ww25.hillsidearms.com/dhl/view/mydhl/a1ng87b50yi2efw013gctwxt73dce75d92181ca956e737b3cb66db98.php?id&subid1=20220917-1507-0510-b5b6-6bb41af9c8ae
5.79.79.212200 OK 605 B URL HTTP/1.1 ww25.hillsidearms.com/dhl/view/mydhl/a1ng87b50yi2efw013gctwxt73dce75d92181ca956e737b3cb66db98.php?id&subid1=20220917-1507-0510-b5b6-6bb41af9c8ae
IP 5.79.79.212:0
ASN #60781 LeaseWeb Netherlands B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (605), with no line terminators
Hash 88bb71086812a524a3e765bdae1c35b2
cb16d383923c36d0e598a5316aee259a4f533a98
4c2cc7b621ed9785c3c166c20a028a8b779acb0b4e5351514ef12ba5ecd1b4f0
GET /dhl/view/mydhl/a1ng87b50yi2efw013gctwxt73dce75d92181ca956e737b3cb66db98.php?id&subid1=20220917-1507-0510-b5b6-6bb41af9c8ae HTTP/1.1
Host: ww25.hillsidearms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
accept-ch: Sec-CH-UA, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 605
content-type: text/html; charset=utf-8
date: Tue, 21 Mar 2023 03:42:07 GMT
server: nginx
set-cookie: sid=5ab16628-c79a-11ed-b86a-51bd8f648534; path=/; domain=.hillsidearms.com; expires=Sun, 08 Apr 2091 06:56:14 GMT; max-age=2147483647; HttpOnly
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 28774b36cf8bb6b054329393a33f6239
728313ddff6d5ceb6db3eb8445f039779616a140
08378fe6a897ab5a9c8d3bc2748c9670659d0d0d164317fdfac88d23fee78fa0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08378FE6A897AB5A9C8D3BC2748C9670659D0D0D164317FDFAC88D23FEE78FA0"
Last-Modified: Sun, 19 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7598
Expires: Tue, 21 Mar 2023 05:48:46 GMT
Date: Tue, 21 Mar 2023 03:42:08 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash ec332b81a27117ce9c16b67a5a8e4fac
b6d2afa2c859d000ad830d3d8d73f57bac6ffce2
1dc32c78e4e850303813338fd4e9616a41c8c05d1063748a1e76a92c397a5e8f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DC32C78E4E850303813338FD4E9616A41C8C05D1063748A1E76A92C397A5E8F"
Last-Modified: Mon, 20 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21425
Expires: Tue, 21 Mar 2023 09:39:13 GMT
Date: Tue, 21 Mar 2023 03:42:08 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bc86ef2a0cee04915bc360f5821adc8f
3658f9028cce204d38f7f48fcfaa2a8e4f54383a
aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Backoff, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 21 Mar 2023 03:27:21 GMT
content-type: application/json
age: 887
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 5285a032a285729d3e4a546310ed052d
d370c14bbc2d168cc3703bcb6b94ea0ece26e69d
a811aac1eb89de0666a7de8d3eda1dc3affa7ce5353219211a1beee1211536b5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A811AAC1EB89DE0666A7DE8D3EDA1DC3AFFA7CE5353219211A1BEEE1211536B5"
Last-Modified: Mon, 20 Mar 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2583
Expires: Tue, 21 Mar 2023 04:25:11 GMT
Date: Tue, 21 Mar 2023 03:42:08 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: bBdn86ugC7b1NGqY4wsNjwWPdaPOLCK5oYqnashCXIDt2KJZbHCWqAS5+oS15SfDGYetPk53jSA=
x-amz-request-id: VTTHFWRX750SKEHR
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 21 Mar 2023 02:53:01 GMT
age: 2947
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ww25.hillsidearms.com/dhl/view/mydhl/a1ng87b50yi2efw013gctwxt73dce75d92181ca956e737b3cb66db98.php?ch=1&id=&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY3OTM3NzMyNywiaWF0IjoxNjc5MzcwMTI3LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydDc1NGV1ZjVpMTJxY2R2MG8zNGg3NjUiLCJuYmYiOjE2NzkzNzAxMjcsInRzIjoxNjc5MzcwMTI3ODg4MDAyfQ.HI4h1QLPsxWosEq-LHg9YvpE4if-x_GNXIKJfq-0T80&sid=5ab16628-c79a-11ed-b86a-51bd8f648534&subid1=20220917-1507-0510-b5b6-6bb41af9c8ae
5.79.79.212302 Found 11 B URL HTTP/1.1 ww25.hillsidearms.com/dhl/view/mydhl/a1ng87b50yi2efw013gctwxt73dce75d92181ca956e737b3cb66db98.php?ch=1&id=&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY3OTM3NzMyNywiaWF0IjoxNjc5MzcwMTI3LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydDc1NGV1ZjVpMTJxY2R2MG8zNGg3NjUiLCJuYmYiOjE2NzkzNzAxMjcsInRzIjoxNjc5MzcwMTI3ODg4MDAyfQ.HI4h1QLPsxWosEq-LHg9YvpE4if-x_GNXIKJfq-0T80&sid=5ab16628-c79a-11ed-b86a-51bd8f648534&subid1=20220917-1507-0510-b5b6-6bb41af9c8ae
IP 5.79.79.212:0
ASN #60781 LeaseWeb Netherlands B.V.
File type ASCII text, with no line terminators
Hash 32682312d17c7cbf18e73594f5570319
60e22121bdd0bc71cdb2bae2a3aa577006b2eae9
e55fb1a1d731153e943b68844af12dcce8bfac917c98ffdea64c80da0607dd47
GET /dhl/view/mydhl/a1ng87b50yi2efw013gctwxt73dce75d92181ca956e737b3cb66db98.php?ch=1&id=&js=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJKb2tlbiIsImV4cCI6MTY3OTM3NzMyNywiaWF0IjoxNjc5MzcwMTI3LCJpc3MiOiJKb2tlbiIsImpzIjoxLCJqdGkiOiIydDc1NGV1ZjVpMTJxY2R2MG8zNGg3NjUiLCJuYmYiOjE2NzkzNzAxMjcsInRzIjoxNjc5MzcwMTI3ODg4MDAyfQ.HI4h1QLPsxWosEq-LHg9YvpE4if-x_GNXIKJfq-0T80&sid=5ab16628-c79a-11ed-b86a-51bd8f648534&subid1=20220917-1507-0510-b5b6-6bb41af9c8ae HTTP/1.1
Host: ww25.hillsidearms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww25.hillsidearms.com/dhl/view/mydhl/a1ng87b50yi2efw013gctwxt73dce75d92181ca956e737b3cb66db98.php?id&subid1=20220917-1507-0510-b5b6-6bb41af9c8ae
Cookie: sid=5ab16628-c79a-11ed-b86a-51bd8f648534
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 11
date: Tue, 21 Mar 2023 03:42:07 GMT
location: http://ww1.hillsidearms.com
server: nginx
set-cookie: sid=5ab16628-c79a-11ed-b86a-51bd8f648534; path=/; domain=.hillsidearms.com; expires=Sun, 08 Apr 2091 06:56:15 GMT; max-age=2147483647; HttpOnly
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 21 Mar 2023 03:42:08 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ww25.hillsidearms.com/favicon.ico
5.79.79.212404 Not Found 9 B URL HTTP/1.1 ww25.hillsidearms.com/favicon.ico
IP 5.79.79.212:0
ASN #60781 LeaseWeb Netherlands B.V.
