interwell.social-previews.top/
159.65.208.189200 OK 1.5 kB URL HTTP/1.1 interwell.social-previews.top/
IP 159.65.208.189:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (481)
Hash 445d5299f27f2cf5124e3110d6387446
cb030ede16030a8ebd5fa42e2cf0d8e37df33355
65c32ca7c0f980568ae4f60692d9979b46aa91244d393f933e85e2ffe97e29de
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: interwell.social-previews.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Cache-Control: no-cache, private
Content-Encoding: gzip
Content-Type: text/html; charset=UTF-8
Date: Wed, 09 Nov 2022 02:48:25 GMT
Server: Caddy
Set-Cookie: anyimage_session=eyJpdiI6InptRGZrakYwVlZZTUEyK0hNSTJoWUE9PSIsInZhbHVlIjoicFwvVVZMN1pCODNHV0o4dVhYMTFoQkhLM2NsemViRkNzd3NxNXEySFE5QmxKcTd5TFA0NHU2WVNyK3BTeFwvZk9wIiwibWFjIjoiNDhjZjk1OWRiMzExNWFkMzAwNWNkMDQ2ODk0MWMzOWFjYWQxNDQ0ZTJkZjEyYzg0NWJkYWVlYWUzMDliZjhhNSJ9; expires=Wed, 09-Nov-2022 04:48:25 GMT; Max-Age=7200; path=/; httponly
Vary: Accept-Encoding
X-Powered-By: PHP/7.3.2
Content-Length: 1508
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9e164a845d32db8fa51fdb5b1aa218d9
169099b4d2f8e119ab6cf6fca279b6fb535b1759
402ffbf1404cf05c0516c5a8cd5344bd53537ac5150d387730a90c81c17dc9e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "402FFBF1404CF05C0516C5A8CD5344BD53537AC5150D387730A90C81C17DC9E4"
Last-Modified: Sun, 06 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7910
Expires: Wed, 09 Nov 2022 05:00:15 GMT
Date: Wed, 09 Nov 2022 02:48:25 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7908acd0c083145e2b454aaeb063c236
0696647bb0a4118327f637a50ebcc21bac39d592
ffc30b68df0b33d67f31e37bbf5ae5cf4c23e1c8b8197bf76a95ee06bec4cd36
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4388
Cache-Control: max-age=118554
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 02:48:25 GMT
Etag: "636a2fef-1d7"
Expires: Thu, 10 Nov 2022 11:44:19 GMT
Last-Modified: Tue, 08 Nov 2022 10:31:11 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dc90abd8b3ea8e75a68c144d74d75788
1ce29dca1ee9ca8931397de31ffb6cf7833baaf8
807000997bcf1b7a1fa35e43908cbfa54cd1704a5a0f53c09e1ae154638f10e0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "807000997BCF1B7A1FA35E43908CBFA54CD1704A5A0F53C09E1AE154638F10E0"
Last-Modified: Tue, 08 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9630
Expires: Wed, 09 Nov 2022 05:28:55 GMT
Date: Wed, 09 Nov 2022 02:48:25 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: sfFJuF4yKWpPorAMM9ArgO7Ag+MlPA/hLjRjYYa4mFXDif4kX2sglvd4aaiMTnab/hS/j8X/vWJi9TGp+JBfrQ==
x-amz-request-id: 2CEWYPV6FVTP96PY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 09 Nov 2022 02:11:33 GMT
age: 2212
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
interwell.social-previews.top/pixie/pixie-integrate.js
159.65.208.189200 OK 3.3 kB URL HTTP/1.1 interwell.social-previews.top/pixie/pixie-integrate.js
IP 159.65.208.189:0
ASN #14061 DIGITALOCEAN-ASN
Hash 77c9d14ae032873143d65462fab19c7a
dd8c3f97dc39e5f5a00a7f3d646f9b9febba9148
dd1dbe7f916cdf9e09b528abd6ef0659b04c380556fa863929c836552f191f22
Analyzer Verdict Alert fortinet Phishing
GET /pixie/pixie-integrate.js HTTP/1.1
Host: interwell.social-previews.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://interwell.social-previews.top/
