r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e935ea42be4feaed61a824b0b903913e
f966cfa80d65a805cb9d7c6a53b3340865d7c51a
eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16841
Expires: Thu, 02 Feb 2023 05:18:43 GMT
Date: Thu, 02 Feb 2023 00:38:02 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7e05c8461bd2dc5a149f71e2c465ea29
705983959c887e243cb55a8a1796757b579ee977
4d9ea085d5dda9dabed11af9847c2b0aa6182358673b356a4e2bd631e22a9922
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D9EA085D5DDA9DABED11AF9847C2B0AA6182358673B356A4E2BD631E22A9922"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18055
Expires: Thu, 02 Feb 2023 05:38:57 GMT
Date: Thu, 02 Feb 2023 00:38:02 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 01 Feb 2023 23:43:26 GMT
content-type: application/json
age: 3276
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a8d45deaa7ebfcd996c2055dae592ab8
55befe074589fe7b39757c145968058162a8fc6b
50d7d516f446458145a304b288a0a39d391cd37ea50dabea36ae48d291c65ba7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "50D7D516F446458145A304B288A0A39D391CD37EA50DABEA36AE48D291C65BA7"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12073
Expires: Thu, 02 Feb 2023 03:59:15 GMT
Date: Thu, 02 Feb 2023 00:38:02 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: MRfR1eR/0R6DKn7v8qA3Y2ODh3f/dmGnmJjLkg5S6SpWWTll4QmWPNFaiv1cX+mLZKDMCWn0VHo=
x-amz-request-id: BQGDY6J059CKNYBV
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 02 Feb 2023 00:22:52 GMT
age: 910
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co/
34.149.204.188308 Permanent Redirect 92 B URL HTTP/1.1 2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co/
IP 34.149.204.188:0
File type HTML document, ASCII text
Hash 4539be2968ec5931b25d3e6d0fa9a3bb
d517243e538c92e7ff01822f71ea9e3639f4e0c2
bdf88e459689b70d78b431da6d091f741ee44f3e6e44f501453a92d314b486a2
Analyzer Verdict Alert openphish Netflix Inc.
fortinet Phishing
GET / HTTP/1.1
Host: 2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 308 Permanent Redirect
Content-Type: text/html; charset=utf-8
Location: https://2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co/
Replit-Cluster: global
Date: Thu, 02 Feb 2023 00:38:02 GMT
Content-Length: 92
Via: 1.1 google
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 00:38:02 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dd0b2f278adfaab6a65dce44eb46e949
609feeb0fc3b5affedd612e524f2c9929587c9d6
5b08593b23e3118714074de56be2747624eecf0d9fae5f8bb3cd19afc96ea37a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5B08593B23E3118714074DE56BE2747624EECF0D9FAE5F8BB3CD19AFC96EA37A"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1747
Expires: Thu, 02 Feb 2023 01:07:10 GMT
Date: Thu, 02 Feb 2023 00:38:03 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 01 Feb 2023 23:49:05 GMT
age: 2938
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13216
Expires: Thu, 02 Feb 2023 04:18:19 GMT
Date: Thu, 02 Feb 2023 00:38:03 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 1ff74aab442f09fcaad69b961f34050b
dce6b1606d9f84c107dda78b54575db0abc2f58f
c52c37fd5e4c15f34a0aec3c57639ca95e1914937858d2d6fbff16530ae0cedb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4018
Cache-Control: max-age=110903
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 00:38:03 GMT
Etag: "63da0471-118"
Expires: Fri, 03 Feb 2023 07:26:26 GMT
Last-Modified: Wed, 01 Feb 2023 06:19:29 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash cf2536f410591b24282a2929a4a6512d
37858bd9ecd885ca845f24312c0a20612ebe6875
4bce01c11c946d66fd4cc1953acbfb9845a5dc5a0c0eb1a80209ebeaca3c138c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 902
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 00:38:03 GMT
Etag: "63da0711-116"
Last-Modified: Thu, 02 Feb 2023 00:23:01 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 1e7cf931e10f0c331346a80f20693ae0
2a5697888dccdc046755934a429759a10e89adea
0db2f25aa86025c33c9bb8fb4c6cee89d4ec456634c08ad46faaee0dd922f7d2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4556
Cache-Control: max-age=140208
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 00:38:03 GMT
Etag: "63da74cf-116"
Expires: Fri, 03 Feb 2023 15:34:51 GMT
Last-Modified: Wed, 01 Feb 2023 14:18:55 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash cf2536f410591b24282a2929a4a6512d
37858bd9ecd885ca845f24312c0a20612ebe6875
4bce01c11c946d66fd4cc1953acbfb9845a5dc5a0c0eb1a80209ebeaca3c138c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4036
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 00:38:03 GMT
Last-Modified: Wed, 01 Feb 2023 23:30:47 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash cf2536f410591b24282a2929a4a6512d
37858bd9ecd885ca845f24312c0a20612ebe6875
4bce01c11c946d66fd4cc1953acbfb9845a5dc5a0c0eb1a80209ebeaca3c138c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1191
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 00:38:03 GMT
Last-Modified: Thu, 02 Feb 2023 00:18:12 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 1bcd8d58039740f7931df9652a1688cb
a9c8d9d1e68267c80080b9fa408435e46b87f8e5
621f1d64c19f90d76a710039c3940c13bcc71b9e6622868f1e5ea84be8b6895a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2755
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 00:38:03 GMT
Last-Modified: Wed, 01 Feb 2023 23:52:08 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 9b35a2f7b73871a8831b4bcc4e36bdd8
625aee1fea83645e6ce32da2d07550063fbe3e02
23bbbcc0c145e39f083928fc4aabee83cd897de1149763ee0cdf88a309691230
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 638
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 00:38:03 GMT
Last-Modified: Thu, 02 Feb 2023 00:27:26 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash e5a6cc5e736606210b447b8a46676b74
050aeda3856b727edbf9aa9a9e27220690d88041
2ac82442012a8db18a76cc6214f2b594cd32cc2d8c3753f13eda9f83ef245199
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 589
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 00:38:03 GMT
Last-Modified: Thu, 02 Feb 2023 00:28:14 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 6c2bb24f09f2d613130a9b7e93d6aafe
52fe53b93e23891132e713bfcffbdaf440f176e7
d4dd23543348639c3f2a493390feb28d15531df3cbfbb906d8373363e89d9032
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4349
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 00:38:03 GMT
Etag: "63d9b2bf-117"
Last-Modified: Wed, 01 Feb 2023 23:25:34 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 279
cdn.cookielaw.org/scripttemplates/otSDKStub.js
104.16.148.64200 OK 8.4 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/otSDKStub.js
IP 104.16.148.64:0
File type ASCII text, with very long lines (25592)
Hash e248bb3ed9070ee48f0b5bc674e6a49d
46a6ac373399405df390e910c580cf850dce9886
74fd866eaf62b63cec2b85eadf2245e9302107f4c8fabc25f9c3e5cd49f40a6b
GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co
Connection: keep-alive
Referer: https://2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:38:03 GMT
content-type: application/javascript
content-length: 8384
content-encoding: gzip
content-md5: 4ki7PtkHDuSPC1vGdOaknQ==
last-modified: Wed, 01 Feb 2023 17:51:43 GMT
etag: 0x8DB047CFAAF4F1C
x-ms-request-id: d79af52c-501e-00cd-0394-36bdae000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 792edca0a866fac0-OSL
X-Firefox-Spdy: h2
2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co/
34.149.204.188200 OK 435 kB URL HTTP/2 2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co/
IP 34.149.204.188:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (53752)
Size 435 kB (434630 bytes)
Hash 9932397c2916110d87499736fba0d6d0
b3bbef8769fd066b82868902f3fa755928b7dc71
65842084d6a5a3b17a6cd1ce97d0b57e1528d66ab81770dff80ef2c4090fcaa9
Analyzer Verdict Alert openphish Netflix Inc.
fortinet Phishing
GET / HTTP/1.1
Host: 2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
access-control-allow-origin: *
content-type: text/html; charset=utf-8
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=4394992; includeSubDomains
content-length: 434630
date: Thu, 02 Feb 2023 00:38:03 GMT
X-Firefox-Spdy: h2
codex.nflxext.com/%5E3.0.0/truthBundle/webui/1.22.5-shakti-js-v2304ec2a/js/js/bootstrap.js,common%7Cbootstrap.js/2/0b3i022V2M2X052I303h070m003j2_3d2S322Y3c2O31342Q2P0a013e13/bck/true/none
45.57.90.1200 OK 3.6 kB URL HTTP/1.1 codex.nflxext.com/%5E3.0.0/truthBundle/webui/1.22.5-shakti-js-v2304ec2a/js/js/bootstrap.js,common%7Cbootstrap.js/2/0b3i022V2M2X052I303h070m003j2_3d2S322Y3c2O31342Q2P0a013e13/bck/true/none
IP 45.57.90.1:0
File type ASCII text, with very long lines (9232), with no line terminators
Hash dfa9c5243497ded1a35305f88cfeff20
eb9d7343f36bcfdf037b03ea2805254bd699d6a8
cf883bdd4cf74c0fb074f25a491a2adfed5a39f41069c324e5077b73ac8e3b18
GET /%5E3.0.0/truthBundle/webui/1.22.5-shakti-js-v2304ec2a/js/js/bootstrap.js,common%7Cbootstrap.js/2/0b3i022V2M2X052I303h070m003j2_3d2S322Y3c2O31342Q2P0a013e13/bck/true/none HTTP/1.1
Host: codex.nflxext.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 00:38:03 GMT
Content-Type: application/javascript; charset=UTF-8
Content-Length: 3630
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=16070400
Content-Encoding: gzip
Expires: Mon, 07 Aug 2023 00:38:03 GMT
req_id: 82134632-b2e6-4d04-84d6-a55e06349069
Timing-Allow-Origin: https://www.netflix.com
X-Content-Type-Options: nosniff
push.services.mozilla.com/
52.35.3.113101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.35.3.113:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 1o187W8/fGPVoa+fTtQ7xA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: e1RHchgbuLkfT/x7ae0pC5iidSQ=
2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co/personalization/cl2/freeform/WebsiteDetect?source=wwwhead&fetchType=css&modalView=nmLanding
34.149.204.188404 Not Found 19 kB URL HTTP/2 2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co/personalization/cl2/freeform/WebsiteDetect?source=wwwhead&fetchType=css&modalView=nmLanding
IP 34.149.204.188:0
Hash 7bef88c9a067ef54bd49444f5f46bf20
1d8c9aef739b83c4bf70b841c0213198694e2f2d
afc2d5d0921089f5c8861369e88b7f726b1f584530b0bd321cac076b8b302161
Analyzer Verdict Alert openphish Netflix Inc.
GET /personalization/cl2/freeform/WebsiteDetect?source=wwwhead&fetchType=css&modalView=nmLanding HTTP/1.1
Host: 2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=4394992; includeSubDomains
content-type: text/html; charset=utf-8
date: Thu, 02 Feb 2023 00:38:03 GMT
X-Firefox-Spdy: h2
codex.nflxext.com/%5E3.0.0/truthBundle/webui/1.22.5-shakti-js-v2304ec2a/js/js/signup%7Chome%7CourStory%7Cfuji%7CfujiFrameworkClient.js/2/0b3i022V2M2X052I303h070m003j2_3d2S322Y3c2O31342Q2P0a013e13/l/true/none
45.57.90.1200 OK 364 kB URL HTTP/1.1 codex.nflxext.com/%5E3.0.0/truthBundle/webui/1.22.5-shakti-js-v2304ec2a/js/js/signup%7Chome%7CourStory%7Cfuji%7CfujiFrameworkClient.js/2/0b3i022V2M2X052I303h070m003j2_3d2S322Y3c2O31342Q2P0a013e13/l/true/none
IP 45.57.90.1:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 364 kB (363605 bytes)
Hash efe3a81b33abd996abdc775ef34f078f
98e17dca23f7419d0b9b0917b4f81780b01e3a1d
eda72ba363feea10a627cc242475c4d04a0a8b7f496febee07341d53a2d4d055
GET /%5E3.0.0/truthBundle/webui/1.22.5-shakti-js-v2304ec2a/js/js/signup%7Chome%7CourStory%7Cfuji%7CfujiFrameworkClient.js/2/0b3i022V2M2X052I303h070m003j2_3d2S322Y3c2O31342Q2P0a013e13/l/true/none HTTP/1.1
Host: codex.nflxext.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 00:38:03 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=16070400
Content-Encoding: gzip
Expires: Mon, 07 Aug 2023 00:38:03 GMT
req_id: ca83bf40-af6a-44b6-84cd-24a636b81241
Timing-Allow-Origin: https://www.netflix.com
X-Content-Type-Options: nosniff
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9866
Expires: Thu, 02 Feb 2023 03:22:30 GMT
Date: Thu, 02 Feb 2023 00:38:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9866
Expires: Thu, 02 Feb 2023 03:22:30 GMT
Date: Thu, 02 Feb 2023 00:38:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9866
Expires: Thu, 02 Feb 2023 03:22:30 GMT
Date: Thu, 02 Feb 2023 00:38:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9866
Expires: Thu, 02 Feb 2023 03:22:30 GMT
Date: Thu, 02 Feb 2023 00:38:04 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d335250-c4ff-42af-b9c2-48711573ab39.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d335250-c4ff-42af-b9c2-48711573ab39.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 86664b4d1fc27ba7b5bff8a245604326
b8c7ef73101a497b6c78ad59aafe66a391fdc3fa
e4596faadf14051299036a79632951d90183dd0635293687edef11985799a752
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d335250-c4ff-42af-b9c2-48711573ab39.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4814
x-amzn-requestid: 90da23ab-2c54-40ec-8e26-bdf4eeb1e27b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdKWFpvoAMFyPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadbdb-70c4cb89413ed6bd44731d76;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:38:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: htcecPD3kYwCPwPPCqgVuXnCuKo6TTKntzaB2xFID5fvBXpZQe463A==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:59:38 GMT
age: 9507
etag: "b8c7ef73101a497b6c78ad59aafe66a391fdc3fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F868f7eb5-a922-48b3-b59c-21db2389409e.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F868f7eb5-a922-48b3-b59c-21db2389409e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6790e3bf4d10b1ffba32a22dc588c640
cdae35517dfea800134393a1095f44462bc428a5
4f4132588ee7337fff24da64b89e43b277c4ef0a2646acfba37aea08fc0f4256
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F868f7eb5-a922-48b3-b59c-21db2389409e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9416
x-amzn-requestid: acc48967-4cc1-4bfd-bc33-7bcefd8e6547
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdKVGjqIAMFa2w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadbdb-1d1cd4de0a30760e792d32e5;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:38:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: tO6GOuwj9So6Itm9ug-EQgF5iJ3NPidhS8OY4LpBvq0XftWTqGcOHA==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:57:16 GMT
age: 9649
etag: "cdae35517dfea800134393a1095f44462bc428a5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3366ef4f8733cb9c89a5c88f63a0a441
7da46843b6d885f38a4759a08e6c899906ab7b97
7114397ee5c251cc5cb46f3433c2cc17ff68a08e0872e227671198e9b61eba0a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9600
x-amzn-requestid: 48094e1a-d550-4a91-b87c-4a08505f7cce
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVsWcFN7IAMF2pg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d2275c-5ced593a7e2126c9494563df;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:10:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aZOeDFqBJQoGwLpIs-GpPvY0FKGCAOXY6MgzG32qzX-kVzUCKKv-kw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 02:29:58 GMT
age: 79687
etag: "7da46843b6d885f38a4759a08e6c899906ab7b97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7c823f1d6bf1c50d58eb263b85e6e37c
a7b74d11494fb3254df907e5cc1eead070d84617
b2706961eb756383e0988dfdb501dc424aea59697aedd1e4a6c294c314a31935
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5356
x-amzn-requestid: fef22c83-35a4-4990-9008-af5853f838d1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5BEB6oAMFczg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6c-68d3017555c069bc3107d150;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XyDZc0F-b0rxwoS5wvSXBuBfYE7JljMmuXseBjLOBk4HvxU5gE7Oqg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:18:55 GMT
age: 8350
etag: "a7b74d11494fb3254df907e5cc1eead070d84617"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb20c182-a39b-4222-8a27-155f67b554ab.webp
34.120.237.76200 OK 3.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb20c182-a39b-4222-8a27-155f67b554ab.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4c0980cc80018f2218e1a5a7336a4bcc
461e33619154423dbbf49407a80b70ade9078593
4375676d6ce36b3ec3923eefe2007bb96d96135dae10103a886c24fc9063fce9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb20c182-a39b-4222-8a27-155f67b554ab.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3541
x-amzn-requestid: f65e4be6-20ff-4f14-a722-d6c2c4631a5f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5YHQqoAMFeBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6f-5f9183ed1c2cb640249c2b09;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dhCNUaZl9ATxaIgoLz8bF1ZxjW31vJ6rx-BLhIKVjmoG4tPFH7WZZQ==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:25:11 GMT
age: 7974
etag: "461e33619154423dbbf49407a80b70ade9078593"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdd8c5ba-bd1b-4dda-ae36-680f02b388f8.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdd8c5ba-bd1b-4dda-ae36-680f02b388f8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b91a1323efe4b01a2d1a2e8485117934
43d04a554f6ef512e7b21ac09287efc0e4e5efee
393e3ab81aee9fda022d06c25789be66e56aaf56f81b0514ab5dfec445087bdf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdd8c5ba-bd1b-4dda-ae36-680f02b388f8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10807
x-amzn-requestid: 3c6771b8-3ae0-4300-9d84-9311c15389ba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ2JGh3oAMFp0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcf3-27479faf4518900c03b84144;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: oZ6etg6l7SjzCMTg-7DhIeEXMmempp9_kMb3ITzUqbrXKz2wz0qJ0w==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 07:02:22 GMT
age: 63343
etag: "43d04a554f6ef512e7b21ac09287efc0e4e5efee"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
codex.nflxext.com/%5E3.0.0/truthBundle/webui/1.22.5-shakti-css-rtl-v2304ec2a/css-rtl/css/less%7Ccore%7Cerror-page.less/1/a8uCwJ4HsvF9BGI/none/true/none
45.57.90.1200 OK 2.6 kB URL HTTP/1.1 codex.nflxext.com/%5E3.0.0/truthBundle/webui/1.22.5-shakti-css-rtl-v2304ec2a/css-rtl/css/less%7Ccore%7Cerror-page.less/1/a8uCwJ4HsvF9BGI/none/true/none
IP 45.57.90.1:0
File type ASCII text, with very long lines (11590), with no line terminators
Hash 72aa0195578c6586a9c2d9ee85ec0a4d
2daad6ed0aca8cb8f2901914c9409a23432233c3
9bbbf0899d359e2e3975b647ac2a7e5ef8c42a70ee4107ca36d21d38b030a09f
GET /%5E3.0.0/truthBundle/webui/1.22.5-shakti-css-rtl-v2304ec2a/css-rtl/css/less%7Ccore%7Cerror-page.less/1/a8uCwJ4HsvF9BGI/none/true/none HTTP/1.1
Host: codex.nflxext.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 00:38:05 GMT
Content-Type: text/css; charset=UTF-8
Content-Length: 2634
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=16070400
Content-Encoding: gzip
Expires: Mon, 07 Aug 2023 00:38:05 GMT
req_id: 9c51b125-03ee-48b6-bdd6-cd7d753ab3ff
Timing-Allow-Origin: https://www.netflix.com
X-Content-Type-Options: nosniff
codex.nflxext.com/%5E3.0.0/truthBundle/webui/1.22.5-shakti-css-rtl-v2304ec2a/css-rtl/css/less%7Cpages%7Chome%7CourStory%7Cfuji%7Cfuji.less/1/a8uCwJ4HsvF9BGI/none/true/none
45.57.90.1200 OK 16 kB URL HTTP/1.1 codex.nflxext.com/%5E3.0.0/truthBundle/webui/1.22.5-shakti-css-rtl-v2304ec2a/css-rtl/css/less%7Cpages%7Chome%7CourStory%7Cfuji%7Cfuji.less/1/a8uCwJ4HsvF9BGI/none/true/none
IP 45.57.90.1:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 2e6ba86568bfe667ff5adb8381395598
ecd500a8de11a00113dd450f662cb28084ac5988
7580e6fee02eb622687bcb0dbdb77ae555cb480aa25dc9d986571b7dcc612864
GET /%5E3.0.0/truthBundle/webui/1.22.5-shakti-css-rtl-v2304ec2a/css-rtl/css/less%7Cpages%7Chome%7CourStory%7Cfuji%7Cfuji.less/1/a8uCwJ4HsvF9BGI/none/true/none HTTP/1.1
Host: codex.nflxext.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 00:38:05 GMT
Content-Type: text/css; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: max-age=16070400
Content-Encoding: gzip
Expires: Mon, 07 Aug 2023 00:38:05 GMT
req_id: b9cb681c-b2a2-4ba9-a6db-ed4564785b6f
Timing-Allow-Origin: https://www.netflix.com
X-Content-Type-Options: nosniff
assets.nflxext.com/ffe/siteui/acquisition/ourStory/fuji/desktop/tv.png
45.57.91.1200 OK 11 kB URL HTTP/1.1 assets.nflxext.com/ffe/siteui/acquisition/ourStory/fuji/desktop/tv.png
IP 45.57.91.1:0
File type PNG image data, 640 x 480, 8-bit colormap, non-interlaced\012- data
Hash 77994a67327ba957dfd880e33a91f041
5ba507de8c9bc4a063beecb569e89bcf9e0a901c
b68ea2c7bea397aa11fadb189ce7d83862baebaf03ece643eb5aa9fb5f755056
GET /ffe/siteui/acquisition/ourStory/fuji/desktop/tv.png HTTP/1.1
Host: assets.nflxext.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 00:38:05 GMT
Content-Type: image/png
Content-Length: 11418
Connection: keep-alive
Content-MD5: d5lKZzJ7qVff2IDjOpHwQQ==
Last-Modified: Wed, 14 Nov 2018 18:20:41 GMT
Cache-Control: max-age=604801
Expires: Thu, 09 Feb 2023 00:38:06 GMT
Accept-Ranges: bytes
assets.nflxext.com/ffe/siteui/acquisition/ourStory/fuji/desktop/boxshot.png
45.57.91.1200 OK 20 kB URL HTTP/1.1 assets.nflxext.com/ffe/siteui/acquisition/ourStory/fuji/desktop/boxshot.png
IP 45.57.91.1:0
File type PNG image data, 150 x 210, 8-bit colormap, non-interlaced\012- data
Hash 587e040f20259792094901ca9739669e
d48b9de536ecd248ab1d923bf837c6958a9e0cec
e1fa26cc34fda574edc01d09e374d6f10735a3fa621bdde87c104ee15453d4b6
GET /ffe/siteui/acquisition/ourStory/fuji/desktop/boxshot.png HTTP/1.1
Host: assets.nflxext.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 00:38:05 GMT
Content-Type: image/png
Content-Length: 20506
Connection: keep-alive
Content-MD5: WH4EDyAll5IJSQHKlzlmng==
Last-Modified: Wed, 14 Nov 2018 18:48:14 GMT
Cache-Control: max-age=604801
Expires: Thu, 09 Feb 2023 00:38:06 GMT
Accept-Ranges: bytes
assets.nflxext.com/ffe/siteui/acquisition/ourStory/fuji/desktop/mobile-0819.jpg
45.57.91.1200 OK 50 kB URL HTTP/1.1 assets.nflxext.com/ffe/siteui/acquisition/ourStory/fuji/desktop/mobile-0819.jpg
IP 45.57.91.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 640x480, components 3\012- data
Hash a48333d43c19612ed61987fa5dbff3c5
8a8781250b96fee7830eb63ee8dda19e5c871881
492fdebd363e40cbba153a244bcfe2a7f5f7cf20aff0805fe45d5c7e2180b875
GET /ffe/siteui/acquisition/ourStory/fuji/desktop/mobile-0819.jpg HTTP/1.1
Host: assets.nflxext.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 00:38:05 GMT
Content-Type: image/jpeg
Content-Length: 49614
Connection: keep-alive
Content-MD5: pIMz1DwZYS7WGYf6Xb/zxQ==
Last-Modified: Wed, 14 Aug 2019 17:59:05 GMT
Cache-Control: max-age=604801
Expires: Thu, 09 Feb 2023 00:38:06 GMT
Accept-Ranges: bytes
assets.nflxext.com/ffe/siteui/acquisition/ourStory/fuji/desktop/device-pile.png
45.57.91.1200 OK 137 kB URL HTTP/1.1 assets.nflxext.com/ffe/siteui/acquisition/ourStory/fuji/desktop/device-pile.png
IP 45.57.91.1:0
File type PNG image data, 640 x 480, 8-bit/color RGBA, non-interlaced\012- data
Size 137 kB (137040 bytes)
Hash 0b3d821493d5748d829c852bbd6d292d
2b83523c3e0731a1aebace26ecbebf02a63a6b19
81cf64888a7b3f6848b09695b034026d9ad685665b91d54597ecbb6197c6acbb
GET /ffe/siteui/acquisition/ourStory/fuji/desktop/device-pile.png HTTP/1.1
Host: assets.nflxext.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 00:38:05 GMT
Content-Type: image/png
Content-Length: 137040
Connection: keep-alive
Content-MD5: Cz2CFJPVdI2CnIUrvW0pLQ==
Last-Modified: Wed, 23 Jan 2019 00:35:07 GMT
Cache-Control: max-age=604801
Expires: Thu, 09 Feb 2023 00:38:06 GMT
Accept-Ranges: bytes
assets.nflxext.com/ffe/siteui/acquisition/ourStory/fuji/desktop/download-icon.gif
45.57.91.1200 OK 22 kB URL HTTP/1.1 assets.nflxext.com/ffe/siteui/acquisition/ourStory/fuji/desktop/download-icon.gif
IP 45.57.91.1:0
File type GIF image data, version 89a, 100 x 100\012- data
Hash dd3cb78db78c3e0a13c9b77ee19deee6
9de1915d6543939218ff991b39ee5f9a11aad6f5
4f99e4c2ed1c2b7de72f47102c64d601567f8efaad5944a08c86786cad4050e6
GET /ffe/siteui/acquisition/ourStory/fuji/desktop/download-icon.gif HTTP/1.1
Host: assets.nflxext.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://codex.nflxext.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 00:38:06 GMT
Content-Type: image/gif
Content-Length: 22171
Connection: keep-alive
Content-MD5: 3Ty3jbeMPgoTybd+4Z3u5g==
Last-Modified: Mon, 12 Nov 2018 22:40:57 GMT
Cache-Control: max-age=604801
Expires: Thu, 09 Feb 2023 00:38:07 GMT
Accept-Ranges: bytes
assets.nflxext.com/ffe/siteui/fonts/netflix-sans/v3/NetflixSans_W_Rg.woff2
45.57.91.1200 OK 53 kB URL HTTP/1.1 assets.nflxext.com/ffe/siteui/fonts/netflix-sans/v3/NetflixSans_W_Rg.woff2
IP 45.57.91.1:0
File type Web Open Font Format (Version 2), TrueType, length 53304, version 2.6554\012- data
Hash 0bf3177f1fed6d953178221fba43c7e8
83d9f039f1ba7209321c7da72d3dc6a9aa5e2ab3
c0bceb927c506dce9f6e6f5f570e641ad580b9554be06f61508a4aee32380167
GET /ffe/siteui/fonts/netflix-sans/v3/NetflixSans_W_Rg.woff2 HTTP/1.1
Host: assets.nflxext.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co
Connection: keep-alive
Referer: https://codex.nflxext.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 00:38:06 GMT
Content-Type: font/woff2
Content-Length: 53304
Connection: keep-alive
Content-MD5: C/MXfx/tbZUxeCIfukPH6A==
Last-Modified: Thu, 17 Jan 2019 20:16:30 GMT
Cache-Control: max-age=604801
Expires: Thu, 09 Feb 2023 00:38:07 GMT
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
assets.nflxext.com/ffe/siteui/fonts/nf-icon-v1-93.woff
45.57.91.1200 OK 74 kB URL HTTP/1.1 assets.nflxext.com/ffe/siteui/fonts/nf-icon-v1-93.woff
IP 45.57.91.1:0
File type Web Open Font Format, CFF, length 73572, version 0.0\012- data
Hash 7cf6156cc481244b5a254362d7b73f00
4391003d1cb06d2bd1921a5813a57604fa7d9935
98713b53a74ebe7e326353080c5f1653e83af61d6363c0b3c4c67d6d24197b4d
GET /ffe/siteui/fonts/nf-icon-v1-93.woff HTTP/1.1
Host: assets.nflxext.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co
Connection: keep-alive
Referer: https://codex.nflxext.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 00:38:06 GMT
Content-Type: font/woff
Content-Length: 73572
Connection: keep-alive
Content-MD5: fPYVbMSBJEtaJUNi17c/AA==
Last-Modified: Mon, 29 Jan 2018 01:50:51 GMT
Cache-Control: max-age=604801
Expires: Thu, 09 Feb 2023 00:38:07 GMT
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
assets.nflxext.com/ffe/siteui/fonts/netflix-sans/v3/NetflixSans_W_Md.woff2
45.57.91.1200 OK 54 kB URL HTTP/1.1 assets.nflxext.com/ffe/siteui/fonts/netflix-sans/v3/NetflixSans_W_Md.woff2
IP 45.57.91.1:0
File type Web Open Font Format (Version 2), TrueType, length 53940, version 2.6554\012- data
Hash ea769921b0cfa4fc6d4d1a2e0b1fa5ff
34dcd2875c9752ebba6f894eb8d410e4958cc1b4
9ac2bd03fcde501b3f30f47ab1fae62161f87808ea6411f38e8feaa4bbddc42e
GET /ffe/siteui/fonts/netflix-sans/v3/NetflixSans_W_Md.woff2 HTTP/1.1
Host: assets.nflxext.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co
Connection: keep-alive
Referer: https://codex.nflxext.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 00:38:06 GMT
Content-Type: font/woff2
Content-Length: 53940
Connection: keep-alive
Content-MD5: 6naZIbDPpPxtTRouCx+l/w==
Last-Modified: Thu, 17 Jan 2019 20:16:30 GMT
Cache-Control: max-age=604801
Expires: Thu, 09 Feb 2023 00:38:07 GMT
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
assets.nflxext.com/ffe/siteui/acquisition/ourStory/fuji/desktop/video-devices.m4v
45.57.91.1206 Partial Content 266 kB URL HTTP/1.1 assets.nflxext.com/ffe/siteui/acquisition/ourStory/fuji/desktop/video-devices.m4v
IP 45.57.91.1:0
File type ISO Media, Apple iTunes Video (.M4V) Video\012- data
Size 266 kB (266160 bytes)
Hash 3e55c56205a89c859fed005ae1729faa
b33bba44ef2d6932707d0eef8e00b0ed534fcbb7
3eec290a7f7da9abb00b49ca84f5f16e6d45ca33d40fd8ede4380835d6161d71
GET /ffe/siteui/acquisition/ourStory/fuji/desktop/video-devices.m4v HTTP/1.1
Host: assets.nflxext.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 206 Partial Content
Server: nginx
Date: Thu, 02 Feb 2023 00:38:06 GMT
Content-Type: video/x-m4v
Content-Length: 266160
Connection: keep-alive
Content-MD5: PlXFYgWonIWf7QBa4XKfqg==
Last-Modified: Wed, 09 Jan 2019 20:47:49 GMT
Cache-Control: max-age=604801
Expires: Thu, 09 Feb 2023 00:38:07 GMT
Content-Range: bytes 0-266159/266160
assets.nflxext.com/ffe/siteui/acquisition/ourStory/fuji/desktop/video-tv-0819.m4v
45.57.91.1206 Partial Content 270 kB URL HTTP/1.1 assets.nflxext.com/ffe/siteui/acquisition/ourStory/fuji/desktop/video-tv-0819.m4v
IP 45.57.91.1:0
File type ISO Media, Apple iTunes Video (.M4V) Video\012- data
Size 270 kB (270046 bytes)
Hash 3cb12db7c672b33735006480a455ec72
d060e5996b3f7143755496cf2a06de5a59c283ce
4c7a552d219146985961bf78d9083b7e2c1a82c4ada5d959f48b3e53754c9049
GET /ffe/siteui/acquisition/ourStory/fuji/desktop/video-tv-0819.m4v HTTP/1.1
Host: assets.nflxext.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 206 Partial Content
Server: nginx
Date: Thu, 02 Feb 2023 00:38:06 GMT
Content-Type: video/x-m4v
Content-Length: 270046
Connection: keep-alive
Content-MD5: PLEtt8Zyszc1AGSApFXscg==
Last-Modified: Mon, 12 Aug 2019 20:49:12 GMT
Cache-Control: max-age=604801
Expires: Thu, 09 Feb 2023 00:38:07 GMT
Content-Range: bytes 0-270045/270046
assets.nflxext.com/ffe/siteui/vlv3/8dc3f88b-a96a-4d8a-af9a-a69e6f3b2506/8dd48273-00cb-4fa8-93d1-ec7a904d49fa/IL-he-20210524-popsignuptwoweeks-perspective_alpha_website_medium.jpg
45.57.91.1200 OK 196 kB URL HTTP/1.1 assets.nflxext.com/ffe/siteui/vlv3/8dc3f88b-a96a-4d8a-af9a-a69e6f3b2506/8dd48273-00cb-4fa8-93d1-ec7a904d49fa/IL-he-20210524-popsignuptwoweeks-perspective_alpha_website_medium.jpg
IP 45.57.91.1:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2000x1125, components 3\012- data
Size 196 kB (196175 bytes)
Hash 99f5e63b2db356adbec89f5e953530e2
93b8afd27b936221211f9aad3afb707e1ec1dc16
9a6550a059ae8a4918d0d6b5e8aa98291a514ef162144e22071bb2e99b6dcdca
GET /ffe/siteui/vlv3/8dc3f88b-a96a-4d8a-af9a-a69e6f3b2506/8dd48273-00cb-4fa8-93d1-ec7a904d49fa/IL-he-20210524-popsignuptwoweeks-perspective_alpha_website_medium.jpg HTTP/1.1
Host: assets.nflxext.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 00:38:06 GMT
Content-Type: image/jpeg
Content-Length: 196175
Connection: keep-alive
Accept-Ranges: bytes
Content-MD5: mfXmOy2zVq2+yJ9elTUw4g==
Last-Modified: Wed, 26 May 2021 14:21:09 GMT
Cache-Control: max-age=604801
Expires: Thu, 09 Feb 2023 00:38:07 GMT
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 045de77c25553cc3c7bcafa7f7c8419f
a073bbbfd3ffa062948db22a42c7f6bcd3bc082d
a756edf2fee4d6b169aab055c2d2f7ea9cc99a248691014aa708e72c32aff3d4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3939
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 00:38:06 GMT
Last-Modified: Wed, 01 Feb 2023 23:32:28 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 279
cdn.cookielaw.org/scripttemplates/202301.1.0/otBannerSdk.js
104.16.148.64200 OK 96 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/202301.1.0/otBannerSdk.js
IP 104.16.148.64:0
File type ASCII text, with very long lines (65451)
Hash 4cf6ad1ca32d8b82fc4d5acad0f5a4c6
66040cff75e7a566199973734b576eedda20348f
a57005c8986d670ba810902b0ba801853cabb29f743fbf87a01dfa4e65c7c770
GET /scripttemplates/202301.1.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co
Connection: keep-alive
Referer: https://2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:38:06 GMT
content-type: application/javascript
content-length: 96303
content-encoding: gzip
content-md5: TPatHKMti4L8TVrK0PWkxg==
last-modified: Wed, 25 Jan 2023 15:15:45 GMT
etag: 0x8DAFEE707F6F8E9
x-ms-request-id: f1c2e1f8-901e-0118-47c0-35b326000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 792edcb2ce89fac0-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/87b6a5c0-0104-4e96-a291-092c11350111/4f2d639c-9367-471a-a518-a92a0a9b5150/en.json
104.16.148.64200 OK 14 kB URL HTTP/2 cdn.cookielaw.org/consent/87b6a5c0-0104-4e96-a291-092c11350111/4f2d639c-9367-471a-a518-a92a0a9b5150/en.json
IP 104.16.148.64:0
File type JSON data\012- HTML document, Unicode text, UTF-8 text, with very long lines (54534), with no line terminators
Hash 3ae58f34789b64eece6ef6311a68aa19
14c5105ba4f20bf35930cd3e8de7b9e6b1056bb2
92d379ea0e4d7d48d234b464a2eef08e44f842b6b19e6fe143055b0a8e326507
GET /consent/87b6a5c0-0104-4e96-a291-092c11350111/4f2d639c-9367-471a-a518-a92a0a9b5150/en.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co/
Origin: https://2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:38:06 GMT
content-type: application/x-javascript
content-length: 14306
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: OuWPNHibZO7ObvYxGmiqGQ==
last-modified: Tue, 10 Jan 2023 18:13:49 GMT
etag: 0x8DAF3366C59A8FE
x-ms-request-id: 158cb22e-501e-0001-5a03-36d91b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
expires: Fri, 03 Feb 2023 00:38:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 792edcb38eddfac0-OSL
X-Firefox-Spdy: h2
assets.nflxext.com/us/ffe/siteui/common/icons/nficon2016.png
45.57.91.1200 OK 1.8 kB URL HTTP/1.1 assets.nflxext.com/us/ffe/siteui/common/icons/nficon2016.png
IP 45.57.91.1:0
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash 3d194514babc5d7d010308a0f808ca51
867e51e9b4a474c19da52d6454076c007a9d01f2
7341f7b8b0ae3c0da4aea559efc31f0b53d9db9dd291664fdcf7d618fd95ed8a
GET /us/ffe/siteui/common/icons/nficon2016.png HTTP/1.1
Host: assets.nflxext.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 00:38:06 GMT
Content-Type: image/png
Content-Length: 1755
Connection: keep-alive
Content-MD5: PRlFFLq8XX0BAwig+AjKUQ==
Last-Modified: Tue, 21 Jun 2016 22:29:33 GMT
Cache-Control: max-age=604801
Expires: Thu, 09 Feb 2023 00:38:07 GMT
Accept-Ranges: bytes
assets.nflxext.com/us/ffe/siteui/common/icons/nficon2016.ico
45.57.91.1200 OK 17 kB URL HTTP/1.1 assets.nflxext.com/us/ffe/siteui/common/icons/nficon2016.ico
IP 45.57.91.1:0
File type MS Windows icon resource - 1 icon, 64x64, 32 bits/pixel\012- data
Hash 41b45fdce09bd6acd07c7a8949da675e
931e18dfc6e7d950dc2f2bbdfe31e1ea720acf7c
abe8012eb65c0dc0ac3e87dcc1e60e1908ebd8f12b7c47a5df1856f7a7bb1edd
GET /us/ffe/siteui/common/icons/nficon2016.ico HTTP/1.1
Host: assets.nflxext.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 00:38:06 GMT
Content-Type: image/x-icon
Content-Length: 16958
Connection: keep-alive
Content-MD5: QbRf3OCb1qzQfHqJSdpnXg==
Last-Modified: Tue, 21 Jun 2016 21:54:27 GMT
Cache-Control: max-age=604801
Expires: Thu, 09 Feb 2023 00:38:07 GMT
Accept-Ranges: bytes
cdn.cookielaw.org/scripttemplates/202301.1.0/assets/v2/otPcTab.json
104.16.148.64200 OK 13 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/202301.1.0/assets/v2/otPcTab.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (50875)
Hash e71e4e4ef468b3924128f6be41ba6ac6
2be4169f3873d92c67fd109573c8e33116df8bb8
22f868af93df99d607e97ce097276c8451ad2c0d4de63f134e47f76255a74c43
GET /scripttemplates/202301.1.0/assets/v2/otPcTab.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co/
Origin: https://2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:38:06 GMT
content-type: application/json
content-length: 13354
content-encoding: gzip
content-md5: 5x5OTvRos5JBKPa+Qbpqxg==
last-modified: Wed, 25 Jan 2023 15:15:39 GMT
etag: 0x8DAFEE704DB6027
x-ms-request-id: 4000e5f9-f01e-0084-1fc0-358ece000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 792edcb3fefffac0-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/202301.1.0/assets/otFlat.json
104.16.148.64200 OK 3.0 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/202301.1.0/assets/otFlat.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (11167)
Hash 251aae3abc274fed5f002ca7c4489994
fe1234c13f26cc502e075887b8ae3b191073403d
08bbbe1fae903de5afb45b7f7ebfca611b74bd06905223fcc61fd5ee36c7fd22
GET /scripttemplates/202301.1.0/assets/otFlat.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co/
Origin: https://2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:38:06 GMT
content-type: application/json
content-length: 3020
content-encoding: gzip
content-md5: JRquOrwnT+1fACynxEiZlA==
last-modified: Wed, 25 Jan 2023 15:15:37 GMT
etag: 0x8DAFEE7034BD2DB
x-ms-request-id: 6f782305-201e-004a-3ac0-35e881000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 792edcb3fefefac0-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/logos/dd6b162f-1a32-456a-9cfe-897231c7763c/4345ea78-053c-46d2-b11e-09adaef973dc/Netflix_Logo_PMS.png
104.16.148.64200 OK 16 kB URL HTTP/2 cdn.cookielaw.org/logos/dd6b162f-1a32-456a-9cfe-897231c7763c/4345ea78-053c-46d2-b11e-09adaef973dc/Netflix_Logo_PMS.png
IP 104.16.148.64:0
File type PNG image data, 1801 x 756, 8-bit/color RGBA, non-interlaced\012- data
Hash dcc4094709a2dc14af288844556ff9b7
0dd0347c55ca4f5332e11d5b742babf8aebf8d6f
675dd7b68acf580f893bec532f5b260b8f984b67734a9a6831334b2ff4aad384
GET /logos/dd6b162f-1a32-456a-9cfe-897231c7763c/4345ea78-053c-46d2-b11e-09adaef973dc/Netflix_Logo_PMS.png HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:38:06 GMT
content-type: application/octet-stream
content-length: 16386
content-md5: 3MQJRwmi3BSvKIhEVW/5tw==
last-modified: Mon, 18 May 2020 21:10:31 GMT
etag: 0x8D7FB6FE5CFC000
x-ms-request-id: 51439d9a-f01e-0048-0c43-caea7b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 51291
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 792edcb46f2afac0-OSL
X-Firefox-Spdy: h2
ae.nflximg.net/monet/scripts/adtech_iframe_target_05.html?data=%7B%22membership_status%22%3A%22ANONYMOUS%22%2C%22country%22%3A%22IL%22%2C%22region_code%22%3A%22D%22%2C%22is_member%22%3A%22ANONYMOUS%22%2C%22wasFormerMember%22%3Afalse%2C%22referrer%22%3A%22nmLanding%22%2C%22deniedConsentCookieGroups%22%3A%22C0004%2CC0005%22%7D
23.38.201.148200 OK 1.5 kB URL HTTP/1.1 ae.nflximg.net/monet/scripts/adtech_iframe_target_05.html?data=%7B%22membership_status%22%3A%22ANONYMOUS%22%2C%22country%22%3A%22IL%22%2C%22region_code%22%3A%22D%22%2C%22is_member%22%3A%22ANONYMOUS%22%2C%22wasFormerMember%22%3Afalse%2C%22referrer%22%3A%22nmLanding%22%2C%22deniedConsentCookieGroups%22%3A%22C0004%2CC0005%22%7D
IP 23.38.201.148:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e3a9457e51b2d626ee8218f697d0b8b0
3b6d36290281104a6bcb9b6bf9c936fc7a2588fb
7b743012e6af2f50e2e9aaad029b872f93c551f4811916e388228e8e5c3097f7
GET /monet/scripts/adtech_iframe_target_05.html?data=%7B%22membership_status%22%3A%22ANONYMOUS%22%2C%22country%22%3A%22IL%22%2C%22region_code%22%3A%22D%22%2C%22is_member%22%3A%22ANONYMOUS%22%2C%22wasFormerMember%22%3Afalse%2C%22referrer%22%3A%22nmLanding%22%2C%22deniedConsentCookieGroups%22%3A%22C0004%2CC0005%22%7D HTTP/1.1
Host: ae.nflximg.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-MD5: wAdYtW1y2pnz8A4F9t+2hg==
Content-Type: text/html
ETag: "c00758b56d72da99f3f00e05f6dfb686:1667228899.15889"
Last-Modified: Mon, 31 Oct 2022 15:08:11 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Thu, 02 Feb 2023 00:38:06 GMT
Content-Length: 1504
Connection: keep-alive
Timing-Allow-Origin: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET,POST
Access-Control-Allow-Origin: *
ae.nflximg.net/monet/scripts/netflix_tag_05.html?data=%7B%22membership_status%22%3A%22ANONYMOUS%22%2C%22country%22%3A%22IL%22%2C%22region_code%22%3A%22D%22%2C%22is_member%22%3A%22ANONYMOUS%22%2C%22wasFormerMember%22%3Afalse%2C%22referrer%22%3A%22nmLanding%22%2C%22deniedConsentCookieGroups%22%3A%22C0004%2CC0005%22%7D
23.38.201.148200 OK 2.7 kB URL HTTP/1.1 ae.nflximg.net/monet/scripts/netflix_tag_05.html?data=%7B%22membership_status%22%3A%22ANONYMOUS%22%2C%22country%22%3A%22IL%22%2C%22region_code%22%3A%22D%22%2C%22is_member%22%3A%22ANONYMOUS%22%2C%22wasFormerMember%22%3Afalse%2C%22referrer%22%3A%22nmLanding%22%2C%22deniedConsentCookieGroups%22%3A%22C0004%2CC0005%22%7D
IP 23.38.201.148:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (8925)
Hash 34c6354903210c9fafc06b70bf6defe5
efcd1b78bcecc780004195b65d3baa15b594622f
39f353064f9f1967582d7df7292db6c70626926f29436551c3f3bdb504273715
GET /monet/scripts/netflix_tag_05.html?data=%7B%22membership_status%22%3A%22ANONYMOUS%22%2C%22country%22%3A%22IL%22%2C%22region_code%22%3A%22D%22%2C%22is_member%22%3A%22ANONYMOUS%22%2C%22wasFormerMember%22%3Afalse%2C%22referrer%22%3A%22nmLanding%22%2C%22deniedConsentCookieGroups%22%3A%22C0004%2CC0005%22%7D HTTP/1.1
Host: ae.nflximg.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ae.nflximg.net/monet/scripts/adtech_iframe_target_05.html?data=%7B%22membership_status%22%3A%22ANONYMOUS%22%2C%22country%22%3A%22IL%22%2C%22region_code%22%3A%22D%22%2C%22is_member%22%3A%22ANONYMOUS%22%2C%22wasFormerMember%22%3Afalse%2C%22referrer%22%3A%22nmLanding%22%2C%22deniedConsentCookieGroups%22%3A%22C0004%2CC0005%22%7D
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-MD5: ZwzaLjA0eDl5UKsNhYHOsA==
Content-Type: text/html
ETag: "670cda2e303478397950ab0d8581ceb0:1674843045.032586"
Last-Modified: Fri, 27 Jan 2023 18:10:36 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Thu, 02 Feb 2023 00:38:06 GMT
Content-Length: 2697
Connection: keep-alive
Timing-Allow-Origin: *
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET,POST
Access-Control-Allow-Origin: *
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 17bbfb987e254fd9bc6fed51d6153bfe
d41d20ca6b11074c8b2ba9afd822b05579568d55
3762503138942b8ea7aa1249ef3babfdb71b9981f907718790b8f5f1c6274662
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3748
Cache-Control: max-age=109885
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 00:38:07 GMT
Etag: "63da0188-1d7"
Expires: Fri, 03 Feb 2023 07:09:32 GMT
Last-Modified: Wed, 01 Feb 2023 06:07:04 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7ac6e9f7cb930e8c44ad60d8ff648526
3d5c5544db915a257d7ab45ec9f28f9c3c263b55
cf9797303948014f81faf369fcf000e012af7c3775cacac43284aaeffa1f93a8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6552
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 00:38:07 GMT
Last-Modified: Wed, 01 Feb 2023 22:48:55 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
cdn.cookielaw.org/logos/static/powered_by_logo.svg
104.16.148.64200 OK 2.0 kB URL HTTP/2 cdn.cookielaw.org/logos/static/powered_by_logo.svg
IP 104.16.148.64:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (5194), with no line terminators
Hash d8e753004833f6a1893f523365c9061c
8608234fcedf4c573dafcde1b3b9f24caedcec99
d6a30d54022c1345fa2d0bfbffb3290bfc90b2109a5eb1ca515ab7e9dbb78e3e
GET /logos/static/powered_by_logo.svg HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:38:06 GMT
content-type: image/svg+xml
content-md5: Y+c301RBZNK39PvKQWrIBw==
last-modified: Tue, 31 Jan 2023 02:45:56 GMT
x-ms-request-id: 9ec332f3-601e-0106-44ab-3569cb000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 21445
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 792edcb46f2cfac0-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.netflix.com/ichnaea/log
54.155.178.5200 OK 0 B URL HTTP/2 www.netflix.com/ichnaea/log
IP 54.155.178.5:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ichnaea/log HTTP/1.1
Host: www.netflix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Netflix.ichnaea.request.type: IchnaeaRequest
Content-Length: 100
Origin: https://ae.nflximg.net
Connection: keep-alive
Referer: https://ae.nflximg.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://ae.nflximg.net
access-control-allow-credentials: true
access-control-allow-headers: Accept,Accept-Language,Authorization,Content-Type,Cookie,debugRequest,X-Netflix.application.name,X-Netflix.application.version,X-Netflix.certification.version,X-Netflix.Client.Request.Name,X-Netflix.device.type,X-Netflix.esn,X-Netflix.ichnaea.request.type,X-Netflix.oauth.consumer.key,X-Netflix.oauth.token,X-Netflix.request.uuid,X-Netflix.user.id
access-control-allow-methods: GET, POST, OPTIONS
allow: GET, POST, OPTIONS
x-ichnaea: ~0=true~RL=0
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
x-frame-options: DENY
content-length: 0
date: Thu, 02 Feb 2023 00:38:06 GMT
x-envoy-upstream-service-time: 1
x-b3-traceid: 327ae25583b131af
x-request-id: 0939fde8-7672-4b64-9d73-3e618c1639f3
server: clingest-secure i-053038c5304de5f9d
x-envoy-decorator-operation: lo_svc_http
via: 2 i-06832c34c9d05ec8d (eu-west-1)
strict-transport-security: max-age=31536000; includeSubDomains
x-originating-url: http://www.netflix.com/ichnaea/log
x-netflix.nfstatus: 1_1
x-netflix.proxy.execution-time: 13
X-Firefox-Spdy: h2
ichnaea-web.netflix.com/log
34.251.205.213200 OK 0 B URL HTTP/1.1 ichnaea-web.netflix.com/log
IP 34.251.205.213:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /log HTTP/1.1
Host: ichnaea-web.netflix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-netflix.ichnaea.request.type
Referer: https://ae.nflximg.net/
Origin: https://ae.nflximg.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Accept,Accept-Language,Authorization,Content-Type,Cookie,debugRequest,X-Netflix.application.name,X-Netflix.application.version,X-Netflix.certification.version,X-Netflix.Client.Request.Name,X-Netflix.device.type,X-Netflix.esn,X-Netflix.ichnaea.request.type,X-Netflix.oauth.consumer.key,X-Netflix.oauth.token,X-Netflix.request.uuid,X-Netflix.user.id
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: https://ae.nflximg.net
allow: GET, POST, OPTIONS
cache-control: no-cache, no-store, max-age=0, must-revalidate
date: Thu, 02 Feb 2023 00:38:06 GMT
expires: 0
pragma: no-cache
Server: clingest-secure i-0a6961627f89e9d90
strict-transport-security: max-age=31536000 ; includeSubDomains
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
Via: 1.1 i-013c6230dd7a9de6f (eu-west-1)
x-b3-traceid: d027b765846224f8
x-content-type-options: nosniff
x-envoy-decorator-operation: lo_svc_http
x-envoy-upstream-service-time: 2
x-frame-options: DENY
X-Netflix.nfstatus: 1_1
X-Netflix.proxy.execution-time: 5
X-Originating-URL: https://ichnaea-web.netflix.com/log
x-request-id: 12292054-af39-45f1-a8d3-5025f472d3ff
x-xss-protection: 1; mode=block
Content-Length: 0
Connection: keep-alive
ichnaea-web.netflix.com/log
34.251.205.213200 OK 0 B URL HTTP/1.1 ichnaea-web.netflix.com/log
IP 34.251.205.213:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /log HTTP/1.1
Host: ichnaea-web.netflix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Netflix.ichnaea.request.type: IchnaeaRequest
Content-Length: 487
Origin: https://ae.nflximg.net
Connection: keep-alive
Referer: https://ae.nflximg.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
access-control-allow-credentials: true
access-control-allow-headers: Accept,Accept-Language,Authorization,Content-Type,Cookie,debugRequest,X-Netflix.application.name,X-Netflix.application.version,X-Netflix.certification.version,X-Netflix.Client.Request.Name,X-Netflix.device.type,X-Netflix.esn,X-Netflix.ichnaea.request.type,X-Netflix.oauth.consumer.key,X-Netflix.oauth.token,X-Netflix.request.uuid,X-Netflix.user.id
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: https://ae.nflximg.net
allow: GET, POST, OPTIONS
cache-control: no-cache, no-store, max-age=0, must-revalidate
date: Thu, 02 Feb 2023 00:38:06 GMT
expires: 0
pragma: no-cache
Server: clingest-secure i-0b9efa2993ab71cd7
Via: 1.1 i-0179eec5b5469f1da (eu-west-1)
x-b3-traceid: c0d3e018ce499d71
x-content-type-options: nosniff
x-envoy-decorator-operation: lo_svc_http
x-envoy-upstream-service-time: 1
x-frame-options: DENY
x-ichnaea: ~0=true~RL=0
X-Netflix.nfstatus: 1_1
X-Netflix.proxy.execution-time: 5
X-Originating-URL: https://ichnaea-web.netflix.com/log
x-request-id: 305ca205-b9da-47f1-b88b-25a89b74ee70
x-xss-protection: 1; mode=block
Content-Length: 0
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79ec7db4-9aef-4e9e-a8d9-431c9085df2a.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79ec7db4-9aef-4e9e-a8d9-431c9085df2a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b0ca0ccee69fbee57aac373f94120bb4
5d6309502ffd0c33f6199d46f0d14d0a22e3c752
bed9d4689ff57fa636ee08dab3eef3cdf6c4e0a7103e5185151afe8ddfb755f2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79ec7db4-9aef-4e9e-a8d9-431c9085df2a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 11552
x-amzn-requestid: 611f63cb-f058-493b-ac86-7e268b866fd0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdTvG9VIAMFgPg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadc17-78de7563537b111924100346;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:39:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lHLm3IkJRn59US_8SXKXQnNDUiCLIWnQ7QN-DWB3jkot9Ub3b6FUgA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:01:11 GMT
age: 9420
etag: "5d6309502ffd0c33f6199d46f0d14d0a22e3c752"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 5e879c853d54f360481997fab961f6d7
7278a77dea5e347468dfee8f2002619e19ebb1f8
9eb2e780c66202a1f49567ec0d7e964b56778f6d8eb37d228b926644fa436662
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6093
Cache-Control: max-age=92792
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 00:38:12 GMT
Etag: "63d9b59f-118"
Expires: Fri, 03 Feb 2023 02:24:44 GMT
Last-Modified: Wed, 01 Feb 2023 00:43:11 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 280
2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co/personalization/cl2
34.149.204.188404 Not Found 0 B URL HTTP/2 2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co/personalization/cl2
IP 34.149.204.188:0
Analyzer Verdict Alert openphish Netflix Inc.
fortinet Phishing
POST /personalization/cl2 HTTP/1.1
Host: 2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Netflix.Client.Request.Name: ui/cl
Content-Type: application/json
Content-Length: 3934
Origin: https://2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co
Connection: keep-alive
Referer: https://2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co/
Cookie: cL=1675298309741%7C167529830936469097%7C167529830937661751%7C%7C4%7CKEU3Q5STJNBPTNIHTTNOSQJTA4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=4394984; includeSubDomains
content-type: text/html; charset=utf-8
date: Thu, 02 Feb 2023 00:38:11 GMT
X-Firefox-Spdy: h2
cdn.cookielaw.org/logos/static/ot_guard_logo.svg
104.16.148.64200 OK 0 B URL HTTP/2 cdn.cookielaw.org/logos/static/ot_guard_logo.svg
IP 104.16.148.64:0
GET /logos/static/ot_guard_logo.svg HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co/
Origin: https://2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:38:06 GMT
content-type: image/svg+xml
content-md5: tXyZydHjxQshFMbbBT1/8A==
last-modified: Wed, 01 Feb 2023 17:51:44 GMT
x-ms-request-id: 7330330e-201e-0005-7c94-362c99000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 792edcb47f2dfac0-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co/personalization/cl2/freeform/WebsiteScreen?source=wwwhead&fetchType=js&winw=1280&winh=1024&screenw=1280&screenh=939&ratio=1
34.149.204.188404 Not Found 0 B URL HTTP/2 2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co/personalization/cl2/freeform/WebsiteScreen?source=wwwhead&fetchType=js&winw=1280&winh=1024&screenw=1280&screenh=939&ratio=1
IP 34.149.204.188:0
Analyzer Verdict Alert openphish Netflix Inc.
GET /personalization/cl2/freeform/WebsiteScreen?source=wwwhead&fetchType=js&winw=1280&winh=1024&screenw=1280&screenh=939&ratio=1 HTTP/1.1
Host: 2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=4394992; includeSubDomains
content-type: text/html; charset=utf-8
date: Thu, 02 Feb 2023 00:38:03 GMT
X-Firefox-Spdy: h2
2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co/personalization/cl2/freeform/WebsiteDetect?source=wwwhead&fetchType=js&modalView=nmLanding
34.149.204.188404 Not Found 0 B URL HTTP/2 2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co/personalization/cl2/freeform/WebsiteDetect?source=wwwhead&fetchType=js&modalView=nmLanding
IP 34.149.204.188:0
Analyzer Verdict Alert openphish Netflix Inc.
GET /personalization/cl2/freeform/WebsiteDetect?source=wwwhead&fetchType=js&modalView=nmLanding HTTP/1.1
Host: 2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=4394992; includeSubDomains
content-type: text/html; charset=utf-8
date: Thu, 02 Feb 2023 00:38:03 GMT
X-Firefox-Spdy: h2
geolocation.onetrust.com/cookieconsentpub/v1/geo/location
104.18.27.85200 OK 0 B URL HTTP/2 geolocation.onetrust.com/cookieconsentpub/v1/geo/location
IP 104.18.27.85:0
GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co
Connection: keep-alive
Referer: https://2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:38:06 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 792edcb2ad96b524-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co/personalization/log
34.149.204.188404 Not Found 0 B URL HTTP/2 2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co/personalization/log
IP 34.149.204.188:0
Analyzer Verdict Alert openphish Netflix Inc.
fortinet Phishing
POST /personalization/log HTTP/1.1
Host: 2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Netflix.ichnaea.request.type: UiRequest
X-Requested-With: XMLHttpRequest
Content-Length: 1356
Origin: https://2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co
Connection: keep-alive
Referer: https://2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co/
Cookie: cL=1675298309741%7C167529830936469097%7C167529830937661751%7C%7C4%7CKEU3Q5STJNBPTNIHTTNOSQJTA4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
expect-ct: max-age=2592000, report-uri="https://sentry.repl.it/api/10/security/?sentry_key=615192fd532445bfbbbe966cd7131791"
replit-cluster: global
strict-transport-security: max-age=4394989; includeSubDomains
content-type: text/html; charset=utf-8
date: Thu, 02 Feb 2023 00:38:06 GMT
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/202301.1.0/assets/otCommonStyles.css
104.16.148.64200 OK 0 B URL HTTP/2 cdn.cookielaw.org/scripttemplates/202301.1.0/assets/otCommonStyles.css
IP 104.16.148.64:0
GET /scripttemplates/202301.1.0/assets/otCommonStyles.css HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co/
Origin: https://2b1b5e01-b5fd-4492-acb1-8bd67363506c.id.repl.co
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 00:38:06 GMT
content-type: text/css
content-md5: XcxlleAcPGO2n5kTZrHH2Q==
last-modified: Wed, 25 Jan 2023 15:15:51 GMT
x-ms-request-id: eefde416-f01e-00a6-6dc0-35e0f8000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 792edcb3ff01fac0-OSL
content-encoding: gzip
X-Firefox-Spdy: h2