File type ASCII text, with no line terminators
Hash d8f4a1993546cc4b850cde3599e27aec
094b763b4cfcc0b05e5d040581cd513c3ca08067
907ba78b4545338d3539683e63ecb51cf51c10adc9dabd86e92bd52339f298b9
GET /favicon.ico HTTP/1.1
Host: ww25.hillsidearms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww25.hillsidearms.com/dhl/view/mydhl/a1ng87b50yi2efw013gctwxt73dce75d92181ca956e737b3cb66db98.php?id&subid1=20220917-1507-0510-b5b6-6bb41af9c8ae
Cookie: sid=5ab16628-c79a-11ed-b86a-51bd8f648534
HTTP/1.1 404 Not Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 9
date: Tue, 21 Mar 2023 03:42:07 GMT
server: nginx
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Last-Modified, Retry-After, Content-Length, Alert, Cache-Control, Expires, Content-Type, Backoff, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 21 Mar 2023 03:14:33 GMT
age: 1655
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 4c195a3fc0c2abb831630cef1dcfa770
eda338de3063640556177b9db364c33193d7f6dc
c22eb0537cd79666b82fe61dd77fe9b0b3c059a4c65d405412acfc2c6800b444
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C22EB0537CD79666B82FE61DD77FE9B0B3C059A4C65D405412ACFC2C6800B444"
Last-Modified: Sun, 19 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7269
Expires: Tue, 21 Mar 2023 05:43:17 GMT
Date: Tue, 21 Mar 2023 03:42:08 GMT
Connection: keep-alive
ww1.hillsidearms.com/
208.91.196.145200 OK 2.2 kB IP 208.91.196.145:0
ASN #40034 CONFLUENCE-NETWORK-INC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (498), with CRLF line terminators
Hash bb737b129002c4b54314086ea8c8b4dd
763f69989aa877139be0fdea986f2275cec43138
f181a8f9f858884cea6918390841af7da17685bf2a96ab820ae83e7ff8b4b41f
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: ww1.hillsidearms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://ww25.hillsidearms.com/
Connection: keep-alive
Cookie: sid=5ab16628-c79a-11ed-b86a-51bd8f648534
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 03:42:08 GMT
Server: Apache
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAKX74ixpzVyXbJprcLfbH4psP4+L2entqri0lzh6pkAaXLPIcclv6DQBeJJjGFWrBIF6QMyFwXT5CCRyjS2penECAwEAAQ==_iQTs7+WAO8HWoEGYnDQfv/pfCSMn5+rg2PwNVPHc5BIO/cUvD8GGNKFA1tE6J+2glq29CTnCdg/J0Qudj0FPFw==
Content-Length: 2207
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
push.services.mozilla.com/
54.202.26.9101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.202.26.9:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: B80bwn3cUz2XjJHf1A0sZQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ZRcn0IxjkoGEwyVY3ewb3teSkcQ=
ww1.hillsidearms.com/favicon.ico
208.91.196.145404 Not Found 10 B URL HTTP/1.1 ww1.hillsidearms.com/favicon.ico
IP 208.91.196.145:0
ASN #40034 CONFLUENCE-NETWORK-INC
File type ASCII text, with no line terminators
Hash 6608dd3e21ca3beabd4bdfa625a0b221
e926d0f8694a4bc4013308afaca7af51e4c9fd9f
c75eb01138771bfb2a5517aeae882356733782767c4560cc9601c34d2591ca75
GET /favicon.ico HTTP/1.1
Host: ww1.hillsidearms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww1.hillsidearms.com/
Cookie: sid=5ab16628-c79a-11ed-b86a-51bd8f648534; isframesetenabled=1
HTTP/1.1 404 Not Found
Date: Tue, 21 Mar 2023 03:42:09 GMT
Server: Apache
Content-Length: 10
Keep-Alive: timeout=5, max=111
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash de95776582936b8e129e876cf6d80fa8
0233251e1cf0123f1260d980d7c8ef92718723f9
49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36"