Cookie: anyimage_session=eyJpdiI6InptRGZrakYwVlZZTUEyK0hNSTJoWUE9PSIsInZhbHVlIjoicFwvVVZMN1pCODNHV0o4dVhYMTFoQkhLM2NsemViRkNzd3NxNXEySFE5QmxKcTd5TFA0NHU2WVNyK3BTeFwvZk9wIiwibWFjIjoiNDhjZjk1OWRiMzExNWFkMzAwNWNkMDQ2ODk0MWMzOWFjYWQxNDQ0ZTJkZjEyYzg0NWJkYWVlYWUzMDliZjhhNSJ9
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Type: application/javascript
Etag: W/"r7cin3al2"
Last-Modified: Tue, 15 Feb 2022 12:28:15 GMT
Server: Caddy
Vary: Accept-Encoding
Date: Wed, 09 Nov 2022 02:48:25 GMT
Transfer-Encoding: chunked
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 02:48:25 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
interwell.social-previews.top/css/front/app.css?id=f9505f0dca97df03e6e5
159.65.208.189200 OK 14 kB URL HTTP/1.1 interwell.social-previews.top/css/front/app.css?id=f9505f0dca97df03e6e5
IP 159.65.208.189:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (65194)
Hash f21430ff45ef642321de165bdf5d0beb
de6a03b4948951a4ae535153f486471511bc7169
bbd98e65fba193f8a1e733c460f89184568ad6278eb6b0dc83a083b64e9e1891
GET /css/front/app.css?id=f9505f0dca97df03e6e5 HTTP/1.1
Host: interwell.social-previews.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://interwell.social-previews.top/
Cookie: anyimage_session=eyJpdiI6InptRGZrakYwVlZZTUEyK0hNSTJoWUE9PSIsInZhbHVlIjoicFwvVVZMN1pCODNHV0o4dVhYMTFoQkhLM2NsemViRkNzd3NxNXEySFE5QmxKcTd5TFA0NHU2WVNyK3BTeFwvZk9wIiwibWFjIjoiNDhjZjk1OWRiMzExNWFkMzAwNWNkMDQ2ODk0MWMzOWFjYWQxNDQ0ZTJkZjEyYzg0NWJkYWVlYWUzMDliZjhhNSJ9
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Type: text/css; charset=utf-8
Etag: W/"r7cin32b9n"
Last-Modified: Tue, 15 Feb 2022 12:28:15 GMT
Server: Caddy
Vary: Accept-Encoding
Date: Wed, 09 Nov 2022 02:48:25 GMT
Transfer-Encoding: chunked
interwell.social-previews.top/lock-ui.js
159.65.208.189200 OK 880 B URL HTTP/1.1 interwell.social-previews.top/lock-ui.js
IP 159.65.208.189:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document, ASCII text, with very long lines (787)
Hash 16e099b8f78a487623a97bc953a24013
ff6076cb720c4536d2a6f7eec06270942d797e30
1a696e83df2014cb5738e120017178dc8c0a3eb0d568445334ac95bc2d948a76
Analyzer Verdict Alert fortinet Phishing
GET /lock-ui.js HTTP/1.1
Host: interwell.social-previews.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://interwell.social-previews.top/
Cookie: anyimage_session=eyJpdiI6InptRGZrakYwVlZZTUEyK0hNSTJoWUE9PSIsInZhbHVlIjoicFwvVVZMN1pCODNHV0o4dVhYMTFoQkhLM2NsemViRkNzd3NxNXEySFE5QmxKcTd5TFA0NHU2WVNyK3BTeFwvZk9wIiwibWFjIjoiNDhjZjk1OWRiMzExNWFkMzAwNWNkMDQ2ODk0MWMzOWFjYWQxNDQ0ZTJkZjEyYzg0NWJkYWVlYWUzMDliZjhhNSJ9
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Type: application/javascript
Etag: W/"r7cin31oa"
Last-Modified: Tue, 15 Feb 2022 12:28:15 GMT
Server: Caddy
Vary: Accept-Encoding
Date: Wed, 09 Nov 2022 02:48:25 GMT
Content-Length: 880
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b10986024b7c43560e2e76cb10764ec4
dcb10e65ceffd902d240df3c5682be4388119a96
6b9d5fdaeaf7b5c35fa5db97477ec3cde32b64b54b44c0d48b41fef1857630e9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 02:48:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
interwell.social-previews.top/js/front/app.js?id=414ac47d55010fc19fb2
159.65.208.189200 OK 428 kB URL HTTP/1.1 interwell.social-previews.top/js/front/app.js?id=414ac47d55010fc19fb2
IP 159.65.208.189:0
ASN #14061 DIGITALOCEAN-ASN
File type Unicode text, UTF-8 text, with very long lines (59665), with no line terminators
Size 428 kB (428202 bytes)
Hash 4c3379019b1522680aa2541ce3f360cd
496b8b7e0dddb8a1e07732036b65566de2da07de
5d159442414e8feaf83d5880d82b2603951835775a1e92c102a4dd6084fe439d
Analyzer Verdict Alert fortinet Phishing
GET /js/front/app.js?id=414ac47d55010fc19fb2 HTTP/1.1
Host: interwell.social-previews.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://interwell.social-previews.top/
Cookie: anyimage_session=eyJpdiI6InptRGZrakYwVlZZTUEyK0hNSTJoWUE9PSIsInZhbHVlIjoicFwvVVZMN1pCODNHV0o4dVhYMTFoQkhLM2NsemViRkNzd3NxNXEySFE5QmxKcTd5TFA0NHU2WVNyK3BTeFwvZk9wIiwibWFjIjoiNDhjZjk1OWRiMzExNWFkMzAwNWNkMDQ2ODk0MWMzOWFjYWQxNDQ0ZTJkZjEyYzg0NWJkYWVlYWUzMDliZjhhNSJ9
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Encoding: gzip
Content-Type: application/javascript
Etag: W/"r7cin3x6bs"
Last-Modified: Tue, 15 Feb 2022 12:28:15 GMT
Server: Caddy
Vary: Accept-Encoding
Date: Wed, 09 Nov 2022 02:48:25 GMT
Transfer-Encoding: chunked
fonts.googleapis.com/css?family=Open+Sans:300,400,600,700
142.250.74.10200 OK 1.2 kB URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:300,400,600,700
IP 142.250.74.10:0
Hash 8218839cb7c69153de8dfbc11aadaf95
fda4907af2201b251bec8d1fbfb961847291a45d
eb0c054ec26dacf4e982d919070695d882bdf8de329d2a01699b474a61e4929d
GET /css?family=Open+Sans:300,400,600,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://interwell.social-previews.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 09 Nov 2022 02:48:25 GMT
date: Wed, 09 Nov 2022 02:48:25 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2a47d129a3af5f02c654faf925c60273
9ad27ed9f4500c939260a677c12e702599b00fa9
0e031af077bf7009ffefada782407a247bbd31bddc96994c68de7bfe902bf992
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6321
Cache-Control: max-age=115421
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 02:48:26 GMT
Etag: "636a1c26-1d7"
Expires: Thu, 10 Nov 2022 10:52:07 GMT
Last-Modified: Tue, 08 Nov 2022 09:06:46 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 4dc4a177d25f666a9ba1cf6225354467
8975f2e5cc9cadc4a1e369da45471eb1f0830c5e
6c9e54a13abc265cac7bdee51c6fa49e5e7590fec7a1cc99096c384dabef31be
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 02:48:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.195200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://interwell.social-previews.top
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 03 Nov 2022 05:42:51 GMT
expires: Fri, 03 Nov 2023 05:42:51 GMT
cache-control: public, max-age=31536000
age: 507935
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
interwell.social-previews.top/favicon.ico
159.65.208.189200 OK 1.2 kB URL HTTP/1.1 interwell.social-previews.top/favicon.ico
IP 159.65.208.189:0
ASN #14061 DIGITALOCEAN-ASN
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash cfb3931a8993d1859966b2ad99d6d1d5
c89dd549c59497402673d66ca4921b8bc4d210dc
231f851d23bae6d1b62d9cb9120b5bec6d5e5da7e394e921afa4e23c4ead2dac
GET /favicon.ico HTTP/1.1
Host: interwell.social-previews.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://interwell.social-previews.top/
Cookie: anyimage_session=eyJpdiI6InptRGZrakYwVlZZTUEyK0hNSTJoWUE9PSIsInZhbHVlIjoicFwvVVZMN1pCODNHV0o4dVhYMTFoQkhLM2NsemViRkNzd3NxNXEySFE5QmxKcTd5TFA0NHU2WVNyK3BTeFwvZk9wIiwibWFjIjoiNDhjZjk1OWRiMzExNWFkMzAwNWNkMDQ2ODk0MWMzOWFjYWQxNDQ0ZTJkZjEyYzg0NWJkYWVlYWUzMDliZjhhNSJ9
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Length: 1150
Content-Type: image/vnd.microsoft.icon
Etag: "r7cin3vy"
Last-Modified: Tue, 15 Feb 2022 12:28:15 GMT
Server: Caddy
Date: Wed, 09 Nov 2022 02:48:26 GMT
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 4dc4a177d25f666a9ba1cf6225354467
8975f2e5cc9cadc4a1e369da45471eb1f0830c5e
6c9e54a13abc265cac7bdee51c6fa49e5e7590fec7a1cc99096c384dabef31be
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 02:48:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
interwell.social-previews.top/img/AnyImage-Logo.png
159.65.208.189200 OK 6.6 kB URL HTTP/1.1 interwell.social-previews.top/img/AnyImage-Logo.png
IP 159.65.208.189:0
ASN #14061 DIGITALOCEAN-ASN
File type PNG image data, 678 x 109, 8-bit/color RGBA, non-interlaced\012- data
Hash 1bacf8483198a0677117c181848c0622
4d79640db4cc395de8e469ad8357e9b3910f130d
a3a5c73e70872c1dbb6e9665ef54e9f31a98968ae56b1f02613f682f9b9bee39
GET /img/AnyImage-Logo.png HTTP/1.1
Host: interwell.social-previews.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://interwell.social-previews.top/
Cookie: anyimage_session=eyJpdiI6InptRGZrakYwVlZZTUEyK0hNSTJoWUE9PSIsInZhbHVlIjoicFwvVVZMN1pCODNHV0o4dVhYMTFoQkhLM2NsemViRkNzd3NxNXEySFE5QmxKcTd5TFA0NHU2WVNyK3BTeFwvZk9wIiwibWFjIjoiNDhjZjk1OWRiMzExNWFkMzAwNWNkMDQ2ODk0MWMzOWFjYWQxNDQ0ZTJkZjEyYzg0NWJkYWVlYWUzMDliZjhhNSJ9
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Length: 6641
Content-Type: image/png
Etag: "r7cin354h"
Last-Modified: Tue, 15 Feb 2022 12:28:15 GMT
Server: Caddy
Date: Wed, 09 Nov 2022 02:48:26 GMT
push.services.mozilla.com/
54.186.209.73101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.186.209.73:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: sb9l2Ak0Hc2y57dTw7bMXw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 7xnoXPOk0EVnd4hDA1X6vqCtADU=
interwell.social-previews.top/img/Animated-Characters.gif
159.65.208.189200 OK 780 kB URL HTTP/1.1 interwell.social-previews.top/img/Animated-Characters.gif
IP 159.65.208.189:0
ASN #14061 DIGITALOCEAN-ASN
File type GIF image data, version 89a, 722 x 275\012- data
Size 780 kB (780357 bytes)
Hash 535b49e56785acd7705a37b95930ff16
d550d076651c973b443fa56548801a0a3c00916d
07906daad89d538b62a7c5ad35c0142102f390fdd895fb33314abfdce1c63a3b
GET /img/Animated-Characters.gif HTTP/1.1
Host: interwell.social-previews.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://interwell.social-previews.top/
Cookie: anyimage_session=eyJpdiI6InptRGZrakYwVlZZTUEyK0hNSTJoWUE9PSIsInZhbHVlIjoicFwvVVZMN1pCODNHV0o4dVhYMTFoQkhLM2NsemViRkNzd3NxNXEySFE5QmxKcTd5TFA0NHU2WVNyK3BTeFwvZk9wIiwibWFjIjoiNDhjZjk1OWRiMzExNWFkMzAwNWNkMDQ2ODk0MWMzOWFjYWQxNDQ0ZTJkZjEyYzg0NWJkYWVlYWUzMDliZjhhNSJ9
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Length: 780357
Content-Type: image/gif
Etag: "r7cin3gq4l"
Last-Modified: Tue, 15 Feb 2022 12:28:15 GMT
Server: Caddy
Date: Wed, 09 Nov 2022 02:48:26 GMT
anyimage.io/img/PreviewImage.jpg
159.89.248.162200 OK 35 kB URL HTTP/2 anyimage.io/img/PreviewImage.jpg
IP 159.89.248.162:0
ASN #14061 DIGITALOCEAN-ASN
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2015.5 (Windows), datetime=2017:04:22 18:41:10], baseline, precision 8, 868x438, components 3\012- data
Hash 2b9ba0030436550dedfe7a5654abb321
ccdf19e43a1dd0888ff0b502148b1abcb5c483f0
c622975fe3d454253c1e975f820f2d44b079dd18d9aa9573deb5d9eb2d276b09
GET /img/PreviewImage.jpg HTTP/1.1
Host: anyimage.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://interwell.social-previews.top/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
etag: "qrz9u7r0p"
last-modified: Thu, 22 Apr 2021 18:25:19 GMT
server: Caddy
content-length: 35017
date: Wed, 09 Nov 2022 02:48:26 GMT
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.8.1/webfonts/fa-brands-400.woff2
172.64.132.15200 OK 75 kB URL HTTP/2 use.fontawesome.com/releases/v5.8.1/webfonts/fa-brands-400.woff2
IP 172.64.132.15:0
File type Web Open Font Format (Version 2), TrueType, length 74768, version 329.-17761\012- data
Hash 5e2f92123d241cabecf0b289b9b08d4a
7f6c682ade204e641aed8f471064c56b6eddc263
dc64d7192f84497cacad5c10aef682562c24aa6124270f85fe247e223607f3ed
GET /releases/v5.8.1/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://interwell.social-previews.top
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 09 Nov 2022 02:48:26 GMT
content-type: font/woff2
content-length: 74768
x-amz-id-2: R1FDdlbHWOfICleaKISV6D3g+3WBOouWGsIa4HhxB3s8+t1V15FSz8af6mROsZVCX3e0bkeZF3Y=
x-amz-request-id: 7P1R34YDQD50TVF7
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:46:59 GMT
etag: "5e2f92123d241cabecf0b289b9b08d4a"
cache-control: max-age=31556926
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UoGmh5lxMCGaAwy0n8c0uZsUlrh4hKktWbEdIzEtENJI5WnJGLaRW7f1rJQP%2FYQpZixEL3xYhD0NroSuKEv0x%2FW5EAW8NMFcQQZbpOXayGj3E7ginQhm%2FyVY1i0W8NaX0WT1INoN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76733abc5cbe7330-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.8.1/webfonts/fa-solid-900.woff2
172.64.132.15200 OK 74 kB URL HTTP/2 use.fontawesome.com/releases/v5.8.1/webfonts/fa-solid-900.woff2
IP 172.64.132.15:0
File type Web Open Font Format (Version 2), TrueType, length 74256, version 329.-17761\012- data
Hash 418dad87601f9c8abd0e5798c0dc1feb
a6b003ef506e92d05cde73adf67487d7fd7ec6df
f18c486a80175cf02fee0e05c2b4acd86c04cdbaecec61c1ef91f920509b5efe
GET /releases/v5.8.1/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://interwell.social-previews.top
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 09 Nov 2022 02:48:26 GMT
content-type: font/woff2
content-length: 74256
x-amz-id-2: v9vWA8p/Gs70XJ6uyV2S0fgQTNRw15HDuQV3uf/i5CDPBgFSOqabemhwyGv9+2rNy31JcNf0B2U=
x-amz-request-id: 7P1TTCXB02AZWMXA
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:47:00 GMT
etag: "418dad87601f9c8abd0e5798c0dc1feb"
cache-control: max-age=31556926
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uj5YbWCgG1sU8YCwfjsnb5xqg%2Bw71J5SrzZmMT6X28Yhx8Brgp77t1MZUQGwJRqNF9qNzgFiSbt8dhFIsr6nANCUK6BZu%2F1K6Nfu0MAYFsd%2FeG6JTllO1wGzEAfGqwBiVP94OayL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76733abc3c977330-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.inspectlet.com/inspectlet.js
104.22.56.245200 OK 64 kB URL HTTP/1.1 cdn.inspectlet.com/inspectlet.js
IP 104.22.56.245:0
File type ASCII text, with very long lines (65471)
Hash 569b3965262c68b127413dd5861d1275
89e68f712df749fb2523d0941d2396aadad3d35a
0a22d9d9955ac06dfe50dafca2cb7ff4ac1e60fede2d4b7722ae969b914fa21d
GET /inspectlet.js HTTP/1.1
Host: cdn.inspectlet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://interwell.social-previews.top/
HTTP/1.1 200 OK
Date: Wed, 09 Nov 2022 02:48:26 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: s-maxage=60, max-age=14400
Via: 1.1 vegur
CF-Cache-Status: HIT
Age: 46
Last-Modified: Wed, 09 Nov 2022 02:47:40 GMT
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76733abf6fe2b50b-OSL
Content-Encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
hn.inspectlet.com/ginit/533853771
172.67.10.172200 OK 26 B URL HTTP/1.1 hn.inspectlet.com/ginit/533853771
IP 172.67.10.172:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 49b3fce69f28ac42692d487abd127a23
83e1535738cd244e457aef0030b1e288efb4ac68
d0b1cb1455ecf8ab5a7eb203460cc7ff790df097c5907eb3d27ff7344282517e
POST /ginit/533853771 HTTP/1.1
Host: hn.inspectlet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 908
Origin: http://interwell.social-previews.top
Connection: keep-alive
Referer: http://interwell.social-previews.top/
HTTP/1.1 200 OK
Date: Wed, 09 Nov 2022 02:48:27 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 26
Connection: keep-alive
X-Powered-By: Express
Cache-Control: no-cache
Access-Control-Allow-Origin: http://interwell.social-previews.top
Access-Control-Allow-Methods: GET, POST
Access-Control-Allow-Headers: X-Requested-With, Content-Type
Access-Control-Allow-Credentials: true
Etag: W/"1a-SbP85p8orEJpLUh6vRJ6Iw"
Via: 1.1 vegur
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76733ac02a790b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
interwell.social-previews.top/creator/lottery
159.65.208.189200 OK 55 B URL HTTP/1.1 interwell.social-previews.top/creator/lottery
IP 159.65.208.189:0
ASN #14061 DIGITALOCEAN-ASN
File type JSON data\012- , ASCII text, with no line terminators
Hash 16428038be0651e52eedfffb0c453cf2
b6b59527a4214fb85847f31e39497f2f45aac017
7b9b613b788a13720227b321fd2501e70dc86669d1ca27a8f60a66c65f413342
Analyzer Verdict Alert fortinet Phishing
GET /creator/lottery HTTP/1.1
Host: interwell.social-previews.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
X-CSRF-TOKEN: iWtdpNA5o4UwRb7cYblUWbfuBnsKHOpa8DOfz8XR
Connection: keep-alive
Referer: http://interwell.social-previews.top/
Cookie: anyimage_session=eyJpdiI6InptRGZrakYwVlZZTUEyK0hNSTJoWUE9PSIsInZhbHVlIjoicFwvVVZMN1pCODNHV0o4dVhYMTFoQkhLM2NsemViRkNzd3NxNXEySFE5QmxKcTd5TFA0NHU2WVNyK3BTeFwvZk9wIiwibWFjIjoiNDhjZjk1OWRiMzExNWFkMzAwNWNkMDQ2ODk0MWMzOWFjYWQxNDQ0ZTJkZjEyYzg0NWJkYWVlYWUzMDliZjhhNSJ9
HTTP/1.1 200 OK
Cache-Control: no-cache, private
Content-Encoding: gzip
Content-Type: application/json
Date: Wed, 09 Nov 2022 02:48:27 GMT
Server: Caddy
Set-Cookie: anyimage_session=eyJpdiI6Ikt5VVJ3TGdmcitPWUN1aTdoQ0ptUVE9PSIsInZhbHVlIjoiZVh2Wk16R0J3alVmbGpQSEtBeXJjYTF3K1FTY3QxUVhWZ0NZMmpUcStmVU14MFVKR3NMVzNOZVZnU2cwS1p3dSIsIm1hYyI6ImYzOTA0MDkwMDI0NjkxZWNkNzViYzYyYWM3ZjZlNmE1MWQ5NDA2NzYxZjg2Zjc0MTAyYjRjMzVlYjZiNTEyOