xtrib.com/ampli-guitare
185.206.180.114301 Moved Permanently 0 B IP 185.206.180.114:0
ASN #205787 Public Cloud Ltd.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /ampli-guitare HTTP/1.1
Host: xtrib.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 06 Dec 2022 04:01:40 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: http://www.xtrib.com/ampli-guitare
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6797
Expires: Tue, 06 Dec 2022 05:54:57 GMT
Date: Tue, 06 Dec 2022 04:01:40 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ee088fab9b287e174cfd1f2c735a909f
25c3335b514a36ad1a24d00413d60c3d394f5161
494e96358ff12366213d7cc0f9197648c6c62ec14fa0d2c78732a683fa26b192
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2377
Cache-Control: max-age=112156
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 04:01:40 GMT
Etag: "638dc877-1d7"
Expires: Wed, 07 Dec 2022 11:10:56 GMT
Last-Modified: Mon, 05 Dec 2022 10:31:19 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15926
Expires: Tue, 06 Dec 2022 08:27:06 GMT
Date: Tue, 06 Dec 2022 04:01:40 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 06 Dec 2022 03:20:21 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2479
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: pHR2yvPw+Vc3wajt+zk6qsmPxmKtkR5SCVYPN31ywvESetS8WC3Bc3guSdYd2P5jYKbcC/rrncs=
x-amz-request-id: 2NDY67J8VT723QM7
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 06 Dec 2022 03:46:57 GMT
age: 883
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 04:01:40 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 06 Dec 2022 03:11:20 GMT
cache-control: public,max-age=3600
age: 3021
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
www.xtrib.com/ampli-guitare
23.36.77.32301 Moved Permanently 243 B URL HTTP/1.1 www.xtrib.com/ampli-guitare
IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash c1ebfa20fef78aeca98fec077c9e395c
b0625a4169dfbf26df4246c546091a701d2e7c85
1b58407cc70d96c7c2a888bf848ecfa03f6105e1ee1d8db3598f2a45f5bc7c28
Analyzer Verdict Alert fortinet Malware
GET /ampli-guitare HTTP/1.1
Host: www.xtrib.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: Apache
Location: https://www.xtrib.com/ampli-guitare
Content-Length: 243
Content-Type: text/html; charset=iso-8859-1
Cache-Control: max-age=0
Date: Tue, 06 Dec 2022 04:01:41 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2b9d6a686aa3c4ea24568425e43a5221
d53bb4c9579bd1db78a0520619e888aec79f750f
c38734a8dbe51217d73896c0bf7f5c38c107fd79e0dee24b717f130377e9b5f7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2356
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 04:01:41 GMT
Last-Modified: Tue, 06 Dec 2022 03:22:25 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
www.xtrib.com/ampli-guitare
23.36.77.32301 Moved Permanently 243 B URL HTTP/2 www.xtrib.com/ampli-guitare
IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash d7340468c5102b38f2ece9860a0b5802
b6b87de490d1b6e747a7789bab8fb770968538a1
963c61f8760b51399f732f66978c0237f621762c58a1cb2c4146ddfead928257
Analyzer Verdict Alert fortinet Malware
GET /ampli-guitare HTTP/1.1
Host: www.xtrib.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
server: Apache
location: http://www.xtrib.com/ampli-guitare/
content-length: 243
content-type: text/html; charset=iso-8859-1
cache-control: max-age=0
date: Tue, 06 Dec 2022 04:01:41 GMT
X-Firefox-Spdy: h2
www.xtrib.com/ampli-guitare/
23.36.77.32301 Moved Permanently 244 B URL HTTP/1.1 www.xtrib.com/ampli-guitare/
IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash cd91f430af9ed5fe56906f33492a8c25
99edb0b195d08c8c915a0695acccd29395679877
a1b1cb053ee0e7cba8af3558edb61ef903ee6e36cce30d2065da426eff412b0a
Analyzer Verdict Alert fortinet Malware
GET /ampli-guitare/ HTTP/1.1
Host: www.xtrib.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: Apache
Location: https://www.xtrib.com/ampli-guitare/
Content-Length: 244
Content-Type: text/html; charset=iso-8859-1
Cache-Control: max-age=0
Date: Tue, 06 Dec 2022 04:01:41 GMT
Connection: keep-alive
www.xtrib.com/ampli-guitare/
23.36.77.32301 Moved Permanently 230 B URL HTTP/2 www.xtrib.com/ampli-guitare/
IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 934ff33450d508ee82e32dd186caf9e2
b3960e0b889341eb3673bbea9fa1ffa555714a9e
44ead04c5b2938c7d5f06b74fd0462f1d5099be6c139526bee893e29d2e6a4ef
Analyzer Verdict Alert fortinet Malware
GET /ampli-guitare/ HTTP/1.1
Host: www.xtrib.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 301 Moved Permanently
server: Apache
location: https://www.xtrib.com/
content-length: 230
content-type: text/html; charset=iso-8859-1
cache-control: max-age=0
date: Tue, 06 Dec 2022 04:01:41 GMT
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.35.190.173101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.35.190.173:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: TBkOmPzauaKBcTXIg7YWjw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: K9rd6PjAKZdNZ3NQ/hjOrxvX60c=
www.xtrib.com/
23.36.77.32200 OK 31 kB IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1947)
Hash 2f462965d81bf41f20e753e48c457242
32dbf3fe5755f99335a28f7648885a67b6226943
ed56541155acdb795c0d3a604470b428eaf677b740f0ada98ab678f31428c588
GET / HTTP/1.1
Host: www.xtrib.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Wed, 09 Mar 2022 09:34:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 31387
content-type: text/html
expires: Tue, 06 Dec 2022 04:01:41 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 06 Dec 2022 04:01:41 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash c10bc583c46449dc192a809398b4e814
ff0f7ad905d32d7f3d01e4054552d0ad551503a5
defd2b2559e55c9c6c0f8be9b23c53c4e781a736feae3dd73b4d203b69cfcc57
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 04:01:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.imgur.com/I3f7W3q.jpg
151.101.84.193200 OK 358 kB IP 151.101.84.193:0
File type JPEG image data, baseline, precision 8, 1080x2220, components 3\012- data
Size 358 kB (357652 bytes)
Hash f58794248bcdc5bf1d241befa3a7b391
ce79b18eafd84855170bcfe8c2b1000cb5f56883
3ec892c1302fb901a6784e6c2f42a4bdc04e636bee1432052aad8029e4e9b356
GET /I3f7W3q.jpg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtrib.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 16 Jun 2021 06:43:06 GMT
etag: "f58794248bcdc5bf1d241befa3a7b391"
x-amz-storage-class: STANDARD_IA
content-type: image/jpeg
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 06 Dec 2022 04:01:41 GMT
age: 2960986
x-served-by: cache-iad-kjyo7100068-IAD, cache-bma1680-BMA
x-cache: HIT, HIT
x-cache-hits: 36, 1
x-timer: S1670299302.845430,VS0,VE2
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 357652
X-Firefox-Spdy: h2
www.xtrib.com/wp-content/themes/beautiplus/style.css?ver=4.7.5-alpha-40547
23.36.77.32200 OK 4.2 kB URL HTTP/2 www.xtrib.com/wp-content/themes/beautiplus/style.css?ver=4.7.5-alpha-40547
IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (387), with CRLF line terminators
Hash 8105c4d994168fc510d3fb74980119c1
44988b389a4bc0a700a9fb2f217aee82e5ae2b44
86bba00e5f28144d9d8a3eb9dc1a89b41905726ffe56316bab2fb462af788ec8
GET /wp-content/themes/beautiplus/style.css?ver=4.7.5-alpha-40547 HTTP/1.1
Host: www.xtrib.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtrib.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Thu, 01 Apr 2021 12:53:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4199
content-type: text/css
expires: Tue, 06 Dec 2022 04:01:41 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 06 Dec 2022 04:01:41 GMT
X-Firefox-Spdy: h2
www.xtrib.com/wp-content/themes/beautiplus/css/nivo-slider.css?ver=4.7.5-alpha-40547
23.36.77.32200 OK 1.2 kB URL HTTP/2 www.xtrib.com/wp-content/themes/beautiplus/css/nivo-slider.css?ver=4.7.5-alpha-40547
IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
File type ASCII text, with CRLF line terminators
Hash 9426284836fbf66e4d2335f84d9a41e8
d0c6e52d9e5fef693e3098f963ebb491744bb43c
0c8b765629fa9242d929767f1e38a0fa2baafb69e21f23d0e65c69016ea54b06
GET /wp-content/themes/beautiplus/css/nivo-slider.css?ver=4.7.5-alpha-40547 HTTP/1.1
Host: www.xtrib.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtrib.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Thu, 01 Apr 2021 12:53:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1229
content-type: text/css
expires: Tue, 06 Dec 2022 04:01:41 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 06 Dec 2022 04:01:41 GMT
X-Firefox-Spdy: h2
www.xtrib.com/wp-content/themes/beautiplus/css/default.css?ver=4.7.5-alpha-40547
23.36.77.32200 OK 3.3 kB URL HTTP/2 www.xtrib.com/wp-content/themes/beautiplus/css/default.css?ver=4.7.5-alpha-40547
IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
File type assembler source, ASCII text, with very long lines (556), with CRLF line terminators
Hash b030e5b6e71eee43f818528d4944d16a
6d72741f550b79a00b5d648323f506f8fbb42372
2e65c271f1f291070322c8fc8fe13d147426c928eba949def721e2a6269f198e
GET /wp-content/themes/beautiplus/css/default.css?ver=4.7.5-alpha-40547 HTTP/1.1
Host: www.xtrib.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtrib.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Thu, 01 Apr 2021 12:53:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3316
content-type: text/css
expires: Tue, 06 Dec 2022 04:01:41 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 06 Dec 2022 04:01:41 GMT
X-Firefox-Spdy: h2
www.xtrib.com/wp-content/themes/beautiplus/js/custom.js?ver=4.7.5-alpha-40547
23.36.77.32200 OK 903 B URL HTTP/2 www.xtrib.com/wp-content/themes/beautiplus/js/custom.js?ver=4.7.5-alpha-40547
IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
File type ASCII text, with CRLF line terminators
Hash ca9e5e48e665498b456118d38c5f2c92
065cc8c8979d9706b59a8237cec08628cbaf006d
32f6daeb8d4d15a8e6c3dbee07d8136310ad10a35c123816759e5dc7ead6e43f
GET /wp-content/themes/beautiplus/js/custom.js?ver=4.7.5-alpha-40547 HTTP/1.1
Host: www.xtrib.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtrib.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Thu, 01 Apr 2021 12:53:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 903
content-type: application/javascript
expires: Tue, 06 Dec 2022 04:01:41 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 06 Dec 2022 04:01:41 GMT
X-Firefox-Spdy: h2
www.xtrib.com/wp-content/themes/beautiplus/css/font-awesome.css?ver=4.7.5-alpha-40547
23.36.77.32200 OK 6.6 kB URL HTTP/2 www.xtrib.com/wp-content/themes/beautiplus/css/font-awesome.css?ver=4.7.5-alpha-40547
IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
File type troff or preprocessor input, ASCII text, with very long lines (357), with CRLF line terminators
Hash 46a3badf99d77a6ad1d6c3fa430477e7
413ec2b44cccdc8619a71383979b6a5c2f8d81e1
085b822fdc052854d1c9bd954a2dbcca7e2345ad8cffd529be2a84ac69700e3b
GET /wp-content/themes/beautiplus/css/font-awesome.css?ver=4.7.5-alpha-40547 HTTP/1.1
Host: www.xtrib.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtrib.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Thu, 01 Apr 2021 12:53:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6626
content-type: text/css
expires: Tue, 06 Dec 2022 04:01:41 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 06 Dec 2022 04:01:41 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7dfb548d8f8a99d32050803775fad5d6
8b47999a01db7c2217d76a1cec576809a229cf1b
68dd2a1e5a0002f4d25d3b5884ab55bc6b5a91e38f6dc464c4261b19c6e5887e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 04:01:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.imgur.com/vnNyQwC.png
151.101.84.193200 OK 36 kB IP 151.101.84.193:0
File type PNG image data, 650 x 401, 8-bit colormap, non-interlaced\012- data
Hash 6a55283860a44960e738d100d1d1df09
955840871c6364e7dd77fd4550a66e1f14e86dbf
81b3075c95db7388c5da1cf2b12e0a0f320edd1a50756b737e2dc1f12bfab326
GET /vnNyQwC.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtrib.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Apr 2021 15:16:35 GMT
etag: "6a55283860a44960e738d100d1d1df09"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 06 Dec 2022 04:01:41 GMT
age: 1561096
x-served-by: cache-iad-kiad7000177-IAD, cache-bma1680-BMA
x-cache: HIT, MISS
x-cache-hits: 17, 0
x-timer: S1670299302.837921,VS0,VE91
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 36401
X-Firefox-Spdy: h2
i.imgur.com/9MtVTRe.jpg
151.101.84.193200 OK 13 kB IP 151.101.84.193:0
File type JPEG image data, progressive, precision 8, 665x381, components 3\012- data
Hash bf122dbf9500cc726987179023758f26
c6c5262afeeb66d2afc7aa5123dee139e838d1c1
92839a97aec6c4c933c0d2cc7993744b3a05e10207bb445fb5f3ef7198932503
GET /9MtVTRe.jpg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtrib.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 12 Apr 2021 22:28:15 GMT
etag: "bf122dbf9500cc726987179023758f26"
content-type: image/jpeg
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 06 Dec 2022 04:01:41 GMT
age: 1724338
x-served-by: cache-iad-kcgs7200115-IAD, cache-bma1680-BMA
x-cache: HIT, MISS
x-cache-hits: 27, 0
x-timer: S1670299302.838090,VS0,VE91
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 13355
X-Firefox-Spdy: h2
i.imgur.com/MCRCEQC.jpg
151.101.84.193200 OK 14 kB IP 151.101.84.193:0
File type JPEG image data, progressive, precision 8, 261x450, components 3\012- data
Hash 15cdc0171267487049ed97190f0a58cf
3153a336b9d1834a57e45f852451289b5dbc6201
4a57a44cd4ef40190322215adbd860a0007ae9f8a05f4284aa4ed1e2dc54640e
GET /MCRCEQC.jpg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtrib.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Jul 2021 08:55:09 GMT
etag: "15cdc0171267487049ed97190f0a58cf"
content-type: image/jpeg
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 06 Dec 2022 04:01:41 GMT
age: 150115
x-served-by: cache-iad-kcgs7200070-IAD, cache-bma1680-BMA
x-cache: HIT, MISS
x-cache-hits: 4, 0
x-timer: S1670299302.838979,VS0,VE91
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 13931
X-Firefox-Spdy: h2
i.imgur.com/pUi80kC.jpg
151.101.84.193200 OK 87 kB IP 151.101.84.193:0
File type JPEG image data, baseline, precision 8, 1280x720, components 3\012- data
Hash 278bc38aa422ebcda5f2283b816425d5
18c37d2fb1f5cc401d05e73ceae5b4cdbe1606d6
aa4202ad39d92eb14b7e9b8e5b1d893f6088bec8132bea26186e691bdcf863e9
GET /pUi80kC.jpg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtrib.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 18 Apr 2021 19:29:57 GMT
etag: "278bc38aa422ebcda5f2283b816425d5"
content-type: image/jpeg
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 06 Dec 2022 04:01:41 GMT
age: 5076506
x-served-by: cache-iad-kcgs7200025-IAD, cache-bma1680-BMA
