detectportal.firefox.com/success.txt?ipv4
34.107.221.82200 OK 8 B URL HTTP/1.1 detectportal.firefox.com/success.txt?ipv4
IP 34.107.221.82:0
Hash ae780585f49b94ce1444eb7d28906123
7d5ca8c0c03e883c56c4eb1ef6f6bb9bccad4d86
81b2bd4ea98c8db66554fbc8d7637a1a69a130f331feb732b75caab4c4868fd5
GET /success.txt?ipv4 HTTP/1.1
Host: detectportal.firefox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Length: 8
Via: 1.1 google
Date: Mon, 13 Feb 2023 07:11:50 GMT
Age: 58513
Content-Type: text/plain
Cache-Control: public,must-revalidate,max-age=0,s-maxage=3600
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash e1e94f036b0e677a492e4238b9443034
862ebeb19164d77b65229976b12338c399ce0bd9
1875033f6e187cdb371b497b6640a3c9625283b6a4b12de5bbc5be326365b6a9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1875033F6E187CDB371B497B6640A3C9625283B6A4B12DE5BBC5BE326365B6A9"
Last-Modified: Mon, 13 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4374
Expires: Tue, 14 Feb 2023 00:39:58 GMT
Date: Mon, 13 Feb 2023 23:27:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 936d4fcf46b8c7d4c85b7c0444b1c62b
8dcb02bec90a39600bcafd32648e66352ba2da53
7ccafdc9d9bce183a413e6258230ef7718e2e993e14f5c610aa0bd68d8ed6a85
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7CCAFDC9D9BCE183A413E6258230EF7718E2E993E14F5C610AA0BD68D8ED6A85"
Last-Modified: Mon, 13 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10734
Expires: Tue, 14 Feb 2023 02:25:58 GMT
Date: Mon, 13 Feb 2023 23:27:04 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b95b930615e89adacbb0cba6ac43288b
257c13545fd3903ece587963bae0c90935ea9bf9
a129cf843807feff42f74c16f73d3e770b143b8f501969694fc4f158bc3e8ba4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A129CF843807FEFF42F74C16F73D3E770B143B8F501969694FC4F158BC3E8BA4"
Last-Modified: Sat, 11 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5580
Expires: Tue, 14 Feb 2023 01:00:04 GMT
Date: Mon, 13 Feb 2023 23:27:04 GMT
Connection: keep-alive
detectportal.firefox.com/success.txt?ipv4
34.107.221.82200 OK 8 B URL HTTP/1.1 detectportal.firefox.com/success.txt?ipv4
IP 34.107.221.82:0
Hash ae780585f49b94ce1444eb7d28906123
7d5ca8c0c03e883c56c4eb1ef6f6bb9bccad4d86
81b2bd4ea98c8db66554fbc8d7637a1a69a130f331feb732b75caab4c4868fd5
GET /success.txt?ipv4 HTTP/1.1
Host: detectportal.firefox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Length: 8
Via: 1.1 google
Date: Mon, 13 Feb 2023 07:11:50 GMT
Age: 58514
Content-Type: text/plain
Cache-Control: public,must-revalidate,max-age=0,s-maxage=3600
getpocket.cdn.mozilla.net/v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30
34.120.5.221200 OK 42 kB URL HTTP/2 getpocket.cdn.mozilla.net/v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30
IP 34.120.5.221:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash d3e2a63dd96734084a9d3f59bfcad523
a8aba397c5d7fec42fea83f2e02aa765e138e6ec
493e7e10effa37149a3488758ac9d20b95f06d4d8054bf49b03c76bae8feaada
GET /v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30 HTTP/1.1
Host: getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-location: global-recs.php
tcn: choice
x-frame-options: SAMEORIGIN
status: 200 OK
x-source: Pocket
pragma: cache
p3p: policyref="/w3c/p3p.xml", CP="ALL CURa ADMa DEVa OUR IND UNI COM NAV INT STA PRE"
x-cache: Hit from cloudfront
x-amz-cf-pop: SEA73-P2
x-amz-cf-id: FdyojUcaCkv1pjAH1HOrLOJlR4FISsG4_W2yJ9Y96lW_WUVpL8uKbQ==
content-encoding: gzip
via: 1.1 d2575afea3774df33dcf5e5ff475025e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 13 Feb 2023 23:24:09 GMT
age: 415
content-type: application/json
vary: Accept-Encoding
content-length: 42384
cache-control: s-maxage=900,public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: HZQDqaJPlGYfYAkW+/HK2vQ4D6hEScm8ENaAAdLp2s+0h4CrixNJnX798ls4RgZna/IeCihYQ4U=
x-amz-request-id: NTP7PVGN30QRNHE1
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 13 Feb 2023 22:57:18 GMT
age: 1786
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 13 Feb 2023 23:27:04 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 254178cc40b1a92de9d879bd731aeb9a
bfab58d211f1f823deed8f91de96ddf778b393a3
469d18130ca960ff8efb710d09f4498bfc21df7339a2e7b79ad1f73a8ce3299a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "469D18130CA960FF8EFB710D09F4498BFC21DF7339A2E7B79AD1F73A8CE3299A"
Last-Modified: Sat, 11 Feb 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3957
Expires: Tue, 14 Feb 2023 00:33:01 GMT
Date: Mon, 13 Feb 2023 23:27:04 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Content-Type, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 13 Feb 2023 22:37:18 GMT
content-type: application/json
age: 2986
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2b76b8f2b44ab0d4568ccc87ed1da527
fd1dffaf360bb7d3562e65ecd1acee6e2c2502aa
dbe19918dbac3c267a317f4db1e96b8ec6df5558604dd8a0495b9693fe9230e1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2736
Cache-Control: max-age=152021
Content-Type: application/ocsp-response
Date: Mon, 13 Feb 2023 23:27:04 GMT
Etag: "63ea6b6d-1d7"
Expires: Wed, 15 Feb 2023 17:40:45 GMT
Last-Modified: Mon, 13 Feb 2023 16:55:09 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Retry-After, Content-Length, Content-Type, ETag, Cache-Control, Alert, Pragma, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 13 Feb 2023 23:14:53 GMT
age: 732
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 8fb35800c2b4b14aa5a43cb1eec27200
c05fbacf454cda0cf3f3f62b94b0a00311d492d6
cf9df8a54e2dd5ba508ce4c27bd2ebc3524ad381fce0ec7b3bec1338e4569790
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CF9DF8A54E2DD5BA508CE4C27BD2EBC3524AD381FCE0EC7B3BEC1338E4569790"
Last-Modified: Sat, 11 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8331
Expires: Tue, 14 Feb 2023 01:45:56 GMT
Date: Mon, 13 Feb 2023 23:27:05 GMT
Connection: keep-alive
shavar.services.mozilla.com/downloads?client=Firefox&appver=96.0a&pver=2.2
35.161.227.140200 OK 8 B URL HTTP/1.1 shavar.services.mozilla.com/downloads?client=Firefox&appver=96.0a&pver=2.2
IP 35.161.227.140:0
Hash 29fc57841962e407cb50c1be60284bf7
ce968a77e2996da5eee8925182318f171ccdce47
ae7e7075247dcfad763f1e131aeac3d2e756bb03d48b0d315a50c69636e5dc8b
POST /downloads?client=Firefox&appver=96.0a&pver=2.2 HTTP/1.1
Host: shavar.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 773
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Date: Mon, 13 Feb 2023 23:27:05 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Length: 8
Connection: Close
push.services.mozilla.com/
44.224.37.239101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.224.37.239:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: BbxhmH0OBia6UVzqZgDgqA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: XAi2AX0b4mGLIam6D4jcXwweIvY=
www.inbioma.pe/Rechnung-017342346324717&cgi3-ViewKontakt-017342346324717-007acctpagetype-017342346324717=1027856-&ebay@technik-freizeit.de.html
186.64.118.5301 Moved Permanently 20 B URL HTTP/1.1 www.inbioma.pe/Rechnung-017342346324717&cgi3-ViewKontakt-017342346324717-007acctpagetype-017342346324717=1027856-&ebay@technik-freizeit.de.html
IP 186.64.118.5:0
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET /Rechnung-017342346324717&cgi3-ViewKontakt-017342346324717-007acctpagetype-017342346324717=1027856-&ebay@technik-freizeit.de.html HTTP/1.1
Host: www.inbioma.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Mon, 13 Feb 2023 23:27:04 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
X-Redirect-By: WordPress
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=63072000; includeSubdomains;
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://www.inbioma.pe/Rechnung-017342346324717&cgi3-ViewKontakt-017342346324717-007acctpagetype-017342346324717=1027856-&ebay@technik-freizeit.de.html
Cache-Control: no-cache, must-revalidate, max-age=0, public
Keep-Alive: timeout=2, max=1000
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
firefox.settings.services.mozilla.com/v1/buckets/monitor/collections/changes/changeset?_expected=%221676321837369%22
35.241.9.150200 OK 22 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/monitor/collections/changes/changeset?_expected=%221676321837369%22
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (21681), with no line terminators
Hash 4e14480b81cacc154580b69994ae200a
eb679c86e7739c5dac32affcf3ed9eb2808bd33a
c1111b9cd0ae9a94934ef9289cc4380467e3e18b1e5ae5db69827bbc6e20a4e9
GET /v1/buckets/monitor/collections/changes/changeset?_expected=%221676321837369%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Backoff, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 21681
via: 1.1 google
date: Mon, 13 Feb 2023 23:02:12 GMT
age: 1493
last-modified: Mon, 13 Feb 2023 20:57:17 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/blocklists/collections/addons-bloomfilters/changeset?_expected=1676313455006&_since=%221666204638208%22
35.241.9.150200 OK 32 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/blocklists/collections/addons-bloomfilters/changeset?_expected=1676313455006&_since=%221666204638208%22
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (32401), with no line terminators
Hash 593de6291ad4cddea697b1ccaeaf76ce
832445003af5bd243dff248f901cc7b5cded48b1
de9daa3711cbb160b46e947817b40b1c1c012ecd4c1fcaab820e0d6328aa2f07
GET /v1/buckets/blocklists/collections/addons-bloomfilters/changeset?_expected=1676313455006&_since=%221666204638208%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Backoff, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 32401
via: 1.1 google
date: Mon, 13 Feb 2023 23:07:17 GMT
age: 1188
last-modified: Mon, 13 Feb 2023 18:37:35 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: iQONu+6A6UG9APVrjkuSh0hG7TK+pnCctUyKUuQT9dVtvFIsrwFpvfRs55g0V76t+qawohlp5Q0=
x-amz-request-id: 98EWH5S41E5894QG
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 13 Feb 2023 22:48:17 GMT
age: 2328
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Backoff, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 13 Feb 2023 22:48:59 GMT
content-type: application/json
age: 2287
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 710743bc5e7bc345417b4af5ed977ffd
6b2e6d9aeb52ab3c34dac38038ec8210386bc0cc
bdd5f0fb520431c57fd54d4c342da84ea547678d427a9531612bfd4323b99b05
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDD5F0FB520431C57FD54D4C342DA84EA547678D427A9531612BFD4323B99B05"
Last-Modified: Sun, 12 Feb 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5793
Expires: Tue, 14 Feb 2023 01:03:39 GMT
Date: Mon, 13 Feb 2023 23:27:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 0de0354ee620551182e2bf1fbc6b2194
b5c7e4adb58b525586b77d56acd8c7a9c57c4d8c
c0fe5edc97b1f6642a50428fca8dc93e24696c79a880477beaf7ba27bbc5c243
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C0FE5EDC97B1F6642A50428FCA8DC93E24696C79A880477BEAF7BA27BBC5C243"
Last-Modified: Sat, 11 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2727
Expires: Tue, 14 Feb 2023 00:12:33 GMT
Date: Mon, 13 Feb 2023 23:27:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 0de0354ee620551182e2bf1fbc6b2194
b5c7e4adb58b525586b77d56acd8c7a9c57c4d8c
c0fe5edc97b1f6642a50428fca8dc93e24696c79a880477beaf7ba27bbc5c243
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C0FE5EDC97B1F6642A50428FCA8DC93E24696C79A880477BEAF7BA27BBC5C243"
Last-Modified: Sat, 11 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2727
Expires: Tue, 14 Feb 2023 00:12:33 GMT
Date: Mon, 13 Feb 2023 23:27:06 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3711add0-4cca-4150-977d-cdccd88e0409.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3711add0-4cca-4150-977d-cdccd88e0409.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 43a4f167fe1284382fe7128db499cf66
35b23e525c0868c0739c4b877a1014abe34babfb
2a9363e54b227559df8f054d1c74346708969ba41aaed9d7b18e92f05c84214d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3711add0-4cca-4150-977d-cdccd88e0409.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11158
x-amzn-requestid: fd308044-35de-49b7-85c5-c550c8eac906
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ATA5VGJ0IAMFlwA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63eaaea1-1dbba8881b4c34e3171fa425;Sampled=0
x-amzn-remapped-date: Mon, 13 Feb 2023 21:41:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: t9Bo39vN2l86hmeraJ1ejkbFqjvcnK1ZX9168SBwkssJUjPZmD-s3A==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Mon, 13 Feb 2023 22:26:44 GMT
age: 3622
etag: "35b23e525c0868c0739c4b877a1014abe34babfb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9fe38f96-4b04-43d2-9644-5b2f7cd0c0c9.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9fe38f96-4b04-43d2-9644-5b2f7cd0c0c9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 504b69ec2b6350345c36777959b0765a
c302824325b8f0839c7de54af9c5bd02541e4269
6e3a5b1cd7d17a9f448b8189d5683567269b3b3d461838770482283898008f39
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9fe38f96-4b04-43d2-9644-5b2f7cd0c0c9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14477
x-amzn-requestid: 2544b5cc-3fb0-4536-88ec-8cb9044fb612
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ANtsXFBYoAMF6tA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e88fe8-452901f67af9f5d95ccc61c3;Sampled=0
x-amzn-remapped-date: Sun, 12 Feb 2023 07:06:16 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: hy4pKD0EX3RY8ayeOzmZvNG-K7qwaVP4VPjPOxcpUGmk2x09fKFFRg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Mon, 13 Feb 2023 07:20:10 GMT
age: 58016
etag: "c302824325b8f0839c7de54af9c5bd02541e4269"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F392971b2-f0c4-40e7-9616-6fb674302e06.webp
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F392971b2-f0c4-40e7-9616-6fb674302e06.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 99d681194e66cf0389f2a7e1f3da326f
ef67e1015d163b445d1a3577432ead63333d4174
40b2626c4f9124b281165a5235ff42045f21824f059560289f0307ba02800302
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F392971b2-f0c4-40e7-9616-6fb674302e06.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6976
x-amzn-requestid: 74d50c11-9e84-429f-9f92-61d0d4daf882
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AGlR9EywoAMFjeg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e5b5a5-23def26729ea784e1392e2d9;Sampled=0
x-amzn-remapped-date: Fri, 10 Feb 2023 03:10:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: lMEwjGhb9UBk8tX3z8LhagX5EHwJG0we_7MPm44SQBV3Rv_Lv3x8fA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 13 Feb 2023 07:57:06 GMT
age: 55800
etag: "ef67e1015d163b445d1a3577432ead63333d4174"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74073173-a5a0-46f8-b23e-201ea802ab67.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74073173-a5a0-46f8-b23e-201ea802ab67.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dfbb7efa6627641ed50ee7738b2e2561
a759d26d6c811f964125ccba6e11498bca6b64c8
d1b2ea74eb288c5530c761830023830e43a6e8441594252736d6aa130dfd6520
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74073173-a5a0-46f8-b23e-201ea802ab67.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8419
x-amzn-requestid: d19bc4f6-4174-4563-a1ef-c27ba0a9e3ed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AS_zuHdGIAMFQlA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63eaace4-5e914df75bfda625564e1142;Sampled=0
x-amzn-remapped-date: Mon, 13 Feb 2023 21:34:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: e0GAkTbo83Kf6PvNKGWEeTfnGeFsgaNYwkTj6wLZcvSY_Ax4cW8jjA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 13 Feb 2023 22:14:48 GMT
age: 4338
etag: "a759d26d6c811f964125ccba6e11498bca6b64c8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd366980e-ad23-4d6b-8dd7-adc8309568fd.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd366980e-ad23-4d6b-8dd7-adc8309568fd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 262b43386e404cb3d320c47c4cf792c1
87f304f8583fe6b6e942a9dbcb5efb5ee94987f2
ca0f72005920b2b2f49c387314540f3cd2f3d7808f0365dfb1c491500e8a8714
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd366980e-ad23-4d6b-8dd7-adc8309568fd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8065
x-amzn-requestid: cd663372-92d4-4e6f-b89f-f5855ce61bec
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AS_y6EwloAMFmkg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63eaacdf-0a38848661ced8615f95f6ab;Sampled=0
x-amzn-remapped-date: Mon, 13 Feb 2023 21:34:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: yX_eEo0HW0deZTidEOAosqqYTc4gJ4Zt8kMq9Ft1OEZW74aCRIOWJg==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Mon, 13 Feb 2023 22:31:34 GMT
age: 3332
etag: "87f304f8583fe6b6e942a9dbcb5efb5ee94987f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffa4ba051-2c63-4c43-b474-f9f0b5bd52ed.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffa4ba051-2c63-4c43-b474-f9f0b5bd52ed.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1d4326c59d02731683fae31805083a08
fe463bb4c2531761d18baf10e0103b7c57e5942d
a12044f8f227abf7c7267505104b584c11fad46b3fcc2aacfeb2996a92d37701
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffa4ba051-2c63-4c43-b474-f9f0b5bd52ed.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10455
x-amzn-requestid: 9cd180cc-3539-44a0-a33f-67c714639d2f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AS_x5GPzoAMFyZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63eaacd8-1476bced24d488f601ff1630;Sampled=0
x-amzn-remapped-date: Mon, 13 Feb 2023 21:34:16 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: V_0SxOWgQrHDlVqUiKuRA9OladtezeYKT34-ojV0v1mVU-I9R8HnBA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 13 Feb 2023 22:14:57 GMT
age: 4329
etag: "fe463bb4c2531761d18baf10e0103b7c57e5942d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox-settings-attachments.cdn.mozilla.net/staging/addons-bloomfilters/8038652a-6557-460a-858c-84f19a5a0987.bin
34.111.73.144200 OK 807 kB URL HTTP/2 firefox-settings-attachments.cdn.mozilla.net/staging/addons-bloomfilters/8038652a-6557-460a-858c-84f19a5a0987.bin
IP 34.111.73.144:0
Size 807 kB (807180 bytes)
Hash 914be443bdfbe8a1c3ded61e1c114bd6
4fe7c5ff83f6a29e6699f4cebc17550891504661
41b036d0c889509d547296b238027a063c313261ad52d5f7bb81922011791857
GET /staging/addons-bloomfilters/8038652a-6557-460a-858c-84f19a5a0987.bin HTTP/1.1
Host: firefox-settings-attachments.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ftlRCtDKYv0YA/IIHvSsWa6VhcvC4eC58tl/HwmVAhrC/Hu9RiXTGINxPEpRJWWvbK6zqdB2YRlvBrVVY1rAgw==
x-amz-request-id: TH8F4G4E5HVEW1R8
x-amz-version-id: K1ODzappZsD35qeu0OM5zvs_BP1eybj7
accept-ranges: bytes
server: AmazonS3
content-length: 807180
via: 1.1 google
date: Fri, 10 Feb 2023 16:58:49 GMT
last-modified: Tue, 10 Jan 2023 12:38:46 GMT
etag: "914be443bdfbe8a1c3ded61e1c114bd6"
content-type: application/octet-stream
age: 282497
cache-control: public,max-age=604800
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/nimbus-desktop-experiments/changeset?_expected=1676317761572&_since=%221666279968541%22
35.241.9.150200 OK 112 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/nimbus-desktop-experiments/changeset?_expected=1676317761572&_since=%221666279968541%22
IP 35.241.9.150:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 112 kB (112162 bytes)
Hash 47a8f0129106d8045bdd98647704b24c
f99a372ff285a1b186d05ccb6a6f4821aeff00ac
244d04063aac310bf210bf43de51e3adc7ac9add7620b43d7235d4a2ffee2675
GET /v1/buckets/main/collections/nimbus-desktop-experiments/changeset?_expected=1676317761572&_since=%221666279968541%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Backoff, Alert, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 112162
via: 1.1 google
date: Mon, 13 Feb 2023 23:07:22 GMT
age: 1185
last-modified: Mon, 13 Feb 2023 19:49:21 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/cfr/changeset?_expected=1666894461944&_since=%221659547595259%22
35.241.9.150200 OK 1.5 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/cfr/changeset?_expected=1666894461944&_since=%221659547595259%22
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (1506), with no line terminators
Hash 715e628aed4a2bd1456c04cb335c225c
481020ef3b994e5e91dee84a3eead38d85c07057
c3d0b1401b64c42bc3ce4107598fd3d00b5642ac3fcd5b5d7db0c4de11e6482d
GET /v1/buckets/main/collections/cfr/changeset?_expected=1666894461944&_since=%221659547595259%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Content-Type, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 1506
via: 1.1 google
date: Mon, 13 Feb 2023 23:02:25 GMT
age: 1482
last-modified: Sun, 12 Feb 2023 16:36:46 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/message-groups/changeset?_expected=1670425599656&_since=%221665698079854%22
35.241.9.150200 OK 934 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/message-groups/changeset?_expected=1670425599656&_since=%221665698079854%22
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (934), with no line terminators
Hash 0892cc8cdcb87d682c5d089abfcaf4e8
aa73b5d2ffe2438ad9441b242ddc436d75cb1724
101b995a03327c7987ccd1e560a92c692107575dd4d2aab9c22127830b3873f9
GET /v1/buckets/main/collections/message-groups/changeset?_expected=1670425599656&_since=%221665698079854%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Backoff, Alert, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 934
via: 1.1 google
date: Mon, 13 Feb 2023 22:47:53 GMT
age: 2354
last-modified: Sun, 12 Feb 2023 16:36:44 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/normandy-recipes-capabilities/changeset?_expected=1676075074583&_since=%221666483264567%22
35.241.9.150200 OK 58 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/normandy-recipes-capabilities/changeset?_expected=1676075074583&_since=%221666483264567%22
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (57869), with no line terminators
Hash e8e7b6d450d8aae4fa0617f4068642ce
a1b955e50a0aee154930b60fceb6ec2388fa85fe
4e287ac8e66afe1069803cdc57ac4d2cdf10bf13d5b75dfb443654dea7e5cd5c
GET /v1/buckets/main/collections/normandy-recipes-capabilities/changeset?_expected=1676075074583&_since=%221666483264567%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Backoff, Alert, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 57869
via: 1.1 google
date: Mon, 13 Feb 2023 22:41:39 GMT
age: 2728
last-modified: Sat, 11 Feb 2023 00:24:34 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/search-config/changeset?_expected=1675353179510&_since=%221661199949574%22
35.241.9.150200 OK 22 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/search-config/changeset?_expected=1675353179510&_since=%221661199949574%22
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (22469), with no line terminators
Hash d9e546b042bc7ef8d55dde8f2c1b5013
a120b553da51df50adf4e55b423eca6f44f2f3bc
ac96be8fc196edc76096395850683f1b607a96a21e4d5e4a349ffb3250c80fe9
GET /v1/buckets/main/collections/search-config/changeset?_expected=1675353179510&_since=%221661199949574%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Backoff, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 22469
via: 1.1 google
date: Mon, 13 Feb 2023 23:04:20 GMT
age: 1367
last-modified: Thu, 09 Feb 2023 16:36:43 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/partitioning-exempt-urls/changeset?_expected=1675943045406&_since=%221657747510534%22
35.241.9.150200 OK 2.4 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/partitioning-exempt-urls/changeset?_expected=1675943045406&_since=%221657747510534%22
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (2387), with no line terminators
Hash 570c3639741751ca04329ac1398bdd6e
c54601ed42a8cdbaf30c222365514e376ef8909c
11a692df13456b785114953984580fbae97d0cff71cee0ccd30c4531bd05a68d
GET /v1/buckets/main/collections/partitioning-exempt-urls/changeset?_expected=1675943045406&_since=%221657747510534%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Content-Type, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 2387
via: 1.1 google
date: Mon, 13 Feb 2023 23:27:01 GMT
age: 6
last-modified: Thu, 09 Feb 2023 11:44:05 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/password-recipes/changeset?_expected=1674595048726&_since=%221642005109349%22
35.241.9.150200 OK 1.7 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/password-recipes/changeset?_expected=1674595048726&_since=%221642005109349%22
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (1742), with no line terminators
Hash 8622f9271800c6552b0963e36fc33ee6
f278aa1cad3c9192ae5511c7d7c0043bcde5dde3
3f1250105b41c813fac6690cb714f0da0ef1c0c42baabf2e126e0344d936bc48
GET /v1/buckets/main/collections/password-recipes/changeset?_expected=1674595048726&_since=%221642005109349%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Backoff, Alert, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 1742
via: 1.1 google
date: Mon, 13 Feb 2023 22:41:33 GMT
age: 2735
last-modified: Wed, 08 Feb 2023 16:36:44 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/query-stripping/changeset?_expected=1667238122278&_since=%221656585893704%22
35.241.9.150200 OK 1.7 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/query-stripping/changeset?_expected=1667238122278&_since=%221656585893704%22
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (1718), with no line terminators
Hash fb8364b979ee4d6ab16983257209c5aa
e7749d6314f37c996014ed25444215c50d585634
4ae5e5eea70f358d81e21e3861a48532d484b883a30041c4abaf709457ac4cc4
GET /v1/buckets/main/collections/query-stripping/changeset?_expected=1667238122278&_since=%221656585893704%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Content-Type, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 1718
via: 1.1 google
date: Mon, 13 Feb 2023 22:40:24 GMT
age: 2804
last-modified: Tue, 07 Feb 2023 16:36:46 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/language-dictionaries/changeset?_expected=1673270322227&_since=%221569410800356%22
35.241.9.150200 OK 1.3 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/language-dictionaries/changeset?_expected=1673270322227&_since=%221569410800356%22
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (1251), with no line terminators
Hash 84877e5233cbfb37ee8e3a229a105c5a
1de2638f59470efebfeb21250ec19dcc6f2092cf
d3a86e1ca60b2a4b4ffc1fb159f17bf8e590072e2f8f141087cb42c3c612b1eb
GET /v1/buckets/main/collections/language-dictionaries/changeset?_expected=1673270322227&_since=%221569410800356%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Backoff, Alert, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 1251
via: 1.1 google
date: Mon, 13 Feb 2023 22:53:55 GMT
age: 1993
last-modified: Tue, 07 Feb 2023 16:36:45 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/fxmonitor-breaches/changeset?_expected=1675734066429&_since=%221662044085942%22
35.241.9.150200 OK 5.6 kB URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/fxmonitor-breaches/changeset?_expected=1675734066429&_since=%221662044085942%22
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (5628), with no line terminators
Hash ba20fa4a4d0b101ba8c0184be4ab1114
f6babf918e8cd29dd4bae3b5cd1333d408671840
889093cfc512eaefd30a50503286ec7a6d0e46adbd05feeb71a0cb254ad5fefe
GET /v1/buckets/main/collections/fxmonitor-breaches/changeset?_expected=1675734066429&_since=%221662044085942%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Content-Type, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 5628
via: 1.1 google
date: Mon, 13 Feb 2023 22:37:35 GMT
age: 2973
last-modified: Tue, 07 Feb 2023 01:41:06 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/hijack-blocklists?_expected=1605801189258
35.241.9.150200 OK 681 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/hijack-blocklists?_expected=1605801189258
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (681), with no line terminators
Hash 49248eff154dc4c57a2941a8ea08b148
f1c61090e04394494721aa17ddb4814293e66e89
674b33af069dc532553d499551583e97162232c880bb2f47bfe3787aeba2640c
GET /v1/buckets/main/collections/hijack-blocklists?_expected=1605801189258 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Last-Modified, Alert, Backoff, Content-Type, Pragma, Expires, Cache-Control, Retry-After, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 681
via: 1.1 google
date: Mon, 13 Feb 2023 22:51:02 GMT
age: 2166
last-modified: Mon, 06 Feb 2023 16:36:54 GMT
etag: "1675701414813"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
inbioma.pe/wp-content/themes/astra/assets/css/minified/main.min.css?ver=3.9.1
186.64.118.5200 OK 8.0 kB URL HTTP/2 inbioma.pe/wp-content/themes/astra/assets/css/minified/main.min.css?ver=3.9.1
IP 186.64.118.5:0
File type ASCII text, with very long lines (38375)
Hash d89e3ba867ab89c62c514e1d58141464
c724d8feac32d089d553dd53172d42336360a4a9
580c184394148868aa24830fabd6b5137cb83e022a467dddb8bae2cb2e0225b6
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/themes/astra/assets/css/minified/main.min.css?ver=3.9.1 HTTP/1.1
Host: inbioma.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://inbioma.pe/Rechnung-017342346324717&cgi3-ViewKontakt-017342346324717-007acctpagetype-017342346324717=1027856-&ebay@technik-freizeit.de.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 28 Aug 2022 22:28:36 GMT
etag: "6245f0a-9e45-5e754ab12744b-gzip"
accept-ranges: bytes
cache-control: max-age=604800, public
expires: Wed, 15 Mar 2023 06:53:18 GMT
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubdomains;
age: 59630
content-length: 7989
content-type: text/css
date: Mon, 13 Feb 2023 23:27:09 GMT
server: Apache
X-Firefox-Spdy: h2
inbioma.pe/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
186.64.118.5200 OK 5.0 kB URL HTTP/2 inbioma.pe/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 186.64.118.5:0
File type ASCII text, with very long lines (15660)
Hash e6624e0b978e6ddba476be41aaaa82df
822e920d8233072110ed7c8a7f379e5b13209b18
dac86a9ce08e4d8cded47b4fa900a664b0c997d8910c2a1be54a423678925a41
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: inbioma.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://inbioma.pe/Rechnung-017342346324717&cgi3-ViewKontakt-017342346324717-007acctpagetype-017342346324717=1027856-&ebay@technik-freizeit.de.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 12 Apr 2022 14:26:24 GMT
etag: "624470c-48b9-5dc75d86f2400-gzip"
accept-ranges: bytes
cache-control: max-age=604800, public
expires: Wed, 15 Mar 2023 06:53:19 GMT
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubdomains;
age: 59630
content-length: 5009
content-type: application/javascript
date: Mon, 13 Feb 2023 23:27:09 GMT
server: Apache
X-Firefox-Spdy: h2
inbioma.pe/Rechnung-017342346324717&cgi3-ViewKontakt-017342346324717-007acctpagetype-017342346324717=1027856-&ebay@technik-freizeit.de.html
186.64.118.5404 Not Found 32 kB URL HTTP/2 inbioma.pe/Rechnung-017342346324717&cgi3-ViewKontakt-017342346324717-007acctpagetype-017342346324717=1027856-&ebay@technik-freizeit.de.html
IP 186.64.118.5:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (62215), with CRLF, LF line terminators
Hash d4510b9e739765413d043feb41219e7a
9ee9ca137e22b54e08f3557bb87d036c0da160dd
edd4ff0f54eb3e245352d5e0c780bc47da3e3d3772a6683277824275ad63966e
GET /Rechnung-017342346324717&cgi3-ViewKontakt-017342346324717-007acctpagetype-017342346324717=1027856-&ebay@technik-freizeit.de.html HTTP/1.1
Host: inbioma.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
link: <https://inbioma.pe/wp-json/>; rel="https://api.w.org/"
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubdomains;
cache-control: no-cache, must-revalidate, max-age=0, public
content-type: text/html; charset=UTF-8
date: Mon, 13 Feb 2023 23:27:07 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash f5067af0270e15c7a9474f4164857326
32b475f2e62e41425bed727d9879ebcbbb60aa3a
60d910b309744465e215e9a977ad16146387dcc6c1160ae1192d5c26e71c02b5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 13 Feb 2023 23:27:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
inbioma.pe/wp-content/uploads/2022/08/cropped-cropped-foto-perfil-02.png
186.64.118.5200 OK 1.4 kB URL HTTP/2 inbioma.pe/wp-content/uploads/2022/08/cropped-cropped-foto-perfil-02.png
IP 186.64.118.5:0
File type PNG image data, 165 x 85, 8-bit colormap, non-interlaced\012- data
Hash 1264db55a7cb01bad853f4dfd54ac627
bab0e68858251c65919c1807556af8a61c1b957d
354b09fada6a6853ded72e87006a16c3117b8d591edd07b10308473bef109231
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/08/cropped-cropped-foto-perfil-02.png HTTP/1.1
Host: inbioma.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://inbioma.pe/Rechnung-017342346324717&cgi3-ViewKontakt-017342346324717-007acctpagetype-017342346324717=1027856-&ebay@technik-freizeit.de.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 29 Aug 2022 05:02:03 GMT
etag: "62441ce-5a7-5e75a2a23e39c"
accept-ranges: bytes
content-length: 1447
cache-control: max-age=604800, public
expires: Wed, 15 Mar 2023 06:53:19 GMT
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubdomains;
age: 59630
content-type: image/png
date: Mon, 13 Feb 2023 23:27:09 GMT
server: Apache
X-Firefox-Spdy: h2
inbioma.pe/wp-content/plugins/wpforms-lite/assets/css/wpforms-base.min.css?ver=1.7.6
186.64.118.5200 OK 3.9 kB URL HTTP/2 inbioma.pe/wp-content/plugins/wpforms-lite/assets/css/wpforms-base.min.css?ver=1.7.6
IP 186.64.118.5:0
File type ASCII text, with very long lines (22764)
Hash 4907e4c75d25ac7f8305e56e997db554
35e89892515aca8bf177b9987892047b2cd511b9
26a9f3116bcf8777b8a95fa82079208d4d99ea8499cc85a31d1bacdb3043f0d8
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/wpforms-lite/assets/css/wpforms-base.min.css?ver=1.7.6 HTTP/1.1
Host: inbioma.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://inbioma.pe/Rechnung-017342346324717&cgi3-ViewKontakt-017342346324717-007acctpagetype-017342346324717=1027856-&ebay@technik-freizeit.de.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 28 Aug 2022 22:52:24 GMT
etag: "624681b-58ed-5e755002bce01-gzip"
accept-ranges: bytes
cache-control: max-age=604800, public
expires: Wed, 15 Mar 2023 06:53:19 GMT
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubdomains;
age: 59630
content-length: 3855
content-type: text/css
date: Mon, 13 Feb 2023 23:27:09 GMT
server: Apache
X-Firefox-Spdy: h2
inbioma.pe/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=3.9.1
186.64.118.5200 OK 4.1 kB URL HTTP/2 inbioma.pe/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=3.9.1
IP 186.64.118.5:0
File type ASCII text, with very long lines (16772), with no line terminators
Hash e0c9a631dece782e95b9dc769ceb6d56
be01319e0fe08462de55cddce03a139c85be5301
79c8c7fcd1a8857ad201656e9c05b6fbe0d7eb755a66b5e762ca1731e612acee
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=3.9.1 HTTP/1.1
Host: inbioma.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://inbioma.pe/Rechnung-017342346324717&cgi3-ViewKontakt-017342346324717-007acctpagetype-017342346324717=1027856-&ebay@technik-freizeit.de.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 28 Aug 2022 22:28:36 GMT
etag: "6245ec1-4184-5e754ab0f0944-gzip"
accept-ranges: bytes
cache-control: max-age=604800, public
expires: Wed, 15 Mar 2023 06:53:19 GMT
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubdomains;
age: 59630
content-length: 4058
content-type: application/javascript
date: Mon, 13 Feb 2023 23:27:09 GMT
server: Apache
X-Firefox-Spdy: h2
inbioma.pe/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
186.64.118.5200 OK 31 kB URL HTTP/2 inbioma.pe/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 186.64.118.5:0
File type ASCII text, with very long lines (65447)
Hash 1b5264c989379b828aff60f65a518a24
98641237f14ccb33ac114f54329a33bd0aa17eb7
6c8e7b78c6dbc13426810c905572db7589cf3e00264e30ce797fddb0b1092237
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: inbioma.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://inbioma.pe/Rechnung-017342346324717&cgi3-ViewKontakt-017342346324717-007acctpagetype-017342346324717=1027856-&ebay@technik-freizeit.de.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Nov 2022 04:25:07 GMT
etag: "6244610-15e54-5ec7539bcaaf6-gzip"
accept-ranges: bytes
cache-control: max-age=604800, public
expires: Wed, 15 Mar 2023 06:53:19 GMT
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubdomains;
age: 59630
content-length: 30995
content-type: application/javascript
date: Mon, 13 Feb 2023 23:27:09 GMT
server: Apache
X-Firefox-Spdy: h2
inbioma.pe/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
186.64.118.5200 OK 4.2 kB URL HTTP/2 inbioma.pe/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 186.64.118.5:0
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: inbioma.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://inbioma.pe/Rechnung-017342346324717&cgi3-ViewKontakt-017342346324717-007acctpagetype-017342346324717=1027856-&ebay@technik-freizeit.de.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 18 Nov 2020 17:36:06 GMT
etag: "6244608-2bd8-5b4650bc96d80-gzip"
accept-ranges: bytes
cache-control: max-age=604800, public
expires: Wed, 15 Mar 2023 06:53:19 GMT
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubdomains;
age: 59630
content-length: 4169
content-type: application/javascript
date: Mon, 13 Feb 2023 23:27:09 GMT
server: Apache
X-Firefox-Spdy: h2
inbioma.pe/wp-content/plugins/wpforms-lite/assets/lib/jquery.validate.min.js?ver=1.19.5
186.64.118.5200 OK 7.9 kB URL HTTP/2 inbioma.pe/wp-content/plugins/wpforms-lite/assets/lib/jquery.validate.min.js?ver=1.19.5
IP 186.64.118.5:0
File type Unicode text, UTF-8 text, with very long lines (24463)
Hash 7686bf7d0d4280692ea650de370e069d
d4a3ba958ef791331a26fd5944933e5a1a26c796
02e5f01fedb060b7659a0501e59884f0d396f45ad192f7e974da119ee6f0850a
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/plugins/wpforms-lite/assets/lib/jquery.validate.min.js?ver=1.19.5 HTTP/1.1
Host: inbioma.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://inbioma.pe/Rechnung-017342346324717&cgi3-ViewKontakt-017342346324717-007acctpagetype-017342346324717=1027856-&ebay@technik-freizeit.de.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 28 Aug 2022 22:52:22 GMT
etag: "62466d9-601a-5e755000c7a36-gzip"
accept-ranges: bytes
cache-control: max-age=604800, public
expires: Wed, 15 Mar 2023 06:53:19 GMT
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubdomains;
age: 59630
content-length: 7919
content-type: application/javascript
date: Mon, 13 Feb 2023 23:27:09 GMT
server: Apache
X-Firefox-Spdy: h2
inbioma.pe/wp-content/plugins/wpforms-lite/assets/lib/mailcheck.min.js?ver=1.1.2
186.64.118.5200 OK 1.7 kB URL HTTP/2 inbioma.pe/wp-content/plugins/wpforms-lite/assets/lib/mailcheck.min.js?ver=1.1.2
IP 186.64.118.5:0
File type C source, ASCII text, with very long lines (4014), with no line terminators
Hash 378928a458b9a32d539470fb4bcaf34e
e9a05c4b7e7e2b0d73263fde1293d4d35322b3d7
2bb2847ddf8e0657812fb17dc13b557139710483131d346c5b543876558b1e68
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/plugins/wpforms-lite/assets/lib/mailcheck.min.js?ver=1.1.2 HTTP/1.1
Host: inbioma.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://inbioma.pe/Rechnung-017342346324717&cgi3-ViewKontakt-017342346324717-007acctpagetype-017342346324717=1027856-&ebay@technik-freizeit.de.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 28 Aug 2022 22:52:22 GMT
etag: "62466d6-fae-5e755000c6e7e-gzip"
accept-ranges: bytes
cache-control: max-age=604800, public
expires: Wed, 15 Mar 2023 06:53:19 GMT
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubdomains;
age: 59630
content-length: 1682
content-type: application/javascript
date: Mon, 13 Feb 2023 23:27:09 GMT
server: Apache
X-Firefox-Spdy: h2
inbioma.pe/wp-content/plugins/wpforms-lite/assets/lib/punycode.min.js?ver=1.0.0
186.64.118.5200 OK 872 B URL HTTP/2 inbioma.pe/wp-content/plugins/wpforms-lite/assets/lib/punycode.min.js?ver=1.0.0
IP 186.64.118.5:0
File type ASCII text, with very long lines (1713), with no line terminators
Hash 4adc658d402a2c0976b369c9e943e55c
e02f490b57aab672851608efa137014391b2c04e
1eeb3ac5f14869f7f7a8c29512b20fd07d85c873fc45ea6f2999148f52f8d9d0
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/plugins/wpforms-lite/assets/lib/punycode.min.js?ver=1.0.0 HTTP/1.1
Host: inbioma.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://inbioma.pe/Rechnung-017342346324717&cgi3-ViewKontakt-017342346324717-007acctpagetype-017342346324717=1027856-&ebay@technik-freizeit.de.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 28 Aug 2022 22:52:22 GMT
etag: "62466bd-6b1-5e7550004969d-gzip"
accept-ranges: bytes
cache-control: max-age=604800, public
expires: Wed, 15 Mar 2023 06:53:19 GMT
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubdomains;
age: 59630
content-length: 872
content-type: application/javascript
date: Mon, 13 Feb 2023 23:27:09 GMT
server: Apache
X-Firefox-Spdy: h2
inbioma.pe/wp-content/plugins/wpforms-lite/assets/js/wpforms.min.js?ver=1.7.6
186.64.118.5200 OK 9.8 kB URL HTTP/2 inbioma.pe/wp-content/plugins/wpforms-lite/assets/js/wpforms.min.js?ver=1.7.6
IP 186.64.118.5:0
File type ASCII text, with very long lines (32356), with no line terminators
Hash 85d08cc840440ec0f310645e6791d143
0b1b9f71e0b75c684f32cb0bdd3923e41f0f83d7
d3eb53792c0b24106d86c7cc1dd650d0577c33aa7eb338dac0fb31e2fe3b23af
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/plugins/wpforms-lite/assets/js/wpforms.min.js?ver=1.7.6 HTTP/1.1
Host: inbioma.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://inbioma.pe/Rechnung-017342346324717&cgi3-ViewKontakt-017342346324717-007acctpagetype-017342346324717=1027856-&ebay@technik-freizeit.de.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 28 Aug 2022 22:52:24 GMT
etag: "62467b7-7e64-5e7550024ccfa-gzip"
accept-ranges: bytes
cache-control: max-age=604800, public
expires: Wed, 15 Mar 2023 06:53:19 GMT
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubdomains;
age: 59630
content-length: 9764
content-type: application/javascript
date: Mon, 13 Feb 2023 23:27:09 GMT
server: Apache
X-Firefox-Spdy: h2
inbioma.pe/wp-content/plugins/wpforms-lite/assets/js/utils.min.js?ver=1.7.6
186.64.118.5200 OK 150 B URL HTTP/2 inbioma.pe/wp-content/plugins/wpforms-lite/assets/js/utils.min.js?ver=1.7.6
IP 186.64.118.5:0
File type ASCII text, with no line terminators
Hash 14e97c0bd8b30f6184d7b9b0de3b62dc
052e2d09afda94db181e7b410ef3c49567350896
cf50cfaa42eabf7e33d6b7214e8965573e33b17b60420352789410639c9c80aa
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/plugins/wpforms-lite/assets/js/utils.min.js?ver=1.7.6 HTTP/1.1
Host: inbioma.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://inbioma.pe/Rechnung-017342346324717&cgi3-ViewKontakt-017342346324717-007acctpagetype-017342346324717=1027856-&ebay@technik-freizeit.de.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 28 Aug 2022 22:52:24 GMT
etag: "62467c6-ae-5e75500251733-gzip"
accept-ranges: bytes
cache-control: max-age=604800, public
expires: Wed, 15 Mar 2023 06:53:19 GMT
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=63072000; includeSubdomains;
age: 59630
content-length: 150
content-type: application/javascript
date: Mon, 13 Feb 2023 23:27:09 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash f5067af0270e15c7a9474f4164857326
32b475f2e62e41425bed727d9879ebcbbb60aa3a
60d910b309744465e215e9a977ad16146387dcc6c1160ae1192d5c26e71c02b5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 13 Feb 2023 23:27:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
inbioma.pe/wp-content/uploads/2021/02/site-logo-black.svg
186.64.118.5200 OK 3.6 kB URL HTTP/2 inbioma.pe/wp-content/uploads/2021/02/site-logo-black.svg
IP 186.64.118.5:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (5918)
Hash c014b126a9626f29c19a74bb7ddfbd1c
31ac2b8e2ac74084fd7257abe2234734c12e5884
636330b38fa66d26b1f94939f31f0b9718df2c36dae1d5024920f573f5514443
Analyzer Verdict Alert fortinet Phishing
quad9 Sinkholed
GET /wp-content/uploads/2021/02/site-logo-black.svg HTTP/1.1
Host: inbioma.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://inbioma.pe/Rechnung-017342346324717&cgi3-ViewKontakt-017342346324717-007acctpagetype-017342346324717=1027856-&ebay@technik-freizeit.de.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 28 Aug 2022 22:52:46 GMT
etag: "6244ff0-2135-5e755017a519f-br"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Wed, 15 Mar 2023 23:11:36 GMT
vary: Accept-Encoding
content-encoding: br
strict-transport-security: max-age=63072000; includeSubdomains;
age: 933
content-length: 3595
content-type: image/svg+xml
date: Mon, 13 Feb 2023 23:27:09 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 605c0a47169c45b131ccb1ed345cf048
110d17ee2aa9a2cb7128e27554ec8dcbb1f59296
0ac9bb15a9f9edd3750752ddf33d3478bedd369cc5f22b6a0e258f55958b7774
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 13 Feb 2023 23:27:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 605c0a47169c45b131ccb1ed345cf048
110d17ee2aa9a2cb7128e27554ec8dcbb1f59296
0ac9bb15a9f9edd3750752ddf33d3478bedd369cc5f22b6a0e258f55958b7774
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 13 Feb 2023 23:27:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 605c0a47169c45b131ccb1ed345cf048
110d17ee2aa9a2cb7128e27554ec8dcbb1f59296
0ac9bb15a9f9edd3750752ddf33d3478bedd369cc5f22b6a0e258f55958b7774
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 13 Feb 2023 23:27:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Raleway%3A400%2C600%7CDM+Serif+Display%3A400&display=fallback&ver=3.9.1
142.250.74.74200 OK 47 kB URL HTTP/2 fonts.googleapis.com/css?family=Raleway%3A400%2C600%7CDM+Serif+Display%3A400&display=fallback&ver=3.9.1
IP 142.250.74.74:0
Hash fada1901e5f6e1671c98d3f7a671673b
9804cc2a6880a4e48fdb4d168d84253c53ef1172
823a56ab79ed1b268488a77e150e23db23022ac1c7bedb8a20247a4831f37199
GET /css?family=Raleway%3A400%2C600%7CDM+Serif+Display%3A400&display=fallback&ver=3.9.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://inbioma.pe/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 13 Feb 2023 23:27:09 GMT
date: Mon, 13 Feb 2023 23:27:09 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/dmserifdisplay/v11/-nFnOHM81r4j6k0gjAW3mujVU2B2G_Bx0g.woff2
142.250.74.35200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/dmserifdisplay/v11/-nFnOHM81r4j6k0gjAW3mujVU2B2G_Bx0g.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 24532, version 1.0\012- data
Hash 85db9d3b188da5bfdbc66c178a3e33bc
a11c20671ca01da83d46b9f6215885f347d8772c
73e3044bb6912706982542a9e9b15e7472bd53755cea6a0477c5e7c80c24c00d
GET /s/dmserifdisplay/v11/-nFnOHM81r4j6k0gjAW3mujVU2B2G_Bx0g.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://inbioma.pe
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 24532
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 Feb 2023 13:11:18 GMT
expires: Fri, 09 Feb 2024 13:11:18 GMT
cache-control: public, max-age=31536000
age: 382552
last-modified: Thu, 15 Dec 2022 21:43:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 605c0a47169c45b131ccb1ed345cf048
110d17ee2aa9a2cb7128e27554ec8dcbb1f59296
0ac9bb15a9f9edd3750752ddf33d3478bedd369cc5f22b6a0e258f55958b7774
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 13 Feb 2023 23:27:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
inbioma.pe/wp-content/uploads/2022/05/log_letra_az_transparente-150x49.png
186.64.118.5200 OK 4.3 kB URL HTTP/2 inbioma.pe/wp-content/uploads/2022/05/log_letra_az_transparente-150x49.png
IP 186.64.118.5:0
File type PNG image data, 150 x 49, 8-bit/color RGBA, non-interlaced\012- data
Hash 24c55423418a54f03f061b1bfc75cd61
26910b7ed22180fb25b21599b73ccdc15895fe65
5148b1377afa1a64fd2d2090bb81306879e33d4fb52df36ddd439cf751376d83
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/05/log_letra_az_transparente-150x49.png HTTP/1.1
Host: inbioma.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://inbioma.pe/Rechnung-017342346324717&cgi3-ViewKontakt-017342346324717-007acctpagetype-017342346324717=1027856-&ebay@technik-freizeit.de.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 27 May 2022 04:20:23 GMT
etag: "62449de-10f3-5dff6a0086e9e"
accept-ranges: bytes
content-length: 4339
cache-control: max-age=604800, public
expires: Wed, 15 Mar 2023 06:53:19 GMT
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubdomains;
age: 59630
content-type: image/png
date: Mon, 13 Feb 2023 23:27:10 GMT
server: Apache
X-Firefox-Spdy: h2
inbioma.pe/wp-content/uploads/2022/05/log_letra_az_transparente.png
186.64.118.5200 OK 2.7 kB URL HTTP/2 inbioma.pe/wp-content/uploads/2022/05/log_letra_az_transparente.png
IP 186.64.118.5:0
File type PNG image data, 187 x 49, 8-bit colormap, interlaced\012- data
Hash d4d53277b83cbe7a08e466cafacd6ab7
59ccd726598cc9c87dc6bf4e8734fda7dfb57933
0ab60e8cd0fde4ec581adbe97210c10e955a995140c8c9eef3d4b5f26ec6e486
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/05/log_letra_az_transparente.png HTTP/1.1
Host: inbioma.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://inbioma.pe/Rechnung-017342346324717&cgi3-ViewKontakt-017342346324717-007acctpagetype-017342346324717=1027856-&ebay@technik-freizeit.de.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 27 May 2022 04:20:23 GMT
etag: "62449df-abb-5dff6a007e1fd"
accept-ranges: bytes
content-length: 2747
cache-control: max-age=604800, public
expires: Wed, 15 Mar 2023 16:53:34 GMT
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubdomains;
age: 23615
content-type: image/png
date: Mon, 13 Feb 2023 23:27:10 GMT
server: Apache
X-Firefox-Spdy: h2
www.inbioma.pe/Rechnung-017342346324717&cgi3-ViewKontakt-017342346324717-007acctpagetype-017342346324717=1027856-&ebay@technik-freizeit.de.html
186.64.118.5301 Moved Permanently 0 B URL HTTP/2 www.inbioma.pe/Rechnung-017342346324717&cgi3-ViewKontakt-017342346324717-007acctpagetype-017342346324717=1027856-&ebay@technik-freizeit.de.html
IP 186.64.118.5:0
GET /Rechnung-017342346324717&cgi3-ViewKontakt-017342346324717-007acctpagetype-017342346324717=1027856-&ebay@technik-freizeit.de.html HTTP/1.1
Host: www.inbioma.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
expires: Wed, 11 Jan 1984 05:00:00 GMT
x-redirect-by: WordPress
content-encoding: gzip
vary: Accept-Encoding
strict-transport-security: max-age=63072000; includeSubdomains;
location: https://inbioma.pe/Rechnung-017342346324717&cgi3-ViewKontakt-017342346324717-007acctpagetype-017342346324717=1027856-&ebay@technik-freizeit.de.html
cache-control: no-cache, must-revalidate, max-age=0, public
content-type: text/html; charset=UTF-8
date: Mon, 13 Feb 2023 23:27:06 GMT
server: Apache
X-Firefox-Spdy: h2