r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9955bda9c9ef64bc5700a14af0bae25e
8de7b7469e905af0374bdfcc3006bbb844f13e94
1f611155394fac39439b8ec8217d8cd493d6b588d372d264e0d66c03129c50c6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F611155394FAC39439B8EC8217D8CD493D6B588D372D264E0D66C03129C50C6"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5489
Expires: Mon, 03 Oct 2022 11:11:38 GMT
Date: Mon, 03 Oct 2022 09:40:09 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
18.165.201.83200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 18.165.201.83:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 03 Oct 2022 09:03:30 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 cb9d66c261e91793be744f629d6e309e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: p3s0E9vyhpGC04Fs6Z7dSshw9YidA1lx0YaMjUbcPXU5JfHzrUoGsw==
Age: 2199
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
216.137.44.94200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 216.137.44.94:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 03 Oct 2022 03:34:13 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 eee2eabf1d5db87be015bf39b123f234.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-P2
x-amz-cf-id: 1Of_P7Ls01yfEYcu309e0OOTo1ZbwN8AusrWWTPFu6O60RXmc9jYfQ==
age: 22012
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 03 Oct 2022 09:40:09 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.comodoca.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 6bf529c30865522a544660b035b39627
f3ff8493619d39a59d0ca802ce9a608c71e02b0e
7a6cea73443a9eee38d88f280fbbb3fbc6eb85d001a248e66ffbb7bf36755913
POST / HTTP/1.1
Host: ocsp.comodoca.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 09:40:10 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 03 Oct 2022 04:23:26 GMT
Expires: Mon, 10 Oct 2022 04:23:25 GMT
Etag: "f3ff8493619d39a59d0ca802ce9a608c71e02b0e"
Cache-Control: max-age=585194,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: MISS
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7544b6faff62b517-OSL
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
18.165.201.83200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 18.165.201.83:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Cache-Control, Alert, Last-Modified, Backoff, Retry-After, Expires, Content-Length, Pragma, ETag
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Mon, 03 Oct 2022 09:19:40 GMT
Expires: Mon, 03 Oct 2022 09:53:56 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 1872df29670137f21773bdb80da38e36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: rCTH5GVIEKHJ0Yr3BzsEm8HrPGMhnH5pQbdfuhnfun90MxDBSKeztQ==
Age: 1230
akatale.net/text
41.185.8.238301 Moved Permanently 233 B IP 41.185.8.238:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ce5cd82b5ff2f82613dca19607adff99
a54ba7168ce3261b2c73f6265c6fd8dc74643364
1271b5a70013685f4b3be889f13894dff6170028c503b0794470e1e66abc3ccf
Analyzer Verdict Alert openphish Sparkasse Bank
fortinet Phishing
GET /text HTTP/1.1
Host: akatale.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
server: nginx
date: Mon, 03 Oct 2022 09:40:10 GMT
content-type: text/html; charset=iso-8859-1
content-length: 233
location: https://akatale.net/text/
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 321fa9a78e31dcb66601ac5890bfba73
c325580db79bde6fd00d2d0c7e3f675e4c0046bb
83029b324b4c36522ae47eef9614c124b0ad2994de412d7ea82f990ad8ae9d92
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 647
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 03 Oct 2022 09:40:10 GMT
Last-Modified: Mon, 03 Oct 2022 09:29:23 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.161.230.192101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.161.230.192:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: wdrcIO0w/UyZkJjpzLn5KQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: WgSCqMUvGjnDPHYu+/vu/Lj8zwE=
akatale.net/text/
41.185.8.238302 Found 0 B IP 41.185.8.238:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /text/ HTTP/1.1
Host: akatale.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 302 Found
server: nginx
date: Mon, 03 Oct 2022 09:40:10 GMT
content-type: text/html; charset=UTF-8
content-length: 0
x-powered-by: PHP/7.4.30
location: http://2m.ma
X-Firefox-Spdy: h2
2m.ma/
104.20.14.136301 Moved Permanently 0 B IP 104.20.14.136:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 2m.ma
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Mon, 03 Oct 2022 09:40:11 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Mon, 03 Oct 2022 10:40:11 GMT
Location: https://2m.ma/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nHf3iVoyRBkFMrC81iR3d28xUg7TvQFU4eNFg9uPuxmJVZLEZ%2F0MZB6qjFlKGDWuAz6PNit9li%2FpCwvpSdn2huW88NM35WvUcSiDprB7P%2B4PvSZoSKXFiA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7544b7029995b51e-OSL
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 165b2dbf56e36edf32811cc7eea70f58
f9e101da2c4f0f6dcca9cb9d0b36a7b77ef3114e
fcd8956f2d96a85e696ee4ba5eb8d575ad3319bc84c543188f3997ea1079c4e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 03 Oct 2022 09:40:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 165b2dbf56e36edf32811cc7eea70f58
f9e101da2c4f0f6dcca9cb9d0b36a7b77ef3114e
fcd8956f2d96a85e696ee4ba5eb8d575ad3319bc84c543188f3997ea1079c4e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 03 Oct 2022 09:40:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 228b4fb6569d5bd7faf1267f62d6fcdb
5a46edc2cb1812c41115bb4a2c2d98dc87d466ba
e0d6644b36ace8c1ec202de73ba101782aa45cad51df2c5e7baf80379b428914
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 602
Cache-Control: max-age=163483
Content-Type: application/ocsp-response
Date: Mon, 03 Oct 2022 09:40:12 GMT
Etag: "633a873d-116"
Expires: Wed, 05 Oct 2022 07:04:55 GMT
Last-Modified: Mon, 03 Oct 2022 06:54:53 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 278
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 0a868a5ebd51b24339f7f06f567f1fa0
5ab78ae8a20770a68cd44fe1b69e7ec3135cd2c7
b9a62d362a6d255eae42ab51d605bdbe10613c93e5d28f129a7f53bd12c2c31d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 03 Oct 2022 09:40:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ced.sascdn.com/tag/3810/smart.js
23.36.77.33200 OK 33 kB URL HTTP/1.1 ced.sascdn.com/tag/3810/smart.js
IP 23.36.77.33:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65319)
Hash a34b1886a99ef356b7e53fdf35ca1e58
0167e57953769e24e1987f59ea23914197110033
239412b1e5a24e6fe754509c3d28279cd898fb153c59624611584399b4c42246
GET /tag/3810/smart.js HTTP/1.1
Host: ced.sascdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=UTF-8
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 32582
Cache-Control: public, max-age=7200
Expires: Mon, 03 Oct 2022 11:40:12 GMT
Date: Mon, 03 Oct 2022 09:40:12 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 6abe76ca28fe176c44e7475b1d5c93fb
a4a87a771c6f081e5dae3499c090551c6dd31acb
451a8f3a3e654355467b434976022b84820c25b54f7b78472635c7dc3241423f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 03 Oct 2022 09:40:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.ampproject.org/v0/amp-analytics-0.1.js
216.58.211.1200 OK 32 kB URL HTTP/2 cdn.ampproject.org/v0/amp-analytics-0.1.js
IP 216.58.211.1:0
File type ASCII text, with very long lines (65534)
Hash 3c3c0b10ff8c4da1f62b3edcc57a28a9
f8c7a0ff5027f5f167bb46511ba8a244f0268c4b
f04c675f874371b02e59e7d05cb8a1d6badcf7288be90a13fbb1d4f5ea4e536b
GET /v0/amp-analytics-0.1.js HTTP/1.1
Host: cdn.ampproject.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript; charset=UTF-8
access-control-allow-origin: *
content-security-policy: default-src * blob: data:; script-src blob: https://cdn.ampproject.org/lts/ https://cdn.ampproject.org/rtv/ https://cdn.ampproject.org/sw/ https://cdn.ampproject.org/v0.js https://cdn.ampproject.org/v0.mjs https://cdn.ampproject.org/v0/ https://cdn.ampproject.org/viewer/; object-src 'none'; style-src 'unsafe-inline' https://cdn.ampproject.org/rtv/ https://cdn.materialdesignicons.com https://cloud.typography.com https://fast.fonts.net https://fonts.googleapis.com https://maxcdn.bootstrapcdn.com https://p.typekit.net https://pro.fontawesome.com https://use.fontawesome.com https://use.typekit.net; report-uri https://csp.withgoogle.com/csp/amp
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="amphtml-china-available"
report-to: {"group":"amphtml-china-available","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/amphtml-china-available"}]}
timing-allow-origin: *
content-length: 31967
date: Mon, 03 Oct 2022 09:40:12 GMT
expires: Mon, 03 Oct 2022 09:40:12 GMT
cache-control: private, max-age=604800, stale-while-revalidate=604800
etag: "dfda97fe2a1b5ffc"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 63ee7e605da25dbf1d62eea30a1ef246
c86b43b61afc5926ee7bc124cc30598d37ceb661
cb737283476421b6ce93b2909cf5277e82a7adbc3001f66946ff59ad6fabfdb2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 03 Oct 2022 09:40:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