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2171
Expires: Tue, 21 Mar 2023 04:18:21 GMT
Date: Tue, 21 Mar 2023 03:42:10 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash de95776582936b8e129e876cf6d80fa8
0233251e1cf0123f1260d980d7c8ef92718723f9
49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36"
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2171
Expires: Tue, 21 Mar 2023 04:18:21 GMT
Date: Tue, 21 Mar 2023 03:42:10 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash de95776582936b8e129e876cf6d80fa8
0233251e1cf0123f1260d980d7c8ef92718723f9
49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36"
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2171
Expires: Tue, 21 Mar 2023 04:18:21 GMT
Date: Tue, 21 Mar 2023 03:42:10 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash de95776582936b8e129e876cf6d80fa8
0233251e1cf0123f1260d980d7c8ef92718723f9
49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36"
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2171
Expires: Tue, 21 Mar 2023 04:18:21 GMT
Date: Tue, 21 Mar 2023 03:42:10 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ac4bd79-9966-45ec-9163-6d82808ad8e1.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ac4bd79-9966-45ec-9163-6d82808ad8e1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2e4a56e01366e8d0e9aa570539b423f4
7759489cac98590fd01b94e70bd37c742cf2e80e
96b27781b8c7103ccadbf648a400e1b1295e7c50b745e6986fb7fef1e4d9426c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ac4bd79-9966-45ec-9163-6d82808ad8e1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12040
x-amzn-requestid: 4507792f-180b-4904-8b70-80fb89014d7c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CGWkcGnRoAMFXiw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6418d14f-36a1f2924096fd8b56d262a2;Sampled=0
x-amzn-remapped-date: Mon, 20 Mar 2023 21:34:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: Gm_k2_nwp5FBTYeCmkb4Vv-L0Oy--3D_9ADB7Ut3MMJnmlu9OXqB1Q==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 28fdf6e146f70e7372911f118404fb20.cloudfront.net (CloudFront), 1.1 google
date: Mon, 20 Mar 2023 21:52:13 GMT
age: 20997
etag: "7759489cac98590fd01b94e70bd37c742cf2e80e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37da4f74-766e-41d9-a774-49f626f750e7.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37da4f74-766e-41d9-a774-49f626f750e7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d7ff2fa3219118fba5b4b4ab131c2881
54fe3df9c2d39151a505153c0137173116848ff1
01c646e5e4fd299b492170a25d9d1030e1b0b517b8da8caf7c0265e5f6913e35
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37da4f74-766e-41d9-a774-49f626f750e7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7715
x-amzn-requestid: dd57ff83-d593-4787-9282-6b4c2c7786d3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CGWI-EP_IAMF7OA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6418d09f-01482aac2d94544f682ef258;Sampled=0
x-amzn-remapped-date: Mon, 20 Mar 2023 21:31:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: AjfuSx4E3XBBxGww3xyTkk1EeL-GGx2Yd1IT1N1GJVotbdRETRIsdQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 ac463f3377446e4c603deca30feb744a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 20 Mar 2023 21:48:19 GMT
age: 21231
etag: "54fe3df9c2d39151a505153c0137173116848ff1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c5536c4-c443-404a-b2e5-48f229253ca8.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c5536c4-c443-404a-b2e5-48f229253ca8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 97a37cecfd90072794d657e2074620cb
34c456db4f8b0bd7e3affe31a7cf02e4596a8188
889d4f26715418088c8747251ee068dfdb5c8d5024b1d43862012cb31acf9650
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c5536c4-c443-404a-b2e5-48f229253ca8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13522
x-amzn-requestid: d39593de-64b8-44f6-9160-7aa61c26ed88
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CGWI8E-YoAMFm4g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6418d09f-7ad0b7e7747de71b5f751226;Sampled=0
x-amzn-remapped-date: Mon, 20 Mar 2023 21:31:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: h2u_sdWiqNN_tsFGKEGI1VvDWOVL9DwWbbi-MCemYMikc34WHt3qAg==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 9825a45e2b387a61504c0c3df20048ee.cloudfront.net (CloudFront), 1.1 google
date: Mon, 20 Mar 2023 21:45:17 GMT
age: 21413
etag: "34c456db4f8b0bd7e3affe31a7cf02e4596a8188"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc78f90b-41af-4ead-ad86-702e5fda80ad.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc78f90b-41af-4ead-ad86-702e5fda80ad.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2b8211ace94cc818c0b092a0f8c24c7e
785e7ca94d770a89c2d738d38c880d676bf14652
f14171e1bf278f881e63d81884e84b0395f37871bfdad187c57ee8b1c337602d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc78f90b-41af-4ead-ad86-702e5fda80ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10326
x-amzn-requestid: 21739424-faef-436b-9024-5354854b622c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CGWI8E4poAMFsvg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6418d09f-1627c1db7ff0c2f05f9c4e6e;Sampled=0
x-amzn-remapped-date: Mon, 20 Mar 2023 21:31:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: RIABIQaX9GWt0kbVqf4YeCZOVYYZRq0I31xV_YXoi4TQKvAQqY7ftA==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 31dfa94142c6eaf975b0e5454c00340a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 20 Mar 2023 21:45:17 GMT
age: 21413
etag: "785e7ca94d770a89c2d738d38c880d676bf14652"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30f3b190-942a-4719-9acd-24de4ce3cffb.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30f3b190-942a-4719-9acd-24de4ce3cffb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6d65964786df6f0974add4e6e1557e8b
b0516c8fc89a28344607b18953f4ca6a47f3a766
13b494cee4481fda312d2496d64e6bf538af3560c3147e6d4644a55b53b03874
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30f3b190-942a-4719-9acd-24de4ce3cffb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5250
x-amzn-requestid: e58ccd5e-c06b-4151-a89d-e5be457173a3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B5YtUFCwoAMF_zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6413a188-2b2a7f1d27d6e0572129b0e6;Sampled=0
x-amzn-remapped-date: Thu, 16 Mar 2023 23:08:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: g02a1S-uNlNZX1Ee0mWQsaxYJ8p07F0b-jT4aMlfTre5bIx1hIKZcA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 0906d4887f6625f4a4467d8d4fd268d2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 20 Mar 2023 21:52:17 GMT
age: 20993
etag: "b0516c8fc89a28344607b18953f4ca6a47f3a766"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0e5e49ed-9ec4-4b75-b7ba-3c4c213d5d27.jpeg
34.120.237.76200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0e5e49ed-9ec4-4b75-b7ba-3c4c213d5d27.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d0e5cb0b321323913460ba1efd6b7b63
701eb0eb86c6673bbb6e85cf933bea53187b6048
150d0e93b808b222fcb4b58f0f4a78a403517b84461cb3029fc71c30930bb11b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0e5e49ed-9ec4-4b75-b7ba-3c4c213d5d27.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4712
x-amzn-requestid: 3c0b3a28-a1a9-4ba0-94ad-29156c2d83c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B9yGEE8SIAMF-LQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641563c0-1937b8bc1e42142720eddd7b;Sampled=0
x-amzn-remapped-date: Sat, 18 Mar 2023 07:09:52 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: AiPPel5fJZ56l-XoDAdJnwrcvrSU1bIO6365983POkVVXhlCnSK7Yg==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 5292c0d5844327feadb38f1efe42ebc6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 20 Mar 2023 13:26:29 GMT
age: 51341
etag: "701eb0eb86c6673bbb6e85cf933bea53187b6048"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ww1.hillsidearms.com/px.js?ch=1
208.91.196.145200 OK 346 B URL HTTP/1.1 ww1.hillsidearms.com/px.js?ch=1
IP 208.91.196.145:0
ASN #40034 CONFLUENCE-NETWORK-INC
File type ASCII text, with very long lines (346), with no line terminators
Hash f84f931c0dd37448e03f0dabf4e4ca9f
9c2c50edcf576453ccc07bf65668bd23c76e8663
5c1d5fd46a88611c31ecbb8ffc1142a7e74ec7fb7d72bd3891131c880ef3f584
GET /px.js?ch=1 HTTP/1.1
Host: ww1.hillsidearms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww1.hillsidearms.com/?fp=pgxr%2B0ZXucO%2FXmxT8J1IESJWeTwdRivNTSy1l%2By3Y2cZqf9ii%2FXSu4ybpsYqNzEHeqitbC%2B%2FIaTsum2P6ne7lVg6qYt24Eg%2BAQKa7d%2FqltigqpLEOLOcJ60A5l7ZZQUDvGiFMjMvAk4L8JaXYHQQk8NiG%2FpaaDKBNsSTlD0UG20dvBv83JxJo886sJkSOYI1ZtXRns8KDgUFHbapkNbAlnauuIuhrB78fu5w9OX4Mme95hbUjWTQMvd1TuDJrN95%2FCnqTeP7Gk4dWxnn2ZvSgQ%3D%3D&prvtof=DXPzA0BWBefGkk37IriEvcpIgyz0LtMgw7BFaztty6o%3D&poru=ElqbJVDQOftUe0l%2FsiTvweLqZt7YQF%2F785iSg6%2BXsMk%3D&_opnslfp=1&
Cookie: sid=5ab16628-c79a-11ed-b86a-51bd8f648534; isframesetenabled=1
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 03:42:10 GMT
Server: Apache
Last-Modified: Wed, 20 Jan 2021 10:45:10 GMT
ETag: "15a-5b952a63b81f1"
Accept-Ranges: bytes
Content-Length: 346
Keep-Alive: timeout=5, max=77
Connection: Keep-Alive
Content-Type: application/javascript
ww1.hillsidearms.com/?fp=pgxr%2B0ZXucO%2FXmxT8J1IESJWeTwdRivNTSy1l%2By3Y2cZqf9ii%2FXSu4ybpsYqNzEHeqitbC%2B%2FIaTsum2P6ne7lVg6qYt24Eg%2BAQKa7d%2FqltigqpLEOLOcJ60A5l7ZZQUDvGiFMjMvAk4L8JaXYHQQk8NiG%2FpaaDKBNsSTlD0UG20dvBv83JxJo886sJkSOYI1ZtXRns8KDgUFHbapkNbAlnauuIuhrB78fu5w9OX4Mme95hbUjWTQMvd1TuDJrN95%2FCnqTeP7Gk4dWxnn2ZvSgQ%3D%3D&prvtof=DXPzA0BWBefGkk37IriEvcpIgyz0LtMgw7BFaztty6o%3D&poru=ElqbJVDQOftUe0l%2FsiTvweLqZt7YQF%2F785iSg6%2BXsMk%3D&_opnslfp=1&
208.91.196.145200 OK 29 kB URL HTTP/1.1 ww1.hillsidearms.com/?fp=pgxr%2B0ZXucO%2FXmxT8J1IESJWeTwdRivNTSy1l%2By3Y2cZqf9ii%2FXSu4ybpsYqNzEHeqitbC%2B%2FIaTsum2P6ne7lVg6qYt24Eg%2BAQKa7d%2FqltigqpLEOLOcJ60A5l7ZZQUDvGiFMjMvAk4L8JaXYHQQk8NiG%2FpaaDKBNsSTlD0UG20dvBv83JxJo886sJkSOYI1ZtXRns8KDgUFHbapkNbAlnauuIuhrB78fu5w9OX4Mme95hbUjWTQMvd1TuDJrN95%2FCnqTeP7Gk4dWxnn2ZvSgQ%3D%3D&prvtof=DXPzA0BWBefGkk37IriEvcpIgyz0LtMgw7BFaztty6o%3D&poru=ElqbJVDQOftUe0l%2FsiTvweLqZt7YQF%2F785iSg6%2BXsMk%3D&_opnslfp=1&
IP 208.91.196.145:0
ASN #40034 CONFLUENCE-NETWORK-INC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4084), with CRLF, LF line terminators
Hash fa0cb54e78df809ba6b7d585f5861989
258ae67c726e8804afe486adef5fcd8869775b78
db02b25bda6d164c906de6a8a66d35b625a2342430be8d339d28c974320dd016
GET /?fp=pgxr%2B0ZXucO%2FXmxT8J1IESJWeTwdRivNTSy1l%2By3Y2cZqf9ii%2FXSu4ybpsYqNzEHeqitbC%2B%2FIaTsum2P6ne7lVg6qYt24Eg%2BAQKa7d%2FqltigqpLEOLOcJ60A5l7ZZQUDvGiFMjMvAk4L8JaXYHQQk8NiG%2FpaaDKBNsSTlD0UG20dvBv83JxJo886sJkSOYI1ZtXRns8KDgUFHbapkNbAlnauuIuhrB78fu5w9OX4Mme95hbUjWTQMvd1TuDJrN95%2FCnqTeP7Gk4dWxnn2ZvSgQ%3D%3D&prvtof=DXPzA0BWBefGkk37IriEvcpIgyz0LtMgw7BFaztty6o%3D&poru=ElqbJVDQOftUe0l%2FsiTvweLqZt7YQF%2F785iSg6%2BXsMk%3D&_opnslfp=1& HTTP/1.1
Host: ww1.hillsidearms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww1.hillsidearms.com/
Cookie: sid=5ab16628-c79a-11ed-b86a-51bd8f648534; isframesetenabled=1
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 03:42:09 GMT
Server: Apache
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAKX74ixpzVyXbJprcLfbH4psP4+L2entqri0lzh6pkAaXLPIcclv6DQBeJJjGFWrBIF6QMyFwXT5CCRyjS2penECAwEAAQ==_ilrHQtal/JLVLpd6DbUAxmWEQ781+eN5xwnaFXP0pAJSNw5aeLyHR7yF3kd5L7XW9x7vBirCD9ggH6qhJolElQ==
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
ww1.hillsidearms.com/px.js?ch=2
208.91.196.145200 OK 346 B URL HTTP/1.1 ww1.hillsidearms.com/px.js?ch=2
IP 208.91.196.145:0
ASN #40034 CONFLUENCE-NETWORK-INC
File type ASCII text, with very long lines (346), with no line terminators
Hash f84f931c0dd37448e03f0dabf4e4ca9f
9c2c50edcf576453ccc07bf65668bd23c76e8663
5c1d5fd46a88611c31ecbb8ffc1142a7e74ec7fb7d72bd3891131c880ef3f584
GET /px.js?ch=2 HTTP/1.1
Host: ww1.hillsidearms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww1.hillsidearms.com/?fp=pgxr%2B0ZXucO%2FXmxT8J1IESJWeTwdRivNTSy1l%2By3Y2cZqf9ii%2FXSu4ybpsYqNzEHeqitbC%2B%2FIaTsum2P6ne7lVg6qYt24Eg%2BAQKa7d%2FqltigqpLEOLOcJ60A5l7ZZQUDvGiFMjMvAk4L8JaXYHQQk8NiG%2FpaaDKBNsSTlD0UG20dvBv83JxJo886sJkSOYI1ZtXRns8KDgUFHbapkNbAlnauuIuhrB78fu5w9OX4Mme95hbUjWTQMvd1TuDJrN95%2FCnqTeP7Gk4dWxnn2ZvSgQ%3D%3D&prvtof=DXPzA0BWBefGkk37IriEvcpIgyz0LtMgw7BFaztty6o%3D&poru=ElqbJVDQOftUe0l%2FsiTvweLqZt7YQF%2F785iSg6%2BXsMk%3D&_opnslfp=1&
Cookie: sid=5ab16628-c79a-11ed-b86a-51bd8f648534; isframesetenabled=1
HTTP/1.1 200 OK
Date: Tue, 21 Mar 2023 03:42:10 GMT
Server: Apache
Last-Modified: Wed, 20 Jan 2021 10:45:10 GMT
ETag: "15a-5b952a63b81f1"
Accept-Ranges: bytes
Content-Length: 346
Keep-Alive: timeout=5, max=125
Connection: Keep-Alive
Content-Type: application/javascript
i4.cdn-image.com/__media__/js/min.js?v2.3
208.91.196.253200 OK 8.4 kB URL HTTP/1.1 i4.cdn-image.com/__media__/js/min.js?v2.3
IP 208.91.196.253:0
ASN #40034 CONFLUENCE-NETWORK-INC
File type ASCII text, with very long lines (8349), with CRLF line terminators
Hash c16c3a4c0fad29106f34d00e89f6886e
6e11811ab8a98bb295b0916cdee68b302c33403d
097786d677a859b7bc87e285377b083b76d66a2fc2832a16bcd50b0e99df77ff
GET /__media__/js/min.js?v2.3 HTTP/1.1
Host: i4.cdn-image.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww1.hillsidearms.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 21 Mar 2023 03:42:10 GMT
Content-Type: application/javascript
Content-Length: 8435
Last-Modified: Thu, 16 Feb 2023 20:41:15 GMT
Connection: keep-alive
ETag: "63ee94eb-20f3"
Expires: Tue, 04 Apr 2023 03:42:10 GMT
Cache-Control: max-age=1209600, public
Accept-Ranges: bytes
i4.cdn-image.com/__media__/pics/28905/arrrow.png
208.91.196.253200 OK 283 B URL HTTP/1.1 i4.cdn-image.com/__media__/pics/28905/arrrow.png
IP 208.91.196.253:0
ASN #40034 CONFLUENCE-NETWORK-INC
File type PNG image data, 17 x 27, 8-bit colormap, non-interlaced\012- data
Hash 80d42c82a6c37da90210fd60a2f36128
554ba7c84d2a27ecf3b1f29d03e62101936b54d8
a1626e2d9160a0890a0a8d6e3af9e7095d68a24f9fb5ac8a166000c9a2581e10
GET /__media__/pics/28905/arrrow.png HTTP/1.1
Host: i4.cdn-image.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww1.hillsidearms.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 21 Mar 2023 03:42:10 GMT
Content-Type: image/png
Content-Length: 283
Last-Modified: Tue, 04 Jan 2022 14:44:27 GMT
Connection: keep-alive
ETag: "61d45d4b-11b"
Expires: Tue, 04 Apr 2023 03:42:10 GMT
Cache-Control: max-age=1209600, public
Accept-Ranges: bytes
i4.cdn-image.com/__media__/pics/29590/bg1.png
208.91.196.253200 OK 18 kB URL HTTP/1.1 i4.cdn-image.com/__media__/pics/29590/bg1.png
IP 208.91.196.253:0
ASN #40034 CONFLUENCE-NETWORK-INC
File type PNG image data, 1730 x 988, 4-bit colormap, non-interlaced\012- data
Hash 825ccd29ac102fcadaf92b2343d5917b
24472e766cfac5b82a73b219796556a0a3702bd6
0878fb2875c0ad852de8fb3e8f443afdf3064890f1443b3feccc274382f913cd
GET /__media__/pics/29590/bg1.png HTTP/1.1
Host: i4.cdn-image.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ww1.hillsidearms.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 21 Mar 2023 03:42:10 GMT
Content-Type: image/png
Content-Length: 17986
Last-Modified: Fri, 25 Nov 2022 12:16:35 GMT
Connection: keep-alive
ETag: "6380b223-4642"
Expires: Tue, 04 Apr 2023 03:42:10 GMT
Cache-Control: max-age=1209600, public
Accept-Ranges: bytes
i4.cdn-image.com/__media__/fonts/montserrat-bold/montserrat-bold.woff
208.91.196.253200 OK 17 kB URL HTTP/1.1 i4.cdn-image.com/__media__/fonts/montserrat-bold/montserrat-bold.woff
IP 208.91.196.253:0
ASN #40034 CONFLUENCE-NETWORK-INC
File type Web Open Font Format, TrueType, length 17312, version 2.1\012- data
Hash bebe201d813feaad85a3e66607d0da3a
28b049502afa8e9db5340c1a92400591b39870e8
58bb75322beb862803b0d156e1a1d01fb1e7fde82ee93c929b08bf5aea9fc55b
GET /__media__/fonts/montserrat-bold/montserrat-bold.woff HTTP/1.1
Host: i4.cdn-image.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://ww1.hillsidearms.com
Connection: keep-alive
Referer: http://ww1.hillsidearms.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 21 Mar 2023 03:42:10 GMT
Content-Type: application/font-woff
Content-Length: 17312
Last-Modified: Wed, 20 Jan 2021 10:45:11 GMT
Connection: keep-alive
ETag: "600809b7-43a0"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
i4.cdn-image.com/__media__/fonts/montserrat-regular/montserrat-regular.woff
208.91.196.253200 OK 17 kB URL HTTP/1.1 i4.cdn-image.com/__media__/fonts/montserrat-regular/montserrat-regular.woff
IP 208.91.196.253:0
ASN #40034 CONFLUENCE-NETWORK-INC
File type Web Open Font Format, TrueType, length 17264, version 2.1\012- data
Hash a43b107861b42ce1335e41e43d4e4d00
99bdb1cec4a68ebe29249c46fefefb6880d009e5
a6542dc92d71eb412bac89d8fb06c70f15be74a64b1b4ef1633288b78f4f2ff2
GET /__media__/fonts/montserrat-regular/montserrat-regular.woff HTTP/1.1
Host: i4.cdn-image.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://ww1.hillsidearms.com
Connection: keep-alive
Referer: http://ww1.hillsidearms.com/
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 21 Mar 2023 03:42:10 GMT
Content-Type: application/font-woff
Content-Length: 17264
Last-Modified: Wed, 20 Jan 2021 10:45:11 GMT
Connection: keep-alive
ETag: "600809b7-4370"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes