r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4748
Expires: Thu, 02 Feb 2023 22:24:06 GMT
Date: Thu, 02 Feb 2023 21:04:58 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 62de35a6c8e4efd7633fc5236b5b086f
6a92912a86dfcd0330d040cef06bef36889c76ab
ebb8ca05df5ba73b92174105d54d192a8d9e3e10fba48bf96161b0cb759220ec
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBB8CA05DF5BA73B92174105D54D192A8D9E3E10FBA48BF96161B0CB759220EC"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2491
Expires: Thu, 02 Feb 2023 21:46:29 GMT
Date: Thu, 02 Feb 2023 21:04:58 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 7d2222d41721947297aaeb5a6e3d0714
04cc1ee417c8bf6338657fd4c2e4e1c1ddfd3065
de0e45969a2ad95e52f7e2fbd0d021d9075dd7b14666c929346efe111f648f7c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DE0E45969A2AD95E52F7E2FBD0D021D9075DD7B14666C929346EFE111F648F7C"
Last-Modified: Thu, 02 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6695
Expires: Thu, 02 Feb 2023 22:56:33 GMT
Date: Thu, 02 Feb 2023 21:04:58 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 02 Feb 2023 20:36:07 GMT
content-type: application/json
age: 1731
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: QV2nqNXYMKFmCLse6b4ozT4VqsfLvrWtdJoapQYfES2qnKmW1j+KEwjLWISK3m1Orkwhft/xgNg=
x-amz-request-id: Z2WSH20ASV7YJ26R
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 02 Feb 2023 20:52:07 GMT
age: 771
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 21:04:58 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
homeandgardendevelopments.co.uk/rbbm.mce/signin.php?authorization.oauth2?client_id=PM5d8KgvK8d0s8u3m8vlbV6HTa2KMrDQO0ueYeBpZBg9lKaPVhLNwxTSVCOEZvXY7S4TMqlIC43eGTBY&response_type=code&scope=openid%20profile%20email%20device%20ost.all%20sbg-card.all%20sbg-corecustomerplatform.all%20sbg-forex.all%20sbg-payment.all%20sbg-platform.all%20sbg-systems.all%20urn:pingidentity:directory-api&redirect_uri=https://onlinebanking.standardbank.co.za/auth/prompt=login
172.67.203.99404 Not Found 4.6 kB URL HTTP/1.1 homeandgardendevelopments.co.uk/rbbm.mce/signin.php?authorization.oauth2?client_id=PM5d8KgvK8d0s8u3m8vlbV6HTa2KMrDQO0ueYeBpZBg9lKaPVhLNwxTSVCOEZvXY7S4TMqlIC43eGTBY&response_type=code&scope=openid%20profile%20email%20device%20ost.all%20sbg-card.all%20sbg-corecustomerplatform.all%20sbg-forex.all%20sbg-payment.all%20sbg-platform.all%20sbg-systems.all%20urn:pingidentity:directory-api&redirect_uri=https://onlinebanking.standardbank.co.za/auth/prompt=login
IP 172.67.203.99:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1816)
Hash 74adf7b4ceb456c7d794fc82d4c04158
db9ab1affaca268239e9c297c72f54703a3c351c
c9a6e736ef7c7bf56109314f4bcd91398589e44c7bf6aefd56fc46734aedd93a
Analyzer Verdict Alert openphish Standard Bank of South Africa
GET /rbbm.mce/signin.php?authorization.oauth2?client_id=PM5d8KgvK8d0s8u3m8vlbV6HTa2KMrDQO0ueYeBpZBg9lKaPVhLNwxTSVCOEZvXY7S4TMqlIC43eGTBY&response_type=code&scope=openid%20profile%20email%20device%20ost.all%20sbg-card.all%20sbg-corecustomerplatform.all%20sbg-forex.all%20sbg-payment.all%20sbg-platform.all%20sbg-systems.all%20urn:pingidentity:directory-api&redirect_uri=https://onlinebanking.standardbank.co.za/auth/prompt=login HTTP/1.1
Host: homeandgardendevelopments.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 404 Not Found
Date: Thu, 02 Feb 2023 21:04:58 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <http://homeandgardendevelopments.co.uk/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oijqJdBXfNq%2FZSUOy6G5NKhTUdB2faM%2FCsAl69VZ0SsB3t7alI70xKif8x72ls%2FUqVoPay3DToJMAkv193wXA3eHWL8cmWofFB4ITPqNLU20v1Ogk5BAMLcaxIQ%2F%2FuqDSsRP3UeRRCHlL5gHqYW6aBmQ"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7935e1dddd600b41-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash f7324f87d619a5aad100e771f88b8c28
cbe0870f2bc41b0852c754ac765751f89c82e83f
439ce1462a330b448949a91e20098757b8caed7f0804e6c5920a299d9f88762b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4548
Cache-Control: max-age=159113
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 21:04:59 GMT
Etag: "63dbde40-117"
Expires: Sat, 04 Feb 2023 17:16:52 GMT
Last-Modified: Thu, 02 Feb 2023 16:01:04 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 279
homeandgardendevelopments.co.uk/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.2
172.67.203.99200 OK 991 B URL HTTP/1.1 homeandgardendevelopments.co.uk/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.2
IP 172.67.203.99:0
Hash 48a092d27760dd9665773bf3c7101a26
0eec7acd8fefd9525899f6d525b2748418a4b913
2250e24b66506a924122bbd1226a3a0122419c5fb07ef4999f7712fe139bc212
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.2 HTTP/1.1
Host: homeandgardendevelopments.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://homeandgardendevelopments.co.uk/rbbm.mce/signin.php?authorization.oauth2?client_id=PM5d8KgvK8d0s8u3m8vlbV6HTa2KMrDQO0ueYeBpZBg9lKaPVhLNwxTSVCOEZvXY7S4TMqlIC43eGTBY&response_type=code&scope=openid%20profile%20email%20device%20ost.all%20sbg-card.all%20sbg-corecustomerplatform.all%20sbg-forex.all%20sbg-payment.all%20sbg-platform.all%20sbg-systems.all%20urn:pingidentity:directory-api&redirect_uri=https://onlinebanking.standardbank.co.za/auth/prompt=login
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:04:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 07:17:37 GMT
Vary: Accept-Encoding
Cache-Control: max-age=2678400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=n4ZRBdLbvQjattvQa%2F2DaPqpZjveWIz6CX7DwvfdxAIEn8FiUGO4gHPzCmeYYZcjagnyrGaL5G2uIrIAY2HXtYVvBq46LGdfsPEhDMjPaQmO70ObNVFGVlK3YtRMD8xCoUzgIIqE2KM8HNafQFf7iqxB"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7935e1e0d89b0b41-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
homeandgardendevelopments.co.uk/wp-content/plugins/add-to-any/addtoany.min.css?ver=1.16
172.67.203.99200 OK 485 B URL HTTP/1.1 homeandgardendevelopments.co.uk/wp-content/plugins/add-to-any/addtoany.min.css?ver=1.16
IP 172.67.203.99:0
File type ASCII text, with very long lines (1519), with no line terminators
Hash 2cbb369dea25cfc701713364df5d2f27
48bbc8932100effc3ab7940743dcdddf420be2d4
b6c524641604d4299605de0e1b393f6cdfe51da1f3dd894fdb6412a792c7875a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/add-to-any/addtoany.min.css?ver=1.16 HTTP/1.1
Host: homeandgardendevelopments.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://homeandgardendevelopments.co.uk/rbbm.mce/signin.php?authorization.oauth2?client_id=PM5d8KgvK8d0s8u3m8vlbV6HTa2KMrDQO0ueYeBpZBg9lKaPVhLNwxTSVCOEZvXY7S4TMqlIC43eGTBY&response_type=code&scope=openid%20profile%20email%20device%20ost.all%20sbg-card.all%20sbg-corecustomerplatform.all%20sbg-forex.all%20sbg-payment.all%20sbg-platform.all%20sbg-systems.all%20urn:pingidentity:directory-api&redirect_uri=https://onlinebanking.standardbank.co.za/auth/prompt=login
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:04:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 12 Oct 2022 16:02:44 GMT
Vary: Accept-Encoding
Cache-Control: max-age=2678400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=la4POHb4awGRUcT4Xd%2BCvq0yhxaHzoy3uIbdGW3qZo4XxC2R%2B88A8c%2BaA2CjKG2wAxIRekZ7kMz9RRmrBTznkaq41AMLZMHVqKvPDkjxHbevNzcEaQwLcDzGiKtgTVnmgLbLWNRqO1%2BUlEyRNXtVnwCz"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7935e1e0d98bb515-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
homeandgardendevelopments.co.uk/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
172.67.203.99200 OK 4.2 kB URL HTTP/1.1 homeandgardendevelopments.co.uk/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 172.67.203.99:0
File type ASCII text, with very long lines (11126)
Hash 0d5bb2a36d1fc2e095235bc201eb5579
98f0154e2ed5322a9f65077f954868d6c800b337
fe6382620c35c12aa4f3f96fe395e5813defe330c1d95fd3de1e94f8f5d1f0a5
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: homeandgardendevelopments.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://homeandgardendevelopments.co.uk/rbbm.mce/signin.php?authorization.oauth2?client_id=PM5d8KgvK8d0s8u3m8vlbV6HTa2KMrDQO0ueYeBpZBg9lKaPVhLNwxTSVCOEZvXY7S4TMqlIC43eGTBY&response_type=code&scope=openid%20profile%20email%20device%20ost.all%20sbg-card.all%20sbg-corecustomerplatform.all%20sbg-forex.all%20sbg-payment.all%20sbg-platform.all%20sbg-systems.all%20urn:pingidentity:directory-api&redirect_uri=https://onlinebanking.standardbank.co.za/auth/prompt=login
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:04:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 07:20:09 GMT
Vary: Accept-Encoding
Cache-Control: max-age=2678400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=duLWnuaNtFnDq7IyFtL45dyhf60AQqMNcQEj63LGmD7XsJlp1QiZp2Rh9dNZJcMMEKVjFytSkkz41Rwzimhwq7w90Jw92vcHaf5eh3CMfGZ45uODPu83fyVmaRe7euYlv%2FrjXU8bQSsES2r0TEksU1Xp"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7935e1e0da6bb518-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
homeandgardendevelopments.co.uk/wp-content/themes/shipyard/style.css?ver=6.1.1
172.67.203.99200 OK 3.7 kB URL HTTP/1.1 homeandgardendevelopments.co.uk/wp-content/themes/shipyard/style.css?ver=6.1.1
IP 172.67.203.99:0
File type ASCII text, with CRLF line terminators
Hash 3842f291a3014a0eca2bac92b1e3a9b8
ca5e1df8db69114b30c8559eea580d9ace993b4f
94691196ef0d74b9f6757507d2efaeed7ed52979c043ab8e4dafd1fd59e2d20e
GET /wp-content/themes/shipyard/style.css?ver=6.1.1 HTTP/1.1
Host: homeandgardendevelopments.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://homeandgardendevelopments.co.uk/rbbm.mce/signin.php?authorization.oauth2?client_id=PM5d8KgvK8d0s8u3m8vlbV6HTa2KMrDQO0ueYeBpZBg9lKaPVhLNwxTSVCOEZvXY7S4TMqlIC43eGTBY&response_type=code&scope=openid%20profile%20email%20device%20ost.all%20sbg-card.all%20sbg-corecustomerplatform.all%20sbg-forex.all%20sbg-payment.all%20sbg-platform.all%20sbg-systems.all%20urn:pingidentity:directory-api&redirect_uri=https://onlinebanking.standardbank.co.za/auth/prompt=login
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:04:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 03 Dec 2022 08:56:34 GMT
Vary: Accept-Encoding
Cache-Control: max-age=2678400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2IUoxd3U4yOb5wLYTis3Nvk9I3q7jOFeHGBwzJDrR4AlviX4tokO9ihHW4uEMGlb9S7QvXX3j9UhziW1zo2hVG6Mvk%2BN%2Fx9MD14ckzLnw%2BBCOaJi3cv%2FqZ9zYi8YvKzXK01auKIJtgm2QPG90JVva2AD"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7935e1e0de391c0a-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
homeandgardendevelopments.co.uk/wp-content/plugins/add-to-any/addtoany.min.js?ver=1.1
172.67.203.99200 OK 126 B URL HTTP/1.1 homeandgardendevelopments.co.uk/wp-content/plugins/add-to-any/addtoany.min.js?ver=1.1
IP 172.67.203.99:0
File type ASCII text, with no line terminators
Hash 3608ca9ca568c9fa6af465e43eef2f23
45a79bcecbbbcfacb95f8ed68e3c2d10291f0b04
280eca5ee4f8422224b610d902a9f880b309978c0acfac32b50dce9c04ba8d90
GET /wp-content/plugins/add-to-any/addtoany.min.js?ver=1.1 HTTP/1.1
Host: homeandgardendevelopments.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://homeandgardendevelopments.co.uk/rbbm.mce/signin.php?authorization.oauth2?client_id=PM5d8KgvK8d0s8u3m8vlbV6HTa2KMrDQO0ueYeBpZBg9lKaPVhLNwxTSVCOEZvXY7S4TMqlIC43eGTBY&response_type=code&scope=openid%20profile%20email%20device%20ost.all%20sbg-card.all%20sbg-corecustomerplatform.all%20sbg-forex.all%20sbg-payment.all%20sbg-platform.all%20sbg-systems.all%20urn:pingidentity:directory-api&redirect_uri=https://onlinebanking.standardbank.co.za/auth/prompt=login
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:04:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 12 Oct 2022 16:02:44 GMT
Vary: Accept-Encoding
Cache-Control: max-age=2678400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jhbXi7txklSa7x7feANNpzi4WI4jUSGPQnaaBSLezwMdeXmiQA9%2BWe%2BEjbj7vY2ZD4dZuL%2BLTm6P8LfoVeraTFJDomx7woBfCgcMnsyrng11fJkdG1n3G6OW%2FUobm9LqSsMJZwq1T9DuCHl7JFtEsCOv"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7935e1e0d8f8fac0-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 4cf0ccf2909be74efd7a89dbe4228ffb
b4993da334b48312584d116a3de4be4cd71962cf
e81c8aa45d0707079d9eba798fb447059042453be4834d14467839688ca66f5d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 21:04:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
homeandgardendevelopments.co.uk/wp-content/themes/shipyard/js/nav.js?ver=6.1.1
172.67.203.99200 OK 545 B URL HTTP/1.1 homeandgardendevelopments.co.uk/wp-content/themes/shipyard/js/nav.js?ver=6.1.1
IP 172.67.203.99:0
File type ASCII text, with CRLF line terminators
Hash 5e8e803a67672031ee7ba6a660376f69
6249a736b76869fe2e655e6059b80bd040d81f82
95d3a135f3d7126507c4892d01cc1c30d6a652baa18f872c31bca4a145e7f90f
GET /wp-content/themes/shipyard/js/nav.js?ver=6.1.1 HTTP/1.1
Host: homeandgardendevelopments.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://homeandgardendevelopments.co.uk/rbbm.mce/signin.php?authorization.oauth2?client_id=PM5d8KgvK8d0s8u3m8vlbV6HTa2KMrDQO0ueYeBpZBg9lKaPVhLNwxTSVCOEZvXY7S4TMqlIC43eGTBY&response_type=code&scope=openid%20profile%20email%20device%20ost.all%20sbg-card.all%20sbg-corecustomerplatform.all%20sbg-forex.all%20sbg-payment.all%20sbg-platform.all%20sbg-systems.all%20urn:pingidentity:directory-api&redirect_uri=https://onlinebanking.standardbank.co.za/auth/prompt=login
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:04:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Sat, 03 Dec 2022 08:56:34 GMT
Vary: Accept-Encoding
Cache-Control: max-age=2678400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J8lfdRnI07z3qw3o6c4FvdfseYyL1KVJ%2B98WK51ExqDMZpSF9m6KcNVUrJ01eqitzf37FyKrU5fYczkXbswPmWazRXIAgqiv5gaCAhz7QrltDtvjOKT9KxpTf7HN2mSyRYwUT9QIKrQGLQThe4zepFfP"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7935e1e1592d0b41-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash f7324f87d619a5aad100e771f88b8c28
cbe0870f2bc41b0852c754ac765751f89c82e83f
439ce1462a330b448949a91e20098757b8caed7f0804e6c5920a299d9f88762b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4548
Cache-Control: max-age=159113
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 21:04:59 GMT
Etag: "63dbde40-117"
Expires: Sat, 04 Feb 2023 17:16:52 GMT
Last-Modified: Thu, 02 Feb 2023 16:01:04 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 279
homeandgardendevelopments.co.uk/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
172.67.203.99200 OK 31 kB URL HTTP/1.1 homeandgardendevelopments.co.uk/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 172.67.203.99:0
File type ASCII text, with very long lines (65447)
Hash 25a014e67e9b2eafb7ecc86f1e30d77d
f4227f827cba0c787a4e08ccc6427d27c95873e2
63a06e24fbd59edc5ca7cff61c8cbb3f67c2a684c2a407ba891af34f737f15b9
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: homeandgardendevelopments.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://homeandgardendevelopments.co.uk/rbbm.mce/signin.php?authorization.oauth2?client_id=PM5d8KgvK8d0s8u3m8vlbV6HTa2KMrDQO0ueYeBpZBg9lKaPVhLNwxTSVCOEZvXY7S4TMqlIC43eGTBY&response_type=code&scope=openid%20profile%20email%20device%20ost.all%20sbg-card.all%20sbg-corecustomerplatform.all%20sbg-forex.all%20sbg-payment.all%20sbg-platform.all%20sbg-systems.all%20urn:pingidentity:directory-api&redirect_uri=https://onlinebanking.standardbank.co.za/auth/prompt=login
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:04:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 07:20:09 GMT
Vary: Accept-Encoding
Cache-Control: max-age=2678400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=v09VHQsHWRz3tuIUngKA%2BLSJ8LkbdevW9vqrJK%2B5Kj%2FFZ%2Baf%2FNcdEUUgmzj9RkZUytG%2FK4%2FFbql05CHAcclHSy9y04zkxHNqqlL2jw8GMECFKzm9iCbTIsvF4TSFJ%2BcvatvCjOtJxvJmFrR7R%2Ffx7NHJ"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7935e1e0ddbcb52d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.google.com/recaptcha/api.js?render=6LdbaOQZAAAAAMTZaUrdHGqosE8ZHvLBEkmPW-kQ&ver=3.0
142.250.74.164200 OK 586 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LdbaOQZAAAAAMTZaUrdHGqosE8ZHvLBEkmPW-kQ&ver=3.0
IP 142.250.74.164:0
File type ASCII text, with very long lines (884), with no line terminators
Hash 7acc81e30d1cfe904cf1421956c6afe1
aa5395ffa883e7c20764d95bd2b5d0d5ca03c722
32b47b1eaaa0d50afc3a237a6424541caaeb0326b47683e97b72d4757e301f0a
GET /recaptcha/api.js?render=6LdbaOQZAAAAAMTZaUrdHGqosE8ZHvLBEkmPW-kQ&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://homeandgardendevelopments.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Thu, 02 Feb 2023 21:04:59 GMT
date: Thu, 02 Feb 2023 21:04:59 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 586
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
homeandgardendevelopments.co.uk/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.2
172.67.203.99200 OK 3.0 kB URL HTTP/1.1 homeandgardendevelopments.co.uk/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.2
IP 172.67.203.99:0
File type ASCII text, with very long lines (10565), with no line terminators
Hash 95f1e9d038d909a270a9b758b314a6f2
2d3be92347f7f537e4cad883fea9894d71df0da6
132937168fa73e1a5df911d4c1e5391ee565c9cdda9348b541a8e46d00fef094
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.2 HTTP/1.1
Host: homeandgardendevelopments.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://homeandgardendevelopments.co.uk/rbbm.mce/signin.php?authorization.oauth2?client_id=PM5d8KgvK8d0s8u3m8vlbV6HTa2KMrDQO0ueYeBpZBg9lKaPVhLNwxTSVCOEZvXY7S4TMqlIC43eGTBY&response_type=code&scope=openid%20profile%20email%20device%20ost.all%20sbg-card.all%20sbg-corecustomerplatform.all%20sbg-forex.all%20sbg-payment.all%20sbg-platform.all%20sbg-systems.all%20urn:pingidentity:directory-api&redirect_uri=https://onlinebanking.standardbank.co.za/auth/prompt=login
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:04:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 07:17:37 GMT
Vary: Accept-Encoding
Cache-Control: max-age=2678400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=00UKypTZ7Gi7AyBfBB4QpZtCGUbsW7oJQ4uRVhe31eQYWV1wXjujuE5oZxzowqULLN8yEzvDnxt7wJes3QyOI0iaLqZyROT6QvH%2F49G3TAWgh6oOehJbLc6gwJZsFi1ThbBEk5Ob5nnq%2FfgmXkPdzzlr"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7935e1e16b50b518-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
homeandgardendevelopments.co.uk/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
172.67.203.99200 OK 5.0 kB URL HTTP/1.1 homeandgardendevelopments.co.uk/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 172.67.203.99:0
File type ASCII text, with very long lines (15660)
Hash bbb097231c0fb01c0d2f6b36ed6671f8
c816b9446535131259db1107069b5096354f993b
aca781b166c02a50a9de1f82c51f0ebbd808b59e58e6dfe5f29ae84c881926c5
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: homeandgardendevelopments.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://homeandgardendevelopments.co.uk/rbbm.mce/signin.php?authorization.oauth2?client_id=PM5d8KgvK8d0s8u3m8vlbV6HTa2KMrDQO0ueYeBpZBg9lKaPVhLNwxTSVCOEZvXY7S4TMqlIC43eGTBY&response_type=code&scope=openid%20profile%20email%20device%20ost.all%20sbg-card.all%20sbg-corecustomerplatform.all%20sbg-forex.all%20sbg-payment.all%20sbg-platform.all%20sbg-systems.all%20urn:pingidentity:directory-api&redirect_uri=https://onlinebanking.standardbank.co.za/auth/prompt=login
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:04:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 07:20:09 GMT
Vary: Accept-Encoding
Cache-Control: max-age=2678400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5%2BHCMsUA5wcWsaudIgbv48S7DmgHEroDyv0syUMRX2DQqceFa1UFdspQoxCLDau35OuNZyo4pDXzKDwBJarUoepl9tI0f1NQVaFMPHcLWlj5GOQMD7aN5MyRzH2gFkwewQoDdWMoaOqJ6gIieukNmc%2BT"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7935e1e16a5bb515-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
homeandgardendevelopments.co.uk/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.7.2
172.67.203.99200 OK 509 B URL HTTP/1.1 homeandgardendevelopments.co.uk/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.7.2
IP 172.67.203.99:0
File type ASCII text, with very long lines (999), with no line terminators
Hash 9f562b18c789f9fc5f889bcbcd5618dc
cc9b9bd811cc08a2ee38fe67d92ff4e6ead94ed9
f737b508a32de4ff6f6d814fd18c15cf9681f394fb6c6975d043be3c3e9edff0
GET /wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.7.2 HTTP/1.1
Host: homeandgardendevelopments.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://homeandgardendevelopments.co.uk/rbbm.mce/signin.php?authorization.oauth2?client_id=PM5d8KgvK8d0s8u3m8vlbV6HTa2KMrDQO0ueYeBpZBg9lKaPVhLNwxTSVCOEZvXY7S4TMqlIC43eGTBY&response_type=code&scope=openid%20profile%20email%20device%20ost.all%20sbg-card.all%20sbg-corecustomerplatform.all%20sbg-forex.all%20sbg-payment.all%20sbg-platform.all%20sbg-systems.all%20urn:pingidentity:directory-api&redirect_uri=https://onlinebanking.standardbank.co.za/auth/prompt=login
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:04:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 07:17:37 GMT
Vary: Accept-Encoding
Cache-Control: max-age=2678400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pB3N971FkemCeW1vv4HJyYDARJ8pxFuNz9tjufxh8SGvbUPuFFjCMOyK0aswX43NQrePhWqy9AM1Thnjw9M6dCmp9SUfih%2BuqZyfy2V4K53DmAxlrmLqOpNDsvSOotN4v1uZ%2F6VOBoHUY1deVojH%2FCv%2B"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7935e1e1ff0fb52d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
homeandgardendevelopments.co.uk/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.2
172.67.203.99200 OK 4.1 kB URL HTTP/1.1 homeandgardendevelopments.co.uk/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.2
IP 172.67.203.99:0
File type HTML document, ASCII text, with very long lines (12652), with no line terminators
Hash 99607c7e05d2adbe3cd72b16ff324c66
c217c8c43c419d14800fd6f480e1545bee3127fb
7b4ef79a9f18739ea1732dd1eb85f1f40abc5035925100356e879c465954bca4
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.2 HTTP/1.1
Host: homeandgardendevelopments.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://homeandgardendevelopments.co.uk/rbbm.mce/signin.php?authorization.oauth2?client_id=PM5d8KgvK8d0s8u3m8vlbV6HTa2KMrDQO0ueYeBpZBg9lKaPVhLNwxTSVCOEZvXY7S4TMqlIC43eGTBY&response_type=code&scope=openid%20profile%20email%20device%20ost.all%20sbg-card.all%20sbg-corecustomerplatform.all%20sbg-forex.all%20sbg-payment.all%20sbg-platform.all%20sbg-systems.all%20urn:pingidentity:directory-api&redirect_uri=https://onlinebanking.standardbank.co.za/auth/prompt=login
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:04:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 07:17:37 GMT
Vary: Accept-Encoding
Cache-Control: max-age=2678400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QgAHv6BDLUPl7ELYuF6z3al%2FolCGgCU68nYpncO8W6DkN0B3fnHULYNMksLJW4pGbXure2RBxi6wf7ztYXK18TY16Y7TvLUmCwkO4eJ5wrCk7MdgC%2FaGEEXY4Xee1BsG555%2FqUFFdyIGWCGn5QL9%2F5We"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7935e1e1bf3a1c0a-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 0c15fd84f4711d994724c35236542194
c47d77fe5b373a86bd9a116bd8baac07ec746add
a210a4599baaa980674b456f020282cd470559b319be263fdcf9eaec7cff0d3b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 21:04:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
homeandgardendevelopments.co.uk/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
172.67.203.99200 OK 2.4 kB URL HTTP/1.1 homeandgardendevelopments.co.uk/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 172.67.203.99:0
File type ASCII text, with very long lines (6475), with no line terminators
Hash 6b0c5288bb5f4619cd7d10c077b2858b
f5fa1550d81a04d13d0d7273c32005722b910022
69c224d56ae4f660970896b60da2cabeb296fd95673a8ea23519db8f4f285b24
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: homeandgardendevelopments.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://homeandgardendevelopments.co.uk/rbbm.mce/signin.php?authorization.oauth2?client_id=PM5d8KgvK8d0s8u3m8vlbV6HTa2KMrDQO0ueYeBpZBg9lKaPVhLNwxTSVCOEZvXY7S4TMqlIC43eGTBY&response_type=code&scope=openid%20profile%20email%20device%20ost.all%20sbg-card.all%20sbg-corecustomerplatform.all%20sbg-forex.all%20sbg-payment.all%20sbg-platform.all%20sbg-systems.all%20urn:pingidentity:directory-api&redirect_uri=https://onlinebanking.standardbank.co.za/auth/prompt=login
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:04:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 07:20:09 GMT
Vary: Accept-Encoding
Cache-Control: max-age=2678400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SGsByrZ62KVNN1AGP8gcuxiqeor29FwWi1UH7YcW0RL%2B6f%2F%2BszsF1LbOFlp5AQmfxGCnt2GYdPWIvytgbn2W7b0YIECTKHeXYHFGDJBEIX6szvKfAQ%2FpzVFIf1noq24KQLNWyVpboWgFR6WOu5yV9dJI"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7935e1e1b9bdfac0-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
homeandgardendevelopments.co.uk/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
172.67.203.99200 OK 6.5 kB URL HTTP/1.1 homeandgardendevelopments.co.uk/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 172.67.203.99:0
File type Unicode text, UTF-8 text, with very long lines (17819), with no line terminators
Hash 91f8030d1b051a5df8a937d988b8a4c5
4f575833d376de84ba5066e96064ea251f9ede90
bcf567eae295f5bb83287da56bb542163ef4a7e1c0d03608887508f9f0ad9294
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: homeandgardendevelopments.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://homeandgardendevelopments.co.uk/rbbm.mce/signin.php?authorization.oauth2?client_id=PM5d8KgvK8d0s8u3m8vlbV6HTa2KMrDQO0ueYeBpZBg9lKaPVhLNwxTSVCOEZvXY7S4TMqlIC43eGTBY&response_type=code&scope=openid%20profile%20email%20device%20ost.all%20sbg-card.all%20sbg-corecustomerplatform.all%20sbg-forex.all%20sbg-payment.all%20sbg-platform.all%20sbg-systems.all%20urn:pingidentity:directory-api&redirect_uri=https://onlinebanking.standardbank.co.za/auth/prompt=login
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:04:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 07:20:09 GMT
Vary: Accept-Encoding
Cache-Control: max-age=2678400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PHS32Lecm5dLLyiLTgtr9bc1ke%2FWGHhkWLHqj9Ey1mJEDuHDHxG6Up9aeRQNJf0Ly7emL%2Bd18rySizPkGeEub2HvRK0JpJiL5NjnuGvYlVb%2B9LXMZiOw%2F5v%2Ft2Kx2OMr9AA%2Bs5xx9qI5cLjW%2FXtewMVD"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7935e1e1d9e00b41-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 02 Feb 2023 20:49:05 GMT
age: 954
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
homeandgardendevelopments.co.uk/wp-content/uploads/2017/03/Header-new-2.jpg
172.67.203.99200 OK 304 kB URL HTTP/1.1 homeandgardendevelopments.co.uk/wp-content/uploads/2017/03/Header-new-2.jpg
IP 172.67.203.99:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 150x150, segment length 16, baseline, precision 8, 2176x660, components 3\012- data
Size 304 kB (304471 bytes)
Hash c8239212a631b4b3684b13822966f64e
03bbb55da193d78870e98368f24f1f3b43dc0030
eaf6d2ca9aec2c1c505986d68eb0d099038c5a7e056153f184b85405fae66a07
GET /wp-content/uploads/2017/03/Header-new-2.jpg HTTP/1.1
Host: homeandgardendevelopments.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://homeandgardendevelopments.co.uk/rbbm.mce/signin.php?authorization.oauth2?client_id=PM5d8KgvK8d0s8u3m8vlbV6HTa2KMrDQO0ueYeBpZBg9lKaPVhLNwxTSVCOEZvXY7S4TMqlIC43eGTBY&response_type=code&scope=openid%20profile%20email%20device%20ost.all%20sbg-card.all%20sbg-corecustomerplatform.all%20sbg-forex.all%20sbg-payment.all%20sbg-platform.all%20sbg-systems.all%20urn:pingidentity:directory-api&redirect_uri=https://onlinebanking.standardbank.co.za/auth/prompt=login
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:04:59 GMT
Content-Type: image/jpeg
Content-Length: 304471
Connection: keep-alive
Last-Modified: Wed, 08 Mar 2017 09:42:19 GMT
Cache-Control: max-age=2678400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iuBkRrfnN07NlJ%2FngGQeDiawkT1EjIPmHH%2BmiuBYxOmnqYBzbSdfz5DhrCCnXzIqM4%2BfPX7O29k%2BSuRgFN8arUGhiZFpUmHsE3p9rwjBRfTFv5laZgZ5JkQM9b8v%2BWBHw6Qc1HDo8DscPtoQXnlrdeVU"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7935e1e20c3db518-OSL
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 21:04:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.addtoany.com/menu/page.js
104.22.70.197200 OK 191 kB URL HTTP/2 static.addtoany.com/menu/page.js
IP 104.22.70.197:0
File type ASCII text, with very long lines (3076), with no line terminators
Size 191 kB (190656 bytes)
Hash 15258b7dd1b9db84e156d2517164e494
6ad590234ca82af7af77cd1894e5d4a179592617
71ad622cfb2980bdf251ccce6e527447ac45c416a4a99499c3dc91cdc1303397
GET /menu/page.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://homeandgardendevelopments.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 21:04:59 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=172800
cf-bgj: minify
access-control-allow-origin: *
etag: W/"c04-5f1f2ae2e431b"
last-modified: Wed, 11 Jan 2023 01:11:30 GMT
vary: Accept-Encoding
via: e2s
x-content-type-options: nosniff
cf-cache-status: HIT
age: 81212
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7935e1e18dd209a5-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 21:04:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
homeandgardendevelopments.co.uk/favicon.ico
172.67.203.99302 Found 0 B URL HTTP/1.1 homeandgardendevelopments.co.uk/favicon.ico
IP 172.67.203.99:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: homeandgardendevelopments.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://homeandgardendevelopments.co.uk/rbbm.mce/signin.php?authorization.oauth2?client_id=PM5d8KgvK8d0s8u3m8vlbV6HTa2KMrDQO0ueYeBpZBg9lKaPVhLNwxTSVCOEZvXY7S4TMqlIC43eGTBY&response_type=code&scope=openid%20profile%20email%20device%20ost.all%20sbg-card.all%20sbg-corecustomerplatform.all%20sbg-forex.all%20sbg-payment.all%20sbg-platform.all%20sbg-systems.all%20urn:pingidentity:directory-api&redirect_uri=https://onlinebanking.standardbank.co.za/auth/prompt=login
HTTP/1.1 302 Found
Date: Thu, 02 Feb 2023 21:04:59 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Link: <http://homeandgardendevelopments.co.uk/wp-json/>; rel="https://api.w.org/"
X-Redirect-By: WordPress
Location: http://homeandgardendevelopments.co.uk/wp-includes/images/w-logo-blue-white-bg.png
Vary: Accept-Encoding
CF-Cache-Status: BYPASS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=grbX%2B6qO1RXkXZ%2FMy1k3P9jW6WwXFn46%2BfBrTNJ9IUvMMCH2YjJGFiGSD%2BIH9jYdffPCiEgLe%2BxZs2hqBzFc8v6id%2BwtM0isdJGSSaxv3iHiiuVZjAS8J737nE5fQ0qItREpUPt9eGcBYn4IExUgRtKM"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7935e1e3cf4cb518-OSL
alt-svc: h2=":443"; ma=60
push.services.mozilla.com/
54.149.13.193101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.149.13.193:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: jARA07uX4jGd/DdncUVR4w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: hBY1Lw5Yk3diEw4KXJfDLS8N+UM=
homeandgardendevelopments.co.uk/wp-includes/images/w-logo-blue-white-bg.png
172.67.203.99200 OK 4.1 kB URL HTTP/1.1 homeandgardendevelopments.co.uk/wp-includes/images/w-logo-blue-white-bg.png
IP 172.67.203.99:0
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 000bf649cc8f6bf27cfb04d1bcdcd3c7
d73d2f6d74ec6cdcbae07955592962e77d8ae814
6bdb369337ac2496761c6f063bffea0aa6a91d4662279c399071a468251f51f0
GET /wp-includes/images/w-logo-blue-white-bg.png HTTP/1.1
Host: homeandgardendevelopments.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://homeandgardendevelopments.co.uk/rbbm.mce/signin.php?authorization.oauth2?client_id=PM5d8KgvK8d0s8u3m8vlbV6HTa2KMrDQO0ueYeBpZBg9lKaPVhLNwxTSVCOEZvXY7S4TMqlIC43eGTBY&response_type=code&scope=openid%20profile%20email%20device%20ost.all%20sbg-card.all%20sbg-corecustomerplatform.all%20sbg-forex.all%20sbg-payment.all%20sbg-platform.all%20sbg-systems.all%20urn:pingidentity:directory-api&redirect_uri=https://onlinebanking.standardbank.co.za/auth/prompt=login
Connection: keep-alive
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 21:04:59 GMT
Content-Type: image/png
Content-Length: 4119
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 07:20:08 GMT
Cache-Control: max-age=2678400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=59toh6nMpWFnR8A8xV%2FpGmo5FVAMiu4aHrQSlXw9bj%2F6V7QOSwzH36vc0hHnsJNF%2BefN%2FM2NrBWNBPdHuyQOJwNBdliDzqmsTKxJn%2BLRzMkoVKsuI4B0HFsWShY%2FeVwDIcqvwnHYWiIXZPTF%2BaxKrP7U"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7935e1e65b90b518-OSL
alt-svc: h2=":443"; ma=60
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 21:48:03 GMT
expires: Fri, 26 Jan 2024 21:48:03 GMT
cache-control: public, max-age=31536000
age: 602217
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 16:40:43 GMT
expires: Fri, 02 Feb 2024 16:40:43 GMT
cache-control: public, max-age=31536000
age: 15857
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17479
Expires: Fri, 03 Feb 2023 01:56:20 GMT
Date: Thu, 02 Feb 2023 21:05:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14489
Expires: Fri, 03 Feb 2023 01:06:30 GMT
Date: Thu, 02 Feb 2023 21:05:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14489
Expires: Fri, 03 Feb 2023 01:06:30 GMT
Date: Thu, 02 Feb 2023 21:05:01 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17479
Expires: Fri, 03 Feb 2023 01:56:20 GMT
Date: Thu, 02 Feb 2023 21:05:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14489
Expires: Fri, 03 Feb 2023 01:06:30 GMT
Date: Thu, 02 Feb 2023 21:05:01 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faab963dd-ee21-4e6c-866b-f8ea6bb88bd9.jpeg
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faab963dd-ee21-4e6c-866b-f8ea6bb88bd9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash df1930b96e7ab4f5d4cbf64e473cc957
b793c3b6ca95d09a88635aec9eef99d12a1afe42
e5062168e5c4e1c11ebc9c653990e01546c3c60fbb59e49635934bc98e931ce0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faab963dd-ee21-4e6c-866b-f8ea6bb88bd9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4863
x-amzn-requestid: 80518d3b-e049-429c-b67d-4f4897ded9c8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: foetPGPaIAMFlBQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9ab21-00e41ad75acd71267a490f52;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 23:58:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Unsu1YKTCfvXjH8mQQXa-yupSZhwKznXaWyaRYAlThq32JbR4OZ0fA==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 07:14:53 GMT
age: 49808
etag: "b793c3b6ca95d09a88635aec9eef99d12a1afe42"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash df4a4906103a8f409c066b1cded71384
22847e3926db3e3d5f6b529297a4abe8b377c3a6
84a14b73b2cc7f4641eaa5539cbee0a109ae2b05cf88d06797a2b00c8d4f0c43
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9221
x-amzn-requestid: 209c2ad4-7a1f-4867-bf98-4ca8621111a1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdTBFv5IAMFgqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadc13-1627a9d603c69f7760ad013b;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:39:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kAkcQOKAvuq3k-X081MLCqon-cnQJqGryVeE0fwX0a7bcXgJlySIvg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:12:07 GMT
age: 82374
etag: "22847e3926db3e3d5f6b529297a4abe8b377c3a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7c823f1d6bf1c50d58eb263b85e6e37c
a7b74d11494fb3254df907e5cc1eead070d84617
b2706961eb756383e0988dfdb501dc424aea59697aedd1e4a6c294c314a31935
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5356
x-amzn-requestid: fef22c83-35a4-4990-9008-af5853f838d1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5BEB6oAMFczg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6c-68d3017555c069bc3107d150;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XyDZc0F-b0rxwoS5wvSXBuBfYE7JljMmuXseBjLOBk4HvxU5gE7Oqg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:18:55 GMT
age: 81966
etag: "a7b74d11494fb3254df907e5cc1eead070d84617"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4bb3a6fba496d54cdbbccaf2b9600386
8e30002699e9fbf2047f9ac11a36d2175fc9c591
927bf3a04b011b4e3bc8d8772a3d5813507f7f523312d43627767b64615562f3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15857
x-amzn-requestid: cfe36b9d-34f6-4f3f-896e-e70ec45c4a04
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ2JGGWoAMFSLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcf3-0dd68dd778b9aba268a129b0;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: C1kqthy0eZop0UZfG3_op5xeBOVGiPLYfia4uS1l4-kchEzV6ccE9w==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 07:28:37 GMT
age: 48984
etag: "8e30002699e9fbf2047f9ac11a36d2175fc9c591"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d335250-c4ff-42af-b9c2-48711573ab39.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d335250-c4ff-42af-b9c2-48711573ab39.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 86664b4d1fc27ba7b5bff8a245604326
b8c7ef73101a497b6c78ad59aafe66a391fdc3fa
e4596faadf14051299036a79632951d90183dd0635293687edef11985799a752
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0d335250-c4ff-42af-b9c2-48711573ab39.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4814
x-amzn-requestid: 90da23ab-2c54-40ec-8e26-bdf4eeb1e27b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdKWFpvoAMFyPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadbdb-70c4cb89413ed6bd44731d76;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:38:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: htcecPD3kYwCPwPPCqgVuXnCuKo6TTKntzaB2xFID5fvBXpZQe463A==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:59:38 GMT
age: 83123
etag: "b8c7ef73101a497b6c78ad59aafe66a391fdc3fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdab614ba-4572-4b54-9079-a26b68b1ece7.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdab614ba-4572-4b54-9079-a26b68b1ece7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6bb5b89e738516f4862491eec286bf6d
8fb46b9ca85f2c578eb2a56d0007859183e12209
7f164a37b675bf39f8473392b07a2a383397da003303965fb190fd4f455bb43b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdab614ba-4572-4b54-9079-a26b68b1ece7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15051
x-amzn-requestid: 72a3f2ae-538e-40dc-9496-86c28334ba0d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc6jGTAIAMFy4A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb76-72178ed13a2e70d462785b90;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CKTfQzCvXa4oL6Lm2n8Rw_9Uhj69YfgpDTP9s0zoaX5qW1vcqWIXDA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:46:26 GMT
age: 83915
etag: "8fb46b9ca85f2c578eb2a56d0007859183e12209"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2