2m.ma/ar/
104.20.13.136200 OK 57 kB IP 104.20.13.136:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (59588)
Hash 8198a89adb9bf187d36d79b7f1920802
41775d9cfa0c410d245d567d35d56aa27d560e2f
f9463186721d38ed3e2b577fc08bf21ec33fe37d8a81a019bc5c5e42169fe7cd
GET /ar/ HTTP/1.1
Host: 2m.ma
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _ga=GA1.2.1396116158.1652881889; __auc=8e619356180d7701c9dadca669f; _ga_G6GJSC0FFM=GS1.1.1654307523.4.0.1654307523.0; cookiesession1=678B2871207443E6048FC29C5D74FF79; _clck=1mxy3mb|1|f23|0; __gads=ID=1e59657c3b7fb672-22246d829ecd00f9:T=1653570097:S=ALNI_MbCb7P-nGmaRsjP3OZoikF47EyC0w; _ga_JXCE5J40DP=GS1.1.1654080568.2.0.1654080568.0
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Mon, 03 Oct 2022 09:40:11 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Q7%2Fq3FfrWTQUElb1rT9mSTut5DaYdKyTYec8qtOOCI73WdrGDj3Q7kn7ksl6MgLYSs16Dh5WaCrVVRRvWlenvo2Tnta7aF55T4IOijCGJQz3EJvlVPyuWw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7544b7042bedb4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 228b4fb6569d5bd7faf1267f62d6fcdb
5a46edc2cb1812c41115bb4a2c2d98dc87d466ba
e0d6644b36ace8c1ec202de73ba101782aa45cad51df2c5e7baf80379b428914
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 602
Cache-Control: max-age=163483
Content-Type: application/ocsp-response
Date: Mon, 03 Oct 2022 09:40:12 GMT
Etag: "633a873d-116"
Expires: Wed, 05 Oct 2022 07:04:55 GMT
Last-Modified: Mon, 03 Oct 2022 06:54:53 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 278
fonts.gstatic.com/s/tajawal/v9/Iura6YBj_oCad4k1nzGBCw.woff2
216.58.207.195200 OK 10 kB URL HTTP/2 fonts.gstatic.com/s/tajawal/v9/Iura6YBj_oCad4k1nzGBCw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 10256, version 1.0\012- data
Hash f18eb7346bae415c6367ed0907125227
a9e8e937c5afc2f9feb46bfcb8fa854728a494a8
b081f7bf790678b56a2c0502651d6873cbabc09e78fe40655df15f918b1e369b
GET /s/tajawal/v9/Iura6YBj_oCad4k1nzGBCw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://2m.ma
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10256
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 19:55:05 GMT
expires: Thu, 28 Sep 2023 19:55:05 GMT
cache-control: public, max-age=31536000
age: 395107
last-modified: Wed, 27 Apr 2022 16:06:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2880
Expires: Mon, 03 Oct 2022 10:28:12 GMT
Date: Mon, 03 Oct 2022 09:40:12 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
34.120.237.76200 OK 91 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
IP 34.120.237.76:0
Hash 8dc248bf5f19bb3be5ab629e3bdcbf18
1e3a3fa27f7a85ac713640a8fdfc45e370bbeb82
ca71ccebc6a7e8b715581e1b160ba0f4c843b8ae7a792b687d739f6847f8c3be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6315
x-amzn-requestid: 6aa75b16-32e4-48a7-9fb0-9e3d5528c2d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWSdsHUnIAMFXtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338cabd-742d8a436403683e0cd9368f;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 23:18:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 5sAzc5Ewv4g6Wqq6JJiLylG3Jyy_nlWrr5Oteeo6ebEgq7Rvss4XaQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 04:42:51 GMT
age: 17841
etag: "58ff0bf8ce7528b303d28bab01a80ad721705569"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-G6GJSC0FFM
142.250.74.168200 OK 75 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-G6GJSC0FFM
IP 142.250.74.168:0
File type ASCII text, with very long lines (18966)
Hash 5b0b6b2cf5e9a5ac6872dd2c544695f9
f322b768e957b68a8df7a6d5022a21045dad3470
0cc1e9965898cdcd5c5f6706ccb35c70f322e9ffbaa3b764134470c6b305713c
GET /gtag/js?id=G-G6GJSC0FFM HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 03 Oct 2022 09:40:12 GMT
expires: Mon, 03 Oct 2022 09:40:12 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 74996
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
imasdk.googleapis.com/js/sdkloader/ima3.js
142.250.74.138200 OK 130 kB URL HTTP/2 imasdk.googleapis.com/js/sdkloader/ima3.js
IP 142.250.74.138:0
File type ASCII text, with very long lines (2831)
Size 130 kB (129452 bytes)
Hash 8db5c8346f879a9436ff111fe4b92797
cbd2a6e483e615cdb5b87fa579e007dff4e4d39a
306a84b1d5eca59a4aa29dd439eece6dddebc2413d168eb37ba944282b97edfd
GET /js/sdkloader/ima3.js HTTP/1.1
Host: imasdk.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-doubleclick-instream-static"
report-to: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
content-length: 129452
date: Mon, 03 Oct 2022 09:40:12 GMT
expires: Mon, 03 Oct 2022 09:40:12 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb5f7661f-9945-4971-aac6-d15570c4d954.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb5f7661f-9945-4971-aac6-d15570c4d954.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6a90e53b55500427aed06efa3a9baa8c
43a66cd291d1413d7147a29b2a7b27277a443f0b
2cf5790e81140bc56b46163787f84c54a07f58e90001837624f426aafa8031c5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb5f7661f-9945-4971-aac6-d15570c4d954.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8277
x-amzn-requestid: a7d76241-7da1-4c84-9c73-2e3a71b81b52
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZTMfEGHiIAMFpmw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63378df9-3727a65235e4dbc60cc11cf0;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 00:46:49 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8n1l3bN8ykztmC-wGNH_w7xASHFplZa2LvHs8psQ146XILdvEHLWgw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 16:41:13 GMT
age: 61139
etag: "43a66cd291d1413d7147a29b2a7b27277a443f0b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 761 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 18bc2070d07f08439e8dc0c2ec804ee1
81f323d65ef8da85e23e6e761ffc40f3d8759610
edcfbcc4d4e526b8cc1fa39875e07b5c3815b015cf99bc2c24253c4d8565c2a4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2880
Expires: Mon, 03 Oct 2022 10:28:12 GMT
Date: Mon, 03 Oct 2022 09:40:12 GMT
Connection: keep-alive
platform.twitter.com/widgets.js
192.229.233.25200 OK 29 kB URL HTTP/1.1 platform.twitter.com/widgets.js
IP 192.229.233.25:0
File type Unicode text, UTF-8 text, with very long lines (33915)
Hash 4022ee7b53654f65608ad9a3ba759687
cc243d089a8a77c0a7123434746ea36b054634dd
7af6243905b2256cb4f8fe0e77386c274592c322fb23b11784ecf86d250c7e09
GET /widgets.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 3000
Age: 310
Cache-Control: public, max-age=1800
Content-Type: application/javascript; charset=utf-8
Date: Mon, 03 Oct 2022 09:40:12 GMT
Etag: "f26384f93da6974ed577808dfa1fede5+gzip"
Last-Modified: Wed, 28 Sep 2022 20:05:37 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F715)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
x-amzn-internal-status: 304
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 29223
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F780fc623-fddc-49c7-99c9-1dd66ce64db7.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F780fc623-fddc-49c7-99c9-1dd66ce64db7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bfb6fbd0b91416a5a7cc7f7d0fcbf27c
ced4806b7cc4d08e2c3f1c5e591184f462e86ec2
9a217da43a32c70ebd39b3076b3c14b16d8931ccebfe5d41139fa706b3b3e149
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F780fc623-fddc-49c7-99c9-1dd66ce64db7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8279
x-amzn-requestid: fed6efac-3419-4ecc-89f8-d4c3e0c22915
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZZWbsHpBIAMFT1g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a044a-5fc3bf5b7126d4a835d93e3d;Sampled=0
x-amzn-remapped-date: Sun, 02 Oct 2022 21:36:10 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 7g6tucmoqeX5RFtet3L9XllP1G6fx4RWt5XqTsVvhtxZnPxV0EVpqA==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 22:19:52 GMT
age: 40820
etag: "ced4806b7cc4d08e2c3f1c5e591184f462e86ec2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7d589035-4143-4e43-a45c-b842ae27b9a3.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7d589035-4143-4e43-a45c-b842ae27b9a3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 34ba42086104460665f7f4f579235592
58f10485c5273cbed8159c98b9065b192ba3d00b
79f1febc020ab611c5d9a8bc1af237a63420f8215963fd97f6c4b9bccfa17d24
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7d589035-4143-4e43-a45c-b842ae27b9a3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4522
x-amzn-requestid: cc836204-3c4f-48d0-9569-b1622e6d2178
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZMVoRH9toAMFwig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6334cfce-096ff90412945ca06335e987;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 22:50:54 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: BzgI7sWS7fsSOANaDI0S4qrT_2iIkp2TOt3bPfm56T0m9jmxRFfSIA==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 17:50:25 GMT
age: 56987
etag: "58f10485c5273cbed8159c98b9065b192ba3d00b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf3117fe-8653-4f81-81ca-39c33b5cbd05.jpeg
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf3117fe-8653-4f81-81ca-39c33b5cbd05.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 87d9e7d5b408493b820d35eff2318657
0e9bfd1a3a8f1643aa0b664706e0e45552dbbfc7
6c1d246a7f024b836b4504d2acfaafe8617cc4384ef9c4ba5095ddd6107ad7cb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf3117fe-8653-4f81-81ca-39c33b5cbd05.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6460
x-amzn-requestid: 23655e0f-f899-4f3d-bac1-070fed558fc3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZZXQ4EnmIAMFjAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a059f-1e08b5111f56ec1163e4eb71;Sampled=0
x-amzn-remapped-date: Sun, 02 Oct 2022 21:41:51 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: xlSSCE_5COODqespy_6BaVeb5tbGJYUHSz0AD70TSC2K-87bOH7enA==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 22:17:07 GMT
age: 40985
etag: "0e9bfd1a3a8f1643aa0b664706e0e45552dbbfc7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 0a868a5ebd51b24339f7f06f567f1fa0
5ab78ae8a20770a68cd44fe1b69e7ec3135cd2c7
b9a62d362a6d255eae42ab51d605bdbe10613c93e5d28f129a7f53bd12c2c31d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 03 Oct 2022 09:40:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd0be942-f345-4da4-974e-a9fe16b90b3c.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd0be942-f345-4da4-974e-a9fe16b90b3c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 523edd86af4757d0bc5fa5b3b8a3596a
8118ee462077c291b9d6f1402b85b55a9ceba8c2
c27de9970317636df8c4a517a9ed38e573235b351bf92c9b8bb1f964cd100031
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd0be942-f345-4da4-974e-a9fe16b90b3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9083
x-amzn-requestid: fda71fd3-ef25-4a63-94ae-1bfc8aef8d14
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZZXD2H0DIAMFjrg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633a054b-198915fc17ce3dab571b7575;Sampled=0
x-amzn-remapped-date: Sun, 02 Oct 2022 21:40:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: BobS2JU-TqDuL8q31SVlerM15cRoMhL1oM5MkL7MVhY9RZG_Ukp5yA==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 21:46:36 GMT
age: 42816
etag: "8118ee462077c291b9d6f1402b85b55a9ceba8c2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 6abe76ca28fe176c44e7475b1d5c93fb
a4a87a771c6f081e5dae3499c090551c6dd31acb
451a8f3a3e654355467b434976022b84820c25b54f7b78472635c7dc3241423f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 03 Oct 2022 09:40:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 63ee7e605da25dbf1d62eea30a1ef246
c86b43b61afc5926ee7bc124cc30598d37ceb661
cb737283476421b6ce93b2909cf5277e82a7adbc3001f66946ff59ad6fabfdb2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 03 Oct 2022 09:40:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash cae538dcce82598fbe43c0bf443e62dd
cc68ac6be9c5e0087a0000e5735b83270ace30f5
954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Mon, 03 Oct 2022 08:41:09 GMT
expires: Mon, 03 Oct 2022 10:41:09 GMT
cache-control: public, max-age=7200
age: 3543
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 544d205b2f709e0bed39ebfc751d6187
71559b505f318323405eeb5ff59499c63e806559
692e14681ceb7536d5c09cf8700810a258b574e02e93c391e7551690111a5bc7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 03 Oct 2022 09:40:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagservices.com/tag/js/gpt.js
216.58.211.2200 OK 28 kB URL HTTP/2 www.googletagservices.com/tag/js/gpt.js
IP 216.58.211.2:0
File type ASCII text, with very long lines (45165)
Hash 0fa2376cf5ac1c292c0916dc2d4234a6
d36b7a9915d7fdf74c62c47b49953fa26d7dfdf0
7f6135c221c234269b712682f57068bb3e9fb6eb9817bcf56d3c4c257d1f3281
GET /tag/js/gpt.js HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 27686
date: Mon, 03 Oct 2022 09:40:12 GMT
expires: Mon, 03 Oct 2022 09:40:12 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
etag: "1352 / 900 of 1000 / last-modified: 1664786533"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 544d205b2f709e0bed39ebfc751d6187
71559b505f318323405eeb5ff59499c63e806559
692e14681ceb7536d5c09cf8700810a258b574e02e93c391e7551690111a5bc7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 03 Oct 2022 09:40:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-16439051-2&cid=1396116158.1652881889&jid=701604577&gjid=1251032277&_gid=72960071.1664790012&_u=IADAAEAAAAAAAC~&z=281967925
74.125.131.157200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-16439051-2&cid=1396116158.1652881889&jid=701604577&gjid=1251032277&_gid=72960071.1664790012&_u=IADAAEAAAAAAAC~&z=281967925
IP 74.125.131.157:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j97&tid=UA-16439051-2&cid=1396116158.1652881889&jid=701604577&gjid=1251032277&_gid=72960071.1664790012&_u=IADAAEAAAAAAAC~&z=281967925 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://2m.ma
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://2m.ma
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 03 Oct 2022 09:40:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
securepubads.g.doubleclick.net/gpt/pubads_impl_2022092701.js
216.58.207.194200 OK 131 kB URL HTTP/2 securepubads.g.doubleclick.net/gpt/pubads_impl_2022092701.js
IP 216.58.207.194:0
File type ASCII text, with very long lines (65439)
Size 131 kB (131011 bytes)
Hash 7899f0ee9fd803d3184f687e9e51c08a
1ecbc68dbadb9078b893c9035e1f1b02e52588d8
838e5ed28453d0b0f6f8215f1855f8b6ff977452346d4a1ffe5f0143d1f29077
GET /gpt/pubads_impl_2022092701.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 131011
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 01 Oct 2022 11:27:03 GMT
expires: Sun, 01 Oct 2023 11:27:03 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Tue, 27 Sep 2022 08:38:39 GMT
content-type: text/javascript
age: 166389
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 50366815306618737b22afb3327c4db9
d362647235cb883e1a58b6d4d6e6144813667119
8b8aa0dbd637f517324351c700f038a94fc87f5444576c337f2e7c6d860e2c50
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 03 Oct 2022 09:40:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 53aa134dc3b33b709b6ccf39e549055f
2e85a28ef73d7c403ad693fc8602e95fe3d803f3
877de7cadd4fc848afaac488f89ed987929505b563a03eb79e4e9d8fa0b41a0e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 03 Oct 2022 09:40:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
securepubads.g.doubleclick.net/pagead/ppub_config?ippd=2m.ma
216.58.207.194200 OK 72 B URL HTTP/2 securepubads.g.doubleclick.net/pagead/ppub_config?ippd=2m.ma
IP 216.58.207.194:0
File type JSON data\012- , ASCII text, with no line terminators
Hash e839752d28702cb1d4ef10482e3ab83b
e5703f061a88eb3777efa3abb12822c4f573ebc4
c5e75734fb8684d4294a9fe1eb52af8bd5bb14ac2aea1ddeadaa564a566bcf1d
GET /pagead/ppub_config?ippd=2m.ma HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://2m.ma
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
date: Mon, 03 Oct 2022 09:40:12 GMT
expires: Mon, 03 Oct 2022 09:40:12 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 72
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 03-Oct-2022 09:55:12 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-16439051-2&cid=1396116158.1652881889&jid=701604577&_u=IADAAEAAAAAAAC~&z=812618065
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-16439051-2&cid=1396116158.1652881889&jid=701604577&_u=IADAAEAAAAAAAC~&z=812618065
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-16439051-2&cid=1396116158.1652881889&jid=701604577&_u=IADAAEAAAAAAAC~&z=812618065 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 03 Oct 2022 09:40:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-16439051-2&cid=1396116158.1652881889&jid=701604577&_u=IADAAEAAAAAAAC~&z=812618065
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-16439051-2&cid=1396116158.1652881889&jid=701604577&_u=IADAAEAAAAAAAC~&z=812618065
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j97&tid=UA-16439051-2&cid=1396116158.1652881889&jid=701604577&_u=IADAAEAAAAAAAC~&z=812618065 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 03 Oct 2022 09:40:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 50366815306618737b22afb3327c4db9
d362647235cb883e1a58b6d4d6e6144813667119
8b8aa0dbd637f517324351c700f038a94fc87f5444576c337f2e7c6d860e2c50
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 03 Oct 2022 09:40:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 8c665d81a8995febfec300bd9f554c90
aa3599f282cff5e07d5681ec4854b70a82590f6d
57cd30b987eb23f54208b51c04daefd3657fdd84325f4035817b32e4ad5b5461
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 03 Oct 2022 09:40:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
certify-js.alexametrics.com/atrk.js
108.138.217.52200 OK 1.6 kB URL HTTP/1.1 certify-js.alexametrics.com/atrk.js
IP 108.138.217.52:0
File type ASCII text, with very long lines (4255), with no line terminators
Hash 5d5ae61c111bc3e116f4764bc74f1b6d
cd5ee2d8374080be231b80aa3e7f08f16549fa4a
