Overview

URLglowllogin-uk.godaddysites.com/
IP 76.223.105.230 (United States)
ASN#16509 AMAZON-02
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2023-01-31 04:58:52 UTC
StatusLoading report..
IDS alerts0
Blocklist alert5
urlquery alerts No alerts detected
Tags None

Domain Summary (10)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2023-01-30 17:15:40 UTC 52.35.3.113
img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2023-01-30 22:05:30 UTC 34.120.237.76
r3.o.lencr.org (7) 344 2020-12-02 08:52:13 UTC 2023-01-30 17:12:04 UTC 23.36.76.226
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2023-01-30 17:13:18 UTC 34.117.237.239
img1.wsimg.com (34) 9893 2012-06-20 14:42:31 UTC 2023-01-30 22:10:58 UTC 95.101.10.129
ocsp.godaddy.com (1) 698 2012-05-20 19:28:57 UTC 2023-01-30 17:13:08 UTC 192.124.249.23
glowllogin-uk.godaddysites.com (5) 0 2022-12-26 13:45:43 UTC 2023-01-09 04:31:11 UTC 76.223.105.230 Domain (godaddysites.com) ranked at: 102649
glowllogin-uk.godaddysites.com (5) 0 2022-12-26 13:45:43 UTC 2023-01-09 04:31:11 UTC 13.248.243.5 Domain (godaddysites.com) ranked at: 102649
firefox.settings.services.mozilla.com (2) 867 2020-05-25 20:06:39 UTC 2023-01-30 17:12:02 UTC 35.241.9.150
content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2023-01-30 17:40:18 UTC 34.160.144.191

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2023-01-31 2 glowllogin-uk.godaddysites.com/ Phishing
2023-01-31 2 glowllogin-uk.godaddysites.com/ Phishing
2023-01-31 2 glowllogin-uk.godaddysites.com/sw.js Phishing
2023-01-31 2 glowllogin-uk.godaddysites.com/ Phishing
2023-01-31 2 glowllogin-uk.godaddysites.com/markup/ad Phishing

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected

ThreatFox
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 76.223.105.230
Date UQ / IDS / BL URL IP
2023-03-23 02:45:11 +0000 0 - 0 - 10 attmailupdatenow.godaddysites.com/ 76.223.105.230
2023-03-23 02:34:48 +0000 0 - 0 - 8 attmailupdatenow.godaddysites.com/ 76.223.105.230
2023-03-22 14:27:43 +0000 0 - 0 - 6 metimaskluigiinnnnese.godaddysites.com/ 76.223.105.230
2023-03-22 14:27:08 +0000 0 - 0 - 6 metuamsu-sklgin.godaddysites.com/ 76.223.105.230
2023-03-22 10:26:53 +0000 0 - 0 - 4 charinegonzales.com/ 76.223.105.230


Last 5 reports on ASN: AMAZON-02
Date UQ / IDS / BL URL IP
2023-03-23 12:10:12 +0000 0 - 2 - 0 d23iz4esrwkib6.cloudfront.net/lu/depot/cdbu/s (...) 54.230.245.148
2023-03-23 12:00:18 +0000 0 - 2 - 0 d23iz4esrwkib6.cloudfront.net/lu/depot/cdbu/s (...) 13.32.11.26
2023-03-23 11:51:59 +0000 0 - 0 - 1 email.rushordertees.com/e/c/eyJlbWFpbF9pZCI6I (...) 54.230.111.37
2023-03-23 11:30:47 +0000 0 - 1 - 0 track.rendan-compto.com/716dede0-9e6e-48fe-bd (...) 18.195.195.71
2023-03-23 11:28:28 +0000 0 - 7 - 0 www.ryanairemail.com/r/?id=h85f66b0,7d7fd9e4, (...) 63.35.119.129


Last 5 reports on domain: godaddysites.com
Date UQ / IDS / BL URL IP
2023-03-23 02:45:11 +0000 0 - 0 - 10 attmailupdatenow.godaddysites.com/ 76.223.105.230
2023-03-23 02:34:48 +0000 0 - 0 - 8 attmailupdatenow.godaddysites.com/ 76.223.105.230
2023-03-23 01:29:49 +0000 0 - 0 - 8 kruikkenlogia.godaddysites.com/ 13.248.243.5
2023-03-22 14:27:43 +0000 0 - 0 - 6 metimaskluigiinnnnese.godaddysites.com/ 76.223.105.230
2023-03-22 14:27:08 +0000 0 - 0 - 6 metuamsu-sklgin.godaddysites.com/ 76.223.105.230


No other reports with similar screenshot

JavaScript

Executed Scripts (29)

Executed Evals (0)

Executed Writes (0)


HTTP Transactions (58)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: glowllogin-uk.godaddysites.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         13.248.243.5
HTTP/1.1 301 Moved Permanently
                                        
location: https://glowllogin-uk.godaddysites.com/
vary: Accept-Encoding
server: DPS/2.0.0-beta+sha-0ec0b2a
x-version: 0ec0b2a
x-siteid: eu-central-1
set-cookie: dps_site_id=eu-central-1; path=/
etag: 966185d14df4f56c079d63aab55c3aa6
date: Tue, 31 Jan 2023 04:58:41 GMT
keep-alive: timeout=5
transfer-encoding: chunked


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F6F1C295C68DFEBADACB1FC812B44E01C7EDE0E203615EF3E2CCED2CE2251E7E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5769
Expires: Tue, 31 Jan 2023 06:34:50 GMT
Date: Tue, 31 Jan 2023 04:58:41 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "D8083EE567C7B3023111DC30F32C94237DF7DB30D4D2DAAEA0A569E8A3069AD7"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8709
Expires: Tue, 31 Jan 2023 07:23:50 GMT
Date: Tue, 31 Jan 2023 04:58:41 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         35.241.9.150
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 31 Jan 2023 04:35:52 GMT
age: 1370
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    30db107dcf4380cef05efea409c2e6a3
Sha1:   96e6a306fbc07299aba64e5c14e2bfca35872fa9
Sha256: b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "56DA08E18A408D7313DE4E598984A251A0ECF85BBBA98B421BE9AEBEB98835AF"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14473
Expires: Tue, 31 Jan 2023 08:59:55 GMT
Date: Tue, 31 Jan 2023 04:58:42 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: LCi70nl+4FjQY0xJ0mJq4IGbMDm/LliFoQMQjUVbn0wzw92PRpdUJVy20sEFNJL5Q6DhssQ7lec=
x-amz-request-id: N1JBVVA9SPZWNP32
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 31 Jan 2023 04:22:04 GMT
age: 2198
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    7b922915ebf1fa3639b333f994c74f24
Sha1:   144a3f80b98fd0652d4614f24cf6cbbee40f8938
Sha256: adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Tue, 31 Jan 2023 04:58:42 GMT
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST / HTTP/1.1 
Host: ocsp.godaddy.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         192.124.249.23
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Sucuri/Cloudproxy
Date: Tue, 31 Jan 2023 04:58:41 GMT
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 31 Jan 2023 01:26:15 GMT
Expires: Wed, 01 Feb 2023 01:26:15 GMT
ETag: "7020ee940102847348ed5ad5507160748ba62561"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"


--- Additional Info ---
Magic:  data
Size:   1777
Md5:    e121f3e71e62bc9e99664df7823d77a3
Sha1:   7020ee940102847348ed5ad5507160748ba62561
Sha256: b6f054beebd962546d6294f5b1e801d42067c66c302692128c9b783d5c9c0c67
                                        
                                            GET /gfonts/s/karla/v23/qkB9XvYC6trAT55ZBi1ueQVIjQTD-JrIH2G7nytkHRyQ8p4wUje6bg.woff2 HTTP/1.1 
Host: img1.wsimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glowllogin-uk.godaddysites.com
Connection: keep-alive
Referer: https://glowllogin-uk.godaddysites.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         95.101.10.129
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
content-length: 21248
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Mon, 11 Jul 2022 20:38:57 GMT
cache-control: public, max-age=31536000
expires: Wed, 31 Jan 2024 04:58:42 GMT
date: Tue, 31 Jan 2023 04:58:42 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 21248, version 1.0\012- data
Size:   21248
Md5:    481105857aba99f91faa3cd9a360e8e1
Sha1:   a2d8dcb59555878d359c2bebbc8be6985d26d7d2
Sha256: f8c2240958cb1fff47d921ca0f3097f9e7403ada01af2382477ef42c404c38d4
                                        
                                            GET /ceph-p3-01/website-builder-data-prod/static/widgets/UX.4.28.1.js HTTP/1.1 
Host: img1.wsimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glowllogin-uk.godaddysites.com
Connection: keep-alive
Referer: https://glowllogin-uk.godaddysites.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         95.101.10.129
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 95285
x-version: 0.7.1+sha-f8fdc16
etag: "31e273e89fb56a44d86d206f1bcdcdb4"
last-modified: Tue, 11 Oct 2022 22:39:35 GMT
x-amzn-trace-id: Root=1-6345f0a5-64c895fd1ec2f2d71699e962
x-forwarded-port: 443
x-forwarded-for: 64.202.160.105
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Wed, 31 Jan 2024 04:58:42 GMT
date: Tue, 31 Jan 2023 04:58:42 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (63425)
Size:   95285
Md5:    7b0784f9587948fb060306ce7301e22a
Sha1:   99be4d4de2deb9e7f8ae65fcbe81c5551f88b3b7
Sha256: c71edf34027fcb30a132716e8d5fe7c5a8ae11dcafb47fd48d3411a828bcb613
                                        
                                            GET /gfonts/s/oldstandardtt/v18/MwQrbh3o1vLImiwAVvYawgcf2eVWEX-tS1Zf.woff2 HTTP/1.1 
Host: img1.wsimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glowllogin-uk.godaddysites.com
Connection: keep-alive
Referer: https://glowllogin-uk.godaddysites.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         95.101.10.129
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
content-length: 23212
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Mon, 09 May 2022 19:21:33 GMT
cache-control: public, max-age=31536000
expires: Wed, 31 Jan 2024 04:58:42 GMT
date: Tue, 31 Jan 2023 04:58:42 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 23212, version 1.0\012- data
Size:   23212
Md5:    78bd46ebe6c368eff0bef49e738463d0
Sha1:   13e57e61bcd5f9724178a59cb0f2e5f462b27133
Sha256: c3fd5d99e4c21f33778a95114568f80909fa54ff265f50f9fcac166d3c992e9a
                                        
                                            GET /gfonts/s/oldstandardtt/v18/MwQsbh3o1vLImiwAVvYawgcf2eVer2q6bHM.woff2 HTTP/1.1 
Host: img1.wsimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glowllogin-uk.godaddysites.com
Connection: keep-alive
Referer: https://glowllogin-uk.godaddysites.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         95.101.10.129
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
content-length: 24640
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Mon, 09 May 2022 19:30:54 GMT
cache-control: public, max-age=31536000
expires: Wed, 31 Jan 2024 04:58:42 GMT
date: Tue, 31 Jan 2023 04:58:42 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 24640, version 1.0\012- data
Size:   24640
Md5:    8ac76036c09e8683710a9c667bcab8de
Sha1:   f8612cc6b0f7725c46edd65eebfd6aec446af226
Sha256: a898fbcc821f5d54f3491713c04dcb3434ebdc77ef9e6011df1eeb86b9255b56
                                        
                                            GET /gfonts/s/oldstandardtt/v18/MwQubh3o1vLImiwAVvYawgcf2eVeqlq4.woff2 HTTP/1.1 
Host: img1.wsimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glowllogin-uk.godaddysites.com
Connection: keep-alive
Referer: https://glowllogin-uk.godaddysites.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         95.101.10.129
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
content-length: 22840
x-content-type-options: nosniff
x-xss-protection: 0
last-modified: Mon, 09 May 2022 19:31:27 GMT
cache-control: public, max-age=31536000
expires: Wed, 31 Jan 2024 04:58:42 GMT
date: Tue, 31 Jan 2023 04:58:42 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 22840, version 1.0\012- data
Size:   22840
Md5:    a02a7db3964dbc06013e1343042c2c75
Sha1:   9d69b2906f9c6bcda3197e3c0ba5542b1a57aab9
Sha256: b6ad8f4894150c85aa2a6158e918a26f119cba2e97ff2135a03eb1b3a4044230
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         35.241.9.150
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 31 Jan 2023 04:49:04 GMT
age: 578
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12709
Expires: Tue, 31 Jan 2023 08:30:31 GMT
Date: Tue, 31 Jan 2023 04:58:42 GMT
Connection: keep-alive

                                        
                                            GET /blobby/go/ccf99db5-d835-44a5-a7dd-9c88d2e48c58/gpub/787f6c15199e84fe/script.js HTTP/1.1 
Host: img1.wsimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glowllogin-uk.godaddysites.com
Connection: keep-alive
Referer: https://glowllogin-uk.godaddysites.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         95.101.10.129
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 14582
x-version: 0.7.1+sha-9ca6a57
etag: "df35a3ae7b92ff4ffe5b7df3d65fc318"
last-modified: Sat, 22 Oct 2022 06:52:39 GMT
x-amzn-trace-id: Root=1-63539336-2ffb85f30c3bb0712f6499d9
x-forwarded-port: 443
x-forwarded-for: 64.202.160.104
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Wed, 31 Jan 2024 04:58:42 GMT
date: Tue, 31 Jan 2023 04:58:42 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (51097)
Size:   14582
Md5:    95dd9e61f68249157999b1a71526b192
Sha1:   a35bd48db063f2c8742ba79892b32738207da411
Sha256: f389aa19a8ad0a22f6b5933023815cfc1fe66a47e182e8407575286954a99bb9
                                        
