestid: 101b984b-9c04-4d07-b1fe-3d888f4bcd49
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ftcNRFV_oAMF2_w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dba721-72679ba0378015034e17b8ca;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 12:05:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: gHFZOsR12RXKLYytleVlHWCs7d46CwnTF0m0xgCPer5wu6SwAliKkA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:44:50 GMT
age: 26617
etag: "866b76c34076cf2e18c6a071336fcf4f581f3c4d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e366b32074025aaf60bbae8bdb08d330
a52c2883bad98fa20333aa639a5dd3a5bf544c8e
9d661c26effaec9efee16833f6459d6ecbe4f77b822c9c46e2a6433bda816e5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11565
x-amzn-requestid: 87a84ffd-1176-4656-aac4-e98f38ec2cd9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboIrFGboAMFyyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d48704-162ed8114aa1809204500548;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:23:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: w0Zm5V0TQxsQ7917U3fdhS_n7qKE143PuhI2JmNCDM_Pf0yPLyW6yA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:48:01 GMT
age: 16235
etag: "a52c2883bad98fa20333aa639a5dd3a5bf544c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffda40dcf-1e5b-4e49-bd65-084935f52db9.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffda40dcf-1e5b-4e49-bd65-084935f52db9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e706db8a6107758a148463e916f2532d
4b0b8cb5ced3e3e67b0320a3bbaecd2176e21b81
673f18036a53f8ff297ef6a63fd094e7c41d90f3960f0e687a741cc7dd3f6172
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffda40dcf-1e5b-4e49-bd65-084935f52db9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6791
x-amzn-requestid: 665115ea-728e-4a55-aaf8-b09db3fa67a2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffl96FIzIAMFYGg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d61d25-0abbd7262ca10b7a7d2bf9eb;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 07:15:49 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: nPgaBSGyLJQnN0ofVRFniW2LqzgKVWchSKYSjYCmuPtpL9Ner81ARQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 22:14:03 GMT
age: 14673
etag: "4b0b8cb5ced3e3e67b0320a3bbaecd2176e21b81"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32d005c4-44bd-4c69-b179-e966a5e62bc4.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32d005c4-44bd-4c69-b179-e966a5e62bc4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 08efac01fbe2d2949d81cfa427e8f360
e354cd76c38a72a10eddad9298b43415f8f04ed1
a5edf287aefdfb2f4c33d19b322b2574553fc9f5646f147359a3dcf8c1d75cb1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32d005c4-44bd-4c69-b179-e966a5e62bc4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7700
x-amzn-requestid: 11dd2ef1-f809-4a95-aeef-361cfa745eea
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fYyFIHUVIAMFgbA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d363ba-7841e2a6249f0e5d7aa91c8d;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 05:40:10 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: gYmuJEgMngPXgeLlAQfRoP-EtCgH--hkvSt6OPTUlYXxetmf5zAtVg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:48:01 GMT
age: 16235
etag: "e354cd76c38a72a10eddad9298b43415f8f04ed1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.rsgroup.asia/wp-content/cache/wpfc-minified/9ldwtnzt/653cd.css
116.251.204.85200 OK 12 kB URL HTTP/2 www.rsgroup.asia/wp-content/cache/wpfc-minified/9ldwtnzt/653cd.css
IP 116.251.204.85:0
File type ASCII text, with very long lines (65518)
Hash 824ce576d9fffc712dd17957a9fe7503
072d86ca5a0ee9c2e53fd60f12689b1373e46e10
85d5856317f6c74eeb2de33d474f2e8794cdab6a180b35321bbe1a8aaf47172c
GET /wp-content/cache/wpfc-minified/9ldwtnzt/653cd.css HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Fri, 28 Jan 2022 06:04:19 GMT
etag: "128e7-5d69e34a4431f-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 12523
content-type: text/css
date: Fri, 03 Feb 2023 02:18:35 GMT
server: Apache
X-Firefox-Spdy: h2
www.rsgroup.asia/wp-content/cache/wpfc-minified/qachs7z0/653cd.css
116.251.204.85200 OK 1.8 kB URL HTTP/2 www.rsgroup.asia/wp-content/cache/wpfc-minified/qachs7z0/653cd.css
IP 116.251.204.85:0
File type ASCII text, with very long lines (14068), with no line terminators
Hash ee9970b545afb0e36bc2214b92a2253b
27ccc0b8da2b90258b211d74d9295c5683840beb
78d93b5cbaecac7bb8641549222035b254e6bc59a99882599387f864499aff00
GET /wp-content/cache/wpfc-minified/qachs7z0/653cd.css HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Fri, 28 Jan 2022 06:04:19 GMT
etag: "36f4-5d69e34a3a6e0-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 1819
content-type: text/css
date: Fri, 03 Feb 2023 02:18:36 GMT
server: Apache
X-Firefox-Spdy: h2
www.rsgroup.asia/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
116.251.204.85200 OK 4.2 kB URL HTTP/2 www.rsgroup.asia/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 116.251.204.85:0
File type ASCII text, with very long lines (11126)
Hash 2fe098cbdfcb2c171cd6e4fc7eb595c5
8e1bf93a92cd550526d91c1321711700f0978078
7d6f6e40a91e440cf57e67f4e03a6a5d5ba4549e35117d31f0497eeadfce9d5c
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Wed, 17 Nov 2021 21:09:05 GMT
etag: "2bd8-5d10273c25722-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 4165
content-type: application/javascript
date: Fri, 03 Feb 2023 02:18:36 GMT
server: Apache
X-Firefox-Spdy: h2
www.rsgroup.asia/wp-content/plugins/news-page-slider/js/jquery.jcarousel.min.js?ver=1.0.0
116.251.204.85200 OK 5.0 kB URL HTTP/2 www.rsgroup.asia/wp-content/plugins/news-page-slider/js/jquery.jcarousel.min.js?ver=1.0.0
IP 116.251.204.85:0
File type ASCII text, with very long lines (17050)
Hash 42a8a8303a64f66db56ec60c72816f23
006077489899ffd6c837b83df160af88d19bcbc5
18d0da71562b7b744401cff0ba5ac581daf2b515dfddaa8e797b75395082b991
GET /wp-content/plugins/news-page-slider/js/jquery.jcarousel.min.js?ver=1.0.0 HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Sat, 09 Apr 2016 06:00:21 GMT
etag: "4311-5300706d3c740-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 5020
content-type: application/javascript
date: Fri, 03 Feb 2023 02:18:36 GMT
server: Apache
X-Firefox-Spdy: h2
www.rsgroup.asia/wp-content/plugins/news-page-slider/js/news-page-slider.js?ver=1.0.0
116.251.204.85200 OK 392 B URL HTTP/2 www.rsgroup.asia/wp-content/plugins/news-page-slider/js/news-page-slider.js?ver=1.0.0
IP 116.251.204.85:0
File type ASCII text, with CRLF line terminators
Hash 18ee33e88759f2115079e77bac6b1ca5
6aa0a0551198f97f40da5ffd4db8f6ab1cd8e97a
0743f87bcaed41e2d99eb9110bb3a999578e6a5c4187ffd46a0b47c7b6e011be
GET /wp-content/plugins/news-page-slider/js/news-page-slider.js?ver=1.0.0 HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Sat, 09 Apr 2016 06:00:21 GMT
etag: "3ab-5300706d3c740-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 392
content-type: application/javascript
date: Fri, 03 Feb 2023 02:18:36 GMT
server: Apache
X-Firefox-Spdy: h2
www.rsgroup.asia/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
116.251.204.85200 OK 31 kB URL HTTP/2 www.rsgroup.asia/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 116.251.204.85:0
File type ASCII text, with very long lines (65447)
Hash 3ae055a9e13e89cf48a060e3ecda0e29
252d2e51432e18672f20eaed819ec790f2d51108
256c34154ed113bd3d3b352fc91ea045f7e4cc7198f937ae42f4de057fdd4d25
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Wed, 17 Nov 2021 21:09:05 GMT
etag: "15db1-5d10273c25722-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 30836
content-type: application/javascript
date: Fri, 03 Feb 2023 02:18:36 GMT
server: Apache
X-Firefox-Spdy: h2
www.rsgroup.asia/wp-content/cache/wpfc-minified/koodgfqj/653cr.css
116.251.204.85200 OK 45 kB URL HTTP/2 www.rsgroup.asia/wp-content/cache/wpfc-minified/koodgfqj/653cr.css
IP 116.251.204.85:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash e398c2c13a76621021adc55d645099f1
1ee8a316670e5fe14739dec543704a7a9233b23f
b691c9ef3eeadf10cc649d4d3cb038c112d31ac06da8f5e9f2824a2246d2d790
GET /wp-content/cache/wpfc-minified/koodgfqj/653cr.css HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Fri, 28 Jan 2022 06:04:23 GMT
etag: "779cd-5d69e34dcdea9-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 45380
content-type: text/css
date: Fri, 03 Feb 2023 02:18:36 GMT
server: Apache
X-Firefox-Spdy: h2
www.rsgroup.asia/wp-content/uploads/2021/12/RSgroup_logo.png
116.251.204.85200 OK 6.7 kB URL HTTP/2 www.rsgroup.asia/wp-content/uploads/2021/12/RSgroup_logo.png
IP 116.251.204.85:0
File type PNG image data, 240 x 244, 8-bit/color RGBA, non-interlaced\012- data
Hash 2a5e78196cb26e91e501b43ee047183b
de493398936c32c8a25d9241ef6ce3964c498738
f348e4745dff61125eff2dd03cccd69042134ea71e40a3a9cc24e47db85a12cb
GET /wp-content/uploads/2021/12/RSgroup_logo.png HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Tue, 07 Dec 2021 03:13:48 GMT
etag: "1a10-5d285c30b9e23"
accept-ranges: bytes
content-length: 6672
content-type: image/png
date: Fri, 03 Feb 2023 02:18:36 GMT
server: Apache
X-Firefox-Spdy: h2
www.rsgroup.asia/wp-content/uploads/2016/04/RSgroup_logo-41x42.png
116.251.204.85200 OK 1.6 kB URL HTTP/2 www.rsgroup.asia/wp-content/uploads/2016/04/RSgroup_logo-41x42.png
IP 116.251.204.85:0
File type PNG image data, 41 x 42, 8-bit/color RGBA, non-interlaced\012- data
Hash e037f7035d2d9f12f3ebfb1fd3f851b2
117334a460e3074a754f3d050303752a896595e1
fa82b61e752926545d95d96389997598873486cc4e4f8c1fe9917d0e6cb8bc7e
GET /wp-content/uploads/2016/04/RSgroup_logo-41x42.png HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Sat, 09 Apr 2016 06:08:03 GMT
etag: "639-53007225d56c0"
accept-ranges: bytes
content-length: 1593
content-type: image/png
date: Fri, 03 Feb 2023 02:18:36 GMT
server: Apache
X-Firefox-Spdy: h2
www.rsgroup.asia/wp-content/plugins/revslider/public/assets/assets/dummy.png
116.251.204.85200 OK 68 B URL HTTP/2 www.rsgroup.asia/wp-content/plugins/revslider/public/assets/assets/dummy.png
IP 116.251.204.85:0
File type PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Hash 2a637d3d825673c0e3462fa4ed9a1c5c
81668d396da22832d75a986407ff10035e0d5899
69539b5b3777cffda28a66d7f2aa9b17c91ee1ec8fd50c00c442af91753a60f7
GET /wp-content/plugins/revslider/public/assets/assets/dummy.png HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Thu, 06 Jan 2022 05:02:30 GMT
etag: "44-5d4e2c70561a9"
accept-ranges: bytes
content-length: 68
content-type: image/png
date: Fri, 03 Feb 2023 02:18:36 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.67200 OK 472 B IP 142.250.74.67:0
Hash 9c45ea25709afbea416f215ee34611b0
117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed
7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 02:18:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.67200 OK 471 B IP 142.250.74.67:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 02:18:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-WPB6CB
142.250.74.136200 OK 43 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-WPB6CB
IP 142.250.74.136:0
File type ASCII text, with very long lines (2360)
Hash 034ce43ffd72f940183006ca46b3707f
d6fea5243285fddf8f73fd0c3de0c247e3eb1b29
1b5f1ce762eebeb317f72d4dde99613234f7451654a2f56ba3d6b66f0ccf6b97
GET /gtm.js?id=GTM-WPB6CB HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 03 Feb 2023 02:18:37 GMT
expires: Fri, 03 Feb 2023 02:18:37 GMT
cache-control: private, max-age=900
last-modified: Fri, 03 Feb 2023 01:40:14 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43097
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.67200 OK 471 B IP 142.250.74.67:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 02:18:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
142.250.74.35200 OK 46 kB URL HTTP/2 fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 46524, version 1.0\012- data
Hash c1fd378f54921c75e4ae1821e7b8fff6
2ce96e97783b2f154d07f4464ca6f8eb2469f2c1
405ceee1c2f5c31f1cb94ebc63d49a43fddd1471c2c7401a01c7c11bb1d93826
GET /s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.rsgroup.asia
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46524
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 03:37:24 GMT
expires: Thu, 01 Feb 2024 03:37:24 GMT
cache-control: public, max-age=31536000
age: 168073
last-modified: Mon, 18 Jul 2022 19:58:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lora/v26/0QIvMX1D_JOuMwr7Iw.woff2
142.250.74.35200 OK 36 kB URL HTTP/2 fonts.gstatic.com/s/lora/v26/0QIvMX1D_JOuMwr7Iw.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 35660, version 1.0\012- data
Hash 0d0d3e5824e5e67a9e993960df2b67a9
328d67bb1d5899a7809df9f4385181863fd035f1
38da98e06ba18c4204f547d30572cd81a2dd3fd5438d306856d2617480ee8639
GET /s/lora/v26/0QIvMX1D_JOuMwr7Iw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.rsgroup.asia
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35660
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 01 Feb 2023 10:14:36 GMT
expires: Thu, 01 Feb 2024 10:14:36 GMT
cache-control: public, max-age=31536000
age: 144241
last-modified: Mon, 15 Aug 2022 18:07:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.67200 OK 472 B IP 142.250.74.67:0
Hash 9c45ea25709afbea416f215ee34611b0
117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed
7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 02:18:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.rsgroup.asia/wp-content/uploads/2016/04/Building_ResizedA.jpg
116.251.204.85200 OK 627 kB URL HTTP/2 www.rsgroup.asia/wp-content/uploads/2016/04/Building_ResizedA.jpg
IP 116.251.204.85:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1291, components 3\012- data
Size 627 kB (627157 bytes)
Hash 3d2ad29052247cc49f7bf9b93e71c8a1
50b73dad1476d04d4c29705a55a457485b85b16d
2206dcbfb0f4167c7275511d0b164fb2df8fa636cf8719443d663cf844371ceb
GET /wp-content/uploads/2016/04/Building_ResizedA.jpg HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Wed, 11 May 2016 08:54:05 GMT
etag: "991d5-5328d2f116540"
accept-ranges: bytes
content-length: 627157
content-type: image/jpeg
date: Fri, 03 Feb 2023 02:18:36 GMT
server: Apache
X-Firefox-Spdy: h2
www.rsgroup.asia/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888
116.251.204.85200 OK 7.5 kB URL HTTP/2 www.rsgroup.asia/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888
IP 116.251.204.85:0
File type Web Open Font Format, TrueType, length 7536, version 1.0\012- data
Hash 04eb8fc57f27498e5ae37523e3bfb2c7
d942ae11706c3f7e511e3c49b0e4574d7ad199c4
f7b9c3065e55fa3b9e320093612e7b30dcb14355a44ec461247b495a3e729686
GET /wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888 HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Thu, 06 Jan 2022 05:02:30 GMT
etag: "1d70-5d4e2c709322e"
accept-ranges: bytes
content-length: 7536
content-type: font/woff
date: Fri, 03 Feb 2023 02:18:36 GMT
server: Apache
X-Firefox-Spdy: h2
www.rsgroup.asia/wp-content/cache/wpfc-minified/6mx4fla6/653cr.css
116.251.204.85200 OK 1.3 kB URL HTTP/2 www.rsgroup.asia/wp-content/cache/wpfc-minified/6mx4fla6/653cr.css
IP 116.251.204.85:0
File type ASCII text, with very long lines (7159), with no line terminators
Hash 535d72e5c91430ee68afca9971f238a6
50be62905c4081d7a9d35bfb7ba0a9e8fe4080b2
aa6b7a8d74735f4414e7d608226d3d65d9ba231c3b274bae3a679930e931c566
GET /wp-content/cache/wpfc-minified/6mx4fla6/653cr.css HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Fri, 28 Jan 2022 06:04:23 GMT
etag: "1bf7-5d69e34dcb799-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 1324
content-type: text/css
date: Fri, 03 Feb 2023 02:18:36 GMT
server: Apache
X-Firefox-Spdy: h2
www.rsgroup.asia/wp-content/cache/wpfc-minified/jo93mbsa/653cd.css
116.251.204.85200 OK 67 kB URL HTTP/2 www.rsgroup.asia/wp-content/cache/wpfc-minified/jo93mbsa/653cd.css
IP 116.251.204.85:0
Hash 3d92d49b325f1dc39f0c179de21bfbdf
512d75ca1dd5bf4304fbcdf3d3dd9f733a183cad
2db95d8e53cae8ebe03d0fcf5ae9fd9a4cf30f500cbc9260ba6d8a8d250bf3f2
GET /wp-content/cache/wpfc-minified/jo93mbsa/653cd.css HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Fri, 28 Jan 2022 06:04:19 GMT
etag: "99536-5d69e34a41c0f-gzip"
accept-ranges: bytes
content-encoding: gzip
content-type: text/css
date: Fri, 03 Feb 2023 02:18:35 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-fCZM.woff2
142.250.74.35200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-fCZM.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 20028, version 1.0\012- data
Hash 2bfde17b9a1384ce64af78db1b87a82f
8effd23e482511e249c3f8e91cdc503729b93598
5c2d662e92bcbf1a5970b97040f901031295e79a96314db8302f549003022087
GET /s/merriweather/v30/u-440qyriQwlOrhSvowK_l5-fCZM.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.rsgroup.asia
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 10:06:02 GMT
expires: Mon, 29 Jan 2024 10:06:02 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 26 Apr 2022 16:41:08 GMT
content-type: font/woff2
age: 403955
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.rsgroup.asia/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.7
116.251.204.85200 OK 2.4 kB URL HTTP/2 www.rsgroup.asia/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.7
IP 116.251.204.85:0
File type ASCII text, with very long lines (6494), with no line terminators
Hash ac8e3264bbf056252840769d80367138
f39423d928ac13e06b2f70a1c568ff53c55db038
10d1fb39911c03d5ea6da7330e723a4cde477907297dba5ea01d0c9a837950a8
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.7 HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Thu, 24 Feb 2022 01:53:52 GMT
etag: "195e-5d8b9daa29fc5-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 2419
content-type: application/javascript
date: Fri, 03 Feb 2023 02:18:36 GMT
server: Apache
X-Firefox-Spdy: h2
www.rsgroup.asia/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.4
116.251.204.85200 OK 4.0 kB URL HTTP/2 www.rsgroup.asia/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.4
IP 116.251.204.85:0
File type HTML document, ASCII text, with very long lines (12310), with no line terminators
Hash 50bae0240cd1352ca7b7a53be004d415
06dde77024abfa8dc6b356bde65311518f12559b
734737e7482a40d309762f8a01f67ecd22b73163edb53ccdffbda9c0d00d9366
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.4 HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Wed, 19 Oct 2022 17:55:14 GMT
etag: "3016-5eb66e9257ce6-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 3952
content-type: application/javascript
date: Fri, 03 Feb 2023 02:18:36 GMT
server: Apache
X-Firefox-Spdy: h2
www.rsgroup.asia/
116.251.204.85200 OK 70 kB IP 116.251.204.85:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (59929)
Hash 60cbd4bd86f9c7ce05598459b9b15932
3ca9d8c996a1465c78aff8402dc01583a14ca239
f4826ed2f5be70e9991ef7a137b4148be9dbbeb4cc9b069a72bce2ac3adc6a35
NIDS Severity Alert suricata medium ET INFO HTTP Request to a *.asia domain
GET / HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Fri, 28 Jan 2022 06:04:23 GMT
content-encoding: gzip
content-type: text/html
date: Fri, 03 Feb 2023 02:18:35 GMT
server: Apache
X-Firefox-Spdy: h2
www.rsgroup.asia/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
116.251.204.85200 OK 7.0 kB URL HTTP/2 www.rsgroup.asia/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 116.251.204.85:0
File type Unicode text, UTF-8 text, with very long lines (19111)
Hash bd04446413945ab22460d271b7b3bdc6
f409173aab4ffd56943d00e2ab5303544a69e53f
725311dc7940e24ee25bdd8a70c5012f2708f88e7205df4dd8db9621bf12d164
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Thu, 24 Feb 2022 01:53:52 GMT
etag: "4b3d-5d8b9daa29fc5-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 6989
content-type: application/javascript
date: Fri, 03 Feb 2023 02:18:36 GMT
server: Apache
X-Firefox-Spdy: h2
www.rsgroup.asia/wp-content/cache/wpfc-minified/8add5oi5/653cd.css
116.251.204.85200 OK 10 kB URL HTTP/2 www.rsgroup.asia/wp-content/cache/wpfc-minified/8add5oi5/653cd.css
IP 116.251.204.85:0
File type ASCII text, with very long lines (13923)
Hash 8f7f6e04e4440e724e044d7d90fd46cf
fef2f79d6ac4ed6f77d8f096c188bfdf1a2a65fd
0e3767ce8373cb14da0525a43646e95dd102f053630eeeff5969cbb0e810e915
GET /wp-content/cache/wpfc-minified/8add5oi5/653cd.css HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Fri, 28 Jan 2022 06:04:19 GMT
etag: "d195-5d69e34a37fd1-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 10477
content-type: text/css
date: Fri, 03 Feb 2023 02:18:36 GMT
server: Apache
X-Firefox-Spdy: h2
www.rsgroup.asia/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.12
116.251.204.85200 OK 49 kB URL HTTP/2 www.rsgroup.asia/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.12
IP 116.251.204.85:0
File type ASCII text, with very long lines (45108), with CRLF line terminators
Hash 036382ec7c1ec7ddffc3f42f31e7e879
a0e1af0caf8bbad364be7ef19e259c866be26b5e
f774560ca2f173be3a42db8bd16771a038ddbad098f43ae2dcac4a1df0703841
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.12 HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Thu, 06 Jan 2022 05:02:30 GMT
etag: "1f725-5d4e2c708e40f-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 48640
content-type: application/javascript
date: Fri, 03 Feb 2023 02:18:36 GMT
server: Apache
X-Firefox-Spdy: h2
www.rsgroup.asia/wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4wp-form-move-tracker.js?ver=1.14.2
116.251.204.85200 OK 369 B URL HTTP/2 www.rsgroup.asia/wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4wp-form-move-tracker.js?ver=1.14.2
IP 116.251.204.85:0
File type ASCII text, with CRLF line terminators
Hash dbcd09a3eec932ec409e4ec8fbffa7b6
f724362a7bdb90c1cf61345f62d850a36c8f5f89
68f6368451e1d8425b5ae218adae92a05128177bb6b5eb380e4c05179184fb99
GET /wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4wp-form-move-tracker.js?ver=1.14.2 HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Thu, 17 Nov 2022 18:06:10 GMT
etag: "5fa-5edae71a62220-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 369
content-type: application/javascript
date: Fri, 03 Feb 2023 02:18:36 GMT
server: Apache
X-Firefox-Spdy: h2
www.rsgroup.asia/wp-includes/js/wp-embed.min.js?ver=5.8.3
116.251.204.85200 OK 793 B URL HTTP/2 www.rsgroup.asia/wp-includes/js/wp-embed.min.js?ver=5.8.3
IP 116.251.204.85:0
File type ASCII text, with very long lines (1457)
Hash 40559c256dc2b82919ac90751b98fb9d
edb665d9d071a753498b3e56b7fa2b6275351861
5bac84fdcc7b58cc93187605853d4ae576f0cd629119bdc9a83351d50579eddd
GET /wp-includes/js/wp-embed.min.js?ver=5.8.3 HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Thu, 24 Feb 2022 01:53:52 GMT
etag: "5d4-5d8b9daa314f4-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 793
content-type: application/javascript
date: Fri, 03 Feb 2023 02:18:36 GMT
server: Apache
X-Firefox-Spdy: h2
www.rsgroup.asia/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.8.0
116.251.204.85200 OK 5.7 kB URL HTTP/2 www.rsgroup.asia/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.8.0
IP 116.251.204.85:0
File type ASCII text, with very long lines (19905)
Hash 4290adf786929315754997179e486721
41732e6a3a748d0665ffe22fbf50fe578a96c76b
9f14ad691252d22d76ab50ed0ca40b46ebed45684122be933d978bf429656b81
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.8.0 HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Thu, 06 Jan 2022 05:02:26 GMT
etag: "4e9c-5d4e2c6ccc61f-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 5659
content-type: application/javascript
date: Fri, 03 Feb 2023 02:18:36 GMT
server: Apache
X-Firefox-Spdy: h2
www.rsgroup.asia/wp-content/plugins/ronneby-core/inc/vc_custom/dfd_vc_addons/assets/min-js/ultimate_bg.min.js
116.251.204.85200 OK 8.2 kB URL HTTP/2 www.rsgroup.asia/wp-content/plugins/ronneby-core/inc/vc_custom/dfd_vc_addons/assets/min-js/ultimate_bg.min.js
IP 116.251.204.85:0
File type ASCII text, with very long lines (37597), with no line terminators
Hash 6fcbf480104e5b4c659f4e9945161f84
d357bb06c2c7b0948b70bae9c4fd6b8d5f95ffee
3cc63a0bac4486b56a4835f3a76e2ac669cbeafe597405d929417763d5f00534
GET /wp-content/plugins/ronneby-core/inc/vc_custom/dfd_vc_addons/assets/min-js/ultimate_bg.min.js HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Thu, 06 Jan 2022 05:02:22 GMT
etag: "92dd-5d4e2c6916b7d-gzip"
accept-ranges: bytes
content-encoding: gzip
content-length: 8200
content-type: application/javascript
date: Fri, 03 Feb 2023 02:18:36 GMT
server: Apache
X-Firefox-Spdy: h2
www.rsgroup.asia/wp-content/themes/dfd-ronneby/assets/fonts/soc-icons.woff
116.251.204.85200 OK 35 kB URL HTTP/2 www.rsgroup.asia/wp-content/themes/dfd-ronneby/assets/fonts/soc-icons.woff
IP 116.251.204.85:0
File type Web Open Font Format, CFF, length 35228, version 1.0\012- data
Hash 97c2eb3607a77abcd687a1d1cca84989
273b8971197cf0e03b6169fc771efa2cb60fb528
21ac17720285646169355f26dc7e527c20d2882a8d1de2a902e429dc94f9acd5
GET /wp-content/themes/dfd-ronneby/assets/fonts/soc-icons.woff HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.rsgroup.asia/wp-content/cache/wpfc-minified/dhcxolks/653cd.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 04 Jan 2022 12:28:39 GMT
etag: "899c-5d4c0c6e5c0f6"
accept-ranges: bytes
content-length: 35228
vary: User-Agent
content-type: font/woff
date: Fri, 03 Feb 2023 02:18:37 GMT
server: Apache
X-Firefox-Spdy: h2
platform.twitter.com/oct.js
192.229.233.25301 Moved Permanently 0 B URL HTTP/1.1 platform.twitter.com/oct.js
IP 192.229.233.25:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /oct.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Date: Fri, 03 Feb 2023 02:18:37 GMT
Location: https://static.ads-twitter.com/oct.js
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F713)
Server-Timing: x-cache;desc= ,x-tw-cdn;desc=VZ
x-tw-cdn: VZ
Content-Length: 0
static.ads-twitter.com/oct.js
151.101.244.157200 OK 15 kB URL HTTP/2 static.ads-twitter.com/oct.js
IP 151.101.244.157:0
File type ASCII text, with very long lines (57596), with no line terminators
Hash 573e6a7f86f6f3063763360ef0672c01
b12eab3b4ac8872d49ac6e15f9cd17741765c0cf
02445eb022a04139531f0ce8d8980c31083a1c670936f1477f5cfc4d252133f7
GET /oct.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rsgroup.asia/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 27 Oct 2022 18:55:37 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
accept-ranges: bytes
date: Fri, 03 Feb 2023 02:18:37 GMT
x-served-by: cache-iad-kiad7000092-IAD, cache-hel1410022-HEL
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15375
X-Firefox-Spdy: h2
www.rsgroup.asia/wp-content/themes/dfd-ronneby/assets/fonts/dfd_icon_set/dfd_icon_set.woff?t0y29j
116.251.204.85200 OK 587 kB URL HTTP/2 www.rsgroup.asia/wp-content/themes/dfd-ronneby/assets/fonts/dfd_icon_set/dfd_icon_set.woff?t0y29j
IP 116.251.204.85:0
File type Web Open Font Format, TrueType, length 586612, version 0.0\012- data
Size 587 kB (586612 bytes)
Hash 0476cf4f4f281427c56e699e5b697cee
fd2753f917b39246daa91721af053f3f37d9ab43
eb8b8bd903a4e388dca1baac5a72110f4eb1f479ee7b655ca53490081726680c
GET /wp-content/themes/dfd-ronneby/assets/fonts/dfd_icon_set/dfd_icon_set.woff?t0y29j HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.rsgroup.asia/wp-content/cache/wpfc-minified/9ldwtnzt/653cd.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 04 Jan 2022 12:28:39 GMT
etag: "8f374-5d4c0c6e5e806"
accept-ranges: bytes
content-length: 586612
vary: User-Agent
content-type: font/woff
date: Fri, 03 Feb 2023 02:18:37 GMT
server: Apache
X-Firefox-Spdy: h2
www.rsgroup.asia/wp-content/themes/dfd-ronneby/assets/fonts/texgyreadventor-regular-webfont.woff2
116.251.204.85200 OK 19 kB URL HTTP/2 www.rsgroup.asia/wp-content/themes/dfd-ronneby/assets/fonts/texgyreadventor-regular-webfont.woff2
IP 116.251.204.85:0
File type Web Open Font Format (Version 2), TrueType, length 19020, version 2.196\012- data
Hash f6f922faab4b5ffdb54ccd30543d9dba
36e8f5ffe3ba96df0c3cafeffc2f5922f620df36
72a0599bc3100f4036770719e8e6a6de6cdc3881838cec384b1f7c7011f0374e
GET /wp-content/themes/dfd-ronneby/assets/fonts/texgyreadventor-regular-webfont.woff2 HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.rsgroup.asia/wp-content/cache/wpfc-minified/dhcxolks/653cd.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 04 Jan 2022 12:28:39 GMT
etag: "4a4c-5d4c0c6e5e806"
accept-ranges: bytes
content-length: 19020
vary: User-Agent
content-type: font/woff2
date: Fri, 03 Feb 2023 02:18:37 GMT
server: Apache
X-Firefox-Spdy: h2
www.rsgroup.asia/wp-content/themes/dfd-ronneby/assets/fonts/dfd-added-font-icon.ttf?uwi5vc
116.251.204.85200 OK 14 kB URL HTTP/2 www.rsgroup.asia/wp-content/themes/dfd-ronneby/assets/fonts/dfd-added-font-icon.ttf?uwi5vc
IP 116.251.204.85:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, dfd-added-font-icon\012- data
Hash d4e4725bb248f858374ec8572b6bd326
6f830ab627051b02e8277af0fe98b859c39fce78
3225dc06dda4717cca73b8118f028881019a7ba76773b5f6e48c1f8aaf96af50
GET /wp-content/themes/dfd-ronneby/assets/fonts/dfd-added-font-icon.ttf?uwi5vc HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/wp-content/cache/wpfc-minified/dhcxolks/653cd.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Tue, 04 Jan 2022 12:28:39 GMT
etag: "37f0-5d4c0c6e60f15"
accept-ranges: bytes
content-length: 14320
content-type: font/ttf
date: Fri, 03 Feb 2023 02:18:37 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 3729d8445019ddf0cb6e03e7cdbe643a
b513f16d0106e68311b09addade6d44894e3537b
1e38f04f29641215a4d0476be900b37b8819d929db7ef6d4deab15a361e46f1e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 635
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 02:18:38 GMT
Last-Modified: Fri, 03 Feb 2023 02:08:03 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 313
t.co/i/adsct?bci=1&eci=1&event_id=86ade5fc-6c29-433e-b8d9-9b9bf73e3d7b&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=21c42abf-18c8-4517-8f02-7dad59976446&tw_document_href=https%3A%2F%2Fwww.rsgroup.asia%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nv7yk&type=javascript&version=2.3.29
104.244.42.133200 OK 43 B URL HTTP/2 t.co/i/adsct?bci=1&eci=1&event_id=86ade5fc-6c29-433e-b8d9-9b9bf73e3d7b&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=21c42abf-18c8-4517-8f02-7dad59976446&tw_document_href=https%3A%2F%2Fwww.rsgroup.asia%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nv7yk&type=javascript&version=2.3.29
IP 104.244.42.133:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=1&eci=1&event_id=86ade5fc-6c29-433e-b8d9-9b9bf73e3d7b&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=21c42abf-18c8-4517-8f02-7dad59976446&tw_document_href=https%3A%2F%2Fwww.rsgroup.asia%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nv7yk&type=javascript&version=2.3.29 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 02:18:37 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=8de8172d-574f-4915-839e-fbb5dbd399f0; Max-Age=63072000; Expires=Sun, 02 Feb 2025 02:18:38 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: b7e3797eb9f9abc9
strict-transport-security: max-age=0
x-response-time: 108
x-connection-hash: 74cc4e8ef091916cee94b8c16fde2e3bb90337c5bd3e8d4cab9e4170a4b2a104
X-Firefox-Spdy: h2
www.rsgroup.asia/wp-content/uploads/2016/05/ExecSummary-2-100x50.jpg
116.251.204.85200 OK 2.9 kB URL HTTP/2 www.rsgroup.asia/wp-content/uploads/2016/05/ExecSummary-2-100x50.jpg
IP 116.251.204.85:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 100x50, components 3\012- data
Hash 183a743d0d2dcb815dd5ce0d91dfe7c5
235ecd5dffc96832915519be69bc1166ebde9972
db9b43318524a985061f832e63c1c9e6f28e524cb11c25d5702cc2bdce7f1c1e
GET /wp-content/uploads/2016/05/ExecSummary-2-100x50.jpg HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Sun, 08 May 2016 02:20:18 GMT
etag: "b7c-5324b5543dc80"
accept-ranges: bytes
content-length: 2940
content-type: image/jpeg
date: Fri, 03 Feb 2023 02:18:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.rsgroup.asia/wp-content/uploads/2016/05/Green-Light-Planet-Kids-studying-Africa_Resized-2-100x50.jpg
116.251.204.85200 OK 3.2 kB URL HTTP/2 www.rsgroup.asia/wp-content/uploads/2016/05/Green-Light-Planet-Kids-studying-Africa_Resized-2-100x50.jpg
IP 116.251.204.85:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 100x50, components 3\012- data
Hash 8f384ec97ffecc1b959ad343afa15a44
f436c7c0863a6dd6209ad947f43511d0f6f1d9d5
dff99dcbcc637d2719e86684f9a0c1cf2fd3d7b7eb9f1ba1ba62a91970e5ae66
GET /wp-content/uploads/2016/05/Green-Light-Planet-Kids-studying-Africa_Resized-2-100x50.jpg HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Sun, 08 May 2016 02:17:46 GMT
etag: "c59-5324b4c348680"
accept-ranges: bytes
content-length: 3161
content-type: image/jpeg
date: Fri, 03 Feb 2023 02:18:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.rsgroup.asia/wp-content/plugins/revslider/public/assets/assets/loader.gif
116.251.204.85200 OK 2.5 kB URL HTTP/2 www.rsgroup.asia/wp-content/plugins/revslider/public/assets/assets/loader.gif
IP 116.251.204.85:0
File type GIF image data, version 89a, 24 x 24\012- data
Hash 4b3afb84b2b71ef56df09997a350bd04
accdac8a7abeab0e21c49539aad0a973addb28ef
9034d5d34015e4b05d2c1d1a8dc9f6ec9d59bd96d305eb9e24e24e65c591a645
GET /wp-content/plugins/revslider/public/assets/assets/loader.gif HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/wp-content/cache/wpfc-minified/8add5oi5/653cd.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Thu, 06 Jan 2022 05:02:30 GMT
etag: "9f1-5d4e2c70561a9"
accept-ranges: bytes
content-length: 2545
content-type: image/gif
date: Fri, 03 Feb 2023 02:18:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.rsgroup.asia/wp-content/uploads/2016/04/hongkong_header_dark.jpg
116.251.204.85200 OK 511 kB URL HTTP/2 www.rsgroup.asia/wp-content/uploads/2016/04/hongkong_header_dark.jpg
IP 116.251.204.85:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=1, copyright=jo - Fotolia], baseline, precision 8, 1920x1140, components 3\012- data
Size 511 kB (510632 bytes)
Hash 9bf864a770f37a9bf1a239439e1e00f8
dc97a38692fb891ed996cc713e58fe5b5dbbd78b
b7158fe774a2973883f67dcba9fa8c8c974183a0a71f6503fe4d224e8f6c616c
GET /wp-content/uploads/2016/04/hongkong_header_dark.jpg HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Sat, 09 Apr 2016 07:02:52 GMT
etag: "7caa8-53007e6677f00"
accept-ranges: bytes
content-length: 510632
content-type: image/jpeg
date: Fri, 03 Feb 2023 02:18:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.rsgroup.asia/wp-content/uploads/2016/04/Javiera03.09.2015.jpg
116.251.204.85200 OK 164 kB URL HTTP/2 www.rsgroup.asia/wp-content/uploads/2016/04/Javiera03.09.2015.jpg
IP 116.251.204.85:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1202, components 3\012- data
Size 164 kB (164243 bytes)
Hash 9321fb5e607dd1ccb67f8e2a6c50519d
1a57dff61c3f24977c8b6b2abbed2c960b5abb49
5c849d04173ab5b209b069c8c482483b035c6edfc053a4d1c5fea10223a8a4d7
GET /wp-content/uploads/2016/04/Javiera03.09.2015.jpg HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Sat, 07 May 2016 10:46:46 GMT
etag: "28193-5323e4ab09180"
accept-ranges: bytes
content-length: 164243
content-type: image/jpeg
date: Fri, 03 Feb 2023 02:18:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.rsgroup.asia/wp-content/uploads/2016/04/road-street-desert-industry.jpg
116.251.204.85200 OK 430 kB URL HTTP/2 www.rsgroup.asia/wp-content/uploads/2016/04/road-street-desert-industry.jpg
IP 116.251.204.85:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1900x1275, components 3\012- data
Size 430 kB (430268 bytes)
Hash 8529af90962a02e0e4b435bc1d22cfb2
275352d546d1c3f8d7a392f158e2799c4179ca51
37c8a6dad204a506234f3a1e12f401a9eb2b2c18a55d93027c4705304255fcfb
GET /wp-content/uploads/2016/04/road-street-desert-industry.jpg HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Sat, 16 Apr 2016 08:44:06 GMT
etag: "690bc-5309621550180"
accept-ranges: bytes
content-length: 430268
content-type: image/jpeg
date: Fri, 03 Feb 2023 02:18:38 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/raleway/v28/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVtzpbCIPrE.woff2
142.250.74.35200 OK 21 kB URL HTTP/2 fonts.gstatic.com/s/raleway/v28/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVtzpbCIPrE.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 20696, version 1.0\012- data
Hash e47c52218fc0165afd0057b27bc719c1
70559ecb3b53dfb711da17e84c7a2d467c2993eb
23b8ba301f34a64b5ef27326696d23e66bef94db6850ca7c281ee9a72c2c1109
GET /s/raleway/v28/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVtzpbCIPrE.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.rsgroup.asia
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20696
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 06:53:57 GMT
expires: Tue, 30 Jan 2024 06:53:57 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 18 Jul 2022 19:57:58 GMT
content-type: font/woff2
age: 329081
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.rsgroup.asia/wp-content/uploads/2016/05/Green-Light-Planet-Kids-studying-Africa_Resized-2.jpg
116.251.204.85200 OK 338 kB URL HTTP/2 www.rsgroup.asia/wp-content/uploads/2016/05/Green-Light-Planet-Kids-studying-Africa_Resized-2.jpg
IP 116.251.204.85:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=1, copyright=2008 ], baseline, precision 8, 1900x1264, components 3\012- data
Size 338 kB (337711 bytes)
Hash 36aa06e679a94cfdc6192fcf390b2a8b
0e1acf2feecf98e26588873e97884abf25bf3d51
cfe8954626cf69ba3f635fab3d307898ac620c7d2fba66468ba988964c3012b3
GET /wp-content/uploads/2016/05/Green-Light-Planet-Kids-studying-Africa_Resized-2.jpg HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Sun, 08 May 2016 02:15:21 GMT
etag: "5272f-5324b43900040"
accept-ranges: bytes
content-length: 337711
content-type: image/jpeg
date: Fri, 03 Feb 2023 02:18:38 GMT
server: Apache
X-Firefox-Spdy: h2
www.rsgroup.asia/wp-content/uploads/2016/05/ExecSummary-2.jpg
116.251.204.85200 OK 396 kB URL HTTP/2 www.rsgroup.asia/wp-content/uploads/2016/05/ExecSummary-2.jpg
IP 116.251.204.85:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 2000x1033, components 3\012- data
Size 396 kB (395587 bytes)
Hash 1caca38082b3b847f4246ae28e037710
fc2651b614741925530aae9300eb2240b422a342
e8fa21b388ab05be1444015a8b2b78710b49b6c013b2ccc361ba841bff5a3595
GET /wp-content/uploads/2016/05/ExecSummary-2.jpg HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Sun, 08 May 2016 02:20:06 GMT
etag: "60943-5324b548cc180"
accept-ranges: bytes
content-length: 395587
content-type: image/jpeg
date: Fri, 03 Feb 2023 02:18:38 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ede42358dbe8cf2e6b7e6a2653774d01
5dc8ca0b929f04fb15c7ff81d0a9decda023b7fb
8e841815d41c4ade06e328cb1ffb9be342640167ec6acb658f6b4b373e23a52a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3788
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 02:18:38 GMT
Last-Modified: Fri, 03 Feb 2023 01:15:30 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash d748dcaaec947b38996a2f987e98b2b9
7e018ab7e9f0c73d53379d1698a06177b0643687
2ef4873c62fe3cfbc33e7a8f0ab428ab78676b1d01c2aee8bc16d50fafe756d6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2007
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 02:18:38 GMT
Last-Modified: Fri, 03 Feb 2023 01:45:11 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 313
connect.facebook.net/en_US/fbevents.js
157.240.205.11200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.205.11:0
File type ASCII text, with very long lines (64348)
Hash dd1f85cc598419df61e254e53f9ec1ef
f86c0ee563f5b7a01e1d40b566f2bc184a32380f
c06f52b233c835b03292f39cb847507a03bb971066bf91341b58a580244398c0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: KWdzJxY0O36VglwJBJVCYaR0yVAKpu7smyCrSFPLtYBqquPDRqh9Jr1iNXaeYlBNrW3kreEZKNKJ7SU0Z0vw4Q==
content-length: 27843
x-fb-trip-id: 1679558926
date: Fri, 03 Feb 2023 02:18:38 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ede42358dbe8cf2e6b7e6a2653774d01
5dc8ca0b929f04fb15c7ff81d0a9decda023b7fb
8e841815d41c4ade06e328cb1ffb9be342640167ec6acb658f6b4b373e23a52a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3788
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 02:18:38 GMT
Last-Modified: Fri, 03 Feb 2023 01:15:30 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
analytics.twitter.com/i/adsct?bci=1&eci=1&event_id=86ade5fc-6c29-433e-b8d9-9b9bf73e3d7b&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=21c42abf-18c8-4517-8f02-7dad59976446&tw_document_href=https%3A%2F%2Fwww.rsgroup.asia%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nv7yk&type=javascript&version=2.3.29
104.244.42.131200 OK 43 B URL HTTP/2 analytics.twitter.com/i/adsct?bci=1&eci=1&event_id=86ade5fc-6c29-433e-b8d9-9b9bf73e3d7b&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=21c42abf-18c8-4517-8f02-7dad59976446&tw_document_href=https%3A%2F%2Fwww.rsgroup.asia%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nv7yk&type=javascript&version=2.3.29
IP 104.244.42.131:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=1&eci=1&event_id=86ade5fc-6c29-433e-b8d9-9b9bf73e3d7b&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=21c42abf-18c8-4517-8f02-7dad59976446&tw_document_href=https%3A%2F%2Fwww.rsgroup.asia%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nv7yk&type=javascript&version=2.3.29 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 02:18:38 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_+TGw4CvQ/7/841ropkwi9w=="; Max-Age=63072000; Expires=Sun, 02 Feb 2025 02:18:38 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: c7cb9bb44cf66e48
strict-transport-security: max-age=631138519
x-response-time: 111
x-connection-hash: c9d6af9f47005b4e24818f35fc80364757db80459b72e2ce3d2c63a7f5e7921b
X-Firefox-Spdy: h2
tag.marinsm.com/serve/573570dc079e869abf000135.js
151.101.64.65200 OK 3.9 kB URL HTTP/1.1 tag.marinsm.com/serve/573570dc079e869abf000135.js
IP 151.101.64.65:0
File type ASCII text, with very long lines (10694)
Hash 6e54ccce563b073436ce9f8967af2739
602f7061db994f04c5a2d194e0a1525e0c0523a5
240bbc2e8a1e528df7b875fef7cb3c63c070e831b3daf51ee04b2e2d6cea8d3e
GET /serve/573570dc079e869abf000135.js HTTP/1.1
Host: tag.marinsm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 3897
Server: Cowboy
Content-Type: text/javascript
Cache-Control: max-age=1800
X-Content-Type-Options: nosniff
Via: 1.1 vegur, 1.1 varnish
Content-Encoding: gzip
Accept-Ranges: bytes
Date: Fri, 03 Feb 2023 02:18:39 GMT
Age: 0
X-Served-By: cache-bma1628-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1675390719.890698,VS0,VE189
Vary: Accept-Encoding
www.rsgroup.asia/wp-content/uploads/2021/12/RSgroup_logo-150x150.png
116.251.204.85200 OK 8.4 kB URL HTTP/2 www.rsgroup.asia/wp-content/uploads/2021/12/RSgroup_logo-150x150.png
IP 116.251.204.85:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 87ab875380079206c47af087b346b391
c69d5f1bb8c07af28d1f82f44a6f9b5c81e308dc
0273ae482244d3f6e5d8d661f674c8a63c7e8a9f8e98724d427be6bbc1176e11
GET /wp-content/uploads/2021/12/RSgroup_logo-150x150.png HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Tue, 07 Dec 2021 03:13:48 GMT
etag: "20e2-5d285c30c1352"
accept-ranges: bytes
content-length: 8418
content-type: image/png
date: Fri, 03 Feb 2023 02:18:38 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash 3be6c4fac0eae704097ef9805fc5c3c7
badef408ecfec5ff198fbadce8dd3157553f53c2
acfbf9cb6cce04972b1ae8a622b728ab3157ac8f7b3a256cade52f7c48634fe4
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 03 Feb 2023 02:18:39 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Mon, 06 Feb 2023 22:43:16 GMT
ETag: "badef408ecfec5ff198fbadce8dd3157553f53c2"
Last-Modified: Thu, 02 Feb 2023 22:43:17 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1680
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7937ad5b7867b50c-OSL
pixel-geo.prfct.co/tagjs?a_id=60975&source=js_tag
34.243.222.134302 Found 0 B URL HTTP/1.1 pixel-geo.prfct.co/tagjs?a_id=60975&source=js_tag
IP 34.243.222.134:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tagjs?a_id=60975&source=js_tag HTTP/1.1
Host: pixel-geo.prfct.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-store, no-cache, private
Location: https://pixel-geo.prfct.co/tagjs?check_cookie=1&a_id=60975&source=js_tag
P3P: CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
Set-Cookie: pa_uid=pa_6vnuZkugkooAKrEYx; Max-Age=63072000; Domain=.prfct.co; Path=/; SameSite=None; Secure;
Content-Length: 0
Connection: keep-alive
pixel-geo.prfct.co/tagjs?check_cookie=1&a_id=60975&source=js_tag
34.243.222.134200 OK 125 B URL HTTP/1.1 pixel-geo.prfct.co/tagjs?check_cookie=1&a_id=60975&source=js_tag
IP 34.243.222.134:0
Hash 10f9ec34d94f09d5b8eb8d8330ba5d2b
44dfeb55504314a973042d89357dfcea74f7d277
37efff9a4ad77b78504b89340c8cfe2222d6ab1bc1a91c1da2ef00d48596d2f6
GET /tagjs?check_cookie=1&a_id=60975&source=js_tag HTTP/1.1
Host: pixel-geo.prfct.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rsgroup.asia/
Connection: keep-alive
Cookie: pa_uid=pa_6vnuZkugkooAKrEYx
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, private
Content-Type: text/javascript
P3P: CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
Set-Cookie: pa_uid=pa_6vnuZkugkooAKrEYx; Max-Age=63072000; Domain=.prfct.co; Path=/; SameSite=None; Secure;
Content-Length: 125
Connection: keep-alive
pixel-geo.prfct.co/cs/?partnerId=twtr
34.243.222.134302 Found 0 B URL HTTP/1.1 pixel-geo.prfct.co/cs/?partnerId=twtr
IP 34.243.222.134:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cs/?partnerId=twtr HTTP/1.1
Host: pixel-geo.prfct.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Cookie: pa_uid=pa_6vnuZkugkooAKrEYx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-store, no-cache, private
Location: https://analytics.twitter.com/i/adsct?p_id=48571&p_user_id=pa_6vnuZkugkooAKrEYx
P3P: CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
Set-Cookie: pa_uid=pa_6vnuZkugkooAKrEYx; Max-Age=63072000; Domain=.prfct.co; Path=/; SameSite=None; Secure;
pa_twitter_ts=1675390719412; Max-Age=63072000; Domain=.prfct.co; Path=/; SameSite=None; Secure;
Content-Length: 0
Connection: keep-alive
www.facebook.com/tr/?id=236271463401966&ev=PageView&dl=https%3A%2F%2Fwww.rsgroup.asia%2F&rl=&if=false&ts=1675390748072&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&fbp=fb.1.1675390748070.1871820371&it=1675390747780&coo=false&rqm=GET
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=236271463401966&ev=PageView&dl=https%3A%2F%2Fwww.rsgroup.asia%2F&rl=&if=false&ts=1675390748072&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&fbp=fb.1.1675390748070.1871820371&it=1675390747780&coo=false&rqm=GET
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=236271463401966&ev=PageView&dl=https%3A%2F%2Fwww.rsgroup.asia%2F&rl=&if=false&ts=1675390748072&sw=1280&sh=1024&v=2.9.95&r=stable&ec=0&o=30&fbp=fb.1.1675390748070.1871820371&it=1675390747780&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Fri, 03 Feb 2023 02:18:39 GMT
X-Firefox-Spdy: h2
pixel-geo.prfct.co/cs/?partnerId=opx
34.243.222.134302 Found 0 B URL HTTP/1.1 pixel-geo.prfct.co/cs/?partnerId=opx
IP 34.243.222.134:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cs/?partnerId=opx HTTP/1.1
Host: pixel-geo.prfct.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Cookie: pa_uid=pa_6vnuZkugkooAKrEYx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-store, no-cache, private
Location: https://us-u.openx.net/w/1.0/sd?id=537114372&val=pa_6vnuZkugkooAKrEYx
P3P: CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
Set-Cookie: pa_uid=pa_6vnuZkugkooAKrEYx; Max-Age=63072000; Domain=.prfct.co; Path=/; SameSite=None; Secure;
pa_openx_ts=1675390719448; Max-Age=63072000; Domain=.prfct.co; Path=/; SameSite=None; Secure;
Content-Length: 0
Connection: keep-alive
pixel-geo.prfct.co/cs/?partnerId=rbcn
34.243.222.134302 Found 0 B URL HTTP/1.1 pixel-geo.prfct.co/cs/?partnerId=rbcn
IP 34.243.222.134:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cs/?partnerId=rbcn HTTP/1.1
Host: pixel-geo.prfct.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Cookie: pa_uid=pa_6vnuZkugkooAKrEYx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-store, no-cache, private
Location: https://pixel.rubiconproject.com/tap.php?v=189868&nid=4106&expires=30&put=pa_6vnuZkugkooAKrEYx
P3P: CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
Set-Cookie: pa_uid=pa_6vnuZkugkooAKrEYx; Max-Age=63072000; Domain=.prfct.co; Path=/; SameSite=None; Secure;
pa_rubicon_ts=1675390719522; Max-Age=63072000; Domain=.prfct.co; Path=/; SameSite=None; Secure;
Content-Length: 0
Connection: keep-alive
pixel-geo.prfct.co/cs/?partnerId=yah
34.243.222.134302 Found 0 B URL HTTP/1.1 pixel-geo.prfct.co/cs/?partnerId=yah
IP 34.243.222.134:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cs/?partnerId=yah HTTP/1.1
Host: pixel-geo.prfct.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Cookie: pa_uid=pa_6vnuZkugkooAKrEYx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-store, no-cache, private
Location: https://ups.analytics.yahoo.com/ups/58288/sync?uid=pa_6vnuZkugkooAKrEYx&_origin=1
P3P: CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
Set-Cookie: pa_uid=pa_6vnuZkugkooAKrEYx; Max-Age=63072000; Domain=.prfct.co; Path=/; SameSite=None; Secure;
pa_yahoo_ts=1675390719528; Max-Age=63072000; Domain=.prfct.co; Path=/; SameSite=None; Secure;
Content-Length: 0
Connection: keep-alive
pixel-geo.prfct.co/cs/?partnerId=goo
34.243.222.134302 Found 0 B URL HTTP/1.1 pixel-geo.prfct.co/cs/?partnerId=goo
IP 34.243.222.134:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cs/?partnerId=goo HTTP/1.1
Host: pixel-geo.prfct.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Cookie: pa_uid=pa_6vnuZkugkooAKrEYx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-store, no-cache, private
Location: https://cm.g.doubleclick.net/pixel?google_nid=nowspots_bidder&google_hm=cGFfNnZudVprdWdrb29BS3JFWXg
P3P: CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
Set-Cookie: pa_uid=pa_6vnuZkugkooAKrEYx; Max-Age=63072000; Domain=.prfct.co; Path=/; SameSite=None; Secure;
pa_google_ts=1675390719536; Max-Age=63072000; Domain=.prfct.co; Path=/; SameSite=None; Secure;
Content-Length: 0
Connection: keep-alive
pixel-geo.prfct.co/seg/?add=5276277&source=js_tag&a_id=60975
34.243.222.134200 OK 43 B URL HTTP/1.1 pixel-geo.prfct.co/seg/?add=5276277&source=js_tag&a_id=60975
IP 34.243.222.134:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /seg/?add=5276277&source=js_tag&a_id=60975 HTTP/1.1
Host: pixel-geo.prfct.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Cookie: pa_uid=pa_6vnuZkugkooAKrEYx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, private
Content-Type: image/gif
P3P: CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
Set-Cookie: pa_uid=pa_6vnuZkugkooAKrEYx; Max-Age=63072000; Domain=.prfct.co; Path=/; SameSite=None; Secure;
Content-Length: 43
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.67200 OK 472 B IP 142.250.74.67:0
Hash 9bfd33253208c9d034988400d66abd5d
8811fd76d9bc56c15431433f8f08d648185992ed
6382de7eb2bc0b40dc6d2e21ab8b6cb90cc0effe3241e3fb5008d2e4f626e92c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 02:18:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cm.g.doubleclick.net/pixel?google_nid=nowspots_bidder&google_hm=cGFfNnZudVprdWdrb29BS3JFWXg
142.250.74.130302 Found 315 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=nowspots_bidder&google_hm=cGFfNnZudVprdWdrb29BS3JFWXg
IP 142.250.74.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 8b7118eef2732ce72ecc95284683ece4
e3cfba70479265b20465686eaddf9d656109e74f
af50b39f9c1aa538b3e0bcd9f10180f6c0b520b34002877d03bca7b2af7224e7
GET /pixel?google_nid=nowspots_bidder&google_hm=cGFfNnZudVprdWdrb29BS3JFWXg HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rsgroup.asia/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=nowspots_bidder&google_hm=cGFfNnZudVprdWdrb29BS3JFWXg&google_tc=
date: Fri, 03 Feb 2023 02:18:39 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 315
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 03-Feb-2023 02:33:39 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e35a92e1bb882de50b5b13ba45a97608
a4974aec326fc29b95fff08a006ce6e2757b511e
a82037d6020b7ab89af017b0eabbac9b431a6a97a9633af30b27f6f480800692
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4909
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 02:18:39 GMT
Last-Modified: Fri, 03 Feb 2023 00:56:50 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d3086d8d034e73524985d684fee6783f
f39b9547e1f35059098b50009cc046df58be4c2a
66576161abe2d955800d9947dcd6ac4c04fe82c1857e3e8565565968acf1b8b1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4545
Cache-Control: max-age=137373
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 02:18:39 GMT
Etag: "63dbd2db-1d7"
Expires: Sat, 04 Feb 2023 16:28:12 GMT
Last-Modified: Thu, 02 Feb 2023 15:12:27 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
secure.adnxs.com/seg?t=2&add=5276277
37.252.171.84307 Redirection 0 B URL HTTP/1.1 secure.adnxs.com/seg?t=2&add=5276277
IP 37.252.171.84:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /seg?t=2&add=5276277 HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Fri, 03 Feb 2023 02:18:39 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://secure.adnxs.com/bounce?%2Fseg%3Ft%3D2%26add%3D5276277
AN-X-Request-Uuid: 8a6def40-81ac-4597-98e8-5770cb3f0e61
Set-Cookie: uuid2=4456683924209778717; SameSite=None; Path=/; Max-Age=7776000; Expires=Thu, 04-May-2023 02:18:39 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1002.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
cm.g.doubleclick.net/pixel?google_nid=nowspots_bidder&google_hm=cGFfNnZudVprdWdrb29BS3JFWXg&google_tc=
142.250.74.130302 Found 259 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=nowspots_bidder&google_hm=cGFfNnZudVprdWdrb29BS3JFWXg&google_tc=
IP 142.250.74.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 0a0a4f6cad208f9d0fb759db3d34ddfc
acc1bd92116763fe72e1b478c6d92fd2c2d74f04
eba9f6a7322bdfaa5076a0895ad8765b4c7010ac5f4a06199a07b0f5402d27bd
GET /pixel?google_nid=nowspots_bidder&google_hm=cGFfNnZudVprdWdrb29BS3JFWXg&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rsgroup.asia/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://pixel-geo.prfct.co/cb?partnerId=goo&google_error=3
date: Fri, 03 Feb 2023 02:18:39 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 259
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.67200 OK 472 B IP 142.250.74.67:0
Hash 9bfd33253208c9d034988400d66abd5d
8811fd76d9bc56c15431433f8f08d648185992ed
6382de7eb2bc0b40dc6d2e21ab8b6cb90cc0effe3241e3fb5008d2e4f626e92c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 02:18:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
us-u.openx.net/w/1.0/sd?id=537114372&val=pa_6vnuZkugkooAKrEYx
34.98.64.218200 OK 43 B URL HTTP/2 us-u.openx.net/w/1.0/sd?id=537114372&val=pa_6vnuZkugkooAKrEYx
IP 34.98.64.218:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /w/1.0/sd?id=537114372&val=pa_6vnuZkugkooAKrEYx HTTP/1.1
Host: us-u.openx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rsgroup.asia/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept
server: OXGW/0.0.0
pragma: no-cache
p3p: CP="CUR ADM OUR NOR STA NID"
expires: Mon, 26 Jul 1997 05:00:00 GMT
date: Fri, 03 Feb 2023 02:18:39 GMT
content-type: image/gif
content-length: 43
cache-control: private, max-age=0, no-cache
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/58288/sync?uid=pa_6vnuZkugkooAKrEYx&_origin=1
3.126.56.137302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58288/sync?uid=pa_6vnuZkugkooAKrEYx&_origin=1
IP 3.126.56.137:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58288/sync?uid=pa_6vnuZkugkooAKrEYx&_origin=1 HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rsgroup.asia/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 03 Feb 2023 02:18:39 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58288/sync?uid=pa_6vnuZkugkooAKrEYx&_origin=1&verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBP9u3GMCELE5uAEyeISqwex8UQstE9wFEgEBAQHA3WPmYwAAAAAA_eMAAA&S=AQAAAmAKGd3bOwnIzSq3MsmqoLA; Expires=Sat, 3 Feb 2024 08:18:39 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
secure.adnxs.com/bounce?%2Fseg%3Ft%3D2%26add%3D5276277
37.252.171.84200 OK 43 B URL HTTP/1.1 secure.adnxs.com/bounce?%2Fseg%3Ft%3D2%26add%3D5276277
IP 37.252.171.84:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 592ebefc7104d681d57852665e9ad514
15cdf8df32aa251dd6dd590a60bf9cf74474e7c5
4b5b6b15c6255109e06720cce42a06d3aead8b7874423d9c52cb0303212c25ef
GET /bounce?%2Fseg%3Ft%3D2%26add%3D5276277 HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rsgroup.asia/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Fri, 03 Feb 2023 02:18:39 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: c02198a6-209b-4021-a66a-f59508400dfc
Set-Cookie: anj=dTM7k!M4/8CxrEQF']wIg2Illu_(vP!]tbP6j2F-XstGt!@E*s%%qVS; SameSite=None; Path=/; Max-Age=7776000; Expires=Thu, 04-May-2023 02:18:39 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1002.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
analytics.twitter.com/i/adsct?p_id=48571&p_user_id=pa_6vnuZkugkooAKrEYx
104.244.42.131200 OK 43 B URL HTTP/2 analytics.twitter.com/i/adsct?p_id=48571&p_user_id=pa_6vnuZkugkooAKrEYx
IP 104.244.42.131:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?p_id=48571&p_user_id=pa_6vnuZkugkooAKrEYx HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rsgroup.asia/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 03 Feb 2023 02:18:39 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_E1hOzSAdlGRPVotBX+01dw=="; Max-Age=63072000; Expires=Sun, 02 Feb 2025 02:18:39 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 98ec19ab57335ec3
strict-transport-security: max-age=631138519
x-response-time: 116
x-connection-hash: c9d6af9f47005b4e24818f35fc80364757db80459b72e2ce3d2c63a7f5e7921b
X-Firefox-Spdy: h2
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e35a92e1bb882de50b5b13ba45a97608
a4974aec326fc29b95fff08a006ce6e2757b511e
a82037d6020b7ab89af017b0eabbac9b431a6a97a9633af30b27f6f480800692
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4909
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 02:18:39 GMT
Last-Modified: Fri, 03 Feb 2023 00:56:50 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
pixel-geo.prfct.co/cb?partnerId=goo&google_error=3
34.243.222.134200 OK 43 B URL HTTP/1.1 pixel-geo.prfct.co/cb?partnerId=goo&google_error=3
IP 34.243.222.134:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /cb?partnerId=goo&google_error=3 HTTP/1.1
Host: pixel-geo.prfct.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rsgroup.asia/
Connection: keep-alive
Cookie: pa_uid=pa_6vnuZkugkooAKrEYx; pa_twitter_ts=1675390719412; pa_openx_ts=1675390719448; pa_rubicon_ts=1675390719522; pa_yahoo_ts=1675390719528; pa_google_ts=1675390719536
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache, private
Content-Type: image/gif
P3P: CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
Set-Cookie: pa_uid=pa_6vnuZkugkooAKrEYx; Max-Age=63072000; Domain=.prfct.co; Path=/; SameSite=None; Secure;
pa_google_ts=0; Max-Age=63072000; Domain=.prfct.co; Path=/; SameSite=None; Secure;
Content-Length: 43
Connection: keep-alive
ups.analytics.yahoo.com/ups/58288/sync?uid=pa_6vnuZkugkooAKrEYx&_origin=1&verify=true
3.126.56.137204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58288/sync?uid=pa_6vnuZkugkooAKrEYx&_origin=1&verify=true
IP 3.126.56.137:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58288/sync?uid=pa_6vnuZkugkooAKrEYx&_origin=1&verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rsgroup.asia/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Fri, 03 Feb 2023 02:18:39 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBP9u3GMCECgPIilGqurd1dLMhbLWmZUFEgEBAQHA3WPmYwAAAAAA_eMAAA&S=AQAAAgpM9wVyhJ_u-V1FpPwOuV4; Expires=Sat, 3 Feb 2024 08:18:39 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4815d6c9dac8985229fceea388fadc0f
6b0cbd1759b89f68ef46a41e45db7bda5886ee84
dc2946fb1cd23ccdcac42e0d68740942849df5cd45857a47b2168d563a790afb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2069
Cache-Control: max-age=170569
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 02:18:39 GMT
Etag: "63dc5e33-1d7"
Expires: Sun, 05 Feb 2023 01:41:28 GMT
Last-Modified: Fri, 03 Feb 2023 01:06:59 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
pixel.rubiconproject.com/tap.php?v=189868&nid=4106&expires=30&put=pa_6vnuZkugkooAKrEYx
69.173.144.138204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=189868&nid=4106&expires=30&put=pa_6vnuZkugkooAKrEYx
IP 69.173.144.138:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tap.php?v=189868&nid=4106&expires=30&put=pa_6vnuZkugkooAKrEYx HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.rsgroup.asia/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: f5982f4f9cc79eb2b489dda8b92e3144
Content-Type: image/gif
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d4041f3b5316bc84c9e6d88ddbc85b89
4978a4a20836b6f5d863d331bcedad782b7b4ac6
549b62d2c4ec965b8bec62010c0ce338dfea7992ee83eb7af61ff1a30d21f8b5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 5641
x-amzn-requestid: b53b54b1-3b00-47cf-a25c-e93910c2ebfb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fuvzpHsXoAMFsuw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dc2ce3-0c4fc8154763febb44460ac2;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 21:36:36 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: x4-BZdG4JGRKCSdKynnuweZfo9l0XZtDB-MiANy7C2Yz1URYMHP4sQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:57:49 GMT
age: 15654
etag: "4978a4a20836b6f5d863d331bcedad782b7b4ac6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.rsgroup.asia/wp-content/cache/wpfc-minified/dhcxolks/653cd.css
116.251.204.85200 OK 0 B URL HTTP/2 www.rsgroup.asia/wp-content/cache/wpfc-minified/dhcxolks/653cd.css
IP 116.251.204.85:0
GET /wp-content/cache/wpfc-minified/dhcxolks/653cd.css HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Fri, 28 Jan 2022 06:04:19 GMT
etag: "11aa6e-5d69e34a3f4ff-gzip"
accept-ranges: bytes
content-encoding: gzip
content-type: text/css
date: Fri, 03 Feb 2023 02:18:35 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Merriweather:400%7CRaleway:900&display=swap
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Merriweather:400%7CRaleway:900&display=swap
IP 142.250.74.74:0
GET /css?family=Merriweather:400%7CRaleway:900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 03 Feb 2023 02:18:36 GMT
date: Fri, 03 Feb 2023 02:18:36 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.rsgroup.asia/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.12
116.251.204.85200 OK 0 B URL HTTP/2 www.rsgroup.asia/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.12
IP 116.251.204.85:0
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.12 HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Thu, 06 Jan 2022 05:02:30 GMT
etag: "5de08-5d4e2c708bd00-gzip"
accept-ranges: bytes
content-encoding: gzip
content-type: application/javascript
date: Fri, 03 Feb 2023 02:18:36 GMT
server: Apache
X-Firefox-Spdy: h2
www.rsgroup.asia/wp-content/uploads/2016/05/Homepage-video-loop_720p_reducedsize.mp4
116.251.204.85206 Partial Content 0 B URL HTTP/2 www.rsgroup.asia/wp-content/uploads/2016/05/Homepage-video-loop_720p_reducedsize.mp4
IP 116.251.204.85:0
GET /wp-content/uploads/2016/05/Homepage-video-loop_720p_reducedsize.mp4 HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 206 Partial Content
last-modified: Mon, 23 May 2016 08:46:19 GMT
etag: "615c73-5337e79634cc0"
accept-ranges: bytes
content-length: 6380659
vary: User-Agent
content-range: bytes 0-6380658/6380659
content-type: video/mp4
date: Fri, 03 Feb 2023 02:18:37 GMT
server: Apache
X-Firefox-Spdy: h2
www.rsgroup.asia/wp-content/themes/dfd-ronneby/assets/js_pub/compresed.min.js
116.251.204.85200 OK 0 B URL HTTP/2 www.rsgroup.asia/wp-content/themes/dfd-ronneby/assets/js_pub/compresed.min.js
IP 116.251.204.85:0
GET /wp-content/themes/dfd-ronneby/assets/js_pub/compresed.min.js HTTP/1.1
Host: www.rsgroup.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.rsgroup.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding,User-Agent
last-modified: Tue, 04 Jan 2022 12:28:39 GMT
etag: "61104-5d4c0c6e4d699-gzip"
accept-ranges: bytes
content-encoding: gzip
content-type: application/javascript
date: Fri, 03 Feb 2023 02:18:36 GMT
server: Apache
X-Firefox-Spdy: h2