| www.geg.asia/ | 34.117.168.233 | 301 Moved Permanently | 0 B |
IP34.117.168.233:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS | Severity | Alert | suricata | medium | ET INFO HTTP Request to a *.asia domain |
GET / HTTP/1.1
Host: www.geg.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 02 Feb 2023 03:47:18 GMT
Content-Length: 0
location: https://www.geg.asia/
strict-transport-security: max-age=3600
x-wix-request-id: 1675309638.56258350288932317
Age: 0
X-Seen-By: GXNXSWFXisshliUcwO20NXdyD4zpCpFzpCPkLds0yMfQ2HhMVEri37Sb7Imry/mc,qquldgcFrj2n046g4RNSVBKUaXHrucSLmP/C0nqrtU9YgeUJqUXtid+86vZww+nL,2d58ifebGbosy5xc+FRalu8AWkDp0cbNPf3aXV/FsYqai8aRp+od/bHxvYOE2iSh3QpI/ucnHvfrUjeESIoVegCbAps4KaIqwjbKn+8+3Ng=,2UNV7KOq4oGjA5+PKsX47PeE4JkJeK48Oko5cEfOjJRYgeUJqUXtid+86vZww+nL,7npGRUZHWOtWoP0Si3wDp2QE8n/PWz6bBg+JTi5dlqE=,xTu8fpDe3EKPsMR1jrheECv0KB2FrMOWUy68k01tJoM=,QCwmNx1TNUYLIqEqVA58OFMwaYEV8zMMz75/hABtf5hHIN6Ufvm1M2lUKqPd6R3AWIHlCalF7YnfvOr2cMPpyw==
Cache-Control: no-cache
server-timing: cache;desc=miss, varnish;desc=miss, dc;desc=eun1_g
X-Content-Type-Options: nosniff
Server: Pepyaka/1.19.10
Via: 1.1 google
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashe935ea42be4feaed61a824b0b903913e f966cfa80d65a805cb9d7c6a53b3340865d7c51a eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7117
Expires: Thu, 02 Feb 2023 05:45:55 GMT
Date: Thu, 02 Feb 2023 03:47:18 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash7e05c8461bd2dc5a149f71e2c465ea29 705983959c887e243cb55a8a1796757b579ee977 4d9ea085d5dda9dabed11af9847c2b0aa6182358673b356a4e2bd631e22a9922
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D9EA085D5DDA9DABED11AF9847C2B0AA6182358673B356A4E2BD631E22A9922"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6600
Expires: Thu, 02 Feb 2023 05:37:18 GMT
Date: Thu, 02 Feb 2023 03:47:18 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash9a76feabb767086ae0fa54e0ffbf763f 3655d78994a1e9838340669462728b67c8c12e54 bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18309
Expires: Thu, 02 Feb 2023 08:52:27 GMT
Date: Thu, 02 Feb 2023 03:47:18 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash30db107dcf4380cef05efea409c2e6a3 96e6a306fbc07299aba64e5c14e2bfca35872fa9 b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 02 Feb 2023 03:43:28 GMT
content-type: application/json
age: 230
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash7b922915ebf1fa3639b333f994c74f24 144a3f80b98fd0652d4614f24cf6cbbee40f8938 adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: rlwG4cXAjZ7NLQcsJe5EphKaH+Mxt9/4MEdt/OC9jQgmJnnipNhnXcbS0Xj8tcEcP4FkLdkh7cQ=
x-amz-request-id: SCR7CJ973ZSFT4MY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 02 Feb 2023 02:51:48 GMT
age: 3330
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 03:47:18 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash16ee2ea05296b2aee1d4587e3264ee33 6bb2d110d938cf622b48fc8558885df49c8f233f 0705766536b9111e86f6c77ccef05f07f35484bb5477038500986bad02df4250
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0705766536B9111E86F6C77CCEF05F07F35484BB5477038500986BAD02DF4250"
Last-Modified: Tue, 31 Jan 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 02 Feb 2023 09:47:19 GMT
Date: Thu, 02 Feb 2023 03:47:19 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash16ee2ea05296b2aee1d4587e3264ee33 6bb2d110d938cf622b48fc8558885df49c8f233f 0705766536b9111e86f6c77ccef05f07f35484bb5477038500986bad02df4250
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0705766536B9111E86F6C77CCEF05F07F35484BB5477038500986BAD02DF4250"
Last-Modified: Tue, 31 Jan 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 02 Feb 2023 09:47:19 GMT
Date: Thu, 02 Feb 2023 03:47:19 GMT
Connection: keep-alive
|
|
| static.parastorage.com/unpkg/react-dom@16.14.0/umd/react-dom.production.min.js | 151.101.193.91 | 200 OK | 36 kB |
URL HTTP/2static.parastorage.com/unpkg/react-dom@16.14.0/umd/react-dom.production.min.js IP151.101.193.91:0
File typeASCII text, with very long lines (682) Hashc88aca3ce8fd7ec85ff55d835e476dcc 66f5f5ddcff30e3b7425ca4995c27ab19fee025f c2c5ce710d0420daa825ffff8ade4628c84ab0dad9c066d356e91c47f5dec485
GET /unpkg/react-dom@16.14.0/umd/react-dom.production.min.js HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.geg.asia
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
access-control-max-age: 3000
last-modified: Thu, 15 Oct 2020 02:11:22 GMT
etag: W/"c5abc87541fe6bb0f43f22af475a8b20"
access-control-allow-methods: GET, GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
via: 1.1 varnish (Varnish/6.0), 1.1 varnish
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrcjBLy8P45DoDO4LnRm+zqsP,aVxMblM8KFG3we5NLvyVc7eNHvhCRAbD7EPjVZvQO20fbJaKSXYQ/lskq2jK6SGP
cache-control: public, max-age=7776000, immutable
server: Pepyaka/1.19.10
x-wix-request-id: 1664850078.709982629939212470
accept-ranges: bytes
date: Thu, 02 Feb 2023 03:47:19 GMT
age: 2803970
x-served-by: cache-bma1660-BMA
x-cache: HIT
x-cache-hits: 1104
x-timer: S1675309639.273567,VS0,VE0
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 36048
X-Firefox-Spdy: h2
|
|
| static.parastorage.com/services/wix-perf-measure/1.1051.0/wix-perf-measure.umd.min.js | 151.101.193.91 | 200 OK | 11 kB |
URL HTTP/2static.parastorage.com/services/wix-perf-measure/1.1051.0/wix-perf-measure.umd.min.js IP151.101.193.91:0
File typeASCII text, with very long lines (28487) Hashc40dc701562be616202806c6e3506e17 5573ed5aeed9388b31c01b82a2cfc96f5063e166 abc28c66fb78bfe2ae66dfbe2b51a7cf1bbf9e2a8b7977ee0a830f2deb32651b
GET /services/wix-perf-measure/1.1051.0/wix-perf-measure.umd.min.js HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
x-amz-replication-status: COMPLETED
last-modified: Sun, 01 Jan 2023 11:26:37 GMT
etag: W/"1a43b92000b13afb468cf1e405fa25db"
x-amz-version-id: 659cd95GUOVBSbkFTy1fNrG_JGwqEnff
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
via: 1.1 varnish (Varnish/6.0), 1.1 varnish
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrcjEM4kaaS6QH/itsJwI9pla,aVxMblM8KFG3we5NLvyVcyeTzFUhjLKPB6lD0luXXHcfbJaKSXYQ/lskq2jK6SGP
cache-control: public, max-age=7776000, immutable
server: Pepyaka/1.19.10
x-wix-request-id: 1672659090.27553516306311125193
accept-ranges: bytes
date: Thu, 02 Feb 2023 03:47:19 GMT
age: 2737014
x-served-by: cache-bma1680-BMA
x-cache: HIT
x-cache-hits: 1050
x-timer: S1675309639.274082,VS0,VE0
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 10915
X-Firefox-Spdy: h2
|
|
| static.parastorage.com/tag-bundler/api/v1/fonts-cache/googlefont/woff2/s/worksans/v3/u_mYNr_qYP37m7vgvmIYZxUOjZSKWg4xBWp_C_qQx0o.woff2 | 151.101.193.91 | 200 OK | 28 kB |
URL HTTP/2static.parastorage.com/tag-bundler/api/v1/fonts-cache/googlefont/woff2/s/worksans/v3/u_mYNr_qYP37m7vgvmIYZxUOjZSKWg4xBWp_C_qQx0o.woff2 IP151.101.193.91:0
File typeWeb Open Font Format (Version 2), TrueType, length 27888, version 1.0\012- data Hashf3f710f181ea1983faa7e8a884544114 dc9aa90f2e54d592144bf654d68c6f11a51c1e7e f473a8e8cb109bf35b3138929e5abb1fd488ce53d6ab3a312ba229972fd35acc
GET /tag-bundler/api/v1/fonts-cache/googlefont/woff2/s/worksans/v3/u_mYNr_qYP37m7vgvmIYZxUOjZSKWg4xBWp_C_qQx0o.woff2 HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.geg.asia
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: font/woff2
pragma: no-cache
x-envoy-upstream-service-time: 19
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
via: 1.1 varnish (Varnish/6.0), 1.1 varnish
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrchkavE0ZtMXws1mfakihq4B,aVxMblM8KFG3we5NLvyVc1XEV11U4uj6EySGMcOeW2gfbJaKSXYQ/lskq2jK6SGP
cache-control: public, max-age=7776000
server: Pepyaka/1.19.0
x-wix-request-id: 1674030595.6529512672821230016
accept-ranges: bytes
date: Thu, 02 Feb 2023 03:47:19 GMT
age: 1281520
x-served-by: cache-bma1660-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1675309639.273650,VS0,VE1
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 27888
X-Firefox-Spdy: h2
|
|
| static.parastorage.com/tag-bundler/api/v1/fonts-cache/googlefont/woff2/s/barlow/v1/51v0xj5VPw1cLYHNhfd8NFtXRa8TVwTICgirnJhmVJw.woff2 | 151.101.193.91 | 200 OK | 24 kB |
URL HTTP/2static.parastorage.com/tag-bundler/api/v1/fonts-cache/googlefont/woff2/s/barlow/v1/51v0xj5VPw1cLYHNhfd8NFtXRa8TVwTICgirnJhmVJw.woff2 IP151.101.193.91:0
File typeWeb Open Font Format (Version 2), TrueType, length 23456, version 1.0\012- data Hash2e7bb3841946bbb7ee1a0ec72937c6d5 49297c9aaa55e05ca0130b9594f756105788d77b 891868103f6fa64d35447ff2c2089f5efcd8b3157ea459156c3046ff30e705ce
GET /tag-bundler/api/v1/fonts-cache/googlefont/woff2/s/barlow/v1/51v0xj5VPw1cLYHNhfd8NFtXRa8TVwTICgirnJhmVJw.woff2 HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.geg.asia
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: font/woff2
pragma: no-cache
x-envoy-upstream-service-time: 21
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
via: 1.1 varnish (Varnish/6.0), 1.1 varnish
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrciDgmy1x1bk0T2mMblm59aj,aVxMblM8KFG3we5NLvyVc7eNHvhCRAbD7EPjVZvQO20fbJaKSXYQ/lskq2jK6SGP
cache-control: public, max-age=7776000
server: Pepyaka/1.19.10
x-wix-request-id: 1674029955.0969367976081623349
accept-ranges: bytes
date: Thu, 02 Feb 2023 03:47:19 GMT
age: 1281571
x-served-by: cache-bma1660-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1675309639.284021,VS0,VE1
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 23456
X-Firefox-Spdy: h2
|
|
| static.parastorage.com/services/tag-manager-client/1.705.0/siteTags.bundle.min.js | 151.101.193.91 | 200 OK | 3.1 kB |
URL HTTP/2static.parastorage.com/services/tag-manager-client/1.705.0/siteTags.bundle.min.js IP151.101.193.91:0
File typeASCII text, with very long lines (7849) Hash4b6098bb7a5117dc2d4f7f3cd878ce02 32c87e5fafae4aa5000662e8cc4590e4b86a12b2 ded04e66730230757b89ecab062e82862b63c49cfcb5c410f957474933f54716
GET /services/tag-manager-client/1.705.0/siteTags.bundle.min.js HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
x-amz-replication-status: COMPLETED
last-modified: Wed, 28 Dec 2022 13:39:32 GMT
etag: W/"82ef8cd522818464cafdf4bf58ab1ffa"
x-amz-version-id: tMdd3gNZg3QA3O.jbnMbXDc0pFPNujsf
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
via: 1.1 varnish (Varnish/6.0), 1.1 varnish
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrcjBLy8P45DoDO4LnRm+zqsP,aVxMblM8KFG3we5NLvyVcyeTzFUhjLKPB6lD0luXXHcfbJaKSXYQ/lskq2jK6SGP
cache-control: public, max-age=7776000, immutable
server: Pepyaka/1.19.10
x-wix-request-id: 1672235590.47347680320642020942
accept-ranges: bytes
date: Thu, 02 Feb 2023 03:47:19 GMT
age: 3074054
x-served-by: cache-bma1680-BMA
x-cache: HIT
x-cache-hits: 1038
x-timer: S1675309639.292102,VS0,VE0
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 3092
X-Firefox-Spdy: h2
|
|
| static.parastorage.com/services/third-party/fonts/user-site-fonts/fonts/0078f486-8e52-42c0-ad81-3c8d3d43f48e.woff2 | 151.101.193.91 | 200 OK | 17 kB |
URL HTTP/2static.parastorage.com/services/third-party/fonts/user-site-fonts/fonts/0078f486-8e52-42c0-ad81-3c8d3d43f48e.woff2 IP151.101.193.91:0
File typeWeb Open Font Format (Version 2), TrueType, length 17216, version 1.0\012- data Hashfc02a3c78cac0f6ab99c6c19f004d02d 7bcc73042c63c86637084549daad26aed3621d64 0ddce0e617794fd30b60e5c829fe12b9d7eeba14e561e7d89da5fcaf2fe900c3
GET /services/third-party/fonts/user-site-fonts/fonts/0078f486-8e52-42c0-ad81-3c8d3d43f48e.woff2 HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.geg.asia
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
access-control-max-age: 3000
last-modified: Tue, 17 Apr 2018 11:11:01 GMT
etag: "ef4257ccfa0fce4d914b23a28aa6fdf4-1"
x-amz-version-id: ZJhEgw5338rDGW18OcyggGHIv4bi5qCO
access-control-allow-methods: GET, GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
via: 1.1 varnish (Varnish/6.0), 1.1 varnish
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrcjV0TBmJ+uLPQ4OZPC1VSMH,aVxMblM8KFG3we5NLvyVc1XEV11U4uj6EySGMcOeW2gfbJaKSXYQ/lskq2jK6SGP
cache-control: public, max-age=7776000, immutable
server: Pepyaka/1.19.0
x-wix-request-id: 1666061044.834287344356527090
accept-ranges: bytes
date: Thu, 02 Feb 2023 03:47:19 GMT
age: 1621479
x-served-by: cache-bma1660-BMA
x-cache: HIT
x-cache-hits: 495
x-timer: S1675309639.286272,VS0,VE0
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 17216
X-Firefox-Spdy: h2
|
|
| static.parastorage.com/tag-bundler/api/v1/fonts-cache/googlefont/woff2/s/worksans/v3/FD_Udbezj8EHXbdsqLUplxUOjZSKWg4xBWp_C_qQx0o.woff2 | 151.101.193.91 | 200 OK | 29 kB |
URL HTTP/2static.parastorage.com/tag-bundler/api/v1/fonts-cache/googlefont/woff2/s/worksans/v3/FD_Udbezj8EHXbdsqLUplxUOjZSKWg4xBWp_C_qQx0o.woff2 IP151.101.193.91:0
File typeWeb Open Font Format (Version 2), TrueType, length 28664, version 1.0\012- data Hashdef163acd28eedc05d4360414ec512c2 ec438bfa4e4dad43e5d1c9424ea2508574676506 055f76708fb4f4c8e275b57a70f66e7a86b5f36f7e59033624d867b5e425ca35
GET /tag-bundler/api/v1/fonts-cache/googlefont/woff2/s/worksans/v3/FD_Udbezj8EHXbdsqLUplxUOjZSKWg4xBWp_C_qQx0o.woff2 HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.geg.asia
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: font/woff2
pragma: no-cache
x-envoy-upstream-service-time: 20
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
via: 1.1 varnish (Varnish/6.0), 1.1 varnish
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrcjBLy8P45DoDO4LnRm+zqsP,aVxMblM8KFG3we5NLvyVcyeTzFUhjLKPB6lD0luXXHcfbJaKSXYQ/lskq2jK6SGP
cache-control: public, max-age=7776000
server: Pepyaka/1.19.10
x-wix-request-id: 1674033712.356971617213215066
accept-ranges: bytes
date: Thu, 02 Feb 2023 03:47:19 GMT
age: 1348543
x-served-by: cache-bma1660-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1675309639.294414,VS0,VE1
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 28664
X-Firefox-Spdy: h2
|
|
| static.parastorage.com/unpkg/lodash@4.17.21/lodash.min.js | 151.101.193.91 | 200 OK | 25 kB |
URL HTTP/2static.parastorage.com/unpkg/lodash@4.17.21/lodash.min.js IP151.101.193.91:0
File typeASCII text, with very long lines (4143) Hash9661f391f69ddbf1e8bbf879c1c69660 60e78567cd82d5dec158be4ae4d365f45412fb36 59fe3fa5daacb2b18c734a563d4e8e9df1f51eb24672249ca4962f3132149191
GET /unpkg/lodash@4.17.21/lodash.min.js HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sun, 21 Feb 2021 02:37:42 GMT
etag: W/"9becc40fb1d85d21d0ca38e2f7069511"
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
via: 1.1 varnish (Varnish/6.0), 1.1 varnish
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrcjMXxQm1EY0IGoQ+Aul+AXR,aVxMblM8KFG3we5NLvyVc5a79avpR2DZCk9xnuoLql1jPZTuGyYqVhtmEIgJUb4w
cache-control: public, max-age=7776000, immutable
server: Pepyaka/1.19.10
x-wix-request-id: 1661228868.541712333382513129
accept-ranges: bytes
date: Thu, 02 Feb 2023 03:47:19 GMT
age: 6441901
x-served-by: cache-bma1680-BMA
x-cache: HIT
x-cache-hits: 1328
x-timer: S1675309639.297212,VS0,VE0
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 25102
X-Firefox-Spdy: h2
|
|
| static.parastorage.com/unpkg/react@16.14.0/umd/react.production.min.js | 151.101.193.91 | 200 OK | 4.7 kB |
URL HTTP/2static.parastorage.com/unpkg/react@16.14.0/umd/react.production.min.js IP151.101.193.91:0
File typeASCII text, with very long lines (574) Hash98af04861581703b8f33819f777e19f5 68333056e788b1276646537149661537143ddc8a 9b4dce05c51788fcb566e1b8bbfc8f9df48249035b9d2cb8633011b7bd26c5dc
GET /unpkg/react@16.14.0/umd/react.production.min.js HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.geg.asia
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
access-control-max-age: 3000
last-modified: Thu, 15 Oct 2020 02:11:22 GMT
etag: W/"63d498e143f421cc44dfb64f22fef270"
access-control-allow-methods: GET, GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
via: 1.1 varnish (Varnish/6.0), 1.1 varnish
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrciexeHcfy36aNagyZbZBL0eWIHlCalF7YnfvOr2cMPpyw==,aVxMblM8KFG3we5NLvyVc0g5Kz7nWLaChx0hkFXPsQ8ghGES6Jsix+7j8qfOfk1L
cache-control: public, max-age=7776000, immutable
server: Pepyaka/1.19.10
x-wix-request-id: 1660710573.6746456715006120999
accept-ranges: bytes
date: Thu, 02 Feb 2023 03:47:19 GMT
age: 6970938
x-served-by: cache-bma1660-BMA
x-cache: HIT
x-cache-hits: 1065
x-timer: S1675309639.301319,VS0,VE0
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 4703
X-Firefox-Spdy: h2
|
|
| static.parastorage.com/services/wix-thunderbolt/dist/thunderbolt-commons.0d644ce9.bundle.min.js | 151.101.193.91 | 200 OK | 24 kB |
URL HTTP/2static.parastorage.com/services/wix-thunderbolt/dist/thunderbolt-commons.0d644ce9.bundle.min.js IP151.101.193.91:0
File typeASCII text, with very long lines (65536), with no line terminators Hash4cf91d2dc90b56aa368d3fe8e5d90bd0 5b4e523db9dd8eb4a09aaa16b12c0af91cf0c516 98ae89b77fb0a4ac6158d773d994327d081b54c7460aec3e960100823353216f
GET /services/wix-thunderbolt/dist/thunderbolt-commons.0d644ce9.bundle.min.js HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
x-amz-replication-status: COMPLETED
last-modified: Wed, 01 Feb 2023 07:32:57 GMT
etag: W/"819da0cb45aa1b0919b65a26f11caf0d"
x-amz-version-id: H8R3kZeyoBU3bISw9ddV4oKTTx2u0mqe
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
via: 1.1 varnish (Varnish/6.0), 1.1 varnish
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrcjBLy8P45DoDO4LnRm+zqsP,aVxMblM8KFG3we5NLvyVc0Sqk9+MZwtm2RdjD28LmUcQXT2AyjWfyxKagyd4/pDD
cache-control: public, max-age=7776000, immutable
server: Pepyaka/1.19.10
x-wix-request-id: 1675237328.5752151697964715066
accept-ranges: bytes
date: Thu, 02 Feb 2023 03:47:19 GMT
age: 72578
x-served-by: cache-bma1680-BMA
x-cache: HIT
x-cache-hits: 761
x-timer: S1675309639.304904,VS0,VE0
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 24037
X-Firefox-Spdy: h2
|
|
| static.parastorage.com/services/third-party/fonts/user-site-fonts/fonts/bc176270-17fa-4c78-a343-9fe52824e501.woff | 151.101.193.91 | 200 OK | 30 kB |
URL HTTP/2static.parastorage.com/services/third-party/fonts/user-site-fonts/fonts/bc176270-17fa-4c78-a343-9fe52824e501.woff IP151.101.193.91:0
File typeWeb Open Font Format, TrueType, length 30192, version 1.0\012- data Hash4dc77f0ff1474412272ba230b085d035 e2558f88d8f2878b4a5510967d107223b6c29bd1 c629b3ce163a14df3b642f01044a989647ebbdb0f7d5d1d95783bdce89a8a666
GET /services/third-party/fonts/user-site-fonts/fonts/bc176270-17fa-4c78-a343-9fe52824e501.woff HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.geg.asia
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/x-font-woff
last-modified: Tue, 17 Apr 2018 11:10:52 GMT
etag: "08f04fa3c9ecd2d0608ad6ae9f4416eb-1"
x-amz-version-id: SrI8Ume8vDgKKgLFS9l.Y3rzDdxM77DG
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
via: 1.1 varnish (Varnish/6.0), 1.1 varnish
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrciDgmy1x1bk0T2mMblm59aj,aVxMblM8KFG3we5NLvyVcyeTzFUhjLKPB6lD0luXXHcfbJaKSXYQ/lskq2jK6SGP
cache-control: public, max-age=7776000, immutable
server: Pepyaka/1.19.10
x-wix-request-id: 1674608858.0001678566173123350
accept-ranges: bytes
date: Thu, 02 Feb 2023 03:47:19 GMT
age: 846826
x-served-by: cache-bma1660-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1675309639.301232,VS0,VE1
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 30192
X-Firefox-Spdy: h2
|
|
| ocsp.sectigo.com/ | 104.18.32.68 | 200 OK | 471 B |
IP104.18.32.68:0
Hashafdb8fd1062dabad7fc67a2504b5b4d8 96bf94d306a383e860f772e5c806c98b9c98e35d 10f03d7e07ac7e13bff1d530ed7f1a9884f2e067bdb452df4142b226687a8fa3
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 03:47:19 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 20:16:26 GMT
Expires: Tue, 07 Feb 2023 20:16:25 GMT
Etag: "96bf94d306a383e860f772e5c806c98b9c98e35d"
Cache-Control: max-age=490745,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792ff1de58e80b41-OSL
|
|
| ocsp.sectigo.com/ | 104.18.32.68 | 200 OK | 471 B |
IP104.18.32.68:0
Hashafdb8fd1062dabad7fc67a2504b5b4d8 96bf94d306a383e860f772e5c806c98b9c98e35d 10f03d7e07ac7e13bff1d530ed7f1a9884f2e067bdb452df4142b226687a8fa3
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 03:47:19 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 20:16:26 GMT
Expires: Tue, 07 Feb 2023 20:16:25 GMT
Etag: "96bf94d306a383e860f772e5c806c98b9c98e35d"
Cache-Control: max-age=490745,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792ff1de9c340b49-OSL
|
|
| ocsp.sectigo.com/ | 104.18.32.68 | 200 OK | 471 B |
IP104.18.32.68:0
Hashafdb8fd1062dabad7fc67a2504b5b4d8 96bf94d306a383e860f772e5c806c98b9c98e35d 10f03d7e07ac7e13bff1d530ed7f1a9884f2e067bdb452df4142b226687a8fa3
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 03:47:19 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 20:16:26 GMT
Expires: Tue, 07 Feb 2023 20:16:25 GMT
Etag: "96bf94d306a383e860f772e5c806c98b9c98e35d"
Cache-Control: max-age=490745,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792ff1de98f30b41-OSL
|
|
| static.parastorage.com/services/wix-thunderbolt/dist/thunderbolt-components-registry.83e61f75.chunk.min.js | 151.101.193.91 | 200 OK | 8.9 kB |
URL HTTP/2static.parastorage.com/services/wix-thunderbolt/dist/thunderbolt-components-registry.83e61f75.chunk.min.js IP151.101.193.91:0
File typeASCII text, with very long lines (29952) Hash02537e6d273cda09d3e9e82ed93ad8f2 4a4677c085a912bb3c0c31ccaa8941cc7a5c9e7e 3128a15e25f35ee50a9ff11f1e1955b82bd8da2872e405a1561d8b58f0ad4d0c
GET /services/wix-thunderbolt/dist/thunderbolt-components-registry.83e61f75.chunk.min.js HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.geg.asia
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
x-amz-replication-status: COMPLETED
last-modified: Thu, 12 Jan 2023 07:27:54 GMT
etag: W/"70907ed6d12fe21fe280fdbfedb80690"
x-amz-version-id: t47dIRc_6VvcSStx5.LVr9l8hOFAHAhy
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
via: 1.1 varnish (Varnish/6.0), 1.1 varnish
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrcjBLy8P45DoDO4LnRm+zqsP,aVxMblM8KFG3we5NLvyVcyzve4L4qo9dv8TvlcgmZhMQXT2AyjWfyxKagyd4/pDD
cache-control: public, max-age=7776000, immutable
server: Pepyaka/1.19.10
x-wix-request-id: 1673509303.0432821146622416657
accept-ranges: bytes
date: Thu, 02 Feb 2023 03:47:19 GMT
age: 1800563
x-served-by: cache-bma1660-BMA
x-cache: HIT
x-cache-hits: 5906
x-timer: S1675309640.514062,VS0,VE0
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 8904
X-Firefox-Spdy: h2
|
|
| ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3 | 104.18.21.226 | 200 OK | 1.5 kB |
URL HTTP/1.1ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3 IP104.18.21.226:0
Hash4c4b333d51857ead9a0ffc033dd799ba 8ce8f0d5ad026ad98ec2a721cdff421350b94368 8a695871a1929c6f7f44f41eb7ad2cce53eb425643deb3f783ae7090a5e03c48
POST /ca/gsatlasr3dvtlsca2022q3 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 03:47:19 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "36AF051A9E05DC91E914A58FCCA60EF2E422BE1E"
Expires: Thu, 02 Feb 2023 15:00:00 GMT
Last-Modified: Thu, 02 Feb 2023 03:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1708
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792ff1defa540b61-OSL
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 02 Feb 2023 02:49:05 GMT
age: 3494
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.sectigo.com/ | 104.18.32.68 | 200 OK | 472 B |
IP104.18.32.68:0
Hash34cd0f73118e05dd27c91e3cfb24c591 138ced87b9a648222356184793fa9556e2127406 3e08061a9360c48a10a71b550e7699bbd94a52f50d51b4d3c61d10171143faab
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 03:47:19 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 29 Jan 2023 16:33:56 GMT
Expires: Sun, 05 Feb 2023 16:33:55 GMT
Etag: "138ced87b9a648222356184793fa9556e2127406"
Cache-Control: max-age=304595,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792ff1df0c490b49-OSL
|
|
| ocsp.sectigo.com/ | 104.18.32.68 | 200 OK | 472 B |
IP104.18.32.68:0
Hash34cd0f73118e05dd27c91e3cfb24c591 138ced87b9a648222356184793fa9556e2127406 3e08061a9360c48a10a71b550e7699bbd94a52f50d51b4d3c61d10171143faab
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 03:47:19 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 29 Jan 2023 16:33:56 GMT
Expires: Sun, 05 Feb 2023 16:33:55 GMT
Etag: "138ced87b9a648222356184793fa9556e2127406"
Cache-Control: max-age=304595,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792ff1df2dc30b31-OSL
|
|
| static.parastorage.com/services/wix-thunderbolt/dist/cyclicTabbing.4c277eb7.chunk.min.js | 151.101.193.91 | 200 OK | 319 B |
URL HTTP/2static.parastorage.com/services/wix-thunderbolt/dist/cyclicTabbing.4c277eb7.chunk.min.js IP151.101.193.91:0
File typeASCII text, with very long lines (396) Hashff496f3ec59d012320ad4076dc378bfa 2f360a7078aa41249c2112db8bffbbe65627f7aa b1e2df7f91fd155fd4ae45be56c7b01af01efad062d09620d63dacddd7712877
GET /services/wix-thunderbolt/dist/cyclicTabbing.4c277eb7.chunk.min.js HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.geg.asia
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
x-amz-replication-status: COMPLETED
last-modified: Mon, 30 Jan 2023 07:05:32 GMT
etag: W/"0ac0845fbcca521f72a7167458879930"
x-amz-version-id: C8JwqGTjmqBqBqOMU7njScFXEi.Xvqtt
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
via: 1.1 varnish (Varnish/6.0), 1.1 varnish
x-cache-status: MISS
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrchkavE0ZtMXws1mfakihq4B,aVxMblM8KFG3we5NLvyVc5U6nDV0Sthqh2jmVbYx0F4QXT2AyjWfyxKagyd4/pDD,2iuX5LYwvZa9CoGaG8ZUZomYmPgSwc4aU7J40H7VRoqy9LphKZkeqON0msQaPb8r
cache-control: public, max-age=7776000, immutable
server: Pepyaka/1.19.0
x-wix-request-id: 1675062422.46819850900602130016
accept-ranges: bytes
date: Thu, 02 Feb 2023 03:47:19 GMT
age: 247217
x-served-by: cache-bma1660-BMA
x-cache: HIT
x-cache-hits: 1013
x-timer: S1675309640.589796,VS0,VE0
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 319
X-Firefox-Spdy: h2
|
|
| static.parastorage.com/services/wix-thunderbolt/dist/group_8.54cc4318.chunk.min.js | 151.101.193.91 | 200 OK | 2.4 kB |
URL HTTP/2static.parastorage.com/services/wix-thunderbolt/dist/group_8.54cc4318.chunk.min.js IP151.101.193.91:0
File typeASCII text, with very long lines (4973) Hash5276483d9040a8683f848bd39ae07f84 79fe0ed2c24b1bf3f4d13c3df8118a76f8f73be3 3e8166de57f97ea936213dba04c47aca41b63e6f52a01c4c1e6f1f60fed5177c
GET /services/wix-thunderbolt/dist/group_8.54cc4318.chunk.min.js HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.geg.asia
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
x-amz-replication-status: COMPLETED
last-modified: Sun, 29 Jan 2023 10:15:01 GMT
etag: W/"45dcadbe6bcf3ab123c5c64963ed1abf"
x-amz-version-id: G0Gaci12fqUOwzqk8bJjc9mbtV5o2pUE
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
via: 1.1 varnish (Varnish/6.0), 1.1 varnish
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrciDgmy1x1bk0T2mMblm59aj,aVxMblM8KFG3we5NLvyVc1AtKGBpHBVRBa1WzqM3DuAfbJaKSXYQ/lskq2jK6SGP
cache-control: public, max-age=7776000, immutable
server: Pepyaka/1.19.10
x-wix-request-id: 1675141151.3532034293107123349
accept-ranges: bytes
date: Thu, 02 Feb 2023 03:47:19 GMT
age: 321720
x-served-by: cache-bma1660-BMA
x-cache: HIT
x-cache-hits: 507
x-timer: S1675309640.589771,VS0,VE0
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 2366
X-Firefox-Spdy: h2
|
|
| static.parastorage.com/services/wix-thunderbolt/dist/group_3.eb1c0221.chunk.min.js | 151.101.193.91 | 200 OK | 2.0 kB |
URL HTTP/2static.parastorage.com/services/wix-thunderbolt/dist/group_3.eb1c0221.chunk.min.js IP151.101.193.91:0
File typeASCII text, with very long lines (5062) Hash886178daac44233f22b2c7ac989b9f92 b2168c5952a4ab3d80a1dc561b925ce7bcf44c57 1fbc440de90cebb012bf6bc38b0760af98c0c8a97813cc9e6d780088abafaec1
GET /services/wix-thunderbolt/dist/group_3.eb1c0221.chunk.min.js HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.geg.asia
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
x-amz-replication-status: COMPLETED
last-modified: Mon, 30 Jan 2023 16:28:41 GMT
etag: W/"4d09bb5eb5550828e1444ecc4dfd9c51"
x-amz-version-id: XUnmTmqfXK328A4TMe0KQNaMUR9C3pZP
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
via: 1.1 varnish (Varnish/6.0), 1.1 varnish
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrcjV0TBmJ+uLPQ4OZPC1VSMH,aVxMblM8KFG3we5NLvyVc1XEV11U4uj6EySGMcOeW2gfbJaKSXYQ/lskq2jK6SGP
cache-control: public, max-age=7776000, immutable
server: Pepyaka/1.19.0
x-wix-request-id: 1675141151.353204236294818149
accept-ranges: bytes
date: Thu, 02 Feb 2023 03:47:19 GMT
age: 212565
x-served-by: cache-bma1660-BMA
x-cache: HIT
x-cache-hits: 344
x-timer: S1675309640.589748,VS0,VE0
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1991
X-Firefox-Spdy: h2
|
|
| static.parastorage.com/services/wix-thunderbolt/dist/group_29.8c6254a8.chunk.min.js | 151.101.193.91 | 200 OK | 848 B |
URL HTTP/2static.parastorage.com/services/wix-thunderbolt/dist/group_29.8c6254a8.chunk.min.js IP151.101.193.91:0
File typeASCII text, with very long lines (1708) Hashcb5a1701de49c1bb18b49c8742dbe634 db0383d856527bfc53079f6e24d2596c4ea8d8bf e05609dc66504be3f6f86021f11719034ae996359a4142b618afe3dd27b8d7dd
GET /services/wix-thunderbolt/dist/group_29.8c6254a8.chunk.min.js HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.geg.asia
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
x-amz-replication-status: COMPLETED
last-modified: Mon, 30 Jan 2023 07:05:58 GMT
etag: W/"69fa37d3761a6751aca70fef0c70f85b"
x-amz-version-id: gDs7Vja4kWi8k1Q5RJ1HM7.nV5nQdZqF
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
via: 1.1 varnish (Varnish/6.0), 1.1 varnish
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrcjBLy8P45DoDO4LnRm+zqsP,aVxMblM8KFG3we5NLvyVc7eNHvhCRAbD7EPjVZvQO20fbJaKSXYQ/lskq2jK6SGP
cache-control: public, max-age=7776000, immutable
server: Pepyaka/1.19.10
x-wix-request-id: 1675141151.1002083541961115066
accept-ranges: bytes
date: Thu, 02 Feb 2023 03:47:19 GMT
age: 247217
x-served-by: cache-bma1660-BMA
x-cache: HIT
x-cache-hits: 1010
x-timer: S1675309640.589817,VS0,VE0
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 848
X-Firefox-Spdy: h2
|
|
| static.parastorage.com/services/wix-thunderbolt/dist/group_2.ae715ca1.chunk.min.js | 151.101.193.91 | 200 OK | 72 kB |
URL HTTP/2static.parastorage.com/services/wix-thunderbolt/dist/group_2.ae715ca1.chunk.min.js IP151.101.193.91:0
File typeASCII text, with very long lines (51246) Hash505654ab1d0bac35065fff937aeda629 34b3719341cf8be7fb194b0603d28e97d5c72c26 3bceb364fa9615b64b6d1370ee1cf69e5ddedeae3eb328801f497eab6efb86dc
GET /services/wix-thunderbolt/dist/group_2.ae715ca1.chunk.min.js HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.geg.asia
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
x-amz-replication-status: COMPLETED
last-modified: Wed, 01 Feb 2023 07:33:00 GMT
etag: W/"01d0201b45912394c785b7f6dcdd657a"
x-amz-version-id: 4_GaVvfONnGSjbGg0KjJJ0ns0A0CR7_M
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
via: 1.1 varnish (Varnish/6.0), 1.1 varnish
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrciDgmy1x1bk0T2mMblm59aj,aVxMblM8KFG3we5NLvyVc0Sqk9+MZwtm2RdjD28LmUcQXT2AyjWfyxKagyd4/pDD
cache-control: public, max-age=7776000, immutable
server: Pepyaka/1.19.10
x-wix-request-id: 1675237331.8272102192903623349
accept-ranges: bytes
date: Thu, 02 Feb 2023 03:47:19 GMT
age: 72577
x-served-by: cache-bma1660-BMA
x-cache: HIT
x-cache-hits: 755
x-timer: S1675309640.589843,VS0,VE0
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 72180
X-Firefox-Spdy: h2
|
|
| static.parastorage.com/services/wix-thunderbolt/dist/group_17.6ef363a6.chunk.min.js | 151.101.193.91 | 200 OK | 926 B |
URL HTTP/2static.parastorage.com/services/wix-thunderbolt/dist/group_17.6ef363a6.chunk.min.js IP151.101.193.91:0
File typeASCII text, with very long lines (1495) Hash762a525348aac1f5129162766eb35d18 36defc4049c4c521bcf0a979d257ec7100b28303 7c22fc9c3863388944fc1358f5f2512222657c507ebf0f2c2b62bdd9645a9db7
GET /services/wix-thunderbolt/dist/group_17.6ef363a6.chunk.min.js HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.geg.asia
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
x-amz-replication-status: COMPLETED
last-modified: Tue, 24 Jan 2023 03:38:20 GMT
etag: W/"6d8983721fc5528904aaddefe601352c"
x-amz-version-id: gSqqX9qot1UVb1UXOU7fB05w0Tu2HVvQ
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
via: 1.1 varnish (Varnish/6.0), 1.1 varnish
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrchkavE0ZtMXws1mfakihq4B,aVxMblM8KFG3we5NLvyVcyzve4L4qo9dv8TvlcgmZhMQXT2AyjWfyxKagyd4/pDD
cache-control: public, max-age=7776000, immutable
server: Pepyaka/1.19.0
x-wix-request-id: 1674616574.9861706179115630016
accept-ranges: bytes
date: Thu, 02 Feb 2023 03:47:19 GMT
age: 777448
x-served-by: cache-bma1660-BMA
x-cache: HIT
x-cache-hits: 5
x-timer: S1675309640.591699,VS0,VE0
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 926
X-Firefox-Spdy: h2
|
|
| static.parastorage.com/services/wix-thunderbolt/dist/group_18.f5b08fc5.chunk.min.js | 151.101.193.91 | 200 OK | 20 kB |
URL HTTP/2static.parastorage.com/services/wix-thunderbolt/dist/group_18.f5b08fc5.chunk.min.js IP151.101.193.91:0
File typeASCII text, with very long lines (64563) Hashf9e79c39b3486741bd070d4eb513aae4 b8778a16d3852e8b9e11aadf6e6876a13760db65 e7a504fd1be79b3e69f90be2602a522ec406485d036a8609543865d233a686b8
GET /services/wix-thunderbolt/dist/group_18.f5b08fc5.chunk.min.js HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.geg.asia
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
x-amz-replication-status: COMPLETED
last-modified: Wed, 01 Feb 2023 07:32:56 GMT
etag: W/"3b7c040297665513e0859714152e3a07"
x-amz-version-id: ZOPqotXnNrlGYfzsdjRmPuLXDy_CT7Iz
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
via: 1.1 varnish (Varnish/6.0), 1.1 varnish
x-cache-status: HIT
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrcjEM4kaaS6QH/itsJwI9pla,aVxMblM8KFG3we5NLvyVc7eNHvhCRAbD7EPjVZvQO20fbJaKSXYQ/lskq2jK6SGP
cache-control: public, max-age=7776000, immutable
server: Pepyaka/1.19.10
x-wix-request-id: 1675237333.24921533417682319799
accept-ranges: bytes
date: Thu, 02 Feb 2023 03:47:19 GMT
age: 72577
x-served-by: cache-bma1660-BMA
x-cache: HIT
x-cache-hits: 680
x-timer: S1675309640.591821,VS0,VE0
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 20082
X-Firefox-Spdy: h2
|
|
| ocsp.sectigo.com/ | 104.18.32.68 | 200 OK | 471 B |
IP104.18.32.68:0
Hashafdb8fd1062dabad7fc67a2504b5b4d8 96bf94d306a383e860f772e5c806c98b9c98e35d 10f03d7e07ac7e13bff1d530ed7f1a9884f2e067bdb452df4142b226687a8fa3
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 03:47:19 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 20:16:26 GMT
Expires: Tue, 07 Feb 2023 20:16:25 GMT
Etag: "96bf94d306a383e860f772e5c806c98b9c98e35d"
Cache-Control: max-age=490745,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792ff1de7992b51d-OSL
|
|
| static.parastorage.com/services/wix-thunderbolt/dist/tpaCommons.3d58f891.chunk.min.js | 151.101.193.91 | 200 OK | 1.3 kB |
URL HTTP/2static.parastorage.com/services/wix-thunderbolt/dist/tpaCommons.3d58f891.chunk.min.js IP151.101.193.91:0
File typeASCII text, with very long lines (3251) Hash82f37fef8c9b354741bf53c02442fb5b eef330770b58549b9c6bdbcffa1ac02dfa5d811f 8f57601e1b4041de3e36e0e40653b469f0bf2379ee9a5ad8b2d17a3f2c5f6a59
GET /services/wix-thunderbolt/dist/tpaCommons.3d58f891.chunk.min.js HTTP/1.1
Host: static.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.geg.asia
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
x-amz-replication-status: COMPLETED
last-modified: Thu, 17 Nov 2022 08:15:25 GMT
etag: W/"7b45852dd491616e719dcce4d97e50b6"
x-amz-version-id: 9QrQpk68Qtxvg7oBjPHBLugDORjg8Xod
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: br
via: 1.1 varnish (Varnish/6.0), 1.1 varnish
x-cache-status: MISS
x-seen-by: zj0K/N8xR7eC1M9gyLLPhec8x6p2CWcEzwFyRVShrciDgmy1x1bk0T2mMblm59aj,aVxMblM8KFG3we5NLvyVcyeTzFUhjLKPB6lD0luXXHcfbJaKSXYQ/lskq2jK6SGP,2iuX5LYwvZa9CoGaG8ZUZsMbFSTOpUHonIrLzl1g5XyWCaVMiGm9aumipqrOi/up
cache-control: public, max-age=7776000, immutable
server: Pepyaka/1.19.10
x-wix-request-id: 1668672955.9346491965676723951
accept-ranges: bytes
date: Thu, 02 Feb 2023 03:47:19 GMT
age: 6636684
x-served-by: cache-bma1660-BMA
x-cache: HIT
x-cache-hits: 1003
x-timer: S1675309640.591926,VS0,VE0
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1331
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash8913af0be619500295008bb91f506660 a7b8068ba9aa506205a295b24458c2616997a0d1 6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4830
Expires: Thu, 02 Feb 2023 05:07:49 GMT
Date: Thu, 02 Feb 2023 03:47:19 GMT
Connection: keep-alive
|
|
| static.wixstatic.com/media/f61c7a3b4b4947b28511a25034973383.png/v1/fill/w_24,h_24,al_c,q_85,usm_0.66_1.00_0.01,enc_auto/f61c7a3b4b4947b28511a25034973383.png | 34.102.176.152 | 200 OK | 700 B |
URL HTTP/2static.wixstatic.com/media/f61c7a3b4b4947b28511a25034973383.png/v1/fill/w_24,h_24,al_c,q_85,usm_0.66_1.00_0.01,enc_auto/f61c7a3b4b4947b28511a25034973383.png IP34.102.176.152:0
File typeRIFF (little-endian) data, Web/P image\012- data Hash6562a08a565f1ceee0e275d9c0b74ffb dcffb3a245844a347ca47140c59e31efd3d6a61e dac7e556a0e8769e99ef0cc6f0ed4cc7bd8aa1fb5822a4d03b4cbffb85563cb4
GET /media/f61c7a3b4b4947b28511a25034973383.png/v1/fill/w_24,h_24,al_c,q_85,usm_0.66_1.00_0.01,enc_auto/f61c7a3b4b4947b28511a25034973383.png HTTP/1.1
Host: static.wixstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty/1.21.4.1
date: Thu, 02 Feb 2023 03:47:19 GMT
content-type: image/webp
content-length: 700
access-control-allow-origin: *
cache-control: public, max-age=15552000, immutable
vary: Accept
wix-tracer: 2LAMsNbDSa3mADgTAMa7jx1zOzW
x-seen-by: image-manipulator-5fdcdfd696-5pcgl
timing-allow-origin: *
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| frog.wix.com/bt?src=29&evid=3&viewer_name=thunderbolt&caching=hit,hit&dc=84µPop=eun1_g&et=1&event_name=Init&is_cached=true&is_platform_loaded=0&is_rollout=0&ism=1&isp=0&isjp=false&ita=1&msid=ba809566-b153-4b73-bbd2-f9c2f917d20e&pn=1&sessionId=cb8472c3-4bbb-4379-97ee-017fa81f82c0&siterev=636-__siteCacheRevision__&st=2&ts=48&tts=654&url=https%3A%2F%2Fwww.geg.asia%2F%3F&v=1.11662.0&vsi=14c11dbf-0c18-45cc-a6a9-fa3ab0836223&_brandId=wix | 3.208.11.48 | 204 No Content | 0 B |
URL HTTP/2frog.wix.com/bt?src=29&evid=3&viewer_name=thunderbolt&caching=hit,hit&dc=84µPop=eun1_g&et=1&event_name=Init&is_cached=true&is_platform_loaded=0&is_rollout=0&ism=1&isp=0&isjp=false&ita=1&msid=ba809566-b153-4b73-bbd2-f9c2f917d20e&pn=1&sessionId=cb8472c3-4bbb-4379-97ee-017fa81f82c0&siterev=636-__siteCacheRevision__&st=2&ts=48&tts=654&url=https%3A%2F%2Fwww.geg.asia%2F%3F&v=1.11662.0&vsi=14c11dbf-0c18-45cc-a6a9-fa3ab0836223&_brandId=wix IP3.208.11.48:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bt?src=29&evid=3&viewer_name=thunderbolt&caching=hit,hit&dc=84µPop=eun1_g&et=1&event_name=Init&is_cached=true&is_platform_loaded=0&is_rollout=0&ism=1&isp=0&isjp=false&ita=1&msid=ba809566-b153-4b73-bbd2-f9c2f917d20e&pn=1&sessionId=cb8472c3-4bbb-4379-97ee-017fa81f82c0&siterev=636-__siteCacheRevision__&st=2&ts=48&tts=654&url=https%3A%2F%2Fwww.geg.asia%2F%3F&v=1.11662.0&vsi=14c11dbf-0c18-45cc-a6a9-fa3ab0836223&_brandId=wix HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.geg.asia
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 03:47:19 GMT
server: nginx
access-control-allow-origin: https://www.geg.asia
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
|
|
| static.wixstatic.com/media/035244_881cbe4617f449cab844cb6a48b5fbeb~mv2_d_2475_2475_s_4_2.jpeg/v1/fill/w_81,h_81,al_c,q_80,usm_0.66_1.00_0.01,blur_2,enc_auto/035244_881cbe4617f449cab844cb6a48b5fbeb~mv2_d_2475_2475_s_4_2.jpeg | 34.102.176.152 | 200 OK | 1.6 kB |
URL HTTP/2static.wixstatic.com/media/035244_881cbe4617f449cab844cb6a48b5fbeb~mv2_d_2475_2475_s_4_2.jpeg/v1/fill/w_81,h_81,al_c,q_80,usm_0.66_1.00_0.01,blur_2,enc_auto/035244_881cbe4617f449cab844cb6a48b5fbeb~mv2_d_2475_2475_s_4_2.jpeg IP34.102.176.152:0
File typeRIFF (little-endian) data, Web/P image\012- data Hash5f5502ea2d054941d44f5c46ca095ee1 af93afa58a0d2caa0da73eb678f67d1ea2b96b60 d58238d47bb935750879a0fec0d8f02eeca6a2e7758c3524b3301b95731c02ed
GET /media/035244_881cbe4617f449cab844cb6a48b5fbeb~mv2_d_2475_2475_s_4_2.jpeg/v1/fill/w_81,h_81,al_c,q_80,usm_0.66_1.00_0.01,blur_2,enc_auto/035244_881cbe4617f449cab844cb6a48b5fbeb~mv2_d_2475_2475_s_4_2.jpeg HTTP/1.1
Host: static.wixstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty/1.21.4.1
date: Thu, 02 Feb 2023 03:47:19 GMT
content-type: image/webp
content-length: 1558
access-control-allow-origin: *
cache-control: public, max-age=15552000, immutable
vary: Accept
wix-tracer: 2LAMsNyCYHQg03cozNaceyCByE9
x-seen-by: image-manipulator-5fdcdfd696-v86f4
timing-allow-origin: *
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| frog.wix.com/bolt-performance?src=72&evid=21&appName=thunderbolt&is_rollout=0&is_sav_rollout=0&is_dac_rollout=0&dc=84µPop=eun1_g&is_cached=true&msid=ba809566-b153-4b73-bbd2-f9c2f917d20e&session_id=cb8472c3-4bbb-4379-97ee-017fa81f82c0&ish=false&isb=false&vsi=14c11dbf-0c18-45cc-a6a9-fa3ab0836223&caching=hit,hit&pv=visible&pn=1&v=1.11662.0&url=https%3A%2F%2Fwww.geg.asia%2F&st=2&ts=34&tsn=641&platformOnSite=true | 3.208.11.48 | 204 No Content | 0 B |
URL HTTP/2frog.wix.com/bolt-performance?src=72&evid=21&appName=thunderbolt&is_rollout=0&is_sav_rollout=0&is_dac_rollout=0&dc=84µPop=eun1_g&is_cached=true&msid=ba809566-b153-4b73-bbd2-f9c2f917d20e&session_id=cb8472c3-4bbb-4379-97ee-017fa81f82c0&ish=false&isb=false&vsi=14c11dbf-0c18-45cc-a6a9-fa3ab0836223&caching=hit,hit&pv=visible&pn=1&v=1.11662.0&url=https%3A%2F%2Fwww.geg.asia%2F&st=2&ts=34&tsn=641&platformOnSite=true IP3.208.11.48:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bolt-performance?src=72&evid=21&appName=thunderbolt&is_rollout=0&is_sav_rollout=0&is_dac_rollout=0&dc=84µPop=eun1_g&is_cached=true&msid=ba809566-b153-4b73-bbd2-f9c2f917d20e&session_id=cb8472c3-4bbb-4379-97ee-017fa81f82c0&ish=false&isb=false&vsi=14c11dbf-0c18-45cc-a6a9-fa3ab0836223&caching=hit,hit&pv=visible&pn=1&v=1.11662.0&url=https%3A%2F%2Fwww.geg.asia%2F&st=2&ts=34&tsn=641&platformOnSite=true HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.geg.asia
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 03:47:19 GMT
server: nginx
access-control-allow-origin: https://www.geg.asia
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
|
|
| static.wixstatic.com/media/dd8d1b_0cb4cfcd32aa42c783b3352a1df3cd39f000.jpg/v1/fill/w_147,h_83,al_c,q_80,usm_0.66_1.00_0.01,blur_2,enc_auto/dd8d1b_0cb4cfcd32aa42c783b3352a1df3cd39f000.jpg | 34.102.176.152 | 200 OK | 1.6 kB |
URL HTTP/2static.wixstatic.com/media/dd8d1b_0cb4cfcd32aa42c783b3352a1df3cd39f000.jpg/v1/fill/w_147,h_83,al_c,q_80,usm_0.66_1.00_0.01,blur_2,enc_auto/dd8d1b_0cb4cfcd32aa42c783b3352a1df3cd39f000.jpg IP34.102.176.152:0
File typeRIFF (little-endian) data, Web/P image\012- data Hashb8d90125167496264e0fbb72b7e764b8 ff3f865cd456eec7777ecdab1141ad2d6e467739 9dd0696600e3a1265d0e4c4a90b63a6feb3c38473d24fdcbf751dca3f0635703
GET /media/dd8d1b_0cb4cfcd32aa42c783b3352a1df3cd39f000.jpg/v1/fill/w_147,h_83,al_c,q_80,usm_0.66_1.00_0.01,blur_2,enc_auto/dd8d1b_0cb4cfcd32aa42c783b3352a1df3cd39f000.jpg HTTP/1.1
Host: static.wixstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty/1.21.4.1
date: Thu, 02 Feb 2023 03:47:19 GMT
content-type: image/webp
content-length: 1552
access-control-allow-origin: *
cache-control: public, max-age=15552000, immutable
vary: Accept
wix-tracer: 2LAMsSuusYacFErrpsKI73IPHLt
x-seen-by: image-manipulator-5fdcdfd696-wcwpd
timing-allow-origin: *
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.sectigo.com/ | 104.18.32.68 | 200 OK | 471 B |
IP104.18.32.68:0
Hashafdb8fd1062dabad7fc67a2504b5b4d8 96bf94d306a383e860f772e5c806c98b9c98e35d 10f03d7e07ac7e13bff1d530ed7f1a9884f2e067bdb452df4142b226687a8fa3
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 03:47:19 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 20:16:26 GMT
Expires: Tue, 07 Feb 2023 20:16:25 GMT
Etag: "96bf94d306a383e860f772e5c806c98b9c98e35d"
Cache-Control: max-age=490745,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792ff1e00c830b49-OSL
|
|
| siteassets.parastorage.com/pages/pages/thunderbolt?beckyExperiments=specs.thunderbolt.bgScrubMobile%3Atrue%2Cspecs.thunderbolt.a11yFocusRingExclusion%3Atrue%2Cspecs.thunderbolt.DatePickerPortal%3Atrue%2Cspecs.thunderbolt.new_responsive_layout_render_all_breakpoints%3Atrue%2Cspecs.thunderbolt.shouldUseWowImage%3Atrue%2Cspecs.thunderbolt.customElemCollapsedheight%3Atrue%2Cspecs.thunderbolt.comps_to_hide_catharsis%3Atrue%2Cspecs.thunderbolt.rotated_components_style_catharsis%3Atrue%2Cspecs.thunderbolt.new_responsive_layout%3Atrue%2Cspecs.thunderbolt.google_fonts_from_fonts_api%3Atrue%2Cspecs.thunderbolt.catharsis_transitions_style%3Atrue%2Cspecs.thunderbolt.dontOverflowHiddenSiteRoot%3Atrue&contentType=application%2Fjson&deviceType=Desktop&dfCk=6&dfVersion=1.2081.0&excludedSafariOrIOS=false&experiments=bv_remove_add_chat_viewer_fixer%2Cdm_migrateToTextTheme&externalBaseUrl=https%3A%2F%2Fwww.geg.asia&fileId=be0e8f06.bundle.min&hasTPAWorkerOnSite=false&isHttps=true&isInSeo=false&isMultilingualEnabled=false&isPremiumDomain=true&isUrlMigrated=true&isWixCodeOnPage=false&isWixCodeOnSite=false&language=en&languageResolutionMethod=QueryParam&metaSiteId=ba809566-b153-4b73-bbd2-f9c2f917d20e&module=thunderbolt-features&originalLanguage=en&pageId=dd8d1b_bcfb39df1e1e8ae924dac23499b4e299_636.json&quickActionsMenuEnabled=false®istryLibrariesTopology=%5B%7B%22artifactId%22%3A%22editor-elements%22%2C%22namespace%22%3A%22wixui%22%2C%22url%22%3A%22https%3A%2F%2Fstatic.parastorage.com%2Fservices%2Feditor-elements%2F1.10255.0%22%7D%2C%7B%22artifactId%22%3A%22editor-elements%22%2C%22namespace%22%3A%22dsgnsys%22%2C%22url%22%3A%22https%3A%2F%2Fstatic.parastorage.com%2Fservices%2Feditor-elements%2F1.10255.0%22%7D%5D&remoteWidgetStructureBuilderVersion=1.238.0&siteId=e68b267c-6837-44d1-b565-db93be612855&siteRevision=636&staticHTMLComponentUrl=https%3A%2F%2Fwww-geg-asia.filesusr.com%2F&useSandboxInHTMLComp=false&viewMode=desktop | 151.101.193.91 | 200 OK | 7.2 kB |
URL HTTP/2siteassets.parastorage.com/pages/pages/thunderbolt?beckyExperiments=specs.thunderbolt.bgScrubMobile%3Atrue%2Cspecs.thunderbolt.a11yFocusRingExclusion%3Atrue%2Cspecs.thunderbolt.DatePickerPortal%3Atrue%2Cspecs.thunderbolt.new_responsive_layout_render_all_breakpoints%3Atrue%2Cspecs.thunderbolt.shouldUseWowImage%3Atrue%2Cspecs.thunderbolt.customElemCollapsedheight%3Atrue%2Cspecs.thunderbolt.comps_to_hide_catharsis%3Atrue%2Cspecs.thunderbolt.rotated_components_style_catharsis%3Atrue%2Cspecs.thunderbolt.new_responsive_layout%3Atrue%2Cspecs.thunderbolt.google_fonts_from_fonts_api%3Atrue%2Cspecs.thunderbolt.catharsis_transitions_style%3Atrue%2Cspecs.thunderbolt.dontOverflowHiddenSiteRoot%3Atrue&contentType=application%2Fjson&deviceType=Desktop&dfCk=6&dfVersion=1.2081.0&excludedSafariOrIOS=false&experiments=bv_remove_add_chat_viewer_fixer%2Cdm_migrateToTextTheme&externalBaseUrl=https%3A%2F%2Fwww.geg.asia&fileId=be0e8f06.bundle.min&hasTPAWorkerOnSite=false&isHttps=true&isInSeo=false&isMultilingualEnabled=false&isPremiumDomain=true&isUrlMigrated=true&isWixCodeOnPage=false&isWixCodeOnSite=false&language=en&languageResolutionMethod=QueryParam&metaSiteId=ba809566-b153-4b73-bbd2-f9c2f917d20e&module=thunderbolt-features&originalLanguage=en&pageId=dd8d1b_bcfb39df1e1e8ae924dac23499b4e299_636.json&quickActionsMenuEnabled=false®istryLibrariesTopology=%5B%7B%22artifactId%22%3A%22editor-elements%22%2C%22namespace%22%3A%22wixui%22%2C%22url%22%3A%22https%3A%2F%2Fstatic.parastorage.com%2Fservices%2Feditor-elements%2F1.10255.0%22%7D%2C%7B%22artifactId%22%3A%22editor-elements%22%2C%22namespace%22%3A%22dsgnsys%22%2C%22url%22%3A%22https%3A%2F%2Fstatic.parastorage.com%2Fservices%2Feditor-elements%2F1.10255.0%22%7D%5D&remoteWidgetStructureBuilderVersion=1.238.0&siteId=e68b267c-6837-44d1-b565-db93be612855&siteRevision=636&staticHTMLComponentUrl=https%3A%2F%2Fwww-geg-asia.filesusr.com%2F&useSandboxInHTMLComp=false&viewMode=desktop IP151.101.193.91:0
File typeJSON data\012- , Unicode text, UTF-8 text, with very long lines (39169), with no line terminators Hash23bb716dbfd6db4efcf2d921bfc505cb 7c0ad5327e12cc7435b65b1212f6c155945781c8 6b526e8ab2cbef3edcd4e5de38922792d45f91064f0a48630b7433e0853771b4
GET /pages/pages/thunderbolt?beckyExperiments=specs.thunderbolt.bgScrubMobile%3Atrue%2Cspecs.thunderbolt.a11yFocusRingExclusion%3Atrue%2Cspecs.thunderbolt.DatePickerPortal%3Atrue%2Cspecs.thunderbolt.new_responsive_layout_render_all_breakpoints%3Atrue%2Cspecs.thunderbolt.shouldUseWowImage%3Atrue%2Cspecs.thunderbolt.customElemCollapsedheight%3Atrue%2Cspecs.thunderbolt.comps_to_hide_catharsis%3Atrue%2Cspecs.thunderbolt.rotated_components_style_catharsis%3Atrue%2Cspecs.thunderbolt.new_responsive_layout%3Atrue%2Cspecs.thunderbolt.google_fonts_from_fonts_api%3Atrue%2Cspecs.thunderbolt.catharsis_transitions_style%3Atrue%2Cspecs.thunderbolt.dontOverflowHiddenSiteRoot%3Atrue&contentType=application%2Fjson&deviceType=Desktop&dfCk=6&dfVersion=1.2081.0&excludedSafariOrIOS=false&experiments=bv_remove_add_chat_viewer_fixer%2Cdm_migrateToTextTheme&externalBaseUrl=https%3A%2F%2Fwww.geg.asia&fileId=be0e8f06.bundle.min&hasTPAWorkerOnSite=false&isHttps=true&isInSeo=false&isMultilingualEnabled=false&isPremiumDomain=true&isUrlMigrated=true&isWixCodeOnPage=false&isWixCodeOnSite=false&language=en&languageResolutionMethod=QueryParam&metaSiteId=ba809566-b153-4b73-bbd2-f9c2f917d20e&module=thunderbolt-features&originalLanguage=en&pageId=dd8d1b_bcfb39df1e1e8ae924dac23499b4e299_636.json&quickActionsMenuEnabled=false®istryLibrariesTopology=%5B%7B%22artifactId%22%3A%22editor-elements%22%2C%22namespace%22%3A%22wixui%22%2C%22url%22%3A%22https%3A%2F%2Fstatic.parastorage.com%2Fservices%2Feditor-elements%2F1.10255.0%22%7D%2C%7B%22artifactId%22%3A%22editor-elements%22%2C%22namespace%22%3A%22dsgnsys%22%2C%22url%22%3A%22https%3A%2F%2Fstatic.parastorage.com%2Fservices%2Feditor-elements%2F1.10255.0%22%7D%5D&remoteWidgetStructureBuilderVersion=1.238.0&siteId=e68b267c-6837-44d1-b565-db93be612855&siteRevision=636&staticHTMLComponentUrl=https%3A%2F%2Fwww-geg-asia.filesusr.com%2F&useSandboxInHTMLComp=false&viewMode=desktop HTTP/1.1
Host: siteassets.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.geg.asia
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
etag: W/"990d-12UiIhM/fStA4EIdcvGVFUsOyeM"
x-wix-request-id: 1675309639.552219983475838148
access-control-expose-headers: age,via,x-cache-status,X-cache-status
content-encoding: gzip
via: 1.1 varnish (Varnish/6.0), 1.1 varnish (Varnish/6.0), 1.1 varnish
x-seen-by: 2iuX5LYwvZa9CoGaG8ZUZjb5j8fWnvnycWNmjdvR375doDcb+JuzLucmWkKUGZxh,ZUT6NeJ/NsDmQ9DMGnwT1IZznndW0TCF2d09XsbxCxtwXNgtciS40xBQlxXQXiWz,ZUT6NeJ/NsDmQ9DMGnwT1DZe7saXJrqXI/cbJwRhqu5tykcK7s74OzAGppg7oLQM,Awf+EL8DXagxrUUrGnf8jFL/WEoMG9p44ahLijK++fq+hNS0+uU1LrpjkKkh2Z7o,osV03DUdKaEVOGwoQFgPYgwEf2P3a+d6tuWmxTIuXjc=,o/Sof6cnxBFRHBk8PsHvExBjfC4rGiBlDv48T4badfh6aBZGIqBdWucVcDrWJA5OAxhYlQ4hosdPxF4FPj4Vgg==,sQ19iEk473qMiaixh4sATuofpi3SD3JQSL4kvY4jDqo=,X0+kt7XXQOUL1jfJ/HiBIp2dJzR/LQUZAJz/tLiLaF+1F9phfeJUo6njgYagX7A+FEu8oq5rcO+CbZmhQWQicp3/POkL8iweHig5MytQfhdYgeUJqUXtid+86vZww+nL,sQ19iEk473qMiaixh4sATkfjHrwGY4iFvKLZtGy4zh8=,sQ19iEk473qMiaixh4sATsQrcrfuaFN9qEq8ajmno9A=,tznMqpp3e1oucszW+OT1FL28SnnUMREG8cpayHfeKm0H+d9GSNJuobkcXeBOqtvCCfjuONJlMvFzpg0TGn38ZA==
server: Pepyaka/1.19.0
cache-control: public, max-age=7776000, immutable
timing-allow-origin: *
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
accept-ranges: bytes
date: Thu, 02 Feb 2023 03:47:19 GMT
age: 0
x-served-by: cache-bma1657-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675309640.505274,VS0,VE227
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 7203
X-Firefox-Spdy: h2
|
|
| ocsp.sectigo.com/ | 104.18.32.68 | 200 OK | 472 B |
IP104.18.32.68:0
Hash34cd0f73118e05dd27c91e3cfb24c591 138ced87b9a648222356184793fa9556e2127406 3e08061a9360c48a10a71b550e7699bbd94a52f50d51b4d3c61d10171143faab
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 03:47:19 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 29 Jan 2023 16:33:56 GMT
Expires: Sun, 05 Feb 2023 16:33:55 GMT
Etag: "138ced87b9a648222356184793fa9556e2127406"
Cache-Control: max-age=304595,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792ff1df29050b41-OSL
|
|
| static.wixstatic.com/media/dd8d1b_2ff56063a170429d9dfa9a770c49f07f~mv2.png/v1/fill/w_85,h_32,al_c,q_85,usm_0.66_1.00_0.01,blur_2,enc_auto/dd8d1b_2ff56063a170429d9dfa9a770c49f07f~mv2.png | 34.102.176.152 | 200 OK | 1.6 kB |
URL HTTP/2static.wixstatic.com/media/dd8d1b_2ff56063a170429d9dfa9a770c49f07f~mv2.png/v1/fill/w_85,h_32,al_c,q_85,usm_0.66_1.00_0.01,blur_2,enc_auto/dd8d1b_2ff56063a170429d9dfa9a770c49f07f~mv2.png IP34.102.176.152:0
File typeRIFF (little-endian) data, Web/P image\012- data Hashe9f8819edb2d915a368334baf8867c88 acc905e760c50bc5e5c4db01b06c8fd1fdc42f99 6b3118bb9370b8e3beeeb16c3c4753cd662211c87bc8c66300fa4a8410949132
GET /media/dd8d1b_2ff56063a170429d9dfa9a770c49f07f~mv2.png/v1/fill/w_85,h_32,al_c,q_85,usm_0.66_1.00_0.01,blur_2,enc_auto/dd8d1b_2ff56063a170429d9dfa9a770c49f07f~mv2.png HTTP/1.1
Host: static.wixstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty/1.21.4.1
date: Thu, 02 Feb 2023 03:47:19 GMT
content-type: image/webp
content-length: 1588
access-control-allow-origin: *
cache-control: public, max-age=15552000, immutable
vary: Accept
wix-tracer: 2LAMsQh7pzHRCx8AiKitEs5uSbi
x-seen-by: image-manipulator-5fdcdfd696-jhrbx
timing-allow-origin: *
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| static.wixstatic.com/media/dd8d1b_6b838c6188a246449bc4699224c3b5d8~mv2.webp | 34.102.176.152 | 200 OK | 230 kB |
URL HTTP/2static.wixstatic.com/media/dd8d1b_6b838c6188a246449bc4699224c3b5d8~mv2.webp IP34.102.176.152:0
File typeRIFF (little-endian) data, Web/P image\012- data Size230 kB (229542 bytes) Hash4db8806ee6cdf50e691d6c16c840c0ee 879e9d4df1841da7b54c4a77549f065569546744 d14ac383599f89e48ad7000f8e33126f46d47792ffa3f44678c9a4146816a6e9
GET /media/dd8d1b_6b838c6188a246449bc4699224c3b5d8~mv2.webp HTTP/1.1
Host: static.wixstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty/1.21.4.1
date: Thu, 02 Feb 2023 03:47:19 GMT
content-type: image/webp
content-length: 229542
vary: X-Goog-Allowed-Resources
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Length
expires: Thu, 02 Feb 2023 04:47:19 GMT
cache-control: public, max-age=15552000, immutable
last-modified: Tue, 03 Jan 2023 12:03:23 GMT
etag: "4db8806ee6cdf50e691d6c16c840c0ee"
age: 0
timing-allow-origin: *
x-seen-by: gcp.us-central-1.media-router-6d7ff44fbc-jzl9v
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| static.wixstatic.com/media/dd8d1b_9af33ae1710b44e09781df0f785b0509~mv2.jpg/v1/fill/w_78,h_97,al_c,q_80,usm_0.66_1.00_0.01,blur_2,enc_auto/dd8d1b_9af33ae1710b44e09781df0f785b0509~mv2.jpg | 34.102.176.152 | 200 OK | 1.2 kB |
URL HTTP/2static.wixstatic.com/media/dd8d1b_9af33ae1710b44e09781df0f785b0509~mv2.jpg/v1/fill/w_78,h_97,al_c,q_80,usm_0.66_1.00_0.01,blur_2,enc_auto/dd8d1b_9af33ae1710b44e09781df0f785b0509~mv2.jpg IP34.102.176.152:0
File typeRIFF (little-endian) data, Web/P image\012- data Hash5097bce64e718a123707d630617cfba8 df581c6807531f9419e09562c06518a4f63d5936 2a356c189f7568acf83135891e0f19430788ee03fda3961941443cda93cd24fa
GET /media/dd8d1b_9af33ae1710b44e09781df0f785b0509~mv2.jpg/v1/fill/w_78,h_97,al_c,q_80,usm_0.66_1.00_0.01,blur_2,enc_auto/dd8d1b_9af33ae1710b44e09781df0f785b0509~mv2.jpg HTTP/1.1
Host: static.wixstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty/1.21.4.1
date: Thu, 02 Feb 2023 03:47:19 GMT
content-type: image/webp
content-length: 1240
access-control-allow-origin: *
cache-control: public, max-age=15552000, immutable
vary: Accept
wix-tracer: 2LAMsRSbsHHWBtl2Vif1kic4RIg
x-seen-by: image-manipulator-5fdcdfd696-2zmms
timing-allow-origin: *
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4 | 104.18.21.226 | 200 OK | 1.5 kB |
URL HTTP/1.1ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4 IP104.18.21.226:0
Hashaf360c65c94ad697482009afc749b89c 29e7c86b1997161bf57eaf3db4c0e2e57e5156cd d8dadd802d9fc8196ca4f8066f1bc324639d2b2bd2dc790e87d3bcf587fc6cdc
POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 03:47:19 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "D114E86738B57150DC57FDCCB2AD568B4154BAD9"
Expires: Thu, 02 Feb 2023 14:00:00 GMT
Last-Modified: Thu, 02 Feb 2023 02:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 3158
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792ff1e09ac70b61-OSL
|
|
| static.wixstatic.com/media/dd8d1b_992fc84d181045bd9c6df1c1e88f20ae~mv2.png/v1/fill/w_184,h_63,al_c,q_85,usm_0.66_1.00_0.01,blur_3,enc_auto/MEvents-2022-b2_edited.png | 34.102.176.152 | 200 OK | 5.4 kB |
URL HTTP/2static.wixstatic.com/media/dd8d1b_992fc84d181045bd9c6df1c1e88f20ae~mv2.png/v1/fill/w_184,h_63,al_c,q_85,usm_0.66_1.00_0.01,blur_3,enc_auto/MEvents-2022-b2_edited.png IP34.102.176.152:0
File typeRIFF (little-endian) data, Web/P image\012- data Hash699cbbcf8033f87ccd14ebe839f81275 fea5b275f31f94fb9a7c9a63498668c54c0ccb08 527d408ae3105615f1c8be7061bf7e3be3ff5a3ece6d47e4135271e86ed6fd40
GET /media/dd8d1b_992fc84d181045bd9c6df1c1e88f20ae~mv2.png/v1/fill/w_184,h_63,al_c,q_85,usm_0.66_1.00_0.01,blur_3,enc_auto/MEvents-2022-b2_edited.png HTTP/1.1
Host: static.wixstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty/1.21.4.1
date: Thu, 02 Feb 2023 03:47:19 GMT
content-type: image/webp
content-length: 5374
access-control-allow-origin: *
cache-control: public, max-age=15552000, immutable
vary: Accept
wix-tracer: 2LAMsPNTzTo7RJQN9SToFFg0bQg
x-seen-by: image-manipulator-5fdcdfd696-5dtcq
timing-allow-origin: *
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| static.wixstatic.com/media/dd8d1b_9d8d1d0ef93642959622a97dc64aa230~mv2.png/v1/fill/w_235,h_60,al_c,q_85,usm_0.66_1.00_0.01,enc_auto/GEG.png | 34.102.176.152 | 200 OK | 7.0 kB |
URL HTTP/2static.wixstatic.com/media/dd8d1b_9d8d1d0ef93642959622a97dc64aa230~mv2.png/v1/fill/w_235,h_60,al_c,q_85,usm_0.66_1.00_0.01,enc_auto/GEG.png IP34.102.176.152:0
File typeRIFF (little-endian) data, Web/P image\012- data Hashc7459613546f97e7ab3905cd13225a91 10779a3c9143e19f116411b3cfefa797e58b548f bd77664cb3a59c752dafcf5c54363f6566da58823e33cca83173aeacab91d356
GET /media/dd8d1b_9d8d1d0ef93642959622a97dc64aa230~mv2.png/v1/fill/w_235,h_60,al_c,q_85,usm_0.66_1.00_0.01,enc_auto/GEG.png HTTP/1.1
Host: static.wixstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty/1.21.4.1
date: Thu, 02 Feb 2023 03:47:19 GMT
content-type: image/webp
content-length: 7040
access-control-allow-origin: *
cache-control: public, max-age=15552000, immutable
vary: Accept
wix-tracer: 2LAMsOi1eLSkE43lnyJW6faaH1S
x-seen-by: image-manipulator-5fdcdfd696-hpgh4
timing-allow-origin: *
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| static.wixstatic.com/media/035244_881cbe4617f449cab844cb6a48b5fbeb~mv2_d_2475_2475_s_4_2.jpeg/v1/fill/w_1268,h_565,al_c,q_85,usm_0.66_1.00_0.01,enc_auto/035244_881cbe4617f449cab844cb6a48b5fbeb~mv2_d_2475_2475_s_4_2.jpeg | 34.102.176.152 | 200 OK | 73 kB |
URL HTTP/2static.wixstatic.com/media/035244_881cbe4617f449cab844cb6a48b5fbeb~mv2_d_2475_2475_s_4_2.jpeg/v1/fill/w_1268,h_565,al_c,q_85,usm_0.66_1.00_0.01,enc_auto/035244_881cbe4617f449cab844cb6a48b5fbeb~mv2_d_2475_2475_s_4_2.jpeg IP34.102.176.152:0
File typeRIFF (little-endian) data, Web/P image\012- data Hash3ca8f01cff1abaf4f7f9dcfda1fd0f9c 66ab5de93fe3caa9294841ff7b80e59127a87b2e f8dcbff123dd93a20b6b18e2adda1e1594e78ead326980320ad3f8951a5a5e95
GET /media/035244_881cbe4617f449cab844cb6a48b5fbeb~mv2_d_2475_2475_s_4_2.jpeg/v1/fill/w_1268,h_565,al_c,q_85,usm_0.66_1.00_0.01,enc_auto/035244_881cbe4617f449cab844cb6a48b5fbeb~mv2_d_2475_2475_s_4_2.jpeg HTTP/1.1
Host: static.wixstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty/1.21.4.1
date: Thu, 02 Feb 2023 03:47:19 GMT
content-type: image/webp
content-length: 72558
access-control-allow-origin: *
cache-control: public, max-age=15552000, immutable
vary: Accept
wix-tracer: 2LAMsLgkysa7m3Rh3CCfIPFIKvM
x-seen-by: image-manipulator-5fdcdfd696-p4jxl
timing-allow-origin: *
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| frog.wix.com/bt?src=29&evid=3&viewer_name=thunderbolt&caching=hit,hit&dc=84µPop=eun1_g&et=12&event_name=Partially%20visible&is_cached=true&is_platform_loaded=0&is_rollout=0&ism=1&isp=0&isjp=false&iss=1&ita=1&msid=ba809566-b153-4b73-bbd2-f9c2f917d20e&pid=qsvlf&pn=1&sessionId=cb8472c3-4bbb-4379-97ee-017fa81f82c0&siterev=636-__siteCacheRevision__&st=2&ts=108&tts=715&url=https%3A%2F%2Fwww.geg.asia%2F%3F&v=1.11662.0&vsi=14c11dbf-0c18-45cc-a6a9-fa3ab0836223&_brandId=wix | 3.208.11.48 | 204 No Content | 0 B |
URL HTTP/2frog.wix.com/bt?src=29&evid=3&viewer_name=thunderbolt&caching=hit,hit&dc=84µPop=eun1_g&et=12&event_name=Partially%20visible&is_cached=true&is_platform_loaded=0&is_rollout=0&ism=1&isp=0&isjp=false&iss=1&ita=1&msid=ba809566-b153-4b73-bbd2-f9c2f917d20e&pid=qsvlf&pn=1&sessionId=cb8472c3-4bbb-4379-97ee-017fa81f82c0&siterev=636-__siteCacheRevision__&st=2&ts=108&tts=715&url=https%3A%2F%2Fwww.geg.asia%2F%3F&v=1.11662.0&vsi=14c11dbf-0c18-45cc-a6a9-fa3ab0836223&_brandId=wix IP3.208.11.48:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bt?src=29&evid=3&viewer_name=thunderbolt&caching=hit,hit&dc=84µPop=eun1_g&et=12&event_name=Partially%20visible&is_cached=true&is_platform_loaded=0&is_rollout=0&ism=1&isp=0&isjp=false&iss=1&ita=1&msid=ba809566-b153-4b73-bbd2-f9c2f917d20e&pid=qsvlf&pn=1&sessionId=cb8472c3-4bbb-4379-97ee-017fa81f82c0&siterev=636-__siteCacheRevision__&st=2&ts=108&tts=715&url=https%3A%2F%2Fwww.geg.asia%2F%3F&v=1.11662.0&vsi=14c11dbf-0c18-45cc-a6a9-fa3ab0836223&_brandId=wix HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.geg.asia
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 03:47:19 GMT
server: nginx
access-control-allow-origin: https://www.geg.asia
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
|
|
| ocsp.sectigo.com/ | 104.18.32.68 | 200 OK | 471 B |
IP104.18.32.68:0
Hashafdb8fd1062dabad7fc67a2504b5b4d8 96bf94d306a383e860f772e5c806c98b9c98e35d 10f03d7e07ac7e13bff1d530ed7f1a9884f2e067bdb452df4142b226687a8fa3
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 03:47:19 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 20:16:26 GMT
Expires: Tue, 07 Feb 2023 20:16:25 GMT
Etag: "96bf94d306a383e860f772e5c806c98b9c98e35d"
Cache-Control: max-age=490745,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792ff1de29140b39-OSL
|
|
| frog.wix.com/bolt-performance?src=72&evid=28&appName=thunderbolt&is_rollout=0&is_sav_rollout=0&is_dac_rollout=0&dc=84µPop=eun1_g&is_cached=true&msid=ba809566-b153-4b73-bbd2-f9c2f917d20e&session_id=cb8472c3-4bbb-4379-97ee-017fa81f82c0&ish=false&isb=false&vsi=14c11dbf-0c18-45cc-a6a9-fa3ab0836223&caching=hit,hit&pv=visible&pn=1&v=1.11662.0&url=https%3A%2F%2Fwww.geg.asia%2F&st=2&ts=34&tsn=641&name=partially_visible&duration=1675309663586&pageId=qsvlf | 3.208.11.48 | 204 No Content | 0 B |
URL HTTP/2frog.wix.com/bolt-performance?src=72&evid=28&appName=thunderbolt&is_rollout=0&is_sav_rollout=0&is_dac_rollout=0&dc=84µPop=eun1_g&is_cached=true&msid=ba809566-b153-4b73-bbd2-f9c2f917d20e&session_id=cb8472c3-4bbb-4379-97ee-017fa81f82c0&ish=false&isb=false&vsi=14c11dbf-0c18-45cc-a6a9-fa3ab0836223&caching=hit,hit&pv=visible&pn=1&v=1.11662.0&url=https%3A%2F%2Fwww.geg.asia%2F&st=2&ts=34&tsn=641&name=partially_visible&duration=1675309663586&pageId=qsvlf IP3.208.11.48:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bolt-performance?src=72&evid=28&appName=thunderbolt&is_rollout=0&is_sav_rollout=0&is_dac_rollout=0&dc=84µPop=eun1_g&is_cached=true&msid=ba809566-b153-4b73-bbd2-f9c2f917d20e&session_id=cb8472c3-4bbb-4379-97ee-017fa81f82c0&ish=false&isb=false&vsi=14c11dbf-0c18-45cc-a6a9-fa3ab0836223&caching=hit,hit&pv=visible&pn=1&v=1.11662.0&url=https%3A%2F%2Fwww.geg.asia%2F&st=2&ts=34&tsn=641&name=partially_visible&duration=1675309663586&pageId=qsvlf HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.geg.asia
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 03:47:19 GMT
server: nginx
access-control-allow-origin: https://www.geg.asia
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
|
|
| frog.wix.com/bpm | 3.208.11.48 | 204 No Content | 0 B |
IP3.208.11.48:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bpm HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1273
Origin: https://www.geg.asia
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 03:47:19 GMT
server: nginx
access-control-allow-origin: https://www.geg.asia
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
|
|
| ocsp.sectigo.com/ | 104.18.32.68 | 200 OK | 471 B |
IP104.18.32.68:0
Hashafdb8fd1062dabad7fc67a2504b5b4d8 96bf94d306a383e860f772e5c806c98b9c98e35d 10f03d7e07ac7e13bff1d530ed7f1a9884f2e067bdb452df4142b226687a8fa3
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 03:47:19 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 31 Jan 2023 20:16:26 GMT
Expires: Tue, 07 Feb 2023 20:16:25 GMT
Etag: "96bf94d306a383e860f772e5c806c98b9c98e35d"
Cache-Control: max-age=490745,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 792ff1e03df30b31-OSL
|
|
| siteassets.parastorage.com/pages/pages/thunderbolt?beckyExperiments=specs.thunderbolt.bgScrubMobile%3Atrue%2Cspecs.thunderbolt.a11yFocusRingExclusion%3Atrue%2Cspecs.thunderbolt.DatePickerPortal%3Atrue%2Cspecs.thunderbolt.new_responsive_layout_render_all_breakpoints%3Atrue%2Cspecs.thunderbolt.shouldUseWowImage%3Atrue%2Cspecs.thunderbolt.customElemCollapsedheight%3Atrue%2Cspecs.thunderbolt.comps_to_hide_catharsis%3Atrue%2Cspecs.thunderbolt.rotated_components_style_catharsis%3Atrue%2Cspecs.thunderbolt.new_responsive_layout%3Atrue%2Cspecs.thunderbolt.google_fonts_from_fonts_api%3Atrue%2Cspecs.thunderbolt.catharsis_transitions_style%3Atrue%2Cspecs.thunderbolt.dontOverflowHiddenSiteRoot%3Atrue&contentType=application%2Fjson&deviceType=Desktop&dfCk=6&dfVersion=1.2081.0&excludedSafariOrIOS=false&experiments=bv_remove_add_chat_viewer_fixer%2Cdm_migrateToTextTheme&externalBaseUrl=https%3A%2F%2Fwww.geg.asia&fileId=be0e8f06.bundle.min&hasTPAWorkerOnSite=false&isHttps=true&isInSeo=false&isMultilingualEnabled=false&isPremiumDomain=true&isUrlMigrated=true&isWixCodeOnPage=false&isWixCodeOnSite=false&language=en&languageResolutionMethod=QueryParam&metaSiteId=ba809566-b153-4b73-bbd2-f9c2f917d20e&module=thunderbolt-features&originalLanguage=en&pageId=dd8d1b_e7ac7f5c829a326120103f480e388402_636.json&quickActionsMenuEnabled=false®istryLibrariesTopology=%5B%7B%22artifactId%22%3A%22editor-elements%22%2C%22namespace%22%3A%22wixui%22%2C%22url%22%3A%22https%3A%2F%2Fstatic.parastorage.com%2Fservices%2Feditor-elements%2F1.10255.0%22%7D%2C%7B%22artifactId%22%3A%22editor-elements%22%2C%22namespace%22%3A%22dsgnsys%22%2C%22url%22%3A%22https%3A%2F%2Fstatic.parastorage.com%2Fservices%2Feditor-elements%2F1.10255.0%22%7D%5D&remoteWidgetStructureBuilderVersion=1.238.0&siteId=e68b267c-6837-44d1-b565-db93be612855&siteRevision=636&staticHTMLComponentUrl=https%3A%2F%2Fwww-geg-asia.filesusr.com%2F&useSandboxInHTMLComp=false&viewMode=desktop | 151.101.193.91 | 200 OK | 11 kB |
URL HTTP/2siteassets.parastorage.com/pages/pages/thunderbolt?beckyExperiments=specs.thunderbolt.bgScrubMobile%3Atrue%2Cspecs.thunderbolt.a11yFocusRingExclusion%3Atrue%2Cspecs.thunderbolt.DatePickerPortal%3Atrue%2Cspecs.thunderbolt.new_responsive_layout_render_all_breakpoints%3Atrue%2Cspecs.thunderbolt.shouldUseWowImage%3Atrue%2Cspecs.thunderbolt.customElemCollapsedheight%3Atrue%2Cspecs.thunderbolt.comps_to_hide_catharsis%3Atrue%2Cspecs.thunderbolt.rotated_components_style_catharsis%3Atrue%2Cspecs.thunderbolt.new_responsive_layout%3Atrue%2Cspecs.thunderbolt.google_fonts_from_fonts_api%3Atrue%2Cspecs.thunderbolt.catharsis_transitions_style%3Atrue%2Cspecs.thunderbolt.dontOverflowHiddenSiteRoot%3Atrue&contentType=application%2Fjson&deviceType=Desktop&dfCk=6&dfVersion=1.2081.0&excludedSafariOrIOS=false&experiments=bv_remove_add_chat_viewer_fixer%2Cdm_migrateToTextTheme&externalBaseUrl=https%3A%2F%2Fwww.geg.asia&fileId=be0e8f06.bundle.min&hasTPAWorkerOnSite=false&isHttps=true&isInSeo=false&isMultilingualEnabled=false&isPremiumDomain=true&isUrlMigrated=true&isWixCodeOnPage=false&isWixCodeOnSite=false&language=en&languageResolutionMethod=QueryParam&metaSiteId=ba809566-b153-4b73-bbd2-f9c2f917d20e&module=thunderbolt-features&originalLanguage=en&pageId=dd8d1b_e7ac7f5c829a326120103f480e388402_636.json&quickActionsMenuEnabled=false®istryLibrariesTopology=%5B%7B%22artifactId%22%3A%22editor-elements%22%2C%22namespace%22%3A%22wixui%22%2C%22url%22%3A%22https%3A%2F%2Fstatic.parastorage.com%2Fservices%2Feditor-elements%2F1.10255.0%22%7D%2C%7B%22artifactId%22%3A%22editor-elements%22%2C%22namespace%22%3A%22dsgnsys%22%2C%22url%22%3A%22https%3A%2F%2Fstatic.parastorage.com%2Fservices%2Feditor-elements%2F1.10255.0%22%7D%5D&remoteWidgetStructureBuilderVersion=1.238.0&siteId=e68b267c-6837-44d1-b565-db93be612855&siteRevision=636&staticHTMLComponentUrl=https%3A%2F%2Fwww-geg-asia.filesusr.com%2F&useSandboxInHTMLComp=false&viewMode=desktop IP151.101.193.91:0
File typeJSON data\012- , Unicode text, UTF-8 text, with very long lines (65462), with no line terminators Hash141cdeb81f33bf273d33252a15badb4f 8988bb1d641670fe2f2a9576b95d3636bdbeca60 2c49d6e515e1a266e8c34e8a0e0da260213edc0e0fb7288d8114d0d5a112c7b0
GET /pages/pages/thunderbolt?beckyExperiments=specs.thunderbolt.bgScrubMobile%3Atrue%2Cspecs.thunderbolt.a11yFocusRingExclusion%3Atrue%2Cspecs.thunderbolt.DatePickerPortal%3Atrue%2Cspecs.thunderbolt.new_responsive_layout_render_all_breakpoints%3Atrue%2Cspecs.thunderbolt.shouldUseWowImage%3Atrue%2Cspecs.thunderbolt.customElemCollapsedheight%3Atrue%2Cspecs.thunderbolt.comps_to_hide_catharsis%3Atrue%2Cspecs.thunderbolt.rotated_components_style_catharsis%3Atrue%2Cspecs.thunderbolt.new_responsive_layout%3Atrue%2Cspecs.thunderbolt.google_fonts_from_fonts_api%3Atrue%2Cspecs.thunderbolt.catharsis_transitions_style%3Atrue%2Cspecs.thunderbolt.dontOverflowHiddenSiteRoot%3Atrue&contentType=application%2Fjson&deviceType=Desktop&dfCk=6&dfVersion=1.2081.0&excludedSafariOrIOS=false&experiments=bv_remove_add_chat_viewer_fixer%2Cdm_migrateToTextTheme&externalBaseUrl=https%3A%2F%2Fwww.geg.asia&fileId=be0e8f06.bundle.min&hasTPAWorkerOnSite=false&isHttps=true&isInSeo=false&isMultilingualEnabled=false&isPremiumDomain=true&isUrlMigrated=true&isWixCodeOnPage=false&isWixCodeOnSite=false&language=en&languageResolutionMethod=QueryParam&metaSiteId=ba809566-b153-4b73-bbd2-f9c2f917d20e&module=thunderbolt-features&originalLanguage=en&pageId=dd8d1b_e7ac7f5c829a326120103f480e388402_636.json&quickActionsMenuEnabled=false®istryLibrariesTopology=%5B%7B%22artifactId%22%3A%22editor-elements%22%2C%22namespace%22%3A%22wixui%22%2C%22url%22%3A%22https%3A%2F%2Fstatic.parastorage.com%2Fservices%2Feditor-elements%2F1.10255.0%22%7D%2C%7B%22artifactId%22%3A%22editor-elements%22%2C%22namespace%22%3A%22dsgnsys%22%2C%22url%22%3A%22https%3A%2F%2Fstatic.parastorage.com%2Fservices%2Feditor-elements%2F1.10255.0%22%7D%5D&remoteWidgetStructureBuilderVersion=1.238.0&siteId=e68b267c-6837-44d1-b565-db93be612855&siteRevision=636&staticHTMLComponentUrl=https%3A%2F%2Fwww-geg-asia.filesusr.com%2F&useSandboxInHTMLComp=false&viewMode=desktop HTTP/1.1
Host: siteassets.parastorage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.geg.asia
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
etag: W/"10a87-jsshdYXvcDfJIUriCqhOBE7RgKc"
x-wix-request-id: 1675309639.8212243467373115066
access-control-expose-headers: age,via,x-cache-status,X-cache-status
content-encoding: gzip
via: 1.1 varnish (Varnish/6.0), 1.1 varnish (Varnish/6.0), 1.1 varnish
x-seen-by: 2iuX5LYwvZa9CoGaG8ZUZjb5j8fWnvnycWNmjdvR377Ji1Fj75RrqDfb1RLKWox8,ZUT6NeJ/NsDmQ9DMGnwT1IZznndW0TCF2d09XsbxCxtwXNgtciS40xBQlxXQXiWz,ZUT6NeJ/NsDmQ9DMGnwT1CIjmOzmapZydGfiqJCxYjzrMCTeni2Yh/J6NvrfopiZ,Awf+EL8DXagxrUUrGnf8jFL/WEoMG9p44ahLijK++fruW0IESvApxMH9CocVcr7L,osV03DUdKaEVOGwoQFgPYpcO66dWL5+YlH52TSq+s04=,o/Sof6cnxBFRHBk8PsHvE1eoKJmixRxpwejxDonlzx2dtsUUc69qnHu0tpT3ZcFLW/KF4t6It0s+HthamrQS/g==,sQ19iEk473qMiaixh4sATr3rkUpopfA9KEZXD14Ke1A=,sQ19iEk473qMiaixh4sATuoS+1ps01bKfehPq16BWbk=,X0+kt7XXQOUL1jfJ/HiBIp2dJzR/LQUZAJz/tLiLaF+1F9phfeJUo6njgYagX7A+CHctpOIJh+x9Q9O3ZlW3Z08GZhaalTI53NwbxyTluuJYgeUJqUXtid+86vZww+nL,sQ19iEk473qMiaixh4sATuoS+1ps01bKfehPq16BWbk=,sQ19iEk473qMiaixh4sATl69xii5PT7xLh8IA8iNraM=,tznMqpp3e1oucszW+OT1FL28SnnUMREG8cpayHfeKm2/bFWcfmx3gQ8JeVDS+TzjklxnMaYsckHJ8ytRatSY+A==
server: Pepyaka/1.19.10
cache-control: public, max-age=7776000, immutable
timing-allow-origin: *
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS, POST
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-*
accept-ranges: bytes
date: Thu, 02 Feb 2023 03:47:19 GMT
age: 0
x-served-by: cache-bma1657-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675309640.501322,VS0,VE462
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 11317
X-Firefox-Spdy: h2
|
|
| static.wixstatic.com/media/dd8d1b_6b1a580985f84182bd69e54a98d154ee~mv2.webp | 34.102.176.152 | 200 OK | 109 kB |
URL HTTP/2static.wixstatic.com/media/dd8d1b_6b1a580985f84182bd69e54a98d154ee~mv2.webp IP34.102.176.152:0
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 600x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size109 kB (109032 bytes) Hashf2f1c56e70c7c70fe7c4d88e38bc9757 8b3644a51db125779f439c89fedcb2b4b25a454b 85567272b62b0d3dfe0ff5306a337687fa3f5bf928842a38a31b9fbe1c05f1b7
GET /media/dd8d1b_6b1a580985f84182bd69e54a98d154ee~mv2.webp HTTP/1.1
Host: static.wixstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty/1.21.4.1
date: Thu, 02 Feb 2023 03:47:19 GMT
content-type: image/webp
content-length: 109032
vary: X-Goog-Allowed-Resources
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Length
expires: Thu, 02 Feb 2023 04:47:19 GMT
cache-control: public, max-age=15552000, immutable
last-modified: Tue, 03 Jan 2023 11:10:07 GMT
etag: "f2f1c56e70c7c70fe7c4d88e38bc9757"
age: 0
timing-allow-origin: *
x-seen-by: gcp.us-central-1.media-router-6d7ff44fbc-shx5l
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| push.services.mozilla.com/ | 34.211.126.51 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP34.211.126.51:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 0NpVZEC2MaQI/+qzLn8lZQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: WWjB8OJBWMTq4ryu1iNlbWlbFSY=
|
|
| frog.wix.com/site-members?_msid=ba809566-b153-4b73-bbd2-f9c2f917d20e&vsi=14c11dbf-0c18-45cc-a6a9-fa3ab0836223&_av=thunderbolt-1.11662.0&isb=false&_brandId=wix&_siteBranchId=undefined&_ms=1618&_lv=2.0.985%7CC&_visitorId=0a8a50fd-b903-4f82-a534-292aa904901c&_siteMemberId=undefined&bsi=2d9da992-baae-421e-9593-86c0bc1ced06%7C1&src=5&evid=698&biToken=ba809566-b153-4b73-bbd2-f9c2f917d20e&context=undefined&ts=1011&viewmode=undefined&visitor_id=0a8a50fd-b903-4f82-a534-292aa904901c&site_member_id=undefined&site_settings_lng=en&browser_lng=en&lng_mismatch=false&layout=undefined&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16753096645330 | 3.208.11.48 | 204 No Content | 0 B |
URL HTTP/2frog.wix.com/site-members?_msid=ba809566-b153-4b73-bbd2-f9c2f917d20e&vsi=14c11dbf-0c18-45cc-a6a9-fa3ab0836223&_av=thunderbolt-1.11662.0&isb=false&_brandId=wix&_siteBranchId=undefined&_ms=1618&_lv=2.0.985%7CC&_visitorId=0a8a50fd-b903-4f82-a534-292aa904901c&_siteMemberId=undefined&bsi=2d9da992-baae-421e-9593-86c0bc1ced06%7C1&src=5&evid=698&biToken=ba809566-b153-4b73-bbd2-f9c2f917d20e&context=undefined&ts=1011&viewmode=undefined&visitor_id=0a8a50fd-b903-4f82-a534-292aa904901c&site_member_id=undefined&site_settings_lng=en&browser_lng=en&lng_mismatch=false&layout=undefined&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16753096645330 IP3.208.11.48:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /site-members?_msid=ba809566-b153-4b73-bbd2-f9c2f917d20e&vsi=14c11dbf-0c18-45cc-a6a9-fa3ab0836223&_av=thunderbolt-1.11662.0&isb=false&_brandId=wix&_siteBranchId=undefined&_ms=1618&_lv=2.0.985%7CC&_visitorId=0a8a50fd-b903-4f82-a534-292aa904901c&_siteMemberId=undefined&bsi=2d9da992-baae-421e-9593-86c0bc1ced06%7C1&src=5&evid=698&biToken=ba809566-b153-4b73-bbd2-f9c2f917d20e&context=undefined&ts=1011&viewmode=undefined&visitor_id=0a8a50fd-b903-4f82-a534-292aa904901c&site_member_id=undefined&site_settings_lng=en&browser_lng=en&lng_mismatch=false&layout=undefined&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16753096645330 HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.geg.asia
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 03:47:20 GMT
server: nginx
access-control-allow-origin: https://www.geg.asia
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
|
|
| frog.wix.com/?_msid=ba809566-b153-4b73-bbd2-f9c2f917d20e&vsi=14c11dbf-0c18-45cc-a6a9-fa3ab0836223&_av=thunderbolt-1.11662.0&isb=false&_brandId=wix&_siteBranchId=undefined&_ms=1743&_lv=2.0.985%7CC&_visitorId=0a8a50fd-b903-4f82-a534-292aa904901c&_siteMemberId=undefined&bsi=2d9da992-baae-421e-9593-86c0bc1ced06%7C1&src=72&evid=520&endpoint=bpm¶ms=%5Bobject%20Object%5D&_isca=1&_iscf=1&_ispd=0&_ise=1&_=16753096646481 | 3.208.11.48 | 204 No Content | 0 B |
URL HTTP/2frog.wix.com/?_msid=ba809566-b153-4b73-bbd2-f9c2f917d20e&vsi=14c11dbf-0c18-45cc-a6a9-fa3ab0836223&_av=thunderbolt-1.11662.0&isb=false&_brandId=wix&_siteBranchId=undefined&_ms=1743&_lv=2.0.985%7CC&_visitorId=0a8a50fd-b903-4f82-a534-292aa904901c&_siteMemberId=undefined&bsi=2d9da992-baae-421e-9593-86c0bc1ced06%7C1&src=72&evid=520&endpoint=bpm¶ms=%5Bobject%20Object%5D&_isca=1&_iscf=1&_ispd=0&_ise=1&_=16753096646481 IP3.208.11.48:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /?_msid=ba809566-b153-4b73-bbd2-f9c2f917d20e&vsi=14c11dbf-0c18-45cc-a6a9-fa3ab0836223&_av=thunderbolt-1.11662.0&isb=false&_brandId=wix&_siteBranchId=undefined&_ms=1743&_lv=2.0.985%7CC&_visitorId=0a8a50fd-b903-4f82-a534-292aa904901c&_siteMemberId=undefined&bsi=2d9da992-baae-421e-9593-86c0bc1ced06%7C1&src=72&evid=520&endpoint=bpm¶ms=%5Bobject%20Object%5D&_isca=1&_iscf=1&_ispd=0&_ise=1&_=16753096646481 HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.geg.asia
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 03:47:20 GMT
server: nginx
access-control-allow-origin: https://www.geg.asia
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
|
|
| video.wixstatic.com/video/dd8d1b_0cb4cfcd32aa42c783b3352a1df3cd39/1080p/mp4/file.mp4 | 34.102.176.152 | 206 Partial Content | 64 kB |
URL HTTP/2video.wixstatic.com/video/dd8d1b_0cb4cfcd32aa42c783b3352a1df3cd39/1080p/mp4/file.mp4 IP34.102.176.152:0
File typeISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data Hash4d0f43bd06cb98d54b311330ef85eecc 6ef1c1b03e635a821ac4da2ecb666cc413b5dcac 7885b78bab480484d27c8abaaa78ac9ed228b57ef6f894b0ed31c96b8e77b638
GET /video/dd8d1b_0cb4cfcd32aa42c783b3352a1df3cd39/1080p/mp4/file.mp4 HTTP/1.1
Host: video.wixstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Origin: https://www.geg.asia
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 206 Partial Content
server: openresty/1.21.4.1
date: Thu, 02 Feb 2023 03:47:19 GMT
content-type: video/mp4
content-length: 163302435
x-guploader-uploadid: ADPycdumZYJpy9-0ABSa8KjvkGnzlw_IXoezVWTHYq3uLjeRS-NcsUBia53TXV3oLGvNbCiReY0mMj5FWnecOAKYrUApPw
expires: Thu, 02 Feb 2023 04:47:19 GMT
cache-control: public, max-age=31536000, immutable
vary: X-Goog-Allowed-Resources
last-modified: Tue, 25 Oct 2022 12:15:46 GMT
etag: "d3230d0a016e7630b5a80ffda6a11d21"
x-goog-generation: 1666700146871445
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 163302435
x-goog-hash: crc32c=EnvcpA==, md5=0yMNCgFudjC1qA/9pqEdIQ==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-range: bytes 0-163302434/163302435
access-control-allow-origin: *
access-control-expose-headers: Content-Range, range
x-seen-by: gcp.us-central-1.media-router-6d7ff44fbc-6dkz5
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| static.wixstatic.com/media/dd8d1b_4f92249afa314602b4c356d6a9137532f000.jpg/v1/fill/w_1268,h_939,al_c,q_85,usm_0.66_1.00_0.01,enc_auto/dd8d1b_4f92249afa314602b4c356d6a9137532f000.jpg | 34.102.176.152 | 200 OK | 123 kB |
URL HTTP/2static.wixstatic.com/media/dd8d1b_4f92249afa314602b4c356d6a9137532f000.jpg/v1/fill/w_1268,h_939,al_c,q_85,usm_0.66_1.00_0.01,enc_auto/dd8d1b_4f92249afa314602b4c356d6a9137532f000.jpg IP34.102.176.152:0
File typeRIFF (little-endian) data, Web/P image\012- data Size123 kB (123106 bytes) Hash1df800faeec27dc3d1c0a840dff864c4 60556719788fbb5e87fa07a75ab24341a1e08ae2 440b8c0d2f8d99e77ab451e16d7be7df6b59bd3378ea0460e66c13e31574c9ff
GET /media/dd8d1b_4f92249afa314602b4c356d6a9137532f000.jpg/v1/fill/w_1268,h_939,al_c,q_85,usm_0.66_1.00_0.01,enc_auto/dd8d1b_4f92249afa314602b4c356d6a9137532f000.jpg HTTP/1.1
Host: static.wixstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty/1.21.4.1
date: Thu, 02 Feb 2023 03:47:20 GMT
content-type: image/webp
content-length: 123106
access-control-allow-origin: *
cache-control: public, max-age=15552000, immutable
vary: Accept
wix-tracer: 2LAMsLIubAtSxYNqzoO9z6ILpOS
x-seen-by: image-manipulator-5fdcdfd696-qcvhb
timing-allow-origin: *
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| static.wixstatic.com/media/dd8d1b_b61d2ce1df594c36a1009d94e01871baf000.jpg/v1/fill/w_1268,h_732,al_c,q_85,usm_0.66_1.00_0.01,enc_auto/dd8d1b_b61d2ce1df594c36a1009d94e01871baf000.jpg | 34.102.176.152 | 200 OK | 282 kB |
URL HTTP/2static.wixstatic.com/media/dd8d1b_b61d2ce1df594c36a1009d94e01871baf000.jpg/v1/fill/w_1268,h_732,al_c,q_85,usm_0.66_1.00_0.01,enc_auto/dd8d1b_b61d2ce1df594c36a1009d94e01871baf000.jpg IP34.102.176.152:0
File typeRIFF (little-endian) data, Web/P image\012- data Size282 kB (282034 bytes) Hash3d902e4a63886b99db94e99d1bd67494 50d8eb1ffc0e011beac9fe600012edc1e60ff2ef 319642163aee1f002e543ca25d7c782fc2eaed2cd969c2f706174d762b07801a
GET /media/dd8d1b_b61d2ce1df594c36a1009d94e01871baf000.jpg/v1/fill/w_1268,h_732,al_c,q_85,usm_0.66_1.00_0.01,enc_auto/dd8d1b_b61d2ce1df594c36a1009d94e01871baf000.jpg HTTP/1.1
Host: static.wixstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: openresty/1.21.4.1
date: Thu, 02 Feb 2023 03:47:20 GMT
content-type: image/webp
content-length: 282034
access-control-allow-origin: *
cache-control: public, max-age=15552000, immutable
vary: Accept
wix-tracer: 2LAMsMcB73z9uvgtam3RHpwsL4Y
x-seen-by: image-manipulator-5fdcdfd696-klm8m
timing-allow-origin: *
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| frog.wix.com/bt?src=29&evid=3&viewer_name=thunderbolt&caching=hit,hit&dc=84µPop=eun1_g&et=33&event_name=page%20interactive&is_cached=true&is_platform_loaded=0&is_rollout=0&ism=1&isp=0&isjp=false&iss=1&ita=1&msid=ba809566-b153-4b73-bbd2-f9c2f917d20e&pid=qsvlf&pn=1&sar=1280x1002&sessionId=cb8472c3-4bbb-4379-97ee-017fa81f82c0&siterev=636-__siteCacheRevision__&sr=1280x1024&st=2&ts=1427&tts=2034&url=https%3A%2F%2Fwww.geg.asia%2F&v=1.11662.0&vid=0a8a50fd-b903-4f82-a534-292aa904901c&bsi=2d9da992-baae-421e-9593-86c0bc1ced06|1&vsi=14c11dbf-0c18-45cc-a6a9-fa3ab0836223&wor=1280x1024&wr=1280x939&_brandId=wix | 3.208.11.48 | 204 No Content | 0 B |
URL HTTP/2frog.wix.com/bt?src=29&evid=3&viewer_name=thunderbolt&caching=hit,hit&dc=84µPop=eun1_g&et=33&event_name=page%20interactive&is_cached=true&is_platform_loaded=0&is_rollout=0&ism=1&isp=0&isjp=false&iss=1&ita=1&msid=ba809566-b153-4b73-bbd2-f9c2f917d20e&pid=qsvlf&pn=1&sar=1280x1002&sessionId=cb8472c3-4bbb-4379-97ee-017fa81f82c0&siterev=636-__siteCacheRevision__&sr=1280x1024&st=2&ts=1427&tts=2034&url=https%3A%2F%2Fwww.geg.asia%2F&v=1.11662.0&vid=0a8a50fd-b903-4f82-a534-292aa904901c&bsi=2d9da992-baae-421e-9593-86c0bc1ced06|1&vsi=14c11dbf-0c18-45cc-a6a9-fa3ab0836223&wor=1280x1024&wr=1280x939&_brandId=wix IP3.208.11.48:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bt?src=29&evid=3&viewer_name=thunderbolt&caching=hit,hit&dc=84µPop=eun1_g&et=33&event_name=page%20interactive&is_cached=true&is_platform_loaded=0&is_rollout=0&ism=1&isp=0&isjp=false&iss=1&ita=1&msid=ba809566-b153-4b73-bbd2-f9c2f917d20e&pid=qsvlf&pn=1&sar=1280x1002&sessionId=cb8472c3-4bbb-4379-97ee-017fa81f82c0&siterev=636-__siteCacheRevision__&sr=1280x1024&st=2&ts=1427&tts=2034&url=https%3A%2F%2Fwww.geg.asia%2F&v=1.11662.0&vid=0a8a50fd-b903-4f82-a534-292aa904901c&bsi=2d9da992-baae-421e-9593-86c0bc1ced06|1&vsi=14c11dbf-0c18-45cc-a6a9-fa3ab0836223&wor=1280x1024&wr=1280x939&_brandId=wix HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.geg.asia
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 03:47:20 GMT
server: nginx
access-control-allow-origin: https://www.geg.asia
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
|
|
| frog.wix.com/pa?_msid=ba809566-b153-4b73-bbd2-f9c2f917d20e&vsi=14c11dbf-0c18-45cc-a6a9-fa3ab0836223&_av=thunderbolt-1.11662.0&isb=false&_brandId=wix&_siteBranchId=undefined&_ms=2040&_lv=2.0.985%7CC&_visitorId=0a8a50fd-b903-4f82-a534-292aa904901c&_siteMemberId=undefined&bsi=2d9da992-baae-421e-9593-86c0bc1ced06%7C1&src=76&evid=1109&pid=qsvlf&pn=1&viewer=TB&pt=static&pa=editor&pti=qsvlf&uuid=dd8d1bcf-3235-4cf0-ba7b-8b458a7312ba&url=https%3A%2F%2Fwww.geg.asia%2F&ref=&bot=false&bl=en-US&pl=en-US%2Cen&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16753096649452 | 3.208.11.48 | 204 No Content | 0 B |
URL HTTP/2frog.wix.com/pa?_msid=ba809566-b153-4b73-bbd2-f9c2f917d20e&vsi=14c11dbf-0c18-45cc-a6a9-fa3ab0836223&_av=thunderbolt-1.11662.0&isb=false&_brandId=wix&_siteBranchId=undefined&_ms=2040&_lv=2.0.985%7CC&_visitorId=0a8a50fd-b903-4f82-a534-292aa904901c&_siteMemberId=undefined&bsi=2d9da992-baae-421e-9593-86c0bc1ced06%7C1&src=76&evid=1109&pid=qsvlf&pn=1&viewer=TB&pt=static&pa=editor&pti=qsvlf&uuid=dd8d1bcf-3235-4cf0-ba7b-8b458a7312ba&url=https%3A%2F%2Fwww.geg.asia%2F&ref=&bot=false&bl=en-US&pl=en-US%2Cen&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16753096649452 IP3.208.11.48:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pa?_msid=ba809566-b153-4b73-bbd2-f9c2f917d20e&vsi=14c11dbf-0c18-45cc-a6a9-fa3ab0836223&_av=thunderbolt-1.11662.0&isb=false&_brandId=wix&_siteBranchId=undefined&_ms=2040&_lv=2.0.985%7CC&_visitorId=0a8a50fd-b903-4f82-a534-292aa904901c&_siteMemberId=undefined&bsi=2d9da992-baae-421e-9593-86c0bc1ced06%7C1&src=76&evid=1109&pid=qsvlf&pn=1&viewer=TB&pt=static&pa=editor&pti=qsvlf&uuid=dd8d1bcf-3235-4cf0-ba7b-8b458a7312ba&url=https%3A%2F%2Fwww.geg.asia%2F&ref=&bot=false&bl=en-US&pl=en-US%2Cen&_isca=1&_iscf=1&_ispd=0&_ise=0&_=16753096649452 HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.geg.asia
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 03:47:20 GMT
server: nginx
access-control-allow-origin: https://www.geg.asia
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
|
|
| frog.wix.com/bpm | 3.208.11.48 | 204 No Content | 0 B |
IP3.208.11.48:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bpm HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 4235
Origin: https://www.geg.asia
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 03:47:20 GMT
server: nginx
access-control-allow-origin: https://www.geg.asia
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
|
|
| video.wixstatic.com/video/dd8d1b_b61d2ce1df594c36a1009d94e01871ba/1080p/mp4/file.mp4 | 34.102.176.152 | 206 Partial Content | 31 MB |
URL HTTP/2video.wixstatic.com/video/dd8d1b_b61d2ce1df594c36a1009d94e01871ba/1080p/mp4/file.mp4 IP34.102.176.152:0
File typeISO Media, MP4 Base Media v1 [ISO 14496-12:2003]\012- data Size31 MB (30782908 bytes) Hash7a9ab115693b744b1f51f0b885d32437 e574cbe8809f51a078bb62790ae4fc19c5d734c6 63b13bc3197337aab761b0936fa457c3c57dfb4db3ef80f6553be760574fc9e5
GET /video/dd8d1b_b61d2ce1df594c36a1009d94e01871ba/1080p/mp4/file.mp4 HTTP/1.1
Host: video.wixstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Origin: https://www.geg.asia
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 206 Partial Content
server: openresty/1.21.4.1
date: Thu, 02 Feb 2023 03:47:19 GMT
content-type: video/mp4
content-length: 30782908
x-guploader-uploadid: ADPycdvEZuJOydpR5BXDpajAet0uB9kSYAlcnc33uhVkYbyd6BZ9BSaQDQDM_hf2IPk-Dx1b0FGsErK1AKsqi7-4iOct_Q
expires: Thu, 02 Feb 2023 04:47:19 GMT
cache-control: public, max-age=31536000, immutable
vary: X-Goog-Allowed-Resources
last-modified: Fri, 12 Aug 2022 17:00:04 GMT
etag: "7a9ab115693b744b1f51f0b885d32437"
x-goog-generation: 1660323604118714
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 30782908
x-goog-hash: crc32c=nDiX0A==, md5=epqxFWk7dEsfUfC4hdMkNw==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-range: bytes 0-30782907/30782908
access-control-allow-origin: *
access-control-expose-headers: Content-Range, range
x-seen-by: gcp.us-central-1.media-router-6d7ff44fbc-5l2tm
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashe8e0173672ec76c01676a1ba4e1be857 3d01334320c94972440226cfe96c8c7646cae796 c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17341
Expires: Thu, 02 Feb 2023 08:36:24 GMT
Date: Thu, 02 Feb 2023 03:47:23 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashe8e0173672ec76c01676a1ba4e1be857 3d01334320c94972440226cfe96c8c7646cae796 c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17341
Expires: Thu, 02 Feb 2023 08:36:24 GMT
Date: Thu, 02 Feb 2023 03:47:23 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashe8e0173672ec76c01676a1ba4e1be857 3d01334320c94972440226cfe96c8c7646cae796 c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17341
Expires: Thu, 02 Feb 2023 08:36:24 GMT
Date: Thu, 02 Feb 2023 03:47:23 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashe8e0173672ec76c01676a1ba4e1be857 3d01334320c94972440226cfe96c8c7646cae796 c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17341
Expires: Thu, 02 Feb 2023 08:36:24 GMT
Date: Thu, 02 Feb 2023 03:47:23 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg | 34.120.237.76 | 200 OK | 9.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash3366ef4f8733cb9c89a5c88f63a0a441 7da46843b6d885f38a4759a08e6c899906ab7b97 7114397ee5c251cc5cb46f3433c2cc17ff68a08e0872e227671198e9b61eba0a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9600
x-amzn-requestid: 91987222-d376-4099-a4e9-5f877b5212be
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fLzO2FSDIAMFktg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ce325e-281a7e062ee3039d42ae8f83;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 07:08:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: SEH32iK4aCkxhxQyu3fSlW8uVM1Oj5hwnl2U09k_THEOdAqdEeVMJw==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:03:43 GMT
age: 20620
etag: "7da46843b6d885f38a4759a08e6c899906ab7b97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashe8e0173672ec76c01676a1ba4e1be857 3d01334320c94972440226cfe96c8c7646cae796 c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17341
Expires: Thu, 02 Feb 2023 08:36:24 GMT
Date: Thu, 02 Feb 2023 03:47:23 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F868f7eb5-a922-48b3-b59c-21db2389409e.jpeg | 34.120.237.76 | 200 OK | 9.4 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F868f7eb5-a922-48b3-b59c-21db2389409e.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash6790e3bf4d10b1ffba32a22dc588c640 cdae35517dfea800134393a1095f44462bc428a5 4f4132588ee7337fff24da64b89e43b277c4ef0a2646acfba37aea08fc0f4256
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F868f7eb5-a922-48b3-b59c-21db2389409e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9416
x-amzn-requestid: acc48967-4cc1-4bfd-bc33-7bcefd8e6547
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdKVGjqIAMFa2w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadbdb-1d1cd4de0a30760e792d32e5;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:38:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: byLFLKpRZa_blxNi2wh_ft4Ule-zNiZtSih_Quv-9BgKS87Y-wJlTA==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:00:40 GMT
age: 20803
etag: "cdae35517dfea800134393a1095f44462bc428a5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg | 34.120.237.76 | 200 OK | 5.4 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash7c823f1d6bf1c50d58eb263b85e6e37c a7b74d11494fb3254df907e5cc1eead070d84617 b2706961eb756383e0988dfdb501dc424aea59697aedd1e4a6c294c314a31935
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 5356
x-amzn-requestid: fef22c83-35a4-4990-9008-af5853f838d1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5BEB6oAMFczg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6c-68d3017555c069bc3107d150;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: i697kJpdT4ZPeMLWIftWf16pWCic0-v4tL4GDKfVfTZLo-E4-3FwDQ==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:21:38 GMT
age: 19545
etag: "a7b74d11494fb3254df907e5cc1eead070d84617"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04301881-7728-4218-a61a-642cd5ffae53.jpeg | 34.120.237.76 | 200 OK | 5.1 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04301881-7728-4218-a61a-642cd5ffae53.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash0224e848c34cb32cf932ed99dfd8468a 31c1abac8979bca5a998a6649ca3e6f59c0fb2f5 f93d5a69758e57d4d2b0d307ce98ad5ea8d86b825108873e8ea5bc36567dc5c0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04301881-7728-4218-a61a-642cd5ffae53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 5061
x-amzn-requestid: e8e96b85-5b24-48b4-bea3-6c1b93c55ca1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdKVGf3oAMFj1w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadbdb-558cb5ec6f31497d284518be;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:38:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: AeFT9dVmzOw8800DKN7VouWS3HGHRYp64On9sF62J-aOK_OGtvAa7w==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:12:52 GMT
age: 20071
etag: "31c1abac8979bca5a998a6649ca3e6f59c0fb2f5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5b1e36ab-6847-48e2-8227-fc589124cb93.jpeg | 34.120.237.76 | 200 OK | 7.0 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5b1e36ab-6847-48e2-8227-fc589124cb93.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash6f4dbd75e0cdc28265ccbe825c5c5b6c 78187b014be0ee8bf7543fb873915db8a9c8dbc4 bf49642b990d73f58ca5f9ee979271ba2ab80bae94c8f333fa5737b16016d1c8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5b1e36ab-6847-48e2-8227-fc589124cb93.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7036
x-amzn-requestid: 9d54dd82-add1-4d7d-97b7-53c92eecb724
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJxCHAqoAMF3qA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcd3-109d34d11a9834886e3080ee;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:01:39 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: U45NW79hI4Vtd7fV7kXnxqlxRQzC-u9PVlNK4D1pBkAa8CBYuUf9ig==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 07:09:17 GMT
age: 74286
etag: "78187b014be0ee8bf7543fb873915db8a9c8dbc4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| frog.wix.com/bpm | 3.208.11.48 | 204 No Content | 0 B |
IP3.208.11.48:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bpm HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1812
Origin: https://www.geg.asia
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 03:47:23 GMT
server: nginx
access-control-allow-origin: https://www.geg.asia
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79ec7db4-9aef-4e9e-a8d9-431c9085df2a.jpeg | 34.120.237.76 | 200 OK | 12 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79ec7db4-9aef-4e9e-a8d9-431c9085df2a.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashb0ca0ccee69fbee57aac373f94120bb4 5d6309502ffd0c33f6199d46f0d14d0a22e3c752 bed9d4689ff57fa636ee08dab3eef3cdf6c4e0a7103e5185151afe8ddfb755f2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79ec7db4-9aef-4e9e-a8d9-431c9085df2a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11552
x-amzn-requestid: 611f63cb-f058-493b-ac86-7e268b866fd0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdTvG9VIAMFgPg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadc17-78de7563537b111924100346;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:39:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lHLm3IkJRn59US_8SXKXQnNDUiCLIWnQ7QN-DWB3jkot9Ub3b6FUgA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:59:35 GMT
age: 20868
etag: "5d6309502ffd0c33f6199d46f0d14d0a22e3c752"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| frog.wix.com/bpm | 3.208.11.48 | 204 No Content | 0 B |
IP3.208.11.48:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bpm HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1284
Origin: https://www.geg.asia
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 03:47:23 GMT
server: nginx
access-control-allow-origin: https://www.geg.asia
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
|
|
| frog.wix.com/bpm?_msid=ba809566-b153-4b73-bbd2-f9c2f917d20e&vsi=14c11dbf-0c18-45cc-a6a9-fa3ab0836223&_av=thunderbolt-1.11662.0&isb=false&ts=3529&tsn=4135&dc=84µPop=eun1_g&caching=hit%2Chit&session_id=cb8472c3-4bbb-4379-97ee-017fa81f82c0&st=2&url=https%3A%2F%2Fwww.geg.asia%2F&ish=false&pn=1&isFirstNavigation=true&pv=true&pageId=qsvlf&isServerSide=false&is_lightbox=false&is_cached=true&is_sav_rollout=0&is_dac_rollout=0&v=1.11662.0&_brandId=wix&_siteBranchId=undefined&_ms=4135&_lv=2.0.985%7CC&_mt_instance=E0CyG-xSK6LtjBM-St4Z8AWJ1HTIXk7HOPuWYmRwMFQ.eyJpbnN0YW5jZUlkIjoiYmE4MDk1NjYtYjE1My00YjczLWJiZDItZjljMmY5MTdkMjBlIiwiYXBwRGVmSWQiOiIyMmJlZjM0NS0zYzViLTRjMTgtYjc4Mi03NGQ0MDg1MTEyZmYiLCJtZXRhU2l0ZUlkIjoiYmE4MDk1NjYtYjE1My00YjczLWJiZDItZjljMmY5MTdkMjBlIiwic2lnbkRhdGUiOiIyMDIzLTAyLTAyVDAzOjQ3OjE5LjI1NVoiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6IjBhOGE1MGZkLWI5MDMtNGY4Mi1hNTM0LTI5MmFhOTA0OTAxYyIsInNpdGVPd25lcklkIjoiZGQ4ZDFiY2YtMzIzNS00Y2YwLWJhN2ItOGI0NThhNzMxMmJhIn0&_visitorId=undefined&_siteMemberId=undefined&src=72&evid=502&_=16753096670413&tti=1962&tbt=326&iframes=0&screens=5&countScripts=31&startTimeScripts=784&durationScripts=1055&mttfbScripts=23&attfbScripts=18&tbdScripts=413656&countImages=15&startTimeImages=1150&durationImages=980&mttfbImages=205&attfbImages=266&tbdImages=842284&countFonts=5&startTimeFonts=792&durationFonts=56&mttfbFonts=29&attfbFonts=30&tbdFonts=132438&entryType=loaded&duration=2134&ttlb=589&dcl=918&transferSize=82106&decodedBodySize=379323&pageCaching=maybe%20CDN&isSsr=true&isWelcome=false&bsi=2d9da992-baae-421e-9593-86c0bc1ced06%7C1&ssrDuration=392&ssrTimestamp=1675306939867&isRollout=false&isPlatformLoaded=false&maybeBot=false&clientType=ugc&analytics=true&_isca=1&_iscf=1&_ispd=0&_ise=1 | 3.208.11.48 | 204 No Content | 0 B |
URL HTTP/2frog.wix.com/bpm?_msid=ba809566-b153-4b73-bbd2-f9c2f917d20e&vsi=14c11dbf-0c18-45cc-a6a9-fa3ab0836223&_av=thunderbolt-1.11662.0&isb=false&ts=3529&tsn=4135&dc=84µPop=eun1_g&caching=hit%2Chit&session_id=cb8472c3-4bbb-4379-97ee-017fa81f82c0&st=2&url=https%3A%2F%2Fwww.geg.asia%2F&ish=false&pn=1&isFirstNavigation=true&pv=true&pageId=qsvlf&isServerSide=false&is_lightbox=false&is_cached=true&is_sav_rollout=0&is_dac_rollout=0&v=1.11662.0&_brandId=wix&_siteBranchId=undefined&_ms=4135&_lv=2.0.985%7CC&_mt_instance=E0CyG-xSK6LtjBM-St4Z8AWJ1HTIXk7HOPuWYmRwMFQ.eyJpbnN0YW5jZUlkIjoiYmE4MDk1NjYtYjE1My00YjczLWJiZDItZjljMmY5MTdkMjBlIiwiYXBwRGVmSWQiOiIyMmJlZjM0NS0zYzViLTRjMTgtYjc4Mi03NGQ0MDg1MTEyZmYiLCJtZXRhU2l0ZUlkIjoiYmE4MDk1NjYtYjE1My00YjczLWJiZDItZjljMmY5MTdkMjBlIiwic2lnbkRhdGUiOiIyMDIzLTAyLTAyVDAzOjQ3OjE5LjI1NVoiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6IjBhOGE1MGZkLWI5MDMtNGY4Mi1hNTM0LTI5MmFhOTA0OTAxYyIsInNpdGVPd25lcklkIjoiZGQ4ZDFiY2YtMzIzNS00Y2YwLWJhN2ItOGI0NThhNzMxMmJhIn0&_visitorId=undefined&_siteMemberId=undefined&src=72&evid=502&_=16753096670413&tti=1962&tbt=326&iframes=0&screens=5&countScripts=31&startTimeScripts=784&durationScripts=1055&mttfbScripts=23&attfbScripts=18&tbdScripts=413656&countImages=15&startTimeImages=1150&durationImages=980&mttfbImages=205&attfbImages=266&tbdImages=842284&countFonts=5&startTimeFonts=792&durationFonts=56&mttfbFonts=29&attfbFonts=30&tbdFonts=132438&entryType=loaded&duration=2134&ttlb=589&dcl=918&transferSize=82106&decodedBodySize=379323&pageCaching=maybe%20CDN&isSsr=true&isWelcome=false&bsi=2d9da992-baae-421e-9593-86c0bc1ced06%7C1&ssrDuration=392&ssrTimestamp=1675306939867&isRollout=false&isPlatformLoaded=false&maybeBot=false&clientType=ugc&analytics=true&_isca=1&_iscf=1&_ispd=0&_ise=1 IP3.208.11.48:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /bpm?_msid=ba809566-b153-4b73-bbd2-f9c2f917d20e&vsi=14c11dbf-0c18-45cc-a6a9-fa3ab0836223&_av=thunderbolt-1.11662.0&isb=false&ts=3529&tsn=4135&dc=84µPop=eun1_g&caching=hit%2Chit&session_id=cb8472c3-4bbb-4379-97ee-017fa81f82c0&st=2&url=https%3A%2F%2Fwww.geg.asia%2F&ish=false&pn=1&isFirstNavigation=true&pv=true&pageId=qsvlf&isServerSide=false&is_lightbox=false&is_cached=true&is_sav_rollout=0&is_dac_rollout=0&v=1.11662.0&_brandId=wix&_siteBranchId=undefined&_ms=4135&_lv=2.0.985%7CC&_mt_instance=E0CyG-xSK6LtjBM-St4Z8AWJ1HTIXk7HOPuWYmRwMFQ.eyJpbnN0YW5jZUlkIjoiYmE4MDk1NjYtYjE1My00YjczLWJiZDItZjljMmY5MTdkMjBlIiwiYXBwRGVmSWQiOiIyMmJlZjM0NS0zYzViLTRjMTgtYjc4Mi03NGQ0MDg1MTEyZmYiLCJtZXRhU2l0ZUlkIjoiYmE4MDk1NjYtYjE1My00YjczLWJiZDItZjljMmY5MTdkMjBlIiwic2lnbkRhdGUiOiIyMDIzLTAyLTAyVDAzOjQ3OjE5LjI1NVoiLCJkZW1vTW9kZSI6ZmFsc2UsImFpZCI6IjBhOGE1MGZkLWI5MDMtNGY4Mi1hNTM0LTI5MmFhOTA0OTAxYyIsInNpdGVPd25lcklkIjoiZGQ4ZDFiY2YtMzIzNS00Y2YwLWJhN2ItOGI0NThhNzMxMmJhIn0&_visitorId=undefined&_siteMemberId=undefined&src=72&evid=502&_=16753096670413&tti=1962&tbt=326&iframes=0&screens=5&countScripts=31&startTimeScripts=784&durationScripts=1055&mttfbScripts=23&attfbScripts=18&tbdScripts=413656&countImages=15&startTimeImages=1150&durationImages=980&mttfbImages=205&attfbImages=266&tbdImages=842284&countFonts=5&startTimeFonts=792&durationFonts=56&mttfbFonts=29&attfbFonts=30&tbdFonts=132438&entryType=loaded&duration=2134&ttlb=589&dcl=918&transferSize=82106&decodedBodySize=379323&pageCaching=maybe%20CDN&isSsr=true&isWelcome=false&bsi=2d9da992-baae-421e-9593-86c0bc1ced06%7C1&ssrDuration=392&ssrTimestamp=1675306939867&isRollout=false&isPlatformLoaded=false&maybeBot=false&clientType=ugc&analytics=true&_isca=1&_iscf=1&_ispd=0&_ise=1 HTTP/1.1
Host: frog.wix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.geg.asia
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
date: Thu, 02 Feb 2023 03:47:23 GMT
server: nginx
access-control-allow-origin: https://www.geg.asia
access-control-allow-credentials: true
access-control-allow-methods: GET, POST
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23ac16a6-b0c6-4c81-9bd1-78ee332bf49a.jpeg | 34.120.237.76 | 200 OK | 15 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23ac16a6-b0c6-4c81-9bd1-78ee332bf49a.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash0ceb09fa3caa0fcda4a6314141e2d019 d08f43956f6859e4c2385231bb5506262257445f a2100701c69f86920b14714b19ec14db9ebfd91000f0ec2397b8f27d981bc1ee
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23ac16a6-b0c6-4c81-9bd1-78ee332bf49a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 14593
x-amzn-requestid: 796fc590-5a08-4765-b861-e5f707e4d7f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdLoFHQoAMFaAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadbe3-3f93635c337e77e453bba394;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:38:43 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: gYo5IyA5mM2B5nw6O2QkkZ6-go2CzG8Nwb_pWSixGplAl7LsbmWUiQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:55:43 GMT
age: 21105
etag: "d08f43956f6859e4c2385231bb5506262257445f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| www.geg.asia/ | 34.117.168.233 | 200 OK | 0 B |
IP34.117.168.233:0
NIDS | Severity | Alert | suricata | medium | ET INFO HTTP Request to a *.asia domain |
GET / HTTP/1.1
Host: www.geg.asia
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Thu, 02 Feb 2023 03:47:19 GMT
content-type: text/html; charset=UTF-8
link: <https://static.parastorage.com/>; rel=preconnect; crossorigin;,<https://static.parastorage.com/>; rel=preconnect;,<https://static.wixstatic.com/>; rel=preconnect; crossorigin;,<https://static.wixstatic.com/>; rel=preconnect;,<https://siteassets.parastorage.com>; rel=preconnect; crossorigin;,
etag: W/"dc605ca8e3232438fe67aa0f9d76796e"
content-language: en
strict-transport-security: max-age=3600
age: 2699
x-seen-by: GXNXSWFXisshliUcwO20NXdyD4zpCpFzpCPkLds0yMekAE6fCfJus6kOmDC8TbM4,qquldgcFrj2n046g4RNSVBKUaXHrucSLmP/C0nqrtU9YgeUJqUXtid+86vZww+nL,2d58ifebGbosy5xc+FRalmBbK9NMc3ZjYJIP+djMBEJucl0PG3YDEvw7HvLS0cz53QpI/ucnHvfrUjeESIoVel17hOJ60OrHYSIYOLemWo8=,2UNV7KOq4oGjA5+PKsX47PeE4JkJeK48Oko5cEfOjJRYgeUJqUXtid+86vZww+nL
vary: Accept-Encoding
x-wix-request-id: 1675309639.04958102091210544
set-cookie: ssr-caching=cache#desc=hit#varnish=hit#dc#desc=eun1_g; Max-Age=20; Expires=Thu, 02 Feb 2023 03:47:39 GMT
XSRF-TOKEN=1675309639|3Q3ZHFR_nIAd; Path=/; Domain=www.geg.asia; Secure; SameSite=None
server-timing: cache;desc=hit, varnish;desc=hit, dc;desc=eun1_g
cache-control: private,max-age=0,must-revalidate
x-content-type-options: nosniff
content-encoding: br
server: Pepyaka/1.19.10
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| video.wixstatic.com/video/dd8d1b_4f92249afa314602b4c356d6a9137532/1080p/mp4/file.mp4 | 34.102.176.152 | 206 Partial Content | 0 B |
URL HTTP/2video.wixstatic.com/video/dd8d1b_4f92249afa314602b4c356d6a9137532/1080p/mp4/file.mp4 IP34.102.176.152:0
GET /video/dd8d1b_4f92249afa314602b4c356d6a9137532/1080p/mp4/file.mp4 HTTP/1.1
Host: video.wixstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Origin: https://www.geg.asia
Connection: keep-alive
Referer: https://www.geg.asia/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 206 Partial Content
server: openresty/1.21.4.1
date: Thu, 02 Feb 2023 03:47:19 GMT
content-type: video/mp4
content-length: 43161260
x-guploader-uploadid: ADPycdvnblskpspuSdUeou7TyUjuP6G1rFlnrTZNEq5NxVhBtiwGDo7pgKEH9-Kaw3ARUFNYTIV7wSXyKyOz6Ka9EoT4Qg7ezwR6
expires: Thu, 02 Feb 2023 04:47:19 GMT
cache-control: public, max-age=31536000, immutable
vary: X-Goog-Allowed-Resources
last-modified: Tue, 25 Oct 2022 06:44:10 GMT
etag: "a57e0abf1e4a57c5d65d00aa2fcbdad0"
x-goog-generation: 1666680250737846
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43161260
x-goog-hash: crc32c=xf6xfg==, md5=pX4Kvx5KV8XWXQCqL8va0A==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-range: bytes 0-43161259/43161260
access-control-allow-origin: *
access-control-expose-headers: Content-Range, range
x-seen-by: gcp.us-central-1.media-router-6d7ff44fbc-9vdct
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|