x-cache: HIT, MISS
x-cache-hits: 88, 0
x-timer: S1670299302.838018,VS0,VE92
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 87112
X-Firefox-Spdy: h2
www.xtrib.com/wp-content/themes/beautiplus/css/responsive.css?ver=4.7.5-alpha-40547
23.36.77.32200 OK 1.5 kB URL HTTP/2 www.xtrib.com/wp-content/themes/beautiplus/css/responsive.css?ver=4.7.5-alpha-40547
IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
File type ASCII text, with CRLF line terminators
Hash 91dcd88c615141645daee52e690ddbc5
1609d3a340abc971dcaad0348589109614e48d45
8165f8aa3a6bd233f898a9da08ffc70f561ec224626887c82b4a0b24fb379372
GET /wp-content/themes/beautiplus/css/responsive.css?ver=4.7.5-alpha-40547 HTTP/1.1
Host: www.xtrib.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtrib.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Thu, 01 Apr 2021 12:53:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1485
content-type: text/css
expires: Tue, 06 Dec 2022 04:01:41 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 06 Dec 2022 04:01:41 GMT
X-Firefox-Spdy: h2
i.imgur.com/9CiASr8.jpg
151.101.84.193200 OK 123 kB IP 151.101.84.193:0
File type JPEG image data, baseline, precision 8, 600x400, components 3\012- data
Size 123 kB (123416 bytes)
Hash 930b840844d3561a7533c4fc772e16e9
03ae992af35cdc86a21ac67b57784c5549983503
2a99dca3a8327e3019e1827240caba44086d4d7db8bde9df5a15eb1720f9a7b6
GET /9CiASr8.jpg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtrib.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 11 Apr 2021 19:46:09 GMT
etag: "930b840844d3561a7533c4fc772e16e9"
content-type: image/jpeg
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 06 Dec 2022 04:01:41 GMT
age: 400343
x-served-by: cache-iad-kiad7000078-IAD, cache-bma1680-BMA
x-cache: HIT, MISS
x-cache-hits: 13, 0
x-timer: S1670299302.838161,VS0,VE93
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 123416
X-Firefox-Spdy: h2
www.xtrib.com/wp-includes/js/jquery/jquery.js?ver=1.12.4
23.36.77.32301 Moved Permanently 230 B URL HTTP/2 www.xtrib.com/wp-includes/js/jquery/jquery.js?ver=1.12.4
IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 934ff33450d508ee82e32dd186caf9e2
b3960e0b889341eb3673bbea9fa1ffa555714a9e
44ead04c5b2938c7d5f06b74fd0462f1d5099be6c139526bee893e29d2e6a4ef
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1
Host: www.xtrib.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtrib.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 301 Moved Permanently
server: Apache
location: https://www.xtrib.com/
content-length: 230
content-type: text/html; charset=iso-8859-1
cache-control: max-age=0
date: Tue, 06 Dec 2022 04:01:41 GMT
X-Firefox-Spdy: h2
i.imgur.com/FieVQXX.png
151.101.84.193200 OK 242 kB IP 151.101.84.193:0
File type PNG image data, 366 x 411, 8-bit/color RGBA, non-interlaced\012- data
Size 242 kB (242487 bytes)
Hash 52fe3907d072147472960650e592e2ba
b6d867baa8b73d6fcaf6bea3ebc679a4577cfd55
53ec54a1bd8b55e9afd927536cd6c1302c268389adbcfcbc7d75dfcf21fd3f5f
GET /FieVQXX.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtrib.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Apr 2021 04:46:08 GMT
etag: "52fe3907d072147472960650e592e2ba"
x-amz-storage-class: STANDARD_IA
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 06 Dec 2022 04:01:41 GMT
age: 278795
x-served-by: cache-iad-kiad7000022-IAD, cache-bma1680-BMA
x-cache: HIT, MISS
x-cache-hits: 8, 0
x-timer: S1670299302.838779,VS0,VE94
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 242487
X-Firefox-Spdy: h2
www.xtrib.com/wp-content/themes/beautiplus/css/animation.css?ver=4.7.5-alpha-40547
23.36.77.32200 OK 4.6 kB URL HTTP/2 www.xtrib.com/wp-content/themes/beautiplus/css/animation.css?ver=4.7.5-alpha-40547
IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (878), with CRLF line terminators
Hash 3ac7bee2caf2bed3b48134df952e9213
18a37c06ff6b6f7a1e93a5010f057b3f81f55735
b56dd763607f16a3b14a1aac80f3f827fc38ddc4ab699343e317addd8ed3f317
GET /wp-content/themes/beautiplus/css/animation.css?ver=4.7.5-alpha-40547 HTTP/1.1
Host: www.xtrib.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtrib.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Thu, 01 Apr 2021 12:53:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4578
content-type: text/css
expires: Tue, 06 Dec 2022 04:01:41 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 06 Dec 2022 04:01:41 GMT
X-Firefox-Spdy: h2
i.imgur.com/C5o5SwC.jpg
151.101.84.193200 OK 51 kB IP 151.101.84.193:0
File type JPEG image data, progressive, precision 8, 1149x556, components 3\012- data
Hash ab7c542b0e02a600a7d68d5e226314d5
67c42b6039c0b4aa2031d64bd69dc4418317d71d
a61c2d9c11e7138bbfb9e206fcb85f470bdecd6c00f55c094b7f1647fc1912cc
GET /C5o5SwC.jpg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtrib.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 10 Apr 2021 05:02:12 GMT
etag: "ab7c542b0e02a600a7d68d5e226314d5"
content-type: image/jpeg
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 06 Dec 2022 04:01:41 GMT
age: 1090254
x-served-by: cache-iad-kcgs7200169-IAD, cache-bma1680-BMA
x-cache: HIT, MISS
x-cache-hits: 12, 0
x-timer: S1670299302.838247,VS0,VE96
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 51210
X-Firefox-Spdy: h2
www.xtrib.com/wp-content/themes/beautiplus/js/jquery.nivo.slider.js?ver=4.7.5-alpha-40547
23.36.77.32200 OK 4.9 kB URL HTTP/2 www.xtrib.com/wp-content/themes/beautiplus/js/jquery.nivo.slider.js?ver=4.7.5-alpha-40547
IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (386), with CRLF line terminators
Hash b825babfeb5e8c7187513ee412d73001
0e1b8c8a27ebf7a8fb571b30f955487802348fa6
32840abf7fc3f3e47b9c3643faacb3d2c106e4532021c70c8f53b4aad3af672a
GET /wp-content/themes/beautiplus/js/jquery.nivo.slider.js?ver=4.7.5-alpha-40547 HTTP/1.1
Host: www.xtrib.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtrib.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Thu, 01 Apr 2021 12:53:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4886
content-type: application/javascript
expires: Tue, 06 Dec 2022 04:01:41 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 06 Dec 2022 04:01:41 GMT
X-Firefox-Spdy: h2
i.imgur.com/4SDx5Hr.png
151.101.84.193200 OK 10 kB IP 151.101.84.193:0
File type PNG image data, 502 x 519, 8-bit colormap, non-interlaced\012- data
Hash 5bd6cee52a55ef927b7bd9c61f4af5c0
c40e8711626b8b9d5528ea86412f2379e5e236f1
372e689f96e3e707c47a2e9d60b5dcc96db9eebe5fb2a1f72e168f8406e1d7d6
GET /4SDx5Hr.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtrib.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Apr 2021 07:39:49 GMT
etag: "5bd6cee52a55ef927b7bd9c61f4af5c0"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 06 Dec 2022 04:01:41 GMT
age: 1724324
x-served-by: cache-iad-kiad7000079-IAD, cache-bma1680-BMA
x-cache: HIT, MISS
x-cache-hits: 25, 0
x-timer: S1670299302.845441,VS0,VE91
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 10178
X-Firefox-Spdy: h2
www.xtrib.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
23.36.77.32301 Moved Permanently 230 B URL HTTP/2 www.xtrib.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 934ff33450d508ee82e32dd186caf9e2
b3960e0b889341eb3673bbea9fa1ffa555714a9e
44ead04c5b2938c7d5f06b74fd0462f1d5099be6c139526bee893e29d2e6a4ef
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: www.xtrib.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtrib.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 301 Moved Permanently
server: Apache
location: https://www.xtrib.com/
content-length: 230
content-type: text/html; charset=iso-8859-1
cache-control: max-age=0
date: Tue, 06 Dec 2022 04:01:41 GMT
X-Firefox-Spdy: h2
www.xtrib.com/wp-includes/js/wp-embed.min.js?ver=4.7.5-alpha-40547
23.36.77.32301 Moved Permanently 230 B URL HTTP/2 www.xtrib.com/wp-includes/js/wp-embed.min.js?ver=4.7.5-alpha-40547
IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 934ff33450d508ee82e32dd186caf9e2
b3960e0b889341eb3673bbea9fa1ffa555714a9e
44ead04c5b2938c7d5f06b74fd0462f1d5099be6c139526bee893e29d2e6a4ef
GET /wp-includes/js/wp-embed.min.js?ver=4.7.5-alpha-40547 HTTP/1.1
Host: www.xtrib.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtrib.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 301 Moved Permanently
server: Apache
location: https://www.xtrib.com/
content-length: 230
content-type: text/html; charset=iso-8859-1
cache-control: max-age=0
date: Tue, 06 Dec 2022 04:01:41 GMT
X-Firefox-Spdy: h2
i.imgur.com/8HfaYF5.png
151.101.84.193200 OK 100 kB IP 151.101.84.193:0
File type PNG image data, 1212 x 744, 8-bit/color RGBA, non-interlaced\012- data
Size 100 kB (100370 bytes)
Hash 0a6475ff5b116dc6efad52b238d39eff
8c70adc9f5c74cca295e5b74bbca64642c460b72
c98e7f4ec85053471ae25eb4068d8aa07ddeafd93f8ccc9b591db173a408b166
GET /8HfaYF5.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtrib.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Jul 2021 19:56:13 GMT
etag: "0a6475ff5b116dc6efad52b238d39eff"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 06 Dec 2022 04:01:41 GMT
age: 278796
x-served-by: cache-iad-kcgs7200038-IAD, cache-bma1680-BMA
x-cache: HIT, MISS
x-cache-hits: 9, 0
x-timer: S1670299302.838959,VS0,VE101
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 100370
X-Firefox-Spdy: h2
i.imgur.com/RHGD7d5.jpg
151.101.84.193200 OK 142 kB IP 151.101.84.193:0
File type JPEG image data, baseline, precision 8, 1280x720, components 3\012- data
Size 142 kB (141532 bytes)
Hash 7915f0680d5eeff055bc61abb514b71b
ad08095f30bc80ad4882a1c888c8a3ecbdc4fc58
fdcae06bc6b898927fd47cf4462fd3b894b4c896dcfee067911bb578063f81e1
GET /RHGD7d5.jpg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtrib.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Jun 2021 22:05:18 GMT
etag: "7915f0680d5eeff055bc61abb514b71b"
x-amz-storage-class: STANDARD_IA
content-type: image/jpeg
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 06 Dec 2022 04:01:41 GMT
age: 1780547
x-served-by: cache-iad-kcgs7200087-IAD, cache-bma1680-BMA
x-cache: HIT, MISS
x-cache-hits: 28, 0
x-timer: S1670299302.845397,VS0,VE96
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 141532
X-Firefox-Spdy: h2
i.imgur.com/DT8qn7i.png
151.101.84.193200 OK 55 kB IP 151.101.84.193:0
File type PNG image data, 480 x 276, 8-bit/color RGBA, non-interlaced\012- data
Hash e0c4d02a40b2500dce08a5335835a79b
c2adcef7d1f3a884e49587d795ac682b9c9aa48b
dc9a7e06ded5902e010f229fef73f0a4c1eb27b62865a59d51d27a9361b0c2d6
GET /DT8qn7i.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtrib.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 08 Apr 2021 12:30:52 GMT
etag: "e0c4d02a40b2500dce08a5335835a79b"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 06 Dec 2022 04:01:41 GMT
age: 2382316
x-served-by: cache-iad-kcgs7200045-IAD, cache-bma1680-BMA
x-cache: HIT, MISS
x-cache-hits: 38, 0
x-timer: S1670299302.838338,VS0,VE104
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 54978
X-Firefox-Spdy: h2
www.xtrib.com/
23.36.77.32200 OK 31 kB IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1947)
Hash 2f462965d81bf41f20e753e48c457242
32dbf3fe5755f99335a28f7648885a67b6226943
ed56541155acdb795c0d3a604470b428eaf677b740f0ada98ab678f31428c588
GET / HTTP/1.1
Host: www.xtrib.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.xtrib.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Wed, 09 Mar 2022 09:34:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 31387
content-type: text/html
expires: Tue, 06 Dec 2022 04:01:42 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 06 Dec 2022 04:01:42 GMT
X-Firefox-Spdy: h2
www.xtrib.com/
23.36.77.32200 OK 31 kB IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1947)
Hash 2f462965d81bf41f20e753e48c457242
32dbf3fe5755f99335a28f7648885a67b6226943
ed56541155acdb795c0d3a604470b428eaf677b740f0ada98ab678f31428c588
GET / HTTP/1.1
Host: www.xtrib.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.xtrib.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Wed, 09 Mar 2022 09:34:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 31387
content-type: text/html
expires: Tue, 06 Dec 2022 04:01:42 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 06 Dec 2022 04:01:42 GMT
X-Firefox-Spdy: h2
www.xtrib.com/
23.36.77.32200 OK 31 kB IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1947)
Hash 2f462965d81bf41f20e753e48c457242
32dbf3fe5755f99335a28f7648885a67b6226943
ed56541155acdb795c0d3a604470b428eaf677b740f0ada98ab678f31428c588
GET / HTTP/1.1
Host: www.xtrib.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.xtrib.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Wed, 09 Mar 2022 09:34:16 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 31387
content-type: text/html
expires: Tue, 06 Dec 2022 04:01:42 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 06 Dec 2022 04:01:42 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e24f2da4ed2e3cd07b0999a67550d634
6e2277e734fd0015849c3554dd2cf2ae289c2cf2
74dc14d7d9ba8bba4a162680e59801af1d7c2995639df51f32ff2f3d4d0b0051
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 04:01:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e24f2da4ed2e3cd07b0999a67550d634
6e2277e734fd0015849c3554dd2cf2ae289c2cf2
74dc14d7d9ba8bba4a162680e59801af1d7c2995639df51f32ff2f3d4d0b0051
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 04:01:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.xtrib.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Dec 2022 06:30:11 GMT
expires: Sat, 02 Dec 2023 06:30:11 GMT
cache-control: public, max-age=31536000
age: 336691
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 79c225db327a78b782f5a9512b07eaf0
398a1be3a70264d959146d6670d2ca54cdf4e91a
8539ea44d81775448ae8c6179d54d8a397c559b112291fa78abcf6ac6c480815
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 04:01:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.xtrib.com/wp-content/themes/beautiplus/images/mobile_nav_right.png
23.36.77.32200 OK 204 B URL HTTP/2 www.xtrib.com/wp-content/themes/beautiplus/images/mobile_nav_right.png
IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
File type PNG image data, 46 x 57, 8-bit/color RGBA, non-interlaced\012- data
Hash d2c449bdfdd3e559230caea526d9a94f
58a34e44ca14e24f57196ab7294181483dbc1131
5093f07e65d77d95ef04b38378181fe95097eba06e5935bb4514751eeb154af2
GET /wp-content/themes/beautiplus/images/mobile_nav_right.png HTTP/1.1
Host: www.xtrib.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtrib.com/wp-content/themes/beautiplus/style.css?ver=4.7.5-alpha-40547
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Apache
last-modified: Thu, 01 Apr 2021 12:53:04 GMT
accept-ranges: bytes
content-length: 204
content-type: image/png
expires: Tue, 06 Dec 2022 04:01:42 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Tue, 06 Dec 2022 04:01:42 GMT
X-Firefox-Spdy: h2
www.xtrib.com/favicon.ico
23.36.77.32301 Moved Permanently 241 B URL HTTP/2 www.xtrib.com/favicon.ico
IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8b42359b165011349c57f0ad6b7d0cf2
794ef4733a1822c0b56ac2252bf6a04f8f8e619d
55590ea220195eec3bd24bde0f1a4ce7538571bc29ce9eadc166c8ce6e55c733
GET /favicon.ico HTTP/1.1
Host: www.xtrib.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtrib.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 301 Moved Permanently
server: Apache
location: http://www.xtrib.com/favicon.ico/
content-length: 241
content-type: text/html; charset=iso-8859-1
cache-control: max-age=0
date: Tue, 06 Dec 2022 04:01:42 GMT
X-Firefox-Spdy: h2
www.xtrib.com/favicon.ico/
23.36.77.32301 Moved Permanently 242 B URL HTTP/1.1 www.xtrib.com/favicon.ico/
IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash d12e1e7b3af6260b4052174c5c2e9e62
7de4f39ae2fa94c04f3f43f876a1fbccfddb4ee6
e639c2027fbed0e8a85e0f87d388464c1de98fc6e8b47856e85b624ab5924010
GET /favicon.ico/ HTTP/1.1
Host: www.xtrib.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Server: Apache
Location: https://www.xtrib.com/favicon.ico/
Content-Length: 242
Content-Type: text/html; charset=iso-8859-1
Cache-Control: max-age=0
Date: Tue, 06 Dec 2022 04:01:42 GMT
Connection: keep-alive
www.xtrib.com/favicon.ico/
23.36.77.32301 Moved Permanently 230 B URL HTTP/2 www.xtrib.com/favicon.ico/
IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 934ff33450d508ee82e32dd186caf9e2
b3960e0b889341eb3673bbea9fa1ffa555714a9e
44ead04c5b2938c7d5f06b74fd0462f1d5099be6c139526bee893e29d2e6a4ef
GET /favicon.ico/ HTTP/1.1
Host: www.xtrib.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
server: Apache
location: https://www.xtrib.com/
content-length: 230
content-type: text/html; charset=iso-8859-1
cache-control: max-age=0
date: Tue, 06 Dec 2022 04:01:42 GMT
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15750
Expires: Tue, 06 Dec 2022 08:24:12 GMT
Date: Tue, 06 Dec 2022 04:01:42 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15750
Expires: Tue, 06 Dec 2022 08:24:12 GMT
Date: Tue, 06 Dec 2022 04:01:42 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15750
Expires: Tue, 06 Dec 2022 08:24:12 GMT
Date: Tue, 06 Dec 2022 04:01:42 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15750
Expires: Tue, 06 Dec 2022 08:24:12 GMT
Date: Tue, 06 Dec 2022 04:01:42 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faeae6973-c3cb-4597-8dcc-f36e4cd35fda.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faeae6973-c3cb-4597-8dcc-f36e4cd35fda.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5529617b0748f2d8c82ef99c1ac116a8
a862b74508113ae72b56b9b3de0c75ba559b9032
376a82ae4a5b80f59fb746be79bca569b03a74c345845c7bbf15189964b0bb96
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faeae6973-c3cb-4597-8dcc-f36e4cd35fda.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11469
x-amzn-requestid: f60a3f0d-38f7-4f82-bdd5-9e31814ab1d9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSuZGAXIAMFwuA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64c2-5b4b99e779a0aaa71a311a1c;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:10 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bWcuXixVA50JUynSO7ar3nWfjsTa5iOteSYq88bWPlQvz__1qfv7Uw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:41:49 GMT
age: 22793
etag: "a862b74508113ae72b56b9b3de0c75ba559b9032"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a1b8c21-bea6-4053-8dea-90393eea45b7.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a1b8c21-bea6-4053-8dea-90393eea45b7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 30d72693680b3ac91c0eee4d47a26196
cd923a5a3810bfe86be2eca4b97c739d76756d93
69ca9e172f6b0c5bf158022d533701b89282630deaa0ce7df27ed459c9bfe75e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a1b8c21-bea6-4053-8dea-90393eea45b7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8656
x-amzn-requestid: cfc71f7f-d1c6-47c9-8107-864701dbf3c3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSwkEHmIAMFUnw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64d0-6705510852d26ae24b3e5ea4;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:24 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JVEVoNv1w1lqFYG0M8v2GK92-1MfPxn8SnZv5JZitWWEDuXJ4DwmqQ==
via: 1.1 c9b161639a9353c2354b895548ea9fca.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:48:41 GMT
age: 22381
etag: "cd923a5a3810bfe86be2eca4b97c739d76756d93"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F461bc4a6-a90b-41a8-99ce-a502ba9ed21f.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F461bc4a6-a90b-41a8-99ce-a502ba9ed21f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dcb8fe0c4ba323ab2483fa290c291051
6706e02d6b95edc3a33c951f07d04b0fb7415b77
6be68deb3a330955027ec16eaca2cdf4e2776620ffb7cb995922664b24400f02
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F461bc4a6-a90b-41a8-99ce-a502ba9ed21f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8749
x-amzn-requestid: ee03c447-299b-45d5-b8c6-12d4d1dc436d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_spHdBIAMFywQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d131d-0c9805c6112ec9ec6b9d1544;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:33 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tsL8hmcWaBeKYVG2b4g7ebl-sQ0Z5jZaexEfvldfzq9COcOdzqLhUA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:48:49 GMT
age: 22373
etag: "6706e02d6b95edc3a33c951f07d04b0fb7415b77"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc696fe00-4af0-41c0-a10e-ba5dcc55c22b.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc696fe00-4af0-41c0-a10e-ba5dcc55c22b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f4193f05dfd1de8bf795f433d4387243
b76ea6ae9df756f131ec16b01cdc7ab19b2d01be
b56231f3c788519751528b849a442d5c7ed828ea4ce3321fd629ca27440ea6e3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc696fe00-4af0-41c0-a10e-ba5dcc55c22b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6920
x-amzn-requestid: 05ec2698-a5ee-4046-be77-0036755f2946
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSwaEd-IAMF_-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64cf-783b236b79b1e9ba22098cb2;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:23 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: RF_AmYN7VQghDpDX6kEyBEBZtvR8dfLpwuqk75bGpn8q2OMc46lVgA==
via: 1.1 d0387b833e3ca8cb748a1296b4b4bf2a.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:48:31 GMT
age: 22391
etag: "b76ea6ae9df756f131ec16b01cdc7ab19b2d01be"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6aff31b2-ef3e-4782-ae28-38f9aee8b1b7.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6aff31b2-ef3e-4782-ae28-38f9aee8b1b7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3801236dc22938e1cc18947e90ea5326
5979d7dc3ba0eb61947282a4adeac8208b4148ae
3bd4eab29590ec3c316597abd2be65281cd9a6137add037ad57c093f1fca12e2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6aff31b2-ef3e-4782-ae28-38f9aee8b1b7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5995
x-amzn-requestid: 25b34277-c486-4642-aea7-21e0598babc3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSzOGGjoAMF4kw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64e1-6f43ab8e0c1a5260327bce11;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: YzpOZW9e-54LuSSOigtmFRb0sUGpIRpqZ-UtINp-B_Uzk6lFPnb6dw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:25:46 GMT
age: 20156
etag: "5979d7dc3ba0eb61947282a4adeac8208b4148ae"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F70fb9d31-10e5-4323-9fbd-ed451a00e6b1.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F70fb9d31-10e5-4323-9fbd-ed451a00e6b1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7e1b54923ba506fde6b21c5bfb51ccc8
366aa3ab0790c496ea51bc08d1f2ff3358530d9e
a993ca6dc9a1f854f4542f9221e4f90060825ea863974b5163a9d3e284dc4663
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F70fb9d31-10e5-4323-9fbd-ed451a00e6b1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10594
x-amzn-requestid: eee9f193-eef5-44bf-997a-877fa206749e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSyIHpGoAMF1fw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64da-0a9190f7698dbf2f73bb1575;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: T28mItwomGU8iDJ18lUF7ZrFuyh_P3ZTwUtA4AC5qZ5C5FQurDMgmQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:54:01 GMT
age: 22061
etag: "366aa3ab0790c496ea51bc08d1f2ff3358530d9e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
i.imgur.com/Pp0JhsM.jpg
151.101.84.193200 OK 0 B IP 151.101.84.193:0
GET /Pp0JhsM.jpg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtrib.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 09 Jun 2021 03:43:42 GMT
etag: "f48dd60edcdea48322421c7409b6c840"
content-type: image/jpeg
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Tue, 06 Dec 2022 04:01:41 GMT
age: 2775686
x-served-by: cache-iad-kjyo7100128-IAD, cache-bma1680-BMA
x-cache: HIT, MISS
x-cache-hits: 44, 0
x-timer: S1670299302.845412,VS0,VE92
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 111985
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Montserrat%3A300%2C400%2C600%2C700%2C800%2C900&ver=4.7.5-alpha-40547
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Montserrat%3A300%2C400%2C600%2C700%2C800%2C900&ver=4.7.5-alpha-40547
IP 142.250.74.106:0
GET /css?family=Montserrat%3A300%2C400%2C600%2C700%2C800%2C900&ver=4.7.5-alpha-40547 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xtrib.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 06 Dec 2022 04:01:41 GMT
date: Tue, 06 Dec 2022 04:01:41 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2