7f87d4ed9c6d30b7dd5260c20966c35415b038101a5f9769469ad2729368a702
GET /atrk.js HTTP/1.1
Host: certify-js.alexametrics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Date: Mon, 07 Mar 2022 06:05:29 GMT
Last-Modified: Tue, 27 Apr 2021 18:03:54 GMT
ETag: W/"d89453438fbf10dcf4c13265c40d5160"
Cache-Control: max-age=26920000
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 77c679d2765b514e835e71841df67db2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR61-P3
X-Amz-Cf-Id: pQH8QOTxXEo3-OExPDYKbDnmOm5OS_07mTS_80nZ4EEQ7wyDsMey1A==
Age: 18156884
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ce46a4e7ba9b25d4047a19ced524b8a1
be4d84fdda83fb13ebfecd4021ed1b412e5e2426
c4ad4205e56eae397b116269d914823df3443d9824150c11753d76118ac7a7c3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C4AD4205E56EAE397B116269D914823DF3443D9824150C11753D76118AC7A7C3"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2568
Expires: Mon, 03 Oct 2022 10:23:00 GMT
Date: Mon, 03 Oct 2022 09:40:12 GMT
Connection: keep-alive
id5-sync.com/g/v2/102.json
162.19.138.82200 215 B URL HTTP/1.1 id5-sync.com/g/v2/102.json
IP 162.19.138.82:0
File type JSON data\012- , ASCII text, with no line terminators
Hash e0246e22c86e0c8f0d8dc12bdeb8d0cf
bdf912a78ac9cb044c701f92b46de5e8b15d36d4
8b6160b4d0131b132166bf2c793f5c984dc5e4c2bc5804905a950c2f5dab8656
POST /g/v2/102.json HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 147
Origin: https://2m.ma
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers, Origin
access-control-allow-origin: https://2m.ma
access-control-allow-credentials: true
content-type: application/json;charset=UTF-8
transfer-encoding: chunked
date: Mon, 03 Oct 2022 09:40:12 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
www.clarity.ms/tag/9aa85s764a
13.107.227.53200 OK 77 kB URL HTTP/2 www.clarity.ms/tag/9aa85s764a
IP 13.107.227.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash 0396c189a7b5c795ac3dac220c3596b3
22c6902c181f772785a56e7ad509b9647c394f55
8549a25db1735d2826099705fbab887ac199a5537a24df3a368060514b78795f
GET /tag/9aa85s764a HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/x-javascript
expires: -1
set-cookie: CLID=0320c658737e4000906f4e70251bc75b.20221003.20231003; expires=Tue, 03 Oct 2023 09:40:12 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:dfa4d45a-f309-4181-9ede-77e6e6c0ecf0
x-cache: CONFIG_NOCACHE
x-azure-ref: 0/K06YwAAAABeWMfNCD8BSISZIqOeCKGXT1NMMjMxMDUwMjA0MDA3ADZjZmJlZWUwLTUwMjctNDg0Yi04OTY3LTRhMjlhZjc3ZjFlMQ==
date: Mon, 03 Oct 2022 09:40:12 GMT
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Roboto:wght@400;700&family=Tajawal:wght@300;400;700&display=swap
142.250.74.10200 OK 5.1 kB URL HTTP/2 fonts.googleapis.com/css2?family=Roboto:wght@400;700&family=Tajawal:wght@300;400;700&display=swap
IP 142.250.74.10:0
Hash 5ff808c0a10dff581bdd4b76d23baf87
02aa67a5f3ac72509757f2bd083b67198b6576c6
859ce806409c257c7f0f0768cc2c5d9e76c52a0e2a3e728b755532b759e127c4
GET /css2?family=Roboto:wght@400;700&family=Tajawal:wght@300;400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 03 Oct 2022 09:40:11 GMT
date: Mon, 03 Oct 2022 09:40:11 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/tajawal/v9/Iurf6YBj_oCad4k1l4qkHrFpiQ.woff2
216.58.207.195200 OK 10 kB URL HTTP/2 fonts.gstatic.com/s/tajawal/v9/Iurf6YBj_oCad4k1l4qkHrFpiQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 9996, version 1.0\012- data
Hash e9c38c1110be8eac901fbe1fa4dff374
aba40d14b54e93d55124da50975b075c28969a41
de8f431c146ab1feb612cb7ced0842ae5c4e2f12067d13db0badeca73977200b
GET /s/tajawal/v9/Iurf6YBj_oCad4k1l4qkHrFpiQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://2m.ma
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 9996
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 19:53:49 GMT
expires: Thu, 28 Sep 2023 19:53:49 GMT
cache-control: public, max-age=31536000
age: 395184
last-modified: Wed, 27 Apr 2022 16:11:33 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/tajawal/v9/Iurf6YBj_oCad4k1l4qkHrRpiYlJ.woff2
216.58.207.195200 OK 8.7 kB URL HTTP/2 fonts.gstatic.com/s/tajawal/v9/Iurf6YBj_oCad4k1l4qkHrRpiYlJ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 8712, version 1.0\012- data
Hash a560bce992322f72d6abc068846a3f93
869883a30861df05f8402581fb89560aef96b221
328cc866bbd43a73f3742f59aca4df9e04bf14354d8847461f6641279326de63
GET /s/tajawal/v9/Iurf6YBj_oCad4k1l4qkHrRpiYlJ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://2m.ma
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8712
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 20:05:56 GMT
expires: Thu, 28 Sep 2023 20:05:56 GMT
cache-control: public, max-age=31536000
age: 394457
last-modified: Wed, 27 Apr 2022 16:11:35 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
platform.twitter.com/widgets/widget_iframe.8f764d5bd2778f88121d31d7d8d8e1e3.html?origin=https%3A%2F%2F2m.ma
192.229.233.25200 OK 105 kB URL HTTP/1.1 platform.twitter.com/widgets/widget_iframe.8f764d5bd2778f88121d31d7d8d8e1e3.html?origin=https%3A%2F%2F2m.ma
IP 192.229.233.25:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56043)
Size 105 kB (105433 bytes)
Hash 9ad25b279d9409c21f3b1d2fd4ec7c9c
340c755b7b0d627db7b4fe1399a229035ffc0f0f
659c804a6ebe1fc3c0af9e431ec7724b47010a77a6994c59131139090b0509df
GET /widgets/widget_iframe.8f764d5bd2778f88121d31d7d8d8e1e3.html?origin=https%3A%2F%2F2m.ma HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2m.ma/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 300735
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Mon, 03 Oct 2022 09:40:13 GMT
Etag: "8321d7cf58d70200c1423dfa0bca40f6+gzip"
Last-Modified: Wed, 19 Jan 2022 19:04:27 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71C)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 105433
2msoread-ww.amagi.tv/mediasfiles/2016/12/9/1481313947/ef0a7aaeb9b513c93750223b8e7e4108_XL_9b1joD9.article.jpg
108.156.46.68200 OK 10 kB URL HTTP/2 2msoread-ww.amagi.tv/mediasfiles/2016/12/9/1481313947/ef0a7aaeb9b513c93750223b8e7e4108_XL_9b1joD9.article.jpg
IP 108.156.46.68:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 302x168, components 3\012- data
Hash df9a3e29242381599a662daa3f355d4a
fd860a6ed101efea6480b9b5723e101141195010
8977c2339c517b0efb43c14994ce13dc7482b39129482378cde45b5c7276d7cf
GET /mediasfiles/2016/12/9/1481313947/ef0a7aaeb9b513c93750223b8e7e4108_XL_9b1joD9.article.jpg HTTP/1.1
Host: 2msoread-ww.amagi.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 10149
server: nginx/1.19.6
last-modified: Fri, 09 Dec 2016 20:14:55 GMT
accept-ranges: bytes
date: Sun, 02 Oct 2022 16:30:07 GMT
etag: "584b10bf-27a5"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 987140ac9e21c2b752b3eb802ce4a7a0.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P2
x-amz-cf-id: wH8u0AFDRhRaD9o4H3tvtriL7LpAtlcNi5X0foRoCd4aAfOQftkiNg==
age: 61807
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
108.138.212.95200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 108.138.212.95:0
Hash 28dc5c023928f5aa62ca130ce5b936da
63b0f495d4c6d819488027e36d41e1ace44b8c12
5ece923c44140d2339bdd30f4518dfa792b6ab527ab9c808f667db715b232fd5
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 03 Oct 2022 09:40:14 GMT
Last-Modified: Mon, 03 Oct 2022 08:56:35 GMT
Server: ECS (nyb/1D17)
X-Cache: Miss from cloudfront
Via: 1.1 77c679d2765b514e835e71841df67db2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR61-P3
X-Amz-Cf-Id: tMaiV0j8yr9Ilu8PX9VjRSed5TC-xhed03kwS54TwWrQ4tkKwllOkA==
Age: 2619
2msoread-ww.amagi.tv/mediasfiles/videos/images/2022/09/28/16643685702_4.png
108.156.46.68200 OK 375 kB URL HTTP/2 2msoread-ww.amagi.tv/mediasfiles/videos/images/2022/09/28/16643685702_4.png
IP 108.156.46.68:0
Size 375 kB (375403 bytes)
Hash fc42978dea7ee52f2e2676172be96fd8
a41d77f5ea1b0b7380e7681d6a036f778cd1b5d6
2ef39ba3ec1690f62d98add6e1b037671ddba7da5e5438d198ce6f000e19d67e
GET /mediasfiles/videos/images/2022/09/28/16643685702_4.png HTTP/1.1
Host: 2msoread-ww.amagi.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 374680
server: nginx/1.19.6
date: Sun, 02 Oct 2022 14:22:45 GMT
last-modified: Wed, 28 Sep 2022 12:36:10 GMT
etag: "63343fba-5b798"
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 987140ac9e21c2b752b3eb802ce4a7a0.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P2
x-amz-cf-id: sKUDObsqtbvX21lrwsHf_eFckbO66BWiCQu9FZuZTY0nuF3w-hvn5w==
age: 69449
X-Firefox-Spdy: h2
2msoread-ww.amagi.tv/mediasfiles/videos/images/2022/09/30/16645700168-5.png
108.156.46.68200 OK 354 kB URL HTTP/2 2msoread-ww.amagi.tv/mediasfiles/videos/images/2022/09/30/16645700168-5.png
IP 108.156.46.68:0
Size 354 kB (354121 bytes)
Hash 63c5651e8a1653a9d8830959854a6cd6
9690d4224419afae0a28c6a1c2a68792aaad3aca
9f4798876dcb72b7cba043340b9eacc3c8751a26413b7a45afcf6a3abb85b499
GET /mediasfiles/videos/images/2022/09/30/16645700168-5.png HTTP/1.1
Host: 2msoread-ww.amagi.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 351796
server: nginx/1.19.6
date: Sun, 02 Oct 2022 20:00:18 GMT
last-modified: Fri, 30 Sep 2022 20:33:36 GMT
etag: "633752a0-55e34"
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 987140ac9e21c2b752b3eb802ce4a7a0.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P2
x-amz-cf-id: OUoywEpT91lzlBTIPJK685n7DszuEKd96Kdz6Z3FN1vC7NIH-fP13w==
age: 49196
X-Firefox-Spdy: h2
2msoread-ww.amagi.tv/mediasfiles/images/2022/10/02/carre_1664727147devdenviron-85.000-euros.jpg
108.156.46.68200 OK 931 kB URL HTTP/2 2msoread-ww.amagi.tv/mediasfiles/images/2022/10/02/carre_1664727147devdenviron-85.000-euros.jpg
IP 108.156.46.68:0
File type PNG image data, 724 x 724, 8-bit/color RGBA, non-interlaced\012- data
Size 931 kB (931385 bytes)
Hash 66a1db67d1ba87460fc264d01ba8d1a2
05974506b96f877c808d099cc6efd58fbeed105f
8a6addee884a208ce85a99476481bc4552e9e5c6ca2baf20c98d3b4ceb42e232
GET /mediasfiles/images/2022/10/02/carre_1664727147devdenviron-85.000-euros.jpg HTTP/1.1
Host: 2msoread-ww.amagi.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 931385
server: nginx/1.19.6
date: Sun, 02 Oct 2022 20:03:34 GMT
last-modified: Sun, 02 Oct 2022 16:12:27 GMT
etag: "6339b86b-e3639"
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 987140ac9e21c2b752b3eb802ce4a7a0.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P2
x-amz-cf-id: RhBmqcHs3DwtPsM6SRKxXAnydPv49HEa62wvDaRuhRCqYS2tKoDUzA==
age: 49000
X-Firefox-Spdy: h2
2msoread-ww.amagi.tv/mediasfiles/images/2022/09/28/slider_1664376579WhatsApp-Image-2022-09-28-at-16.30.28.jpg
108.156.46.68200 OK 721 kB URL HTTP/2 2msoread-ww.amagi.tv/mediasfiles/images/2022/09/28/slider_1664376579WhatsApp-Image-2022-09-28-at-16.30.28.jpg
IP 108.156.46.68:0
Size 721 kB (720559 bytes)
Hash cfd940cedf867ec3812d5a2e03924bfc
b0dacd70bd3705585579f96967f26c52625fce37
e71ac26403e765a04fb70aebac06d40660ad737f6e9151bebe20deea2fd4f315
GET /mediasfiles/images/2022/09/28/slider_1664376579WhatsApp-Image-2022-09-28-at-16.30.28.jpg HTTP/1.1
Host: 2msoread-ww.amagi.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 719986
server: nginx/1.19.6
date: Sun, 02 Oct 2022 20:46:22 GMT
last-modified: Wed, 28 Sep 2022 14:49:39 GMT
etag: "63345f03-afc72"
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 987140ac9e21c2b752b3eb802ce4a7a0.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P2
x-amz-cf-id: CH_wfuZ-aYx7eGL8KiibDzEhbhYl6yc9c9FLvyA8L6SNiLf8fopk1w==
age: 46432
X-Firefox-Spdy: h2
2msoread-ww.amagi.tv/mediasfiles/images/2022/09/30/carre_1664527163YAZAKI-K%C3%A9nitra.jpg
108.156.46.68200 OK 1.9 MB URL HTTP/2 2msoread-ww.amagi.tv/mediasfiles/images/2022/09/30/carre_1664527163YAZAKI-K%C3%A9nitra.jpg
IP 108.156.46.68:0
Size 1.9 MB (1894033 bytes)
Hash 237a2f1154e0ba627644d68e781fb49f
c4920e1a3f0fe1f32bddb41506c8eaf0f920d29e
9ed9908fec662bec10b34e9ba51889fd4ee5b87c8d81e05760d9f5a902a277e4
GET /mediasfiles/images/2022/09/30/carre_1664527163YAZAKI-K%C3%A9nitra.jpg HTTP/1.1
Host: 2msoread-ww.amagi.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 1570410
server: nginx/1.19.6
date: Sun, 02 Oct 2022 19:16:18 GMT
last-modified: Fri, 30 Sep 2022 08:39:23 GMT
etag: "6336ab3b-17f66a"
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 987140ac9e21c2b752b3eb802ce4a7a0.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P2
x-amz-cf-id: F-ok6gnQNJwFtg9_KTUOd6iFo5UTSHEF5dhRUOewJbw-DJ8gatAhFg==
age: 51836
X-Firefox-Spdy: h2
2msoread-ww.amagi.tv/mediasfiles/videos/images/2022/09/27/1664275737Ba-dream-artist--27_09_2022.png
108.156.46.68200 OK 187 kB URL HTTP/2 2msoread-ww.amagi.tv/mediasfiles/videos/images/2022/09/27/1664275737Ba-dream-artist--27_09_2022.png
IP 108.156.46.68:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 90", baseline, precision 8, 1280x720, components 3\012- data
Size 187 kB (187276 bytes)
Hash 92ed632024ad5e307eb52e24f6381c3c
ef254bb5b45bd214bf67e31de7c86176eb38fb2d
54deb12fa5d25108a9499f5d7130c4158feb6ebec45340374fab36fd1b77c173
GET /mediasfiles/videos/images/2022/09/27/1664275737Ba-dream-artist--27_09_2022.png HTTP/1.1
Host: 2msoread-ww.amagi.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 187276
server: nginx/1.19.6
last-modified: Tue, 27 Sep 2022 10:48:58 GMT
accept-ranges: bytes
date: Sun, 02 Oct 2022 14:45:10 GMT
etag: "6332d51a-2db8c"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 987140ac9e21c2b752b3eb802ce4a7a0.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P2
x-amz-cf-id: FlW3sOkzVQIloiaxLZaSYNlo1miC0MQRDTHbAcfTKEQtHitxsWvj9A==
age: 68104
X-Firefox-Spdy: h2
2msoread-ww.amagi.tv//tagimg/ae661502f5b4f16794e36ed64be3264b.jpeg
108.156.46.68200 OK 76 kB URL HTTP/2 2msoread-ww.amagi.tv//tagimg/ae661502f5b4f16794e36ed64be3264b.jpeg
IP 108.156.46.68:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x262, components 3\012- data
Hash 8fd4b6bf91a67b8c715aa473b4d83252
e54e6f06a0132ff184b52d56c8774a17791dc64d
44cd6813edf6e377b8e205fe84d82c204316c38bb380530cee72611bbda55704
GET //tagimg/ae661502f5b4f16794e36ed64be3264b.jpeg HTTP/1.1
Host: 2msoread-ww.amagi.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 75468
server: nginx/1.19.6
last-modified: Thu, 27 Jan 2022 16:47:46 GMT
accept-ranges: bytes
date: Sun, 02 Oct 2022 10:00:35 GMT
etag: "61f2ccb2-126cc"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 987140ac9e21c2b752b3eb802ce4a7a0.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P2
x-amz-cf-id: Hej0dE0N4px4S2dy9p7GKqFQcvE5X7bO9TxmCj-ltDn7NCbBrGx-3A==
age: 85179
X-Firefox-Spdy: h2
2msoread-ww.amagi.tv//tagimg/fe1e93da07f5f24aa4086891a4a5ac95.jpeg
108.156.46.68200 OK 61 kB URL HTTP/2 2msoread-ww.amagi.tv//tagimg/fe1e93da07f5f24aa4086891a4a5ac95.jpeg
IP 108.156.46.68:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x261, components 3\012- data
Hash 08d2836eec496bfaf0d364bd57cb0c88
c4a99169de244064a3fbd65834b6cb4636abed67
398c5c6d8939d77d54a67c5b0835687d19839139298966b40d12cb284eccb811
GET //tagimg/fe1e93da07f5f24aa4086891a4a5ac95.jpeg HTTP/1.1
Host: 2msoread-ww.amagi.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 60919
server: nginx/1.19.6
last-modified: Tue, 05 Apr 2022 11:40:50 GMT
accept-ranges: bytes
date: Sun, 02 Oct 2022 10:00:35 GMT
etag: "624c2ac2-edf7"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 987140ac9e21c2b752b3eb802ce4a7a0.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P2
x-amz-cf-id: gCtUhOcWJHVX5YDBYqs7yc8wYWZj4JldqEzWwl7jDQsdcpYuyeaz5Q==
age: 85179
X-Firefox-Spdy: h2
2msoread-ww.amagi.tv//tagimg/78431f73fbb247a334e3a0d49cd59a56.png
108.156.46.68200 OK 228 kB URL HTTP/2 2msoread-ww.amagi.tv//tagimg/78431f73fbb247a334e3a0d49cd59a56.png
IP 108.156.46.68:0
File type PNG image data, 736 x 151, 8-bit/color RGB, non-interlaced\012- data
Size 228 kB (227999 bytes)
Hash 2ec920ea171d58c7155e58026ee94bb1
cb3956c5abc9b6b98a6445c5cba49a83dee3d43d
7f27016439f4c6e457c57be4e6f500dd3892c45d6f35967b56cf07bc4965f9f0
GET //tagimg/78431f73fbb247a334e3a0d49cd59a56.png HTTP/1.1
Host: 2msoread-ww.amagi.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 227999
server: nginx/1.19.6
last-modified: Fri, 24 Dec 2021 16:06:57 GMT
accept-ranges: bytes
date: Sun, 02 Oct 2022 10:00:35 GMT
etag: "61c5f021-37a9f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 987140ac9e21c2b752b3eb802ce4a7a0.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P2
x-amz-cf-id: y7D1zwZOlWnh-85SWzcIIpsg1HWxuxA--n4r50xi0t8EJSGdqTQbwg==
age: 85179
X-Firefox-Spdy: h2
2msoread-ww.amagi.tv//tagimg/5f6bcc63c0209a98adb42055b20c3009.jpg
108.156.46.68200 OK 33 kB URL HTTP/2 2msoread-ww.amagi.tv//tagimg/5f6bcc63c0209a98adb42055b20c3009.jpg
IP 108.156.46.68:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 970x200, components 3\012- data
Hash 53ae35c7bf6e62ee5d595faacb91bcae
1b743f769906ea433761f373a12752f8e1f1d552
ec9105a127778305f626f2e6223a952b593b2d3f6acf650de3b8827e91e599fb
GET //tagimg/5f6bcc63c0209a98adb42055b20c3009.jpg HTTP/1.1
Host: 2msoread-ww.amagi.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 32911
server: nginx/1.19.6
last-modified: Sun, 31 Oct 2021 19:23:03 GMT
accept-ranges: bytes
date: Mon, 03 Oct 2022 07:46:31 GMT
etag: "617eed17-808f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 987140ac9e21c2b752b3eb802ce4a7a0.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P2
x-amz-cf-id: lYj_jf-2eDEZHzm0xsRrUovX0oRpCtSEdj7crIrlpP3xvNfoeKpk9g==
age: 7067
X-Firefox-Spdy: h2
2msoread-ww.amagi.tv//tagimg/794e862b01f8e7f6ea4338b32d3ad1fb.png
108.156.46.68200 OK 173 kB URL HTTP/2 2msoread-ww.amagi.tv//tagimg/794e862b01f8e7f6ea4338b32d3ad1fb.png
IP 108.156.46.68:0
File type PNG image data, 736 x 151, 8-bit/color RGB, non-interlaced\012- data
Size 173 kB (172681 bytes)
Hash bc5fc98a900a3f905e71d712ec8c8b75
ed5664724de2103b64e9e31c699833b251a5c41d
41d256bcb0af6aa1231bb35aa3bd22902425dba7f9a04f4ba87b153abea976c3
GET //tagimg/794e862b01f8e7f6ea4338b32d3ad1fb.png HTTP/1.1
Host: 2msoread-ww.amagi.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 172681
server: nginx/1.19.6
last-modified: Thu, 06 Jan 2022 09:58:05 GMT
accept-ranges: bytes
date: Mon, 03 Oct 2022 07:46:31 GMT
etag: "61d6bd2d-2a289"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 987140ac9e21c2b752b3eb802ce4a7a0.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P2
x-amz-cf-id: YAvKuCf5au40zOnaIF8WAZCqf8R_CjN6qQI4pJp-Dr3OIiCmBurlrQ==
age: 7067
X-Firefox-Spdy: h2
2msoread-ww.amagi.tv//tagimg/2afb6fef0dc8719567a2a0aff8cb9571.jpeg
108.156.46.68200 OK 75 kB URL HTTP/2 2msoread-ww.amagi.tv//tagimg/2afb6fef0dc8719567a2a0aff8cb9571.jpeg
IP 108.156.46.68:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x262, components 3\012- data
Hash cad816e2ad8075e197b924182680ce07
e7449b829d824c24250d29a0b9ecbd200945eb29
506c0d28593bf408e04609b6c0ff62686b19ea4cd65893cf7725795704731b30
GET //tagimg/2afb6fef0dc8719567a2a0aff8cb9571.jpeg HTTP/1.1
Host: 2msoread-ww.amagi.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 75239
server: nginx/1.19.6
last-modified: Thu, 27 Jan 2022 13:35:13 GMT
accept-ranges: bytes
date: Mon, 03 Oct 2022 07:27:45 GMT
etag: "61f29f91-125e7"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 987140ac9e21c2b752b3eb802ce4a7a0.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P2
x-amz-cf-id: IvX5locxqYarWoM5FN5woxk7XYmirCDwhdoIGEgyVrbB14rVcuJykg==
age: 7992
X-Firefox-Spdy: h2
2msoread-ww.amagi.tv//tagimg/214fa605584c1552d079778dcb0388c0.jpeg
108.156.46.68200 OK 71 kB URL HTTP/2 2msoread-ww.amagi.tv//tagimg/214fa605584c1552d079778dcb0388c0.jpeg
IP 108.156.46.68:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x262, components 3\012- data
Hash 84e820ef2550861a62d99ebee0ceddb7
7a50858edb1bfff50f8b6c2fba95c314dcfff863
0bde0bca9c7aa9f6b2d8f42420a585879b057e225196b4d7c1db98e4f83edb60
GET //tagimg/214fa605584c1552d079778dcb0388c0.jpeg HTTP/1.1
Host: 2msoread-ww.amagi.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 71212
server: nginx/1.19.6
last-modified: Mon, 12 Sep 2022 12:01:38 GMT
accept-ranges: bytes
date: Sun, 02 Oct 2022 12:07:34 GMT
etag: "631f1fa2-1162c"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 987140ac9e21c2b752b3eb802ce4a7a0.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P2
x-amz-cf-id: kBnlJdvc2qz5zkHtwDZ63r908lCz4sxQozmfCzhKhgzachCzAD4e1g==
age: 77560
X-Firefox-Spdy: h2
2msoread-ww.amagi.tv//tagimg/b15b35542e0e7e8e1bcc29beb61510e0.png
108.156.46.68200 OK 188 kB URL HTTP/2 2msoread-ww.amagi.tv//tagimg/b15b35542e0e7e8e1bcc29beb61510e0.png
IP 108.156.46.68:0
File type PNG image data, 736 x 151, 8-bit/color RGB, non-interlaced\012- data
Size 188 kB (188256 bytes)
Hash 338375899e9d1c09428a7181cbf2d1bf
f2144df5164db774959604f1b5f33e39f05465d1
fabb6fd23c848a4538bd1d8ac08f416f6fcdb6378f0b343b2c16c4d1cea25b3c
GET //tagimg/b15b35542e0e7e8e1bcc29beb61510e0.png HTTP/1.1
Host: 2msoread-ww.amagi.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 188256
server: nginx/1.19.6
last-modified: Fri, 24 Dec 2021 15:11:46 GMT
accept-ranges: bytes
date: Sun, 02 Oct 2022 10:00:35 GMT
etag: "61c5e332-2df60"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 987140ac9e21c2b752b3eb802ce4a7a0.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P2
x-amz-cf-id: Kq4x9JKhRPiwwWlrmjYgYgzdJRqIRlUi_kGqVM0cjkwg3uz6x0TRsQ==
age: 85179
X-Firefox-Spdy: h2
2msoread-ww.amagi.tv/mediasfiles/videos/images/2022/10/02/1664735106Maa-Ramdani-1--02_10_2022.png
108.156.46.68200 OK 278 kB URL HTTP/2 2msoread-ww.amagi.tv/mediasfiles/videos/images/2022/10/02/1664735106Maa-Ramdani-1--02_10_2022.png
IP 108.156.46.68:0
Size 278 kB (277802 bytes)
Hash 8cea3bd67d9abffebda5b8c08e17440e
27c56b82a7c765bf0072998c861dd3fe3a3ae741
b9aeb61133706a2bee897776ebbd0992dc358df1d51e2070a7ecb86c2d06d309
GET /mediasfiles/videos/images/2022/10/02/1664735106Maa-Ramdani-1--02_10_2022.png HTTP/1.1
Host: 2msoread-ww.amagi.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 277669
server: nginx/1.19.6
date: Sun, 02 Oct 2022 20:37:29 GMT
last-modified: Sun, 02 Oct 2022 18:25:06 GMT
etag: "6339d782-43ca5"
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 987140ac9e21c2b752b3eb802ce4a7a0.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P2
x-amz-cf-id: M2QjpDS3H5jn_kRAodxYjAN5AEatDb53Ar086NSMM3I4EE9WeKOVbg==
age: 46965
X-Firefox-Spdy: h2
2msoread-ww.amagi.tv/mediasfiles/images/2022/09/29/slider_16644766156BB5CFCC-6A1D-4D74-A679-1626F62F5785.jpeg
108.156.46.68200 OK 1.2 MB URL HTTP/2 2msoread-ww.amagi.tv/mediasfiles/images/2022/09/29/slider_16644766156BB5CFCC-6A1D-4D74-A679-1626F62F5785.jpeg
IP 108.156.46.68:0
File type PNG image data, 2048 x 1152, 8-bit/color RGBA, non-interlaced\012- data
Size 1.2 MB (1246431 bytes)
Hash fa53499e273d4df6f9e77b4c7a8278d3
855fb3cc1f205a075dd27331e93e33adccffbf48
fc037f61a3a1aea3d37335803f76fc740a876cccb6110dc285f74a9a3452ba4d
GET /mediasfiles/images/2022/09/29/slider_16644766156BB5CFCC-6A1D-4D74-A679-1626F62F5785.jpeg HTTP/1.1
Host: 2msoread-ww.amagi.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 1246431
server: nginx/1.19.6
date: Sun, 02 Oct 2022 20:49:37 GMT
last-modified: Thu, 29 Sep 2022 18:36:55 GMT
etag: "6335e5c7-1304df"
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 987140ac9e21c2b752b3eb802ce4a7a0.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P2
x-amz-cf-id: g8ZZC-yhflrFO6BHafEzAlRHDAtTrGR3_tCEWYRmcIVSqmFg8PNp7g==
age: 46237
X-Firefox-Spdy: h2
redirect.prod.experiment.routing.cloudfront.aws.a2z.com/x.png
3.15.76.72204 No Content 0 B URL HTTP/2 redirect.prod.experiment.routing.cloudfront.aws.a2z.com/x.png
IP 3.15.76.72:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /x.png HTTP/1.1
Host: redirect.prod.experiment.routing.cloudfront.aws.a2z.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Mon, 03 Oct 2022 09:40:14 GMT
server: Server
X-Firefox-Spdy: h2
2msoread-ww.amagi.tv/mediasfiles/images/2022/09/30/slider_1664556722Mohammed-El-Guerrouj.jpg
108.156.46.68200 OK 2.1 MB URL HTTP/2 2msoread-ww.amagi.tv/mediasfiles/images/2022/09/30/slider_1664556722Mohammed-El-Guerrouj.jpg
IP 108.156.46.68:0
File type PNG image data, 1858 x 1045, 8-bit/color RGBA, non-interlaced\012- data
Size 2.1 MB (2079678 bytes)
Hash fd57b23dcf00d7d8ca14eb92df80d6b6
bb9290daca6993a14e48cfe6d76c0104fd9b5af5
8ff546c42d818ce674ba07cdc6d33e57531c2a3103cfc5f3ef06e87d20936ea4
GET /mediasfiles/images/2022/09/30/slider_1664556722Mohammed-El-Guerrouj.jpg HTTP/1.1
Host: 2msoread-ww.amagi.tv
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 2079678
server: nginx/1.19.6
date: Sun, 02 Oct 2022 20:49:37 GMT
last-modified: Fri, 30 Sep 2022 16:52:02 GMT
etag: "63371eb2-1fbbbe"
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 987140ac9e21c2b752b3eb802ce4a7a0.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P2
x-amz-cf-id: --l2R09GRL-hZT8yjtoLEYy1xKcT5U8nLwL5SkVYgfXpaGS5YsWjfQ==
age: 46237
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash f02cdf1aaa3a1574e9e349f7cc65483f
af02d1b1d59bb9d4807c16638c8e5303e9a76017
8e75b6d3be0ce79b40349774f97425a884bd632217b3ea7e69448f371518441b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 03 Oct 2022 09:40:14 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 01 Oct 2022 21:41:00 GMT
Expires: Sat, 08 Oct 2022 21:40:59 GMT
Etag: "af02d1b1d59bb9d4807c16638c8e5303e9a76017"
Cache-Control: max-age=474644,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7544b717beea1c02-OSL
www.habous.gov.ma/horaire%20de%20priere/icone-telechargement.png
51.178.93.105200 OK 33 kB URL HTTP/2 www.habous.gov.ma/horaire%20de%20priere/icone-telechargement.png
IP 51.178.93.105:0
Hash fd8b107b39ffbd4e2c018e4d36f7f70e
783526a30d4c2203fb60daab66f1a7e158f66681
8c0684cc3819c18468c5c4935355b40499dbeb85ac6d3f96d6471bbe32cfea64
GET /horaire%20de%20priere/icone-telechargement.png HTTP/1.1
Host: www.habous.gov.ma
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 03 Oct 2022 09:40:14 GMT
content-type: image/png
content-length: 2995
last-modified: Mon, 03 Oct 2022 09:40:01 GMT
etag: "633aadf1-bb3"
expires: Tue, 03 Oct 2023 09:40:14 GMT
pragma: public
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
accept-ranges: bytes
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 2.2 kB IP 93.184.220.29:0
Hash e88b444dfb7d3145be86f692cd3e2fa8
f3a1a99bf7b096219b0b8511127b282d84d9d926
935137cb6115e27b94c7f8052626ce62306919ba09da82628157e0362f61f2b1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6592
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 03 Oct 2022 09:40:14 GMT
Last-Modified: Mon, 03 Oct 2022 07:50:22 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 313
syndication.twitter.com/settings?session_id=4237437851b35183d85f2620b53acdfe6d4d4e41
104.244.42.136200 OK 323 B URL HTTP/2 syndication.twitter.com/settings?session_id=4237437851b35183d85f2620b53acdfe6d4d4e41
IP 104.244.42.136:0
File type JSON data\012- , ASCII text, with very long lines (770), with no line terminators
Hash 136d5ac4ceb5e1973a889a7c7c44133c
b260cbd1eda60550f4b6d63d6ab7222a30101eaf
05a670a0c765e49d5e0d39031bdf7754493f0644e68cdf1c8ed5db2d0fc1730d
GET /settings?session_id=4237437851b35183d85f2620b53acdfe6d4d4e41 HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://platform.twitter.com/
Origin: https://platform.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Mon, 03 Oct 2022 09:40:14 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: application/json; charset=utf-8
cache-control: must-revalidate, max-age=600
last-modified: Mon, 03 Oct 2022 09:40:15 GMT
content-length: 323
content-encoding: gzip
x-transaction-id: 13b573c2809e1e6e
strict-transport-security: max-age=631138519
access-control-allow-origin: https://platform.twitter.com
access-control-allow-credentials: true
x-response-time: 105
x-connection-hash: 82dd56c580c93bf79af4e39bda8e71cadc233e168f7dfeea5372120c1f24aacf
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0636366e5a959c2eae6e1ad50b87ec02
c03a2896ac79eb7bb4ea32be12c827322013a6ec
1385d359416095fd8899a5306e941f75cd02fe05c3680abf4be80e0548adec18
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1835
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 03 Oct 2022 09:40:15 GMT
Last-Modified: Mon, 03 Oct 2022 09:09:40 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
region1.google-analytics.com/g/collect?v=2&tid=G-G6GJSC0FFM>m=2oe9s0&_p=1642933273&cid=1396116158.1652881889&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664790014&sct=5&seg=0&dl=https%3A%2F%2F2m.ma%2Far%2F&dt=2M%20-%20%D8%A7%D9%84%D8%B1%D8%A6%D9%8A%D8%B3%D9%8A%D8%A9&en=page_view&_ss=1&_ee=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-G6GJSC0FFM>m=2oe9s0&_p=1642933273&cid=1396116158.1652881889&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664790014&sct=5&seg=0&dl=https%3A%2F%2F2m.ma%2Far%2F&dt=2M%20-%20%D8%A7%D9%84%D8%B1%D8%A6%D9%8A%D8%B3%D9%8A%D8%A9&en=page_view&_ss=1&_ee=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-G6GJSC0FFM>m=2oe9s0&_p=1642933273&cid=1396116158.1652881889&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664790014&sct=5&seg=0&dl=https%3A%2F%2F2m.ma%2Far%2F&dt=2M%20-%20%D8%A7%D9%84%D8%B1%D8%A6%D9%8A%D8%B3%D9%8A%D8%A9&en=page_view&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://2m.ma
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://2m.ma
date: Mon, 03 Oct 2022 09:40:15 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
certify.alexametrics.com/atrk.gif?frame_height=939&frame_width=1280&iframe=0&title=2M%20-%20%D8%A7%D9%84%D8%B1%D8%A6%D9%8A%D8%B3%D9%8A%D8%A9&time=1664790013723&time_zone_offset=0&screen_params=1280x1024x24&java_enabled=0&cookie_enabled=1&ref_url=&host_url=https%3A%2F%2F2m.ma%2Far%2F&random_number=7691405005&sess_cookie=31a817251839d37a71aa71bcf30&sess_cookie_flag=1&user_cookie=8e619356180d7701c9dadca669f&user_cookie_flag=0&dynamic=true&domain=2m.ma&account=EoMPn1QolK10mh&jsv=20130128&user_lang=en-US
108.138.233.127200 OK 43 B URL HTTP/1.1 certify.alexametrics.com/atrk.gif?frame_height=939&frame_width=1280&iframe=0&title=2M%20-%20%D8%A7%D9%84%D8%B1%D8%A6%D9%8A%D8%B3%D9%8A%D8%A9&time=1664790013723&time_zone_offset=0&screen_params=1280x1024x24&java_enabled=0&cookie_enabled=1&ref_url=&host_url=https%3A%2F%2F2m.ma%2Far%2F&random_number=7691405005&sess_cookie=31a817251839d37a71aa71bcf30&sess_cookie_flag=1&user_cookie=8e619356180d7701c9dadca669f&user_cookie_flag=0&dynamic=true&domain=2m.ma&account=EoMPn1QolK10mh&jsv=20130128&user_lang=en-US
IP 108.138.233.127:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
GET /atrk.gif?frame_height=939&frame_width=1280&iframe=0&title=2M%20-%20%D8%A7%D9%84%D8%B1%D8%A6%D9%8A%D8%B3%D9%8A%D8%A9&time=1664790013723&time_zone_offset=0&screen_params=1280x1024x24&java_enabled=0&cookie_enabled=1&ref_url=&host_url=https%3A%2F%2F2m.ma%2Far%2F&random_number=7691405005&sess_cookie=31a817251839d37a71aa71bcf30&sess_cookie_flag=1&user_cookie=8e619356180d7701c9dadca669f&user_cookie_flag=0&dynamic=true&domain=2m.ma&account=EoMPn1QolK10mh&jsv=20130128&user_lang=en-US HTTP/1.1
Host: certify.alexametrics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Last-Modified: Mon, 17 Jan 2011 20:41:40 GMT
x-amz-meta-alexa-last-modified: 20110117123941
Accept-Ranges: bytes
Server: AmazonS3
Date: Mon, 03 Oct 2022 03:20:50 GMT
ETag: "221d8352905f2c38b3cb2bd191d630b0"
X-Cache: Hit from cloudfront
Via: 1.1 b481ede90908ed62958e1cf615981fc8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR61-P4
X-Amz-Cf-Id: NaLzuoc8HCKtSCpPte9QqltY4lGWWB34vJrTLO0kCY41BH5PXL2BdA==
Age: 22766
connect.facebook.net/en_US/sdk.js
31.13.72.12200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (1961)
Hash d821391e3a748a4bb2e5dd7e8ba28eae
d887ac96a75b1ec85a98ca24847d32a97fe31c0c
d1cc3f307b94dded9aa84715819c2f71e845202f652ff35773ee5ee6d031598c
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 8dfc539b9cb816391943e63b55b89319
etag: "31240c31b44eb64384e6cff38f2c7497"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Mon, 03 Oct 2022 09:57:23 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: 2CE5Hjp0ikuy5d1+i6KOrg==
x-fb-debug: kboilknWpO6K9FQVPxr5EpRBz/HOYFB+iYvEy3Lta/FlrulClCvdiLqXLcrnJFsnMZdxGTCt3joa+54LutDM+A==
content-length: 1687
x-fb-trip-id: 1904183273
date: Mon, 03 Oct 2022 09:40:15 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0636366e5a959c2eae6e1ad50b87ec02
c03a2896ac79eb7bb4ea32be12c827322013a6ec
1385d359416095fd8899a5306e941f75cd02fe05c3680abf4be80e0548adec18
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1835
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 03 Oct 2022 09:40:15 GMT
Last-Modified: Mon, 03 Oct 2022 09:09:40 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
c.clarity.ms/c.gif
20.234.93.27302 Found 10 kB IP 20.234.93.27:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash 88e4dc8ce8292b357b4b3b774c36f5c6
d0a3619a8c61bcf246eab03b29feb1b571037b94
57946f6adc6227770e134bf226b9f8cabdb341b2c3cc2da3e9edab36ed1ac131
GET /c.gif HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.bing.com/c.gif?CtsSyncId=D9CC034D5FC643BB8756BE0EDEBCFF93&RedC=c.clarity.ms&MXFR=3F252BE030ED6BB3079F39D234ED6541
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=T; domain=c.clarity.ms; path=/; SameSite=None; Secure;
MUID=3F252BE030ED6BB3079F39D234ED6541; domain=.clarity.ms; expires=Sat, 28-Oct-2023 09:40:15 GMT; path=/; SameSite=None; Secure; Priority=High;
date: Mon, 03 Oct 2022 09:40:15 GMT
content-length: 0
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2022092701&st=env
142.250.74.98200 OK 11 kB URL HTTP/2 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gpt&tv=2022092701&st=env
IP 142.250.74.98:0
File type JSON data\012- , ASCII text, with very long lines (14602), with no line terminators
Hash c536914798940cf2076e3a47f3dcbc4e
fa9f0971617c80932196dd1ec1c305f0a2a0f70b
3f1c9850e6fab266c01128861515c6e572616093479baedd35c4126b4d914f33
GET /getconfig/sodar?sv=200&tid=gpt&tv=2022092701&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://2m.ma
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 03 Oct 2022 09:40:15 GMT
server: cafe
cache-control: private
content-length: 11086
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
54d23bfd83da2572169b225ffc7974fe.safeframe.googlesyndication.com/safeframe/1-0-38/html/container.html
142.250.74.65200 OK 4.7 kB URL HTTP/2 54d23bfd83da2572169b225ffc7974fe.safeframe.googlesyndication.com/safeframe/1-0-38/html/container.html
IP 142.250.74.65:0
Hash 530bd37fee0a00838aea1c893d45816b
ebd3ee84ceca8f4b94768b944c2d7fabc4e107cd
d94b60b060c2b9e801fffce8099b878806bf1a0691251bb155f944fbdbe7a0c2
GET /safeframe/1-0-38/html/container.html HTTP/1.1
Host: 54d23bfd83da2572169b225ffc7974fe.safeframe.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2m.ma/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/html
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 3108
date: Mon, 03 Oct 2022 09:40:15 GMT
expires: Tue, 03 Oct 2023 09:40:15 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Tue, 02 Mar 2021 20:17:03 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fb52d91ef821fa976d93510f1f1be11e
139e9f578346acfdee8276831c3fa1946fb917a0
411a9160de93abacf184321c47c19aa9bbb3cbe43b52e4e7c930fee26b3ff21f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 03 Oct 2022 09:40:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
142.250.74.33200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Mon, 03 Oct 2022 09:40:15 GMT
expires: Mon, 03 Oct 2022 09:40:15 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
c.bing.com/c.gif?CtsSyncId=D9CC034D5FC643BB8756BE0EDEBCFF93&RedC=c.clarity.ms&MXFR=3F252BE030ED6BB3079F39D234ED6541
204.79.197.200302 Found 0 B URL HTTP/2 c.bing.com/c.gif?CtsSyncId=D9CC034D5FC643BB8756BE0EDEBCFF93&RedC=c.clarity.ms&MXFR=3F252BE030ED6BB3079F39D234ED6541
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif?CtsSyncId=D9CC034D5FC643BB8756BE0EDEBCFF93&RedC=c.clarity.ms&MXFR=3F252BE030ED6BB3079F39D234ED6541 HTTP/1.1
Host: c.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://2m.ma/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.clarity.ms/c.gif?CtsSyncId=D9CC034D5FC643BB8756BE0EDEBCFF93&MUID=0BB98294D2AF632824A290A6D35A6243
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SRM_B=0BB98294D2AF632824A290A6D35A6243; domain=c.bing.com; expires=Sat, 28-Oct-2023 09:40:15 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 01A69F334C424CED84A2B99D2777EC2A Ref B: OSL30EDGE0518 Ref C: 2022-10-03T09:40:15Z
date: Mon, 03 Oct 2022 09:40:15 GMT
content-length: 0
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=743692125982251&ev=fb_page_view&dl=https%3A%2F%2F2m.ma%2Far%2F&rl=&if=false&ts=1664790015483&sw=1280&sh=1024&at=
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=743692125982251&ev=fb_page_view&dl=https%3A%2F%2F2m.ma%2Far%2F&rl=&if=false&ts=1664790015483&sw=1280&sh=1024&at=
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=743692125982251&ev=fb_page_view&dl=https%3A%2F%2F2m.ma%2Far%2F&rl=&if=false&ts=1664790015483&sw=1280&sh=1024&at= HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Mon, 03 Oct 2022 09:40:15 GMT
X-Firefox-Spdy: h2
c.clarity.ms/c.gif?CtsSyncId=D9CC034D5FC643BB8756BE0EDEBCFF93&MUID=0BB98294D2AF632824A290A6D35A6243
20.234.93.27200 OK 42 B URL HTTP/2 c.clarity.ms/c.gif?CtsSyncId=D9CC034D5FC643BB8756BE0EDEBCFF93&MUID=0BB98294D2AF632824A290A6D35A6243
IP 20.234.93.27:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash 32023bb33cfb2a1990a4ef2d85b6ac16
23dcc6d4b5bfe00357fd0248bb5955b8e36bb8f1
99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12
GET /c.gif?CtsSyncId=D9CC034D5FC643BB8756BE0EDEBCFF93&MUID=0BB98294D2AF632824A290A6D35A6243 HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://2m.ma/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
content-type: image/gif
last-modified: Tue, 13 Sep 2022 19:54:52 GMT
accept-ranges: bytes
etag: "8d3298b0aac7d81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Mon, 03-Oct-2022 09:50:15 GMT; path=/; SameSite=None; Secure;
date: Mon, 03 Oct 2022 09:40:15 GMT
content-length: 42
X-Firefox-Spdy: h2
www.facebook.com/x/oauth/status?client_id=743692125982251&input_token&origin=1&redirect_uri=https%3A%2F%2F2m.ma%2Far%2F&sdk=joey&wants_cookie_data=true
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/x/oauth/status?client_id=743692125982251&input_token&origin=1&redirect_uri=https%3A%2F%2F2m.ma%2Far%2F&sdk=joey&wants_cookie_data=true
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /x/oauth/status?client_id=743692125982251&input_token&origin=1&redirect_uri=https%3A%2F%2F2m.ma%2Far%2F&sdk=joey&wants_cookie_data=true HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://2m.ma/
Origin: https://2m.ma
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
access-control-expose-headers: fb-s
access-control-allow-credentials: true
access-control-allow-origin: https://2m.ma
fb-s: unknown
document-policy: force-load-at-top
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
strict-transport-security: max-age=15552000; preload
x-fb-debug: dHN0mr6awBHJz/eRStJ86wWcASwad3fuW3NbhO/I/FkFbJKtdZbwexxSjmQMpycx6ps+KeF3TDw8i/1dxe4smg==
content-length: 0
date: Mon, 03 Oct 2022 09:40:15 GMT
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
securepubads.g.doubleclick.net/pcs/view?xai=AKAOjstFdWDDQHh6xrmuQIB113JWbno9hRKRZ2bJXauKPlSZFu8IyihI2nVXCXuRYhuryAuS6Y2R8ILCHYtKdKp4fV5JOxHzsmW1R5bf4lnKfWipRUdgarNreKRdpWomii9W85nxjulVDefNGqkPth4A0Hd366neELken4s0mr6Qa2zeFD1ThESK8vh3jRrPhecpPH4dUJpdwdDXf4FH3TNd8wdzyeviEySDbsnrCg7o2GN2mGrwtyxK_-xQWz_psVtqp9WQgcteOnb-1mKkvhIwrh9QGvfEs2LndnP7TfM8dVpQ9Mk30lJwrhFps2A&sai=AMfl-YQWzkwd-4EYmNBjSsKRtSOGykIkAK_SA6IPEFgIrJjdiksp0xTWecGZk2kZ3EMhhcDYevu9L7pzo3H1IWu14qMw82o5rF1j2HoIuU4jeU6ZOVxQeYvU8ahwxKPH4EnCFX9S&sig=Cg0ArKJSzE2QSFoRBz-AEAE&uach_m=[UACH]&adurl=
216.58.207.194200 OK 0 B URL HTTP/2 securepubads.g.doubleclick.net/pcs/view?xai=AKAOjstFdWDDQHh6xrmuQIB113JWbno9hRKRZ2bJXauKPlSZFu8IyihI2nVXCXuRYhuryAuS6Y2R8ILCHYtKdKp4fV5JOxHzsmW1R5bf4lnKfWipRUdgarNreKRdpWomii9W85nxjulVDefNGqkPth4A0Hd366neELken4s0mr6Qa2zeFD1ThESK8vh3jRrPhecpPH4dUJpdwdDXf4FH3TNd8wdzyeviEySDbsnrCg7o2GN2mGrwtyxK_-xQWz_psVtqp9WQgcteOnb-1mKkvhIwrh9QGvfEs2LndnP7TfM8dVpQ9Mk30lJwrhFps2A&sai=AMfl-YQWzkwd-4EYmNBjSsKRtSOGykIkAK_SA6IPEFgIrJjdiksp0xTWecGZk2kZ3EMhhcDYevu9L7pzo3H1IWu14qMw82o5rF1j2HoIuU4jeU6ZOVxQeYvU8ahwxKPH4EnCFX9S&sig=Cg0ArKJSzE2QSFoRBz-AEAE&uach_m=[UACH]&adurl=
IP 216.58.207.194:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pcs/view?xai=AKAOjstFdWDDQHh6xrmuQIB113JWbno9hRKRZ2bJXauKPlSZFu8IyihI2nVXCXuRYhuryAuS6Y2R8ILCHYtKdKp4fV5JOxHzsmW1R5bf4lnKfWipRUdgarNreKRdpWomii9W85nxjulVDefNGqkPth4A0Hd366neELken4s0mr6Qa2zeFD1ThESK8vh3jRrPhecpPH4dUJpdwdDXf4FH3TNd8wdzyeviEySDbsnrCg7o2GN2mGrwtyxK_-xQWz_psVtqp9WQgcteOnb-1mKkvhIwrh9QGvfEs2LndnP7TfM8dVpQ9Mk30lJwrhFps2A&sai=AMfl-YQWzkwd-4EYmNBjSsKRtSOGykIkAK_SA6IPEFgIrJjdiksp0xTWecGZk2kZ3EMhhcDYevu9L7pzo3H1IWu14qMw82o5rF1j2HoIuU4jeU6ZOVxQeYvU8ahwxKPH4EnCFX9S&sig=Cg0ArKJSzE2QSFoRBz-AEAE&uach_m=[UACH]&adurl= HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://2m.ma/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
cache-control: private
access-control-allow-origin: *
content-type: image/gif
x-content-type-options: nosniff
date: Mon, 03 Oct 2022 09:40:15 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 03-Oct-2022 09:55:15 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Mon, 03 Oct 2022 09:40:15 GMT
X-Firefox-Spdy: h2
b.clarity.ms/collect
20.75.32.255204 No Content 0 B IP 20.75.32.255:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1364
Origin: https://2m.ma
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: https://2m.ma
access-control-allow-credentials: true
x-powered-by: ASP.NET
date: Mon, 03 Oct 2022 09:40:15 GMT
X-Firefox-Spdy: h2
b.clarity.ms/collect
20.75.32.255204 No Content 0 B IP 20.75.32.255:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 615771
Origin: https://2m.ma
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: https://2m.ma
access-control-allow-credentials: true
x-powered-by: ASP.NET
date: Mon, 03 Oct 2022 09:40:16 GMT
X-Firefox-Spdy: h2
b.clarity.ms/collect
20.75.32.255204 No Content 0 B IP 20.75.32.255:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 23712
Origin: https://2m.ma
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: https://2m.ma
access-control-allow-credentials: true
x-powered-by: ASP.NET
date: Mon, 03 Oct 2022 09:40:18 GMT
X-Firefox-Spdy: h2
static.cloudflareinsights.com/beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194
104.18.47.230200 OK 0 B URL HTTP/2 static.cloudflareinsights.com/beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194
IP 104.18.47.230:0
GET /beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://2m.ma
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 03 Oct 2022 09:40:11 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2021.12.0
last-modified: Thu, 09 Dec 2021 19:55:17 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 7544b7062a0bfac8-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.onesignal.com/sdks/OneSignalSDK.js
104.18.226.52200 OK 0 B URL HTTP/2 cdn.onesignal.com/sdks/OneSignalSDK.js
IP 104.18.226.52:0
GET /sdks/OneSignalSDK.js HTTP/1.1
Host: cdn.onesignal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 03 Oct 2022 09:40:12 GMT
content-type: application/javascript
etag: W/"ae63ef8ff03da61fffaa7f165729897a"
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 712
expires: Thu, 06 Oct 2022 09:40:12 GMT
cache-control: public, max-age=259200
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains
server: cloudflare
cf-ray: 7544b7073f35b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
2m.ma/
104.20.13.136302 Found 0 B IP 104.20.13.136:0
GET / HTTP/1.1
Host: 2m.ma
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _ga=GA1.2.1396116158.1652881889; __auc=8e619356180d7701c9dadca669f; _ga_G6GJSC0FFM=GS1.1.1654307523.4.0.1654307523.0; cookiesession1=678B2871207443E6048FC29C5D74FF79; _clck=1mxy3mb|1|f23|0; __gads=ID=1e59657c3b7fb672-22246d829ecd00f9:T=1653570097:S=ALNI_MbCb7P-nGmaRsjP3OZoikF47EyC0w; _ga_JXCE5J40DP=GS1.1.1654080568.2.0.1654080568.0
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Mon, 03 Oct 2022 09:40:11 GMT
location: /ar/
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3XFdXsccq8d7KqeLIjgN9WiAK22974MrLsJfNpzmBQcrdWyX98D6t5NL7MeVZj5hmWgw9uz9EArbxEXOcLo5obrwL6pEvqDFullEThDgEkSFnQiJCOHk4Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7544b7030a0db4eb-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.clarity.ms/eus2/s/0.6.42/clarity.js
13.107.227.53200 OK 0 B URL HTTP/2 www.clarity.ms/eus2/s/0.6.42/clarity.js
IP 13.107.227.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /eus2/s/0.6.42/clarity.js HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://2m.ma/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=86400
content-type: application/javascript;charset=utf-8
content-encoding: br
last-modified: Wed, 01 Jun 2022 12:22:22 GMT
accept-ranges: bytes
etag: "1d8d4495324d7d4"
vary: Accept-Encoding
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
x-azure-ref: 0/606YwAAAACoaqJmjXQuT63SRqc98MzFT1NMMjMxMDUwMjA0MDA3ADZjZmJlZWUwLTUwMjctNDg0Yi04OTY3LTRhMjlhZjc3ZjFlMQ==
date: Mon, 03 Oct 2022 09:40:15 GMT
X-Firefox-Spdy: h2