                                            GET /blobby/go/static/radpack/@widget/LAYOUT/bs-layout28-Theme-publish-Theme-5e7e788d.js HTTP/1.1 
Host: img1.wsimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glowllogin-uk.godaddysites.com
Connection: keep-alive
Referer: https://glowllogin-uk.godaddysites.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         95.101.10.129
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 4847
x-version: 0.7.1+sha-9ca6a57
etag: "af9da8bd46263d5f929e5487fef3a9b3"
last-modified: Tue, 18 Oct 2022 15:47:47 GMT
x-amzn-trace-id: Root=1-634ecaa2-1e78d349662842641fb03256
x-forwarded-port: 443
x-forwarded-for: 64.202.160.105
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Wed, 31 Jan 2024 04:58:43 GMT
date: Tue, 31 Jan 2023 04:58:43 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (17310)
Size:   4847
Md5:    3a672282cd78d5b26496d13511159754
Sha1:   4f71b54929330e0ee4f3a91a73c4509c208507c8
Sha256: 46767dc337b7f56914cd9929371e84f9e86cdec3f6b4c080c0d6f30e9e5f0fa7
                                        
                                            GET /blobby/go/static/radpack/@widget/MESSAGING/bs-Component-3fa47963.js HTTP/1.1 
Host: img1.wsimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glowllogin-uk.godaddysites.com
Connection: keep-alive
Referer: https://glowllogin-uk.godaddysites.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         95.101.10.129
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 3876
x-version: 0.7.1+sha-f8fdc16
etag: "e135455abac1e365c75acb29427be2bd"
last-modified: Wed, 30 Mar 2022 21:06:30 GMT
x-amzn-trace-id: Root=1-6244c654-23bec5f97d8cb44d046c9a3f
x-forwarded-port: 443
x-forwarded-for: 64.202.160.108
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Wed, 31 Jan 2024 04:58:43 GMT
date: Tue, 31 Jan 2023 04:58:43 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (13449)
Size:   3876
Md5:    ef73a2ad26978dc129780e9fa8b56fbf
Sha1:   a27b1e38a9b0a8a64eadac394393b44c34514433
Sha256: 31a27befad2953d262687734a98ecef2a590a1871ac87e093360ef29735381d2
                                        
                                            GET /blobby/go/static/radpack/@widget/LAYOUT/c/bs-_rollupPluginBabelHelpers-e83be766.js HTTP/1.1 
Host: img1.wsimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glowllogin-uk.godaddysites.com
Connection: keep-alive
Referer: https://glowllogin-uk.godaddysites.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         95.101.10.129
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 379
x-version: 0.7.1+sha-f8fdc16
etag: "0d42ffb998a9cf7c25824cf365c7d0c9"
last-modified: Tue, 18 Oct 2022 15:47:48 GMT
x-amzn-trace-id: Root=1-634ecaa3-5959a1ba44b2faaf1233fe85
x-forwarded-port: 443
x-forwarded-for: 64.202.160.107
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Wed, 31 Jan 2024 04:58:43 GMT
date: Tue, 31 Jan 2023 04:58:43 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (516)
Size:   379
Md5:    da1ba55bba78d7565f76b67f7268e7ea
Sha1:   89fd587d56184ab4e8b0568c1aedb6dfbddb3e40
Sha256: 3f23ed8407c24850c2175ff84e5c68ce52060ce61e7452b774e9b9f441c38b0a
                                        
                                            GET /blobby/go/static/radpack/@widget/LAYOUT/c/bs-defaultSocialIconPack-91835b99.js HTTP/1.1 
Host: img1.wsimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glowllogin-uk.godaddysites.com
Connection: keep-alive
Referer: https://glowllogin-uk.godaddysites.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         95.101.10.129
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 7001
x-version: 0.7.1+sha-f8fdc16
etag: "3d092ef4aba019b14f01c40747e40554"
last-modified: Thu, 14 Oct 2021 23:04:40 GMT
x-amzn-trace-id: Root=1-6168b787-4da6cb7921e50d3f24b2beb8
x-forwarded-port: 443
x-forwarded-for: 64.202.160.110
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Wed, 31 Jan 2024 04:58:43 GMT
date: Tue, 31 Jan 2023 04:58:43 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (23126)
Size:   7001
Md5:    f606da7f7745512d59e59aac109d0353
Sha1:   6c4b25003269aae49c618d0e0d5b1c97bff14283
Sha256: 1757d9df282a89a2b883125c02faaf8cb8c28fc5f786522b7cdff388b853152c
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 1Bs5ohVaJg8MszAVrSz7vQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         52.35.3.113
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: LwoVb/tjp9MzFmtQulDWqXRCNC4=

                                        
                                            GET /blobby/go/static/radpack/@widget/LAYOUT/c/bs-index-4e26cd6b.js HTTP/1.1 
Host: img1.wsimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glowllogin-uk.godaddysites.com
Connection: keep-alive
Referer: https://glowllogin-uk.godaddysites.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         95.101.10.129
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 578
x-version: 0.7.1+sha-f8fdc16
etag: "9219cf782ed219bd3929a51e99503bc2"
last-modified: Tue, 18 Oct 2022 15:47:49 GMT
x-amzn-trace-id: Root=1-634ecaa4-01886e4b7a7aeb6259ec4241
x-forwarded-port: 443
x-forwarded-for: 64.202.160.108
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Wed, 31 Jan 2024 04:58:43 GMT
date: Tue, 31 Jan 2023 04:58:43 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (829)
Size:   578
Md5:    6a25354061824b15b41a9523319330cf
Sha1:   243e6ba535e4d116c7843abf7c1714e16a5a5ca4
Sha256: 057df002b57498050de8d8b8ace31862e38cdcc1e7b2f6cb473a1f7f252a592a
                                        
                                            GET /blobby/go/static/radpack/@widget/LAYOUT/c/bs-index2-87bd33e6.js HTTP/1.1 
Host: img1.wsimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glowllogin-uk.godaddysites.com
Connection: keep-alive
Referer: https://glowllogin-uk.godaddysites.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         95.101.10.129
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 714
x-version: 0.7.1+sha-f8fdc16
etag: "5cc6b93d41889c0a55c6c4fcd2d89713"
last-modified: Tue, 18 Oct 2022 15:47:53 GMT
x-amzn-trace-id: Root=1-634ecaa8-5441fae57a8929061baf3c6b
x-forwarded-port: 443
x-forwarded-for: 64.202.160.104
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Wed, 31 Jan 2024 04:58:43 GMT
date: Tue, 31 Jan 2023 04:58:43 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1352)
Size:   714
Md5:    c9bf76a27fe91eca6917c337928781ad
Sha1:   e7f9959787fb6cc1db5d8abf6deeb6e31697955e
Sha256: 4b8d4566442e35f4f8d631bad06db22eb7a6464e300f29f0176f9f74be51f790
                                        
                                            GET /blobby/go/static/radpack/@widget/LAYOUT/c/bs-index3-55bc27af.js HTTP/1.1 
Host: img1.wsimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glowllogin-uk.godaddysites.com
Connection: keep-alive
Referer: https://glowllogin-uk.godaddysites.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         95.101.10.129
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 58312
x-version: 0.7.1+sha-f8fdc16
etag: "55baf821a59fad53aa754c85ae19d0ea"
last-modified: Tue, 18 Oct 2022 15:47:52 GMT
x-amzn-trace-id: Root=1-634ecaa7-2d56acd4525839f224b33503
x-forwarded-port: 443
x-forwarded-for: 64.202.160.108
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Wed, 31 Jan 2024 04:58:43 GMT
date: Tue, 31 Jan 2023 04:58:43 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   58312
Md5:    f94c381cbe1c66e875912e4d40fbccf9
Sha1:   0fb1dfe0a3a56f4177a73da123b7f89b64002d96
Sha256: 73c665c51ba4c14fe138bcb8241e228be6ea52503ac63855c54d6e112332ef87
                                        
                                            GET /blobby/go/static/radpack/@widget/LAYOUT/c/bs-linkIndicator-c1af92dd.js HTTP/1.1 
Host: img1.wsimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glowllogin-uk.godaddysites.com
Connection: keep-alive
Referer: https://glowllogin-uk.godaddysites.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         95.101.10.129
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 370
x-version: 0.7.1+sha-f8fdc16
etag: "ac687af8368a5dbe36b23037664288bf"
last-modified: Thu, 14 Oct 2021 23:04:39 GMT
x-amzn-trace-id: Root=1-6168b786-601284ce47d2b31a42acfd10
x-forwarded-port: 443
x-forwarded-for: 64.202.160.110
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Wed, 31 Jan 2024 04:58:43 GMT
date: Tue, 31 Jan 2023 04:58:43 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (483)
Size:   370
Md5:    1915b6d1a9d5b94feb92ce6394b1b9bd
Sha1:   f78df2180513b2b3860fbf6657df83aaf98c440b
Sha256: e09db77ce1876a3cfaf0cd10c23966bd4daf2d141bec0adb3a395acf8934afff
                                        
                                            GET /blobby/go/static/radpack/@widget/LAYOUT/c/bs-loaders-fffeeba5.js HTTP/1.1 
Host: img1.wsimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glowllogin-uk.godaddysites.com
Connection: keep-alive
Referer: https://glowllogin-uk.godaddysites.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         95.101.10.129
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 740
x-version: 0.7.1+sha-f8fdc16
etag: "852cbc5322260e00b44f2c682f88b2c7"
last-modified: Thu, 14 Oct 2021 23:04:41 GMT
x-amzn-trace-id: Root=1-6168b788-04e31f272fd746490d747855
x-forwarded-port: 443
x-forwarded-for: 64.202.160.110
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Wed, 31 Jan 2024 04:58:43 GMT
date: Tue, 31 Jan 2023 04:58:43 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3043)
Size:   740
Md5:    ef933bdbde5407473165c8076c400033
Sha1:   a4ed7ffc21e649f1a7463021892a1f7d7ef8275b
Sha256: c7a5729828eef458dec3177ba83479f77c11ef943d44d407fa8d82067d3afb83
                                        
                                            GET /blobby/go/static/radpack/@widget/LAYOUT/c/bs-overlayTypes-e1dbe765.js HTTP/1.1 
Host: img1.wsimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glowllogin-uk.godaddysites.com
Connection: keep-alive
Referer: https://glowllogin-uk.godaddysites.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         95.101.10.129
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 335
x-version: 0.7.1+sha-f8fdc16
etag: "21ad22788e6caa18a4e9e57f7372b108"
last-modified: Mon, 13 Dec 2021 22:59:02 GMT
x-amzn-trace-id: Root=1-61b7d035-018188ae176241301ebce646
x-forwarded-port: 443
x-forwarded-for: 64.202.160.105
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Wed, 31 Jan 2024 04:58:43 GMT
date: Tue, 31 Jan 2023 04:58:43 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (383)
Size:   335
Md5:    21f75a3937961a662b8d8879193c440c
Sha1:   4b1ed44a75627896d16fa62b335c445470b014a7
Sha256: 84559c119581a7d097957055082a3d95fb9af3043cd3237f27756d3332eeba76
                                        
                                            GET /blobby/go/static/radpack/@widget/LAYOUT/c/bs-modernThinRound-ced97fbd.js HTTP/1.1 
Host: img1.wsimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glowllogin-uk.godaddysites.com
Connection: keep-alive
Referer: https://glowllogin-uk.godaddysites.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         95.101.10.129
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 5262
x-version: 0.7.1+sha-f8fdc16
etag: "c7b1dbb0eef8600d5f57536998855e4d"
last-modified: Tue, 18 Oct 2022 15:47:51 GMT
x-amzn-trace-id: Root=1-634ecaa6-6a5df4eb0331969c6f29d4e8
x-forwarded-port: 443
x-forwarded-for: 64.202.160.106
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Wed, 31 Jan 2024 04:58:43 GMT
date: Tue, 31 Jan 2023 04:58:43 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (13834)
Size:   5262
Md5:    70459dd57a635e709299db135eb0640e
Sha1:   a30904218e5f371aa0ae88540e1ef2fcb2085286
Sha256: c9cc01a212d2420f6e3bcb674d7a60951fb8e0e0589cfb3a0f29c6463e364ed2
                                        
                                            GET /blobby/go/static/radpack/@wsb/guac-widget-shared/lib/common/constants/form/formIdentifiers-99523055.js HTTP/1.1 
Host: img1.wsimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glowllogin-uk.godaddysites.com
Connection: keep-alive
Referer: https://glowllogin-uk.godaddysites.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         95.101.10.129
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 325
x-version: 0.7.1+sha-9ca6a57
etag: "401821742def46c40d4cf5f0121c8bec"
last-modified: Tue, 13 Sep 2022 20:51:09 GMT
x-amzn-trace-id: Root=1-6320ed3c-430e12160fc2f40b0d81c36b
x-forwarded-port: 443
x-forwarded-for: 64.202.160.108
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Wed, 31 Jan 2024 04:58:43 GMT
date: Tue, 31 Jan 2023 04:58:43 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (367)
Size:   325
Md5:    f31b6f6a702caf7d1d2eb4632ad5385c
Sha1:   90fd56f538a9b0f1658d45675187e5558a2396ab
Sha256: 3c7691cfa2f90a9250efd6a6fa9582ffdebf7decc2f9d138323aa0fc3b5485fa
                                        
                                            GET /blobby/go/static/radpack/@wsb/guac-widget-shared/lib/common/constants/traffic2-0a7e72c6.js HTTP/1.1 
Host: img1.wsimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glowllogin-uk.godaddysites.com
Connection: keep-alive
Referer: https://glowllogin-uk.godaddysites.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         95.101.10.129
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 452
x-version: 0.7.1+sha-9ca6a57
etag: "7b01fcdf2048e82f4df741791cd44f61"
last-modified: Tue, 13 Sep 2022 20:51:09 GMT
x-amzn-trace-id: Root=1-6320ed3c-2f850b862d74447a4a1271b3
x-forwarded-port: 443
x-forwarded-for: 64.202.160.105
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Wed, 31 Jan 2024 04:58:43 GMT
date: Tue, 31 Jan 2023 04:58:43 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (651)
Size:   452
Md5:    582e93084be0ac7f720e4d4b874cc195
Sha1:   8813eccb87743ecd51eebbafdc0fb2b933a0a9e6
Sha256: 44f247c5fc7c56df19acae00ab5f3229e7a191008a3c3d73b05c067201226c5a
                                        
                                            GET /blobby/go/static/radpack/@wsb/guac-widget-shared/lib/components/Recaptcha/badge-e542c4f1.js HTTP/1.1 
Host: img1.wsimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glowllogin-uk.godaddysites.com
Connection: keep-alive
Referer: https://glowllogin-uk.godaddysites.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         95.101.10.129
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 339
x-version: 0.7.1+sha-9ca6a57
etag: "5f10df611c856f376981be4dfbd17753"
last-modified: Tue, 13 Sep 2022 20:51:09 GMT
x-amzn-trace-id: Root=1-6320ed3c-3176c5fb6e5c8db903759317
x-forwarded-port: 443
x-forwarded-for: 64.202.160.108
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Wed, 31 Jan 2024 04:58:43 GMT
date: Tue, 31 Jan 2023 04:58:43 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (442)
Size:   339
Md5:    320385db6d5452e7799b989dff95542a
Sha1:   088f16d910d9f1b01de12ff745b798ed2eaaec46
Sha256: e88105633682f07e840f568782948160e41f5b851a71a82f3b70fdbb816cc9f2
                                        
                                            GET /blobby/go/static/radpack/@wsb/guac-widget-shared/lib/components/ColorSwatch-4196a0a9.js HTTP/1.1 
Host: img1.wsimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glowllogin-uk.godaddysites.com
Connection: keep-alive
Referer: https://glowllogin-uk.godaddysites.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         95.101.10.129
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 645
x-version: 0.7.1+sha-9ca6a57
etag: "cb9bfa0fbdd957fbe7f4841b70341db2"
last-modified: Tue, 13 Sep 2022 20:51:08 GMT
x-amzn-trace-id: Root=1-6320ed3b-6c5c5f0d6dd6c2ec69a41ad3
x-forwarded-port: 443
x-forwarded-for: 64.202.160.111
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Wed, 31 Jan 2024 04:58:43 GMT
date: Tue, 31 Jan 2023 04:58:43 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1211)
Size:   645
Md5:    308e5d07deeecf43d8424fb8bb23b585
Sha1:   6080c959f72e6a6b86128b205a452642787438ac
Sha256: b40c4d01f2d3325f366059c5d2fd632823d6c3d4c70e0b7ef91d284df2e69a83
                                        
                                            GET /blobby/go/static/radpack/@wsb/guac-widget-shared/lib/components/Carousel-3d82957b.js HTTP/1.1 
Host: img1.wsimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glowllogin-uk.godaddysites.com
Connection: keep-alive
Referer: https://glowllogin-uk.godaddysites.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         95.101.10.129
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 7371
x-version: 0.7.1+sha-9ca6a57
etag: "753cb19ee1a756e46faa0f118b1b4e01"
last-modified: Tue, 13 Sep 2022 20:51:07 GMT
x-amzn-trace-id: Root=1-6320ed3a-63510b321c43bb775186e613
x-forwarded-port: 443
x-forwarded-for: 64.202.160.106
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Wed, 31 Jan 2024 04:58:43 GMT
date: Tue, 31 Jan 2023 04:58:43 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (20947)
Size:   7371
Md5:    a26261197e090f79831923f5782261b0
Sha1:   5d70da81ca7f5cc9896345d5f693f95d5cace68d
Sha256: b4699c5bda40f69eaf66ff7ac61096b67f7c818d4f60e09a53caaae43da6162f
                                        
                                            GET /blobby/go/static/radpack/@widget/LAYOUT/c/bs-dataAids-6a839d53.js HTTP/1.1 
Host: img1.wsimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glowllogin-uk.godaddysites.com
Connection: keep-alive
Referer: https://glowllogin-uk.godaddysites.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         95.101.10.129
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 626
x-version: 0.7.1+sha-f8fdc16
etag: "edc15ad5daac3cfa744bffdb1e0174be"
last-modified: Mon, 13 Dec 2021 22:59:00 GMT
x-amzn-trace-id: Root=1-61b7d033-2da3a4b6382be71e0d8c5ecb
x-forwarded-port: 443
x-forwarded-for: 64.202.160.105
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Wed, 31 Jan 2024 04:58:43 GMT
date: Tue, 31 Jan 2023 04:58:43 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1824)
Size:   626
Md5:    11370164b73124ea595098d2ecbe6d0b
Sha1:   bcc349130116ef2aee6ed77984b7726b43af8576
Sha256: d2a8fc6601e5e3b7c457e6c56f225547618fb5b454ba5dd37082cfa67ab4453e
                                        
                                            GET /blobby/go/static/radpack/@wsb/guac-widget-shared/c/_rollupPluginBabelHelpers-8ce54c82.js HTTP/1.1 
Host: img1.wsimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glowllogin-uk.godaddysites.com
Connection: keep-alive
Referer: https://glowllogin-uk.godaddysites.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         95.101.10.129
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 380
x-version: 0.7.1+sha-9ca6a57
etag: "fadb3719ffa2a9e96cdc64ffea0220fa"
last-modified: Tue, 13 Sep 2022 20:51:07 GMT
x-amzn-trace-id: Root=1-6320ed3a-239be6cd0632f6776811c293
x-forwarded-port: 443
x-forwarded-for: 64.202.160.104
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Wed, 31 Jan 2024 04:58:43 GMT
date: Tue, 31 Jan 2023 04:58:43 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (522)
Size:   380
Md5:    8cd52ce279347ad60ff4fc7af72deb2c
Sha1:   ff739775085ffdbb84cd820ec6364d870cfa0939
Sha256: 03f4ce2fa2cf258c23b63028975cbc39dd3f69cb9c1dc21f942ffd3a4badb817
                                        
                                            GET /blobby/go/static/radpack/@widget/LAYOUT/c/bs-searchFormLocations-c86f2a99.js HTTP/1.1 
Host: img1.wsimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glowllogin-uk.godaddysites.com
Connection: keep-alive
Referer: https://glowllogin-uk.godaddysites.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         95.101.10.129
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 244
x-version: 0.7.1+sha-f8fdc16
etag: "daa79ad7558674f6a12d962abf47f2f6"
last-modified: Thu, 14 Oct 2021 23:04:37 GMT
x-amzn-trace-id: Root=1-6168b784-1438c006715eea557e6c9f7f
x-forwarded-port: 443
x-forwarded-for: 64.202.160.110
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Wed, 31 Jan 2024 04:58:43 GMT
date: Tue, 31 Jan 2023 04:58:43 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   244
Md5:    835256b0b1680833155abf0f7420cca2
Sha1:   1d7eca7af4c7fdc66cfe34c1796ce7c3376d21b3
Sha256: b876ca1181efb3e0c9eac5384578fe015bc322c2a5407f4a86826374c86e4187
                                        
                                            GET /blobby/go/static/radpack/@widget/LAYOUT/c/bs-navigationDrawer-27f5f1f5.js HTTP/1.1 
Host: img1.wsimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glowllogin-uk.godaddysites.com
Connection: keep-alive
Referer: https://glowllogin-uk.godaddysites.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         95.101.10.129
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 191
x-version: 0.7.1+sha-f8fdc16
etag: "8f12765eb30fbdcfcdc116d13f7fc272"
last-modified: Thu, 28 Jul 2022 17:59:29 GMT
x-amzn-trace-id: Root=1-62e2ce80-4ef8fc4a33c151912970138f
x-forwarded-port: 443
x-forwarded-for: 64.202.160.107
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Wed, 31 Jan 2024 04:58:43 GMT
date: Tue, 31 Jan 2023 04:58:43 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   191
Md5:    cec9b0814a648933ea94f34556da96ab
Sha1:   b1633975363116ff254ad319b033a1022d483922
Sha256: cb8d0e2233b2d495612d7644089dec2bcb7b3d02d7ccb775df3b8ca4a995a9f8
                                        
                                            GET /blobby/go/static/radpack/@wsb/guac-widget-shared/c/_react_commonjs-external-a1351e34.js HTTP/1.1 
Host: img1.wsimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glowllogin-uk.godaddysites.com
Connection: keep-alive
Referer: https://glowllogin-uk.godaddysites.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         95.101.10.129
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 212
x-version: 0.7.1+sha-9ca6a57
etag: "8578a331ad09bb2ef6359fec3916befc"
last-modified: Tue, 13 Sep 2022 20:51:08 GMT
x-amzn-trace-id: Root=1-6320ed3b-311ca1193326a1db522ca4d2
x-forwarded-port: 443
x-forwarded-for: 64.202.160.106
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Wed, 31 Jan 2024 04:58:43 GMT
date: Tue, 31 Jan 2023 04:58:43 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   212
Md5:    b7a722d87376fba46c53778c978eaa2f
Sha1:   28e5ddf87609f53a3bfb97de182692f56af3225e
Sha256: b45e399438c804bfdfdc651173ca1665840919de192aa186fe0519b74e855520
                                        
                                            GET /blobby/go/static/radpack/@wsb/guac-widget-shared/c/interopRequireDefault-c83974f7.js HTTP/1.1 
Host: img1.wsimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glowllogin-uk.godaddysites.com
Connection: keep-alive
Referer: https://glowllogin-uk.godaddysites.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         95.101.10.129
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 270
x-version: 0.7.1+sha-9ca6a57
etag: "c86b7f8224fa45fb1682ac94d8f75ac6"
last-modified: Tue, 13 Sep 2022 20:51:07 GMT
x-amzn-trace-id: Root=1-6320ed3a-044169b84eb7e18f3216950e
x-forwarded-port: 443
x-forwarded-for: 64.202.160.111
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Wed, 31 Jan 2024 04:58:43 GMT
date: Tue, 31 Jan 2023 04:58:43 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (330)
Size:   270
Md5:    540d87b49f631e492f25e1c423a1cf96
Sha1:   96bee6e25b9a99e9ff3d538da7cc00489bb0f948
Sha256: dbd812387f08b7955e990dab286f417b0fb19099873923be25bf5bc45a373c6c
                                        
                                            GET /isteam/ip/ccf99db5-d835-44a5-a7dd-9c88d2e48c58/favicon/e84764a7-b75c-421f-9e9a-97171f986a63.jpg/:/rs=w:16,h:16,m HTTP/1.1 
Host: img1.wsimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://glowllogin-uk.godaddysites.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         95.101.10.129
HTTP/2 200 OK
content-type: image/webp
                                        
content-length: 7400
x-version: 0.4.4+sha-d867ef1
x-track-origin-referer: https://glowllogin-uk.godaddysites.com/
access-control-request-method: GET
access-control-max-age: 864000
etag: 3804553054
x-width: 16
x-height: 16
x-isteam-meta: {"orientation":1}
cache-control: public, max-age=31536000
expires: Wed, 31 Jan 2024 04:58:43 GMT
date: Tue, 31 Jan 2023 04:58:43 GMT
edge-cache-tag: /isteam/ip/ccf99db5-d835-44a5-a7dd-9c88d2e48c58/favicon/e84764a7-b75c-421f-9e9a-97171f986a63.jpg/:/rs=w:16,h:16,m
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   7400
Md5:    542d1a90fcfcc6c616d2221215f1e355
Sha1:   e0e2fe7a348182559244792904eb008343a78e12
Sha256: 91cc04247b469636399ab19d1a4ac1b875dd1b06bd9e1c86c044b4731ba720ac
                                        
                                            GET /isteam/ip/ccf99db5-d835-44a5-a7dd-9c88d2e48c58/favicon/e84764a7-b75c-421f-9e9a-97171f986a63.jpg/:/rs=w:180,h:180,m HTTP/1.1 
Host: img1.wsimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://glowllogin-uk.godaddysites.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         95.101.10.129
HTTP/2 200 OK
content-type: image/webp
                                        
content-length: 10746
x-version: 0.4.4+sha-d867ef1
x-track-origin-referer: https://glowllogin-uk.godaddysites.com/
access-control-request-method: GET
access-control-max-age: 864000
etag: 4185362373
x-width: 180
x-height: 180
x-isteam-meta: {"orientation":1}
cache-control: public, max-age=31536000
expires: Wed, 31 Jan 2024 04:58:43 GMT
date: Tue, 31 Jan 2023 04:58:43 GMT
edge-cache-tag: /isteam/ip/ccf99db5-d835-44a5-a7dd-9c88d2e48c58/favicon/e84764a7-b75c-421f-9e9a-97171f986a63.jpg/:/rs=w:180,h:180,m
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   10746
Md5:    9d5859aa7252fb991005943aeb27ae2c
Sha1:   2c0bf83504bc273a2775b8c5568d8fbf9baadc0b
Sha256: 64effd5971e563de4c071056cd389eae809438ce69abb1ff1a10a37e3a194a50
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4265
Expires: Tue, 31 Jan 2023 06:09:49 GMT
Date: Tue, 31 Jan 2023 04:58:44 GMT
Connection: keep-alive

                                        
                                            GET /blobby/go/static/radpack/@wsb/guac-widget-shared/c/_commonjsHelpers-67085353.js HTTP/1.1 
Host: img1.wsimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://glowllogin-uk.godaddysites.com
Connection: keep-alive
Referer: https://glowllogin-uk.godaddysites.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         95.101.10.129
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 520
x-version: 0.7.1+sha-9ca6a57
etag: "62a914b2c847d4d02b76164d7a2a54c6"
last-modified: Tue, 13 Sep 2022 20:51:08 GMT
x-amzn-trace-id: Root=1-6320ed3b-3de8a43b0cf7990c68d55390
x-forwarded-port: 443
x-forwarded-for: 64.202.160.110
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Wed, 31 Jan 2024 04:58:43 GMT
date: Tue, 31 Jan 2023 04:58:43 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4265
Expires: Tue, 31 Jan 2023 06:09:49 GMT
Date: Tue, 31 Jan 2023 04:58:44 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4265
Expires: Tue, 31 Jan 2023 06:09:49 GMT
Date: Tue, 31 Jan 2023 04:58:44 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F39003a0d-b88f-4013-b50c-7e01c5afc867.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5757
x-amzn-requestid: 9b6d11e9-be38-4c89-87bd-a71146dbb22f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fiTTwG9GIAMFmZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d7327e-4f8bebbf40e45cc6467c5c26;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 02:59:10 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: xqcuV95IWwbypAsXnim75PnsGKkyN9LEF--w3P2A2nhMMAwfveh-kw==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 12:45:24 GMT
age: 58400
etag: "d29076a2ad44f9d44da6f77fd1dcaea9a28c7d51"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5757
Md5:    b60240f10673b4c275619f7c2f5005cf
Sha1:   d29076a2ad44f9d44da6f77fd1dcaea9a28c7d51
Sha256: ccfdf6106ab405f6fd346bd501a7bc121acba3db657bf0bc2f7587cbe6488f55
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F746a5715-1639-49f0-9350-9e74558b6a97.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6893
x-amzn-requestid: 38d02de7-71c6-4e93-ae9f-5e2e434c2b62
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVsbVEo2oAMFTrw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d2277b-49c8737605f859f724e3ed4f;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:10:51 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: BYuZMDDcR56g58NhU38KpBY_-2IGglgSXsAtHpsSLlSiyOAuTkdlmQ==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 12:26:08 GMT
age: 59556
etag: "0a2322b18a1cc6ca4710fce7b6d8f28263ca6064"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6893
Md5:    0b8edbb541668f634636dc44f1559b50
Sha1:   0a2322b18a1cc6ca4710fce7b6d8f28263ca6064
Sha256: 2765a746ef8f589399e2588727364fbea9c9710327f61c979371765def1e9694
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1295ec36-f5b2-4db1-83c7-667fa373f592.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 13853
x-amzn-requestid: ca6ea6e7-3e13-4194-87f5-20a07b813e21
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fk3zzF4hIAMFwWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d839b1-772487cb1b7495c52c552d36;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 21:42:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: T5CaUojMEG8x8vki59UdIhI8IbbBRY_7w3xgiW3RCZlHTyeHPLIy2Q==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 21:47:13 GMT
age: 25891
etag: "1959fdd94846fa3791c4890578dd15336b909dcc"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13853
Md5:    d957012d3e2b8c3bc0eefe11d66e8554
Sha1:   1959fdd94846fa3791c4890578dd15336b909dcc
Sha256: a97e81ec5eb2eda6a603bf4bfd4fa4ef4fab762747479489e99e6c713258a736
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37e3fb86-3315-41fd-97cb-ac82604d8869.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8558
x-amzn-requestid: 2841cd36-22e6-4ecb-b56a-bfadce3197c7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffB_BFA8IAMFyvA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d5e393-3fd03bd14de762b0738a3b0a;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 03:10:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ZP2Mar8l3QoPH733_vv3hUuQjWvaN4_TgfYwme2-6WIxGi55BoSchg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 04:26:31 GMT
age: 1933
etag: "04577ad69ee9749b14382254eb5bbf0e1edcd7fa"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8558
Md5:    e6f9ffb8f9e99229b45ca5fdb84ce7d5
Sha1:   04577ad69ee9749b14382254eb5bbf0e1edcd7fa
Sha256: 6111acf3f363123b39d13cd3d23ab39b8c8d00379874f19231d1cd3da17c52c2
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b71db36-11cb-45f6-a296-34813aea1c35.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10898
x-amzn-requestid: e29f8dfc-07d4-4136-afaf-e1e067eea2ab
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fk3zxGshIAMFw5Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d839b1-5e87d2a44722af9e4e86c3d4;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 21:42:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: djoQmYTv7Rlq9tKKkJ5U1J3YeVSIs5yzSts_xRN3bdi27Ra8UfM6OQ==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 21:44:45 GMT
age: 26039
etag: "798c3538f3147ca77d317676ddd1bf040bd0f93b"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10898
Md5:    4a2d26da68a313cc65958fc2692351c2
Sha1:   798c3538f3147ca77d317676ddd1bf040bd0f93b
Sha256: 76ce30224803d680c0115e987a712ce5552b2760beadf796a96b17439fb20797
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0dd37b27-1930-4380-aa34-e533abb33eaa.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8755
x-amzn-requestid: 18054ad3-92df-4a07-b7d1-643293ba4a5f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fR1hDGZfoAMFsFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d09c6c-7aae5ef32459231c25465b1b;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 03:05:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5GkQA5AcFOFc2Wn5rdaX7nH5F4wfy52vtlpbI8Qlai-jQE77inKzqA==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 21:50:53 GMT
age: 25671
etag: "c9e939eea5ca410e2ac3e2c93fb9cdf51fd3a03e"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8755
Md5:    146cb1c622ae62d62090dcaf81709056
Sha1:   c9e939eea5ca410e2ac3e2c93fb9cdf51fd3a03e
Sha256: d1a2caf59c5bfb3fd66c804217c60705de91e5beebd006cffab1d712a5aef85b
                                        
                                            GET /isteam/ip/ccf99db5-d835-44a5-a7dd-9c88d2e48c58/glow%20bann.PNG/:/cr=t:0%25,l:0%25,w:100%25,h:100%25/rs=w:1240,cg:true HTTP/1.1 
Host: img1.wsimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://glowllogin-uk.godaddysites.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         95.101.10.129
HTTP/2 200 OK
content-type: image/webp
                                        
content-length: 26718
x-version: 0.4.4+sha-d867ef1
x-track-origin-referer: https://glowllogin-uk.godaddysites.com/
access-control-request-method: GET
access-control-max-age: 864000
etag: 1506311688
x-width: 1240
x-height: 559
x-isteam-meta: {"orientation":1}
cache-control: public, max-age=31536000
expires: Wed, 31 Jan 2024 04:58:44 GMT
date: Tue, 31 Jan 2023 04:58:44 GMT
edge-cache-tag: /isteam/ip/ccf99db5-d835-44a5-a7dd-9c88d2e48c58/glow%20bann.PNG/:/cr=t:0%25,l:0%25,w:100%25,h:100%25/rs=w:1240,cg:true
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  RIFF (little-endian) data, Web/P image\012- data
Size:   26718
Md5:    0a36486a979d9ce18104e1e12a50ff0f
Sha1:   ee957c61005a5c3c6e339f29965430db83fba64a
Sha256: 90e3d8bd73cb4d4c82995bc0030f4e99e453af6b2ac8001dd5fde2a0fb1f211b
                                        
                                            GET /blobby/go/ux/fonts/sherpa/1.1/gdsherpa-regular.woff2 HTTP/1.1 
Host: img1.wsimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://glowllogin-uk.godaddysites.com/
Origin: https://glowllogin-uk.godaddysites.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         95.101.10.129
HTTP/2 200 OK
content-type: font/woff2
                                        
content-length: 28612
x-version: 0.7.1+sha-f8fdc16
etag: "17081510f3a6f2f619ec8c6f244523c7"
last-modified: Wed, 17 Mar 2021 19:21:31 GMT
x-amzn-trace-id: Root=1-605256ba-028266625ca93ef84ed64124
x-forwarded-port: 443
x-forwarded-for: 64.202.160.104
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Wed, 31 Jan 2024 04:58:46 GMT
date: Tue, 31 Jan 2023 04:58:46 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 28584, version 1.66\012- data
Size:   28612
Md5:    d15b7d721debf2b9b987a9f7be13f743
Sha1:   d0af56bae958049e59bd72403a83f2039c95c4b4
Sha256: 128a5a99e9fadcfb502f32a43688d317cc1ab8ef147ebb26ff01659c14a55ac3
                                        
                                            GET /blobby/go/ux/fonts/sherpa/1.1/gdsherpa-bold.woff2 HTTP/1.1 
Host: img1.wsimg.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://glowllogin-uk.godaddysites.com/
Origin: https://glowllogin-uk.godaddysites.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         95.101.10.129
HTTP/2 200 OK
content-type: font/woff2
                                        
content-length: 28028
x-version: 0.7.1+sha-f8fdc16
etag: "a4bca6c95fed0d0c5cc46cf07710dcec"
last-modified: Wed, 17 Mar 2021 19:22:05 GMT
x-amzn-trace-id: Root=1-605256dc-3cc133bb288ee2a55ef62b9c
x-forwarded-port: 443
x-forwarded-for: 64.202.160.108
x-forwarded-proto: https
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET
access-control-max-age: 86400
content-encoding: gzip
cache-control: public, max-age=31536000
expires: Wed, 31 Jan 2024 04:58:46 GMT
date: Tue, 31 Jan 2023 04:58:46 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 28000, version 1.66\012- data
Size:   28028
Md5:    349f73432c3d2d28686e08f5691b8c50
Sha1:   2036fec4a94ca8a73b0f95a28abb1e9485afaa9a
Sha256: 9b6bcadecc6569c6ce0533e5f66715f515048daeac059dc386abc6712213246f
                                        
                                            GET / HTTP/1.1 
Host: glowllogin-uk.godaddysites.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         76.223.105.230
HTTP/2 200 OK
content-type: text/html;charset=utf-8
                                        
link: <//img1.wsimg.com/ceph-p3-01/website-builder-data-prod/static/widgets/UX.4.28.1.js>; rel=preload; as=script; crossorigin,<https://img1.wsimg.com/gfonts/s/karla/v23/qkB9XvYC6trAT55ZBi1ueQVIjQTD-JrIH2G7nytkHRyQ8p4wUje6bg.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/oldstandardtt/v18/MwQsbh3o1vLImiwAVvYawgcf2eVer2q6bHM.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/oldstandardtt/v18/MwQubh3o1vLImiwAVvYawgcf2eVeqlq4.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/oldstandardtt/v18/MwQrbh3o1vLImiwAVvYawgcf2eVWEX-tS1Zf.woff2>; rel=preload; as=font; crossorigin,<https://fonts.googleapis.com>; rel=preconnect; crossorigin,<https://fonts.gstatic.com>; rel=preconnect; crossorigin,<https://img1.wsimg.com>; rel=preconnect; crossorigin,<https://isteam.wsimg.com>; rel=preconnect; crossorigin
cache-control: max-age=30
content-security-policy: frame-ancestors 'self' godaddy.com *.godaddy.com
vary: Accept-Encoding
server: DPS/2.0.0-beta+sha-0ec0b2a
x-version: 0ec0b2a
x-siteid: eu-central-1
set-cookie: dps_site_id=eu-central-1; path=/; secure
etag: 966185d14df4f56c079d63aab55c3aa6
content-encoding: br
date: Tue, 31 Jan 2023 04:58:42 GMT
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /sw.js HTTP/1.1 
Host: glowllogin-uk.godaddysites.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: dps_site_id=eu-central-1
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

search
                                         76.223.105.230
HTTP/2 200 OK
content-type: application/javascript
                                        
link: <https://fonts.googleapis.com>; rel=preconnect; crossorigin,<https://fonts.gstatic.com>; rel=preconnect; crossorigin,<https://img1.wsimg.com>; rel=preconnect; crossorigin,<https://isteam.wsimg.com>; rel=preconnect; crossorigin
cache-control: max-age=30
content-security-policy: frame-ancestors 'self' godaddy.com *.godaddy.com
vary: Accept-Encoding
server: DPS/2.0.0-beta+sha-0ec0b2a
x-version: 0ec0b2a
x-siteid: eu-central-1
set-cookie: dps_site_id=eu-central-1; path=/; secure
etag: 1077d9db8b9f456da1ae7052243dcaa7
content-encoding: br
date: Tue, 31 Jan 2023 04:58:44 GMT
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET / HTTP/1.1 
Host: glowllogin-uk.godaddysites.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://glowllogin-uk.godaddysites.com/sw.js
Connection: keep-alive
Cookie: dps_site_id=eu-central-1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

search
                                         76.223.105.230
HTTP/2 200 OK
content-type: text/html;charset=utf-8
                                        
link: <//img1.wsimg.com/ceph-p3-01/website-builder-data-prod/static/widgets/UX.4.28.1.js>; rel=preload; as=script; crossorigin,<https://img1.wsimg.com/gfonts/s/karla/v23/qkB9XvYC6trAT55ZBi1ueQVIjQTD-JrIH2G7nytkHRyQ8p4wUje6bg.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/oldstandardtt/v18/MwQsbh3o1vLImiwAVvYawgcf2eVer2q6bHM.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/oldstandardtt/v18/MwQubh3o1vLImiwAVvYawgcf2eVeqlq4.woff2>; rel=preload; as=font; crossorigin,<https://img1.wsimg.com/gfonts/s/oldstandardtt/v18/MwQrbh3o1vLImiwAVvYawgcf2eVWEX-tS1Zf.woff2>; rel=preload; as=font; crossorigin,<https://fonts.googleapis.com>; rel=preconnect; crossorigin,<https://fonts.gstatic.com>; rel=preconnect; crossorigin,<https://img1.wsimg.com>; rel=preconnect; crossorigin,<https://isteam.wsimg.com>; rel=preconnect; crossorigin
cache-control: max-age=30
content-security-policy: frame-ancestors 'self' godaddy.com *.godaddy.com
vary: Accept-Encoding
server: DPS/2.0.0-beta+sha-0ec0b2a
x-version: 0ec0b2a
x-siteid: eu-central-1
set-cookie: dps_site_id=eu-central-1; path=/; secure
etag: 966185d14df4f56c079d63aab55c3aa6
content-encoding: br
date: Tue, 31 Jan 2023 04:58:44 GMT
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /markup/ad HTTP/1.1 
Host: glowllogin-uk.godaddysites.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://glowllogin-uk.godaddysites.com/
Connection: keep-alive
Cookie: dps_site_id=eu-central-1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         76.223.105.230
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
link: <https://fonts.googleapis.com>; rel=preconnect; crossorigin,<https://fonts.gstatic.com>; rel=preconnect; crossorigin,<https://img1.wsimg.com>; rel=preconnect; crossorigin,<https://isteam.wsimg.com>; rel=preconnect; crossorigin
cache-control: max-age=30
content-security-policy: frame-ancestors 'self' godaddy.com *.godaddy.com
pragma: no-cache
expires: 0
vary: Accept-Encoding
server: DPS/2.0.0-beta+sha-0ec0b2a
x-version: 0ec0b2a
x-siteid: eu-central-1
set-cookie: dps_site_id=eu-central-1; path=/; secure
content-encoding: br
date: Tue, 31 Jan 2023 04:58:46 GMT
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing