| copaqatar.futbol/merck-group/unsubscribe/ZXlKcGRpSTZJblZqWTB4VVFXRllTMlo1WmpSdVpuaFlLMVZYTW1jOVBTSXNJblpoYkhWbElqb2lhM1JsWlVzck55ODNielZhTVhkbFNYWnRVV1JGWnowOUlpd2liV0ZqSWpvaVlUUmpNV1l3WmpsaVkyRTFabU0wWVRFd00yVTFNV00yTTJKaVkyTTVaR0k1T0RjeU1EWXpOVFF6TkRWbU5tSmtZek00TlRReFpEaGhZVGt5WTJKbU15SXNJblJoWnlJNklpSjk= | 54.156.227.211 | 301 Moved Permanently | 134 B |
URL HTTP/1.1copaqatar.futbol/merck-group/unsubscribe/ZXlKcGRpSTZJblZqWTB4VVFXRllTMlo1WmpSdVpuaFlLMVZYTW1jOVBTSXNJblpoYkhWbElqb2lhM1JsWlVzck55ODNielZhTVhkbFNYWnRVV1JGWnowOUlpd2liV0ZqSWpvaVlUUmpNV1l3WmpsaVkyRTFabU0wWVRFd00yVTFNV00yTTJKaVkyTTVaR0k1T0RjeU1EWXpOVFF6TkRWbU5tSmtZek00TlRReFpEaGhZVGt5WTJKbU15SXNJblJoWnlJNklpSjk= IP54.156.227.211:0
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hash4aa7a432bb447f094408f1bd6229c605 1965c4952cc8c082a6307ed67061a57aab6632fa 34ccdc351dc93dbf30a8630521968421091e3ed19c31a16e32c2eabb55c6a73a
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /merck-group/unsubscribe/ZXlKcGRpSTZJblZqWTB4VVFXRllTMlo1WmpSdVpuaFlLMVZYTW1jOVBTSXNJblpoYkhWbElqb2lhM1JsWlVzck55ODNielZhTVhkbFNYWnRVV1JGWnowOUlpd2liV0ZqSWpvaVlUUmpNV1l3WmpsaVkyRTFabU0wWVRFd00yVTFNV00yTTJKaVkyTTVaR0k1T0RjeU1EWXpOVFF6TkRWbU5tSmtZek00TlRReFpEaGhZVGt5WTJKbU15SXNJblJoWnlJNklpSjk= HTTP/1.1
Host: copaqatar.futbol
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: awselb/2.0
Date: Mon, 05 Dec 2022 09:35:36 GMT
Content-Type: text/html
Content-Length: 134
Connection: keep-alive
Location: https://copaqatar.futbol:443/merck-group/unsubscribe/ZXlKcGRpSTZJblZqWTB4VVFXRllTMlo1WmpSdVpuaFlLMVZYTW1jOVBTSXNJblpoYkhWbElqb2lhM1JsWlVzck55ODNielZhTVhkbFNYWnRVV1JGWnowOUlpd2liV0ZqSWpvaVlUUmpNV1l3WmpsaVkyRTFabU0wWVRFd00yVTFNV00yTTJKaVkyTTVaR0k1T0RjeU1EWXpOVFF6TkRWbU5tSmtZek00TlRReFpEaGhZVGt5WTJKbU15SXNJblJoWnlJNklpSjk=
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashcfec3d7283a9b66d2be426ce54d210f3 808c1feb1ba918951d1928c1f6bfc0c253262774 1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3862
Expires: Mon, 05 Dec 2022 10:39:58 GMT
Date: Mon, 05 Dec 2022 09:35:36 GMT
Connection: keep-alive
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashfb2c0697c6d9a96a5411dd2952947458 79e57f831ec396bbdaa5bfe9472a05e6c9fb31f4 3fd7edcc349ab4402f62e54a142be6b4cecf0e7ee3f431d3168bdf0643ba4d92
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2015
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 09:35:36 GMT
Last-Modified: Mon, 05 Dec 2022 09:02:01 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash1ea206ac3c440825741687351f8c6e4e 2f38dafd8c43dcce2411a0590bc5c02cd6286735 7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4530
Expires: Mon, 05 Dec 2022 10:51:06 GMT
Date: Mon, 05 Dec 2022 09:35:36 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 34.102.187.140 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP34.102.187.140:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash14cd9a0afb6ba9a763651d5112760d1e 75d7b104ab9ab11fbb73c3f348b43b0119b5adfa 4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 05 Dec 2022 09:18:28 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1028
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash9ebddc2b260d081ebbefee47c037cb28 492bad62a7ca6a74738921ef5ae6f0be5edebf39 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: HuBGPozazzba6uTp/QtP3dv9UCEhAVD4wAVjIytaJapBEUmtZOO5qAXrp4lA5fT1QSgJJi45Mzo=
x-amz-request-id: 9ASTE0YSV0D41ZEP
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 05 Dec 2022 08:47:54 GMT
age: 2862
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 09:35:36 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.r2m02.amazontrust.com/ | 54.230.80.227 | 200 OK | 471 B |
URL HTTP/1.1ocsp.r2m02.amazontrust.com/ IP54.230.80.227:0
Hash16ecc08b4de1f129eb5b19d18a4b0a39 390604db47fb27029515d69aec01900e4d4d37f6 b4c80fe979c3d402a2810b3c0eedded16d03279b55fec118f1361589cd341321
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Mon, 05 Dec 2022 09:35:37 GMT
Etag: "638cdac2-1d7"
Server: ECS (dcb/7EA5)
X-Cache: Miss from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: DGdLsURt6gKEmakSxFeI-ZHjIFWwRccsUK4ax6SuR1C3oGT06gUMaw==
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 34.102.187.140 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP34.102.187.140:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 05 Dec 2022 09:08:58 GMT
cache-control: public,max-age=3600
age: 1599
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash31b129c94a90b1e695b21395cb54e378 a3cae46b48d469cc61ab0581303bcd5f5b654db9 fac3f681be358a20f78958dff10c89b7a91365c5114c81246c1bc34c1362ba1e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1994
Cache-Control: max-age=86668
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 09:35:37 GMT
Etag: "638c632b-1d7"
Expires: Tue, 06 Dec 2022 09:40:05 GMT
Last-Modified: Sun, 04 Dec 2022 09:06:51 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 278 B |
IP93.184.220.29:0
Hash1245db08bc06bdc452fdb41b8e959f26 ba2fa041fbea0e124b6fd418724a46225fac0089 d591926f6495b722a0b545d292f16a342cba87889fd7d4f5ca448c3613760be6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3791
Cache-Control: max-age=129156
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 09:35:37 GMT
Etag: "638d021f-116"
Expires: Tue, 06 Dec 2022 21:28:13 GMT
Last-Modified: Sun, 04 Dec 2022 20:25:03 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 278
|
|
| copaqatar.futbol/merck-group/unsubscribe/ZXlKcGRpSTZJblZqWTB4VVFXRllTMlo1WmpSdVpuaFlLMVZYTW1jOVBTSXNJblpoYkhWbElqb2lhM1JsWlVzck55ODNielZhTVhkbFNYWnRVV1JGWnowOUlpd2liV0ZqSWpvaVlUUmpNV1l3WmpsaVkyRTFabU0wWVRFd00yVTFNV00yTTJKaVkyTTVaR0k1T0RjeU1EWXpOVFF6TkRWbU5tSmtZek00TlRReFpEaGhZVGt5WTJKbU15SXNJblJoWnlJNklpSjk= | 44.207.117.251 | 200 OK | 13 kB |
URL HTTP/2copaqatar.futbol/merck-group/unsubscribe/ZXlKcGRpSTZJblZqWTB4VVFXRllTMlo1WmpSdVpuaFlLMVZYTW1jOVBTSXNJblpoYkhWbElqb2lhM1JsWlVzck55ODNielZhTVhkbFNYWnRVV1JGWnowOUlpd2liV0ZqSWpvaVlUUmpNV1l3WmpsaVkyRTFabU0wWVRFd00yVTFNV00yTTJKaVkyTTVaR0k1T0RjeU1EWXpOVFF6TkRWbU5tSmtZek00TlRReFpEaGhZVGt5WTJKbU15SXNJblJoWnlJNklpSjk= IP44.207.117.251:0
Hashf8e9c04b2486be8edcf55168817459e4 ff7ca7c9150598d08e49e82227c2a0f17836ee69 9fe4c3dfff542b37f72c049891aa5bba74351d991438112541d7f11caf130fa1
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /merck-group/unsubscribe/ZXlKcGRpSTZJblZqWTB4VVFXRllTMlo1WmpSdVpuaFlLMVZYTW1jOVBTSXNJblpoYkhWbElqb2lhM1JsWlVzck55ODNielZhTVhkbFNYWnRVV1JGWnowOUlpd2liV0ZqSWpvaVlUUmpNV1l3WmpsaVkyRTFabU0wWVRFd00yVTFNV00yTTJKaVkyTTVaR0k1T0RjeU1EWXpOVFF6TkRWbU5tSmtZek00TlRReFpEaGhZVGt5WTJKbU15SXNJblJoWnlJNklpSjk= HTTP/1.1
Host: copaqatar.futbol
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Mon, 05 Dec 2022 09:35:37 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: no-cache, private
set-cookie: XSRF-TOKEN=eyJpdiI6InozbEUwMTNmaENoanZpT1ltRk1DeEE9PSIsInZhbHVlIjoicGlWa0loK1NTYVAvQkhEcW1kRW5zZ29FWjBYb0NNUHJxdDk3NmJDZHk3R2JWUXJBaGJ0dmZTUHNibDBPZitQNTEvRGlGcmIrZDExUncxWjhXYVA0SU9YWlM3TDVrL29ubVhTNk9IS3dsamNOQnN2T1hnbnVadzlFWFJ6QUNKOWMiLCJtYWMiOiJmZjljZTc0OWYyOWI1MmU4OWFmNWUyZjkxMWQyNjMzNTY0ODgzMWFjYmYxNjBiYzYwNzU3YzFiYTI4MGUwNjIzIiwidGFnIjoiIn0%3D; expires=Mon, 05 Dec 2022 11:35:37 GMT; Max-Age=7200; path=/; secure
cuponstar_prode_sess=eyJpdiI6InBGRytxcFFydmxIQzIzWElVczlBSHc9PSIsInZhbHVlIjoiVzkzSGYzcVNtSzlpcW9VT1J5anBBSWJHaHZyQ2g0cEJxejltRTdCbFF5NGtBRmFEUGVpWlB2S3o3L2NGbXdiakJDdERvQThuVHBSUGFXYjlyeWZzVldEMTdlenY4cFlna1dBalFMSitmSUtPSmVhT2NIanRJcGNqYUNQeUtCNSsiLCJtYWMiOiIwMDFiYTE1ZTM2ODhiNThmYjkzZDAwMTdjNzNmOTRmODNmMTVlODNlYTE2NGM5YWU1YjllNTNkMDI4ZTk1NjhiIiwidGFnIjoiIn0%3D; expires=Mon, 05 Dec 2022 11:35:37 GMT; Max-Age=7200; path=/; secure; httponly
locale=en; expires=Tue, 09 Jan 2024 09:35:37 GMT; Max-Age=34560000; path=/; secure; httponly
server: CuponstarCluster b3923bf4
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/normalize/8.0.1/normalize.css | 104.17.25.14 | 200 OK | 1.4 kB |
URL HTTP/2cdnjs.cloudflare.com/ajax/libs/normalize/8.0.1/normalize.css IP104.17.25.14:0
Hash087080b8cdfeff11adcdd2cc33e9c7fa 2119eff3ba20eedb1562131a578d44f64bcc8bb6 fcc7aab8a1e22beaae18befe8135a4b8438993129d5edcda10f4ae86111d13ac
GET /ajax/libs/normalize/8.0.1/normalize.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://copaqatar.futbol/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Dec 2022 09:35:37 GMT
content-type: text/css; charset=utf-8
content-length: 1398
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03f2b-17fa"
last-modified: Mon, 04 May 2020 16:13:31 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 3474565
expires: Sat, 25 Nov 2023 09:35:37 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7H71LXOl1p5tOVGaHXMXibDIaqW1%2BL%2BUvq%2BVZvrEhBUfL%2F%2FO2BFytncykZ3qyjlt6LqkGxjZZHTgoZXBwbVl3unPXiYLep%2F%2FmSN3SBsLA53%2BBp5PQa6re286AD1kzYd4CbDvKAt6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 774bcaf3fb97b4ed-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/bootstrap@3.3.7/dist/css/bootstrap.min.css | 151.101.193.229 | 200 OK | 20 kB |
URL HTTP/2cdn.jsdelivr.net/npm/bootstrap@3.3.7/dist/css/bootstrap.min.css IP151.101.193.229:0
File typeASCII text, with very long lines (65371) Hasha2e54389b32655c7fd6bfcde6923b963 97305566fe03e0423fb83a95f18b163a1c711e8a da3b1c07da27a22c45ed3099b2773fde2c542a864a416acb4234e52100a427cc
GET /npm/bootstrap@3.3.7/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://copaqatar.futbol
Connection: keep-alive
Referer: https://copaqatar.futbol/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 3.3.7
x-jsd-version-type: version
etag: W/"1d970-ZSfYvz4ek2i6uMe2D1a8Afo6/Wg"
content-encoding: gzip
accept-ranges: bytes
date: Mon, 05 Dec 2022 09:35:37 GMT
age: 9449752
x-served-by: cache-fra19151-FRA, cache-bma1641-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 19729
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 278 B |
IP93.184.220.29:0
Hash1245db08bc06bdc452fdb41b8e959f26 ba2fa041fbea0e124b6fd418724a46225fac0089 d591926f6495b722a0b545d292f16a342cba87889fd7d4f5ca448c3613760be6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3791
Cache-Control: max-age=129156
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 09:35:37 GMT
Etag: "638d021f-116"
Expires: Tue, 06 Dec 2022 21:28:13 GMT
Last-Modified: Sun, 04 Dec 2022 20:25:03 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 278
|
|
| ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1 | 104.18.21.226 | 200 OK | 1.5 kB |
URL HTTP/1.1ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1 IP104.18.21.226:0
Hash4f0634c18b3be5ad56a0b9cbe0a77159 b125d8108bc4da03632e880a946e0d98276409fc 4ef327eec819f7ff461426c11fa74d9fa6940ab8732fff86462d14dd5249f899
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 09:35:37 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "0F76D95747E267423C858B1DBA6FAE9C64FE0032"
Expires: Mon, 05 Dec 2022 20:00:00 GMT
Last-Modified: Mon, 05 Dec 2022 08:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 2254
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 774bcaf43a80b4f1-OSL
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash7dfb548d8f8a99d32050803775fad5d6 8b47999a01db7c2217d76a1cec576809a229cf1b 68dd2a1e5a0002f4d25d3b5884ab55bc6b5a91e38f6dc464c4261b19c6e5887e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 09:35:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| push.services.mozilla.com/ | 34.208.31.97 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP34.208.31.97:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: lN+jjGBZVNErY5haa/slnw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: xBpE6EJUPJzy67txJWGfJ9qTGsU=
|
|
| ocsp.sca1b.amazontrust.com/ | 143.204.42.165 | 200 OK | 471 B |
URL HTTP/1.1ocsp.sca1b.amazontrust.com/ IP143.204.42.165:0
Hashbb0db32a5d8347f4e7772343d14989d6 69ff311c2a9ccfead1c89d76682029db237e4198 6564b771a96d29b23030a0e47f24c23dd0df19bb937b651749f4e70282b38de3
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=103685
Date: Mon, 05 Dec 2022 09:35:37 GMT
Etag: "638ca555-1d7"
Expires: Tue, 06 Dec 2022 14:23:42 GMT
Last-Modified: Sun, 04 Dec 2022 13:49:09 GMT
Server: ECS (nyb/1D18)
X-Cache: Miss from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: tWAXwrP1i30fBDCsgn3hrnhAwphXS1TPtfPTM11vM8ESamiZKfNcXg==
Age: 2073
|
|
| copaqatar.futbol/favicon.ico | 44.207.117.251 | 301 Moved Permanently | 134 B |
URL HTTP/2copaqatar.futbol/favicon.ico IP44.207.117.251:0
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hash4aa7a432bb447f094408f1bd6229c605 1965c4952cc8c082a6307ed67061a57aab6632fa 34ccdc351dc93dbf30a8630521968421091e3ed19c31a16e32c2eabb55c6a73a
Analyzer | Verdict | Alert | quad9 | Sinkholed | |
GET /favicon.ico HTTP/1.1
Host: copaqatar.futbol
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://copaqatar.futbol/merck-group/unsubscribe/ZXlKcGRpSTZJblZqWTB4VVFXRllTMlo1WmpSdVpuaFlLMVZYTW1jOVBTSXNJblpoYkhWbElqb2lhM1JsWlVzck55ODNielZhTVhkbFNYWnRVV1JGWnowOUlpd2liV0ZqSWpvaVlUUmpNV1l3WmpsaVkyRTFabU0wWVRFd00yVTFNV00yTTJKaVkyTTVaR0k1T0RjeU1EWXpOVFF6TkRWbU5tSmtZek00TlRReFpEaGhZVGt5WTJKbU15SXNJblJoWnlJNklpSjk=
Cookie: XSRF-TOKEN=eyJpdiI6InozbEUwMTNmaENoanZpT1ltRk1DeEE9PSIsInZhbHVlIjoicGlWa0loK1NTYVAvQkhEcW1kRW5zZ29FWjBYb0NNUHJxdDk3NmJDZHk3R2JWUXJBaGJ0dmZTUHNibDBPZitQNTEvRGlGcmIrZDExUncxWjhXYVA0SU9YWlM3TDVrL29ubVhTNk9IS3dsamNOQnN2T1hnbnVadzlFWFJ6QUNKOWMiLCJtYWMiOiJmZjljZTc0OWYyOWI1MmU4OWFmNWUyZjkxMWQyNjMzNTY0ODgzMWFjYmYxNjBiYzYwNzU3YzFiYTI4MGUwNjIzIiwidGFnIjoiIn0%3D; cuponstar_prode_sess=eyJpdiI6InBGRytxcFFydmxIQzIzWElVczlBSHc9PSIsInZhbHVlIjoiVzkzSGYzcVNtSzlpcW9VT1J5anBBSWJHaHZyQ2g0cEJxejltRTdCbFF5NGtBRmFEUGVpWlB2S3o3L2NGbXdiakJDdERvQThuVHBSUGFXYjlyeWZzVldEMTdlenY4cFlna1dBalFMSitmSUtPSmVhT2NIanRJcGNqYUNQeUtCNSsiLCJtYWMiOiIwMDFiYTE1ZTM2ODhiNThmYjkzZDAwMTdjNzNmOTRmODNmMTVlODNlYTE2NGM5YWU1YjllNTNkMDI4ZTk1NjhiIiwidGFnIjoiIn0%3D; locale=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 301 Moved Permanently
server: awselb/2.0
date: Mon, 05 Dec 2022 09:35:37 GMT
content-type: text/html
content-length: 134
location: https://s3.amazonaws.com:443/copaqatar/favicon_prode.png
X-Firefox-Spdy: h2
|
|
| copaqatar.s3.amazonaws.com/public/files/uploads/clients/636bd8ad1d24d.png | 52.217.223.9 | 200 OK | 4.3 kB |
URL HTTP/1.1copaqatar.s3.amazonaws.com/public/files/uploads/clients/636bd8ad1d24d.png IP52.217.223.9:0
File typePNG image data, 270 x 71, 8-bit/color RGB, non-interlaced\012- data Hashcd3f2a4bb9c50a706403bd563487d8e0 7cbc6536ba2827acb8debea580f42a6e06e975d2 247357f155416013970eedf063180b22cbec2c3f3d7a5d6fb7494e7f7c065d6c
GET /public/files/uploads/clients/636bd8ad1d24d.png HTTP/1.1
Host: copaqatar.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://copaqatar.futbol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: /8ivM2EIn6TqO/0VAUvTicSSxVLqvCLzCo2jrxfINi6BItAddfxOL3wUz9Roz01VP+Bjuuck7vI=
x-amz-request-id: YYD0N25KXZZA91JZ
Date: Mon, 05 Dec 2022 09:35:38 GMT
Last-Modified: Wed, 09 Nov 2022 16:43:26 GMT
ETag: "cd3f2a4bb9c50a706403bd563487d8e0"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 4318
|
|
| js-agent.newrelic.com/552.2d6a2503-1220.js | 151.101.194.137 | 200 OK | 5.9 kB |
URL HTTP/2js-agent.newrelic.com/552.2d6a2503-1220.js IP151.101.194.137:0
File typeASCII text, with very long lines (21423) Hash097ef34c5f5d635a147bca3721bd605b 3b31ef3cfb1d62d9884d631ec2467b9d6b0d46e2 3e05d4e42c1e87b516b525574b20d2570dccc50d1bd1b2956d6421699aa19914
GET /552.2d6a2503-1220.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://copaqatar.futbol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: PnZFPtaQ6Oa8SvsR598yLCynwQMleyjLyE8+/6kXxv1ZfRit6gnSEEKUHnQ2vqYi8syHn+Nxcq4=
x-amz-request-id: XM6WHM0J4M8X38WQ
last-modified: Wed, 05 Oct 2022 14:53:43 GMT
etag: "777ac0df4dba632ad1b2955c88dd51ac"
x-amz-version-id: 7EjqUQ3uiXAFqO0VnIOp2ymSTJq3JZwD
content-type: application/javascript
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Mon, 05 Dec 2022 09:35:38 GMT
via: 1.1 varnish
x-served-by: cache-bma1679-BMA
x-cache: HIT
x-cache-hits: 188
x-timer: S1670232938.095682,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 5890
X-Firefox-Spdy: h2
|
|
| js-agent.newrelic.com/775.2d6a2503-1220.js | 151.101.194.137 | 200 OK | 632 B |
URL HTTP/2js-agent.newrelic.com/775.2d6a2503-1220.js IP151.101.194.137:0
File typeASCII text, with very long lines (1169) Hash661520fd0dfebb919d68a69b60ca426f b85ef80a0e0d95bf4904f9ce4fad56c49ae035be ecd489671c6255fee8370fc1f8f4e99519ef8d4c4c0ab06640b0c021642e1db7
GET /775.2d6a2503-1220.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://copaqatar.futbol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: 7LFMHtjJh1S3I7Y2nadjyW3qD5GSEUAPkhvRiGWUqI2yNIsj2jxS1WztietgESJCTo8b+MSjBS8=
x-amz-request-id: XM6WXR7ZNKJZ7WDR
last-modified: Wed, 05 Oct 2022 14:53:42 GMT
etag: "1dfdb74c0491489bf04c6deadb56add2"
x-amz-version-id: y1AQ2bnjUbwuFOuSS5MP1vew1dGw.1iz
content-type: application/javascript
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Mon, 05 Dec 2022 09:35:38 GMT
via: 1.1 varnish
x-served-by: cache-bma1679-BMA
x-cache: HIT
x-cache-hits: 2706
x-timer: S1670232938.125453,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 632
X-Firefox-Spdy: h2
|
|
| js-agent.newrelic.com/290.2d6a2503-1220.js | 151.101.194.137 | 200 OK | 3.4 kB |
URL HTTP/2js-agent.newrelic.com/290.2d6a2503-1220.js IP151.101.194.137:0
File typeASCII text, with very long lines (8544) Hashb9baa2cb6a3b1a3d0fda03cd7db51631 42d37467e05182e3cab2fcb54577dc462adcf50b 31a8b4d47298cae24c66e37256a51474ae88a745fdfec79f99b2d43608e6d822
GET /290.2d6a2503-1220.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://copaqatar.futbol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: w13KyJHc6nZxbdEwslB41w8/Eu8hqTxWFthe9Ce9ktH5t1CQfPDcADzeIbbM0XmVboDReCBCqwPazqB/yCHcHQ==
x-amz-request-id: ENM21W9CJ64N9SCW
last-modified: Wed, 05 Oct 2022 14:53:42 GMT
etag: "13898fbb4d7a1f83fc6722c4c12faf40"
x-amz-version-id: C4hj6k9j4I7xXuTBZvcbX78Bf.Ep8KMk
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Mon, 05 Dec 2022 09:35:38 GMT
via: 1.1 varnish
x-served-by: cache-bma1679-BMA
x-cache: HIT
x-cache-hits: 3732
x-timer: S1670232938.125796,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 3424
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Roboto:300,400,500 | 142.250.74.106 | 200 OK | 2.1 kB |
URL HTTP/2fonts.googleapis.com/css?family=Roboto:300,400,500 IP142.250.74.106:0
File typeASCII text, with very long lines (3382) Hashf3804828ed6baa3adaa70507d45d9bd3 0ec883d37193c49ea3c03d2271a3a5ce300ef7ad 47e968ba3e244c27bc4a93188d4c15ba02c9f6694fdcc74b188b3c972046a18b
GET /css?family=Roboto:300,400,500 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://copaqatar.futbol/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 05 Dec 2022 09:35:37 GMT
date: Mon, 05 Dec 2022 09:35:37 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| js-agent.newrelic.com/768.2d6a2503-1220.js | 151.101.194.137 | 200 OK | 2.2 kB |
URL HTTP/2js-agent.newrelic.com/768.2d6a2503-1220.js IP151.101.194.137:0
File typeASCII text, with very long lines (5523) Hash98a96a3306b7723c0b8c4bff074cdd9f e9070da7daa34fa2d8ac2e4ec00e3c499ea37516 a6079d50fa4c72b521fd865e67be080b5b21c336a71dbf7a1800a12ad42384f7
GET /768.2d6a2503-1220.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://copaqatar.futbol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: P4mBsEL/DTAFzpZmpgTrdkaNBJrByz58gWXjGItRhFpF6Y8vCPU2Lz0KL/HwWqBLBPUd/7ipab8=
x-amz-request-id: XM6J50R0X1MZPD9F
last-modified: Wed, 05 Oct 2022 14:53:42 GMT
etag: "d6cc8b42eda6fd7734014b03b87b5787"
x-amz-version-id: 0CJw6LdyBdZcjhOiVrtC0pLcOFtA3d5G
content-type: application/javascript
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Mon, 05 Dec 2022 09:35:38 GMT
via: 1.1 varnish
x-served-by: cache-bma1679-BMA
x-cache: HIT
x-cache-hits: 494
x-timer: S1670232938.125995,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 2225
X-Firefox-Spdy: h2
|
|
| ocsp.sca1b.amazontrust.com/ | 143.204.42.165 | 200 OK | 471 B |
URL HTTP/1.1ocsp.sca1b.amazontrust.com/ IP143.204.42.165:0
Hashe1dd5ac948d537f9b7a568ae8e432519 d3753aadf90541c752fa7ff301e79f5747ca0372 f28e2729cc4c8b14d2a020bdb0c1a052edab7701c37a0ee475344e458ce2bbdc
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=98657
Date: Mon, 05 Dec 2022 09:35:38 GMT
Etag: "638c91b0-1d7"
Expires: Tue, 06 Dec 2022 12:59:55 GMT
Last-Modified: Sun, 04 Dec 2022 12:25:20 GMT
Server: ECS (nyb/1D1E)
X-Cache: Miss from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 8w3hqrP4-VPqiLkvpHKPbQNKkTTv4-1UPMn3TbYHDCad8J3EaqVdig==
Age: 2075
|
|
| s3.amazonaws.com/copaqatar/favicon_prode.png | 52.216.42.40 | 200 OK | 4.6 kB |
URL HTTP/1.1s3.amazonaws.com/copaqatar/favicon_prode.png IP52.216.42.40:0
File typePNG image data, 65 x 65, 8-bit/color RGBA, non-interlaced\012- data Hashf3b1a82d57f61f7f19e27d0076a0bb98 54d29520ea897956550eaadff8713942e911a488 9ea25fe277f1d498121c01caddc7d39c2d39198c5d405a8417e3d69188e81369
GET /copaqatar/favicon_prode.png HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://copaqatar.futbol/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: ZEsbZW/KBMxztDK5X1ujnnjVjeQueTLgYJHTHsCGmG1wjupEd1e4xxX2Z6peWbVnHMGMBtenmOI=
x-amz-request-id: A4NQZVYDJ4KXKE25
Date: Mon, 05 Dec 2022 09:35:39 GMT
Last-Modified: Fri, 28 Oct 2022 14:19:35 GMT
ETag: "f3b1a82d57f61f7f19e27d0076a0bb98"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 4628
|
|
| bam.nr-data.net/1/9b3f57d803?a=364951735&v=1220.PROD&to=ZFdaZURUCEVWBkZdWF0de0RFQQlbGBBcR0JAUUpYVFA%3D&rst=1897&ck=0&s=a8fe874ae06ff010&ref=https://copaqatar.futbol/merck-group/unsubscribe/ZXlKcGRpSTZJblZqWTB4VVFXRllTMlo1WmpSdVpuaFlLMVZYTW1jOVBTSXNJblpoYkhWbElqb2lhM1JsWlVzck55ODNielZhTVhkbFNYWnRVV1JGWnowOUlpd2liV0ZqSWpvaVlUUmpNV1l3WmpsaVkyRTFabU0wWVRFd00yVTFNV00yTTJKaVkyTTVaR0k1T0RjeU1EWXpOVFF6TkRWbU5tSmtZek00TlRReFpEaGhZVGt5WTJKbU15SXNJblJoWnlJNklpSjk%3D&ap=141&be=1214&fe=579&dc=246&perf=%7B%22timing%22:%7B%22of%22:1670232933650,%22n%22:0,%22f%22:445,%22dn%22:464,%22dne%22:464,%22c%22:465,%22s%22:568,%22ce%22:909,%22rq%22:909,%22rp%22:1172,%22rpe%22:1174,%22dl%22:1196,%22di%22:1459,%22ds%22:1459,%22de%22:1466,%22dc%22:1793,%22l%22:1793,%22le%22:1796%7D,%22navigation%22:%7B%7D%7D&fcp=1468&at=SBBZEwxOG0s%3D&jsonp=NREUM.setToken | 162.247.241.14 | 200 OK | 77 B |
URL HTTP/1.1bam.nr-data.net/1/9b3f57d803?a=364951735&v=1220.PROD&to=ZFdaZURUCEVWBkZdWF0de0RFQQlbGBBcR0JAUUpYVFA%3D&rst=1897&ck=0&s=a8fe874ae06ff010&ref=https://copaqatar.futbol/merck-group/unsubscribe/ZXlKcGRpSTZJblZqWTB4VVFXRllTMlo1WmpSdVpuaFlLMVZYTW1jOVBTSXNJblpoYkhWbElqb2lhM1JsWlVzck55ODNielZhTVhkbFNYWnRVV1JGWnowOUlpd2liV0ZqSWpvaVlUUmpNV1l3WmpsaVkyRTFabU0wWVRFd00yVTFNV00yTTJKaVkyTTVaR0k1T0RjeU1EWXpOVFF6TkRWbU5tSmtZek00TlRReFpEaGhZVGt5WTJKbU15SXNJblJoWnlJNklpSjk%3D&ap=141&be=1214&fe=579&dc=246&perf=%7B%22timing%22:%7B%22of%22:1670232933650,%22n%22:0,%22f%22:445,%22dn%22:464,%22dne%22:464,%22c%22:465,%22s%22:568,%22ce%22:909,%22rq%22:909,%22rp%22:1172,%22rpe%22:1174,%22dl%22:1196,%22di%22:1459,%22ds%22:1459,%22de%22:1466,%22dc%22:1793,%22l%22:1793,%22le%22:1796%7D,%22navigation%22:%7B%7D%7D&fcp=1468&at=SBBZEwxOG0s%3D&jsonp=NREUM.setToken IP162.247.241.14:0
File typeASCII text, with no line terminators Hashf1442f5831dbbe0210da2d7a4180d6b8 2ade23c6c7a001c66f0c0a9a101ec152747b434e c6acf9fb2ecc1b144c51bd0337bbf1c26db3df2f649ac2da5c56db20d93eb3ef
GET /1/9b3f57d803?a=364951735&v=1220.PROD&to=ZFdaZURUCEVWBkZdWF0de0RFQQlbGBBcR0JAUUpYVFA%3D&rst=1897&ck=0&s=a8fe874ae06ff010&ref=https://copaqatar.futbol/merck-group/unsubscribe/ZXlKcGRpSTZJblZqWTB4VVFXRllTMlo1WmpSdVpuaFlLMVZYTW1jOVBTSXNJblpoYkhWbElqb2lhM1JsWlVzck55ODNielZhTVhkbFNYWnRVV1JGWnowOUlpd2liV0ZqSWpvaVlUUmpNV1l3WmpsaVkyRTFabU0wWVRFd00yVTFNV00yTTJKaVkyTTVaR0k1T0RjeU1EWXpOVFF6TkRWbU5tSmtZek00TlRReFpEaGhZVGt5WTJKbU15SXNJblJoWnlJNklpSjk%3D&ap=141&be=1214&fe=579&dc=246&perf=%7B%22timing%22:%7B%22of%22:1670232933650,%22n%22:0,%22f%22:445,%22dn%22:464,%22dne%22:464,%22c%22:465,%22s%22:568,%22ce%22:909,%22rq%22:909,%22rp%22:1172,%22rpe%22:1174,%22dl%22:1196,%22di%22:1459,%22ds%22:1459,%22de%22:1466,%22dc%22:1793,%22l%22:1793,%22le%22:1796%7D,%22navigation%22:%7B%7D%7D&fcp=1468&at=SBBZEwxOG0s%3D&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://copaqatar.futbol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 09:35:38 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 774bcaf779371c16-OSL
Access-Control-Allow-Origin: *
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash83e0936435ad95a15c9ec5ff9520f4fe a8225ee0d8ae117f977f7ff817c342c62e91b5a9 ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8708
Expires: Mon, 05 Dec 2022 12:00:47 GMT
Date: Mon, 05 Dec 2022 09:35:39 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash83e0936435ad95a15c9ec5ff9520f4fe a8225ee0d8ae117f977f7ff817c342c62e91b5a9 ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8708
Expires: Mon, 05 Dec 2022 12:00:47 GMT
Date: Mon, 05 Dec 2022 09:35:39 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash83e0936435ad95a15c9ec5ff9520f4fe a8225ee0d8ae117f977f7ff817c342c62e91b5a9 ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8708
Expires: Mon, 05 Dec 2022 12:00:47 GMT
Date: Mon, 05 Dec 2022 09:35:39 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash83e0936435ad95a15c9ec5ff9520f4fe a8225ee0d8ae117f977f7ff817c342c62e91b5a9 ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8708
Expires: Mon, 05 Dec 2022 12:00:47 GMT
Date: Mon, 05 Dec 2022 09:35:39 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash83e0936435ad95a15c9ec5ff9520f4fe a8225ee0d8ae117f977f7ff817c342c62e91b5a9 ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8708
Expires: Mon, 05 Dec 2022 12:00:47 GMT
Date: Mon, 05 Dec 2022 09:35:39 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15537f94-1f24-4010-9d46-d70fec20ced3.jpeg | 34.120.237.76 | 200 OK | 6.8 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15537f94-1f24-4010-9d46-d70fec20ced3.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash1be5ade2f8eb160f9974766374c9dd01 8d3d92355304ccfcd50ae96f55b2754220f05187 5087642c70cd92613c2a490b532fc7651c4b25f8712a59b4f7a178cc44cdf90f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15537f94-1f24-4010-9d46-d70fec20ced3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6827
x-amzn-requestid: d4dfc77c-65cc-46f1-b8a3-ea6cebd0976d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cjKUYE2woAMFgPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638abdb5-639ca0813c23b9cb75ff24c8;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 03:08:37 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lhweRJZbG0P_lxekUIz506RXW5f9iVQ1Cvfg-k3gJTWHIrzTu2uenQ==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 04:50:04 GMT
age: 17135
etag: "8d3d92355304ccfcd50ae96f55b2754220f05187"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd528f6ee-d348-431d-8220-5c8b154b2941.jpeg | 34.120.237.76 | 200 OK | 8.3 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd528f6ee-d348-431d-8220-5c8b154b2941.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashdb1701b7b9d161a0c935bb6e10b17893 22a8c4bd58c729c1abcf794466e8f3231dfb034b b495524a33e5b1d3ba34cfbe867ada0da956c061370b1fcde06b23a6194a9787
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd528f6ee-d348-431d-8220-5c8b154b2941.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8315
x-amzn-requestid: f1bcc33b-aad9-4d3b-b1f9-49282f2d4fb9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clsAMGVboAMFfxg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc067-13472a097177d4751c8f7a8c;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 8ugcixaNsXG-AIHYCfoyOWa5zowv2lb4qwWc8o5_7SQc_0w5HW4mBw==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:52:48 GMT
age: 42171
etag: "22a8c4bd58c729c1abcf794466e8f3231dfb034b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feff698a5-ffc4-43ea-b7a3-b681cafeb108.jpeg | 34.120.237.76 | 200 OK | 13 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feff698a5-ffc4-43ea-b7a3-b681cafeb108.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash5d72fb8d20c29763234c2817b119d11b d4924ec714f5157bcb2fddcb5f768188a3dd37dc e9aa59142e0673ed3f58b36beaca48213c678dbe4655f9c4b64581cb0f6f22f6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feff698a5-ffc4-43ea-b7a3-b681cafeb108.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12830
x-amzn-requestid: 66f5f2fa-8472-4484-bbea-20ece7e98b1f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cmcsxGDyIAMFX4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638c0e51-146167697890d9312ce3dbac;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 03:04:49 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CYvQg9Tc0rQB9_DoDW4RoLx2GEdMSEaXViCY3qXbijd0P5mMSZWE6Q==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 03:28:22 GMT
age: 22037
etag: "d4924ec714f5157bcb2fddcb5f768188a3dd37dc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e81e29f-79a8-4af6-b0c7-7f49bfafb17e.jpeg | 34.120.237.76 | 200 OK | 6.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e81e29f-79a8-4af6-b0c7-7f49bfafb17e.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashf71032604eecccf0a81f323a5f96a400 f8866d4f3185bcf7871581d75339998b34d6cf6d d053eedc717d7fd86e621ba948680be16538396d1ba9854b6816626d149b1c57
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e81e29f-79a8-4af6-b0c7-7f49bfafb17e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6886
x-amzn-requestid: d721caf6-2252-4ede-9533-3d3fcd6cce0d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cpsw-FfRoAMFtOQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d5b39-7644a195142f6c420ec7eac6;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 02:45:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: RwhNdxS-EBTraqzS_TnCNXj3JXgz5NkO8oLyQaHOhHdtnvBbg4vsRQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 02:45:13 GMT
etag: "f8866d4f3185bcf7871581d75339998b34d6cf6d"
content-type: image/jpeg
age: 24626
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F97ab0e82-c847-4f8f-9308-0c525094c97e.jpeg | 34.120.237.76 | 200 OK | 8.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F97ab0e82-c847-4f8f-9308-0c525094c97e.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash7292946ed06f9cf5d53135eb21e10045 a47a6ce6420ea055ec7f1f97e70f1e695579d167 51b8e06b38328244f18e2efb0f9a2ae26ac8f699c41fc50f173eb0c4d84349b3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F97ab0e82-c847-4f8f-9308-0c525094c97e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8466
x-amzn-requestid: c93740a8-aaa7-4862-a8c0-b8cca762aff2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clr_-FrkIAMFesA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc066-0ea7316079ab528531bf20c8;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dguVTwGxxnTNXKb--JPUJLnwzCqJ9Yvh4cXjF9gkQkwquLFQkKoGsQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:56:43 GMT
age: 41936
etag: "a47a6ce6420ea055ec7f1f97e70f1e695579d167"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp | 34.120.237.76 | 200 OK | 5.7 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash43309032a892c486f9985ef520df696e 36f4682ca6a33ff80ee02129c77e6f27e996ede0 24225ff504f30405d9ec3feb2555c738fcca0d6b265f285aa9c73a64c78a496e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5681
x-amzn-requestid: 8f0d66b8-d532-48d9-9a29-74540cd6ab3a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cltXnEotIAMFqkA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc296-27349a376ff819ab63b04a81;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:41:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Uz-wJTZjej3sjP-O68BQ4hB_kkAecG0o7GkeZUan90ZgV87g0Cg_ZA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:52:41 GMT
age: 42178
etag: "36f4682ca6a33ff80ee02129c77e6f27e996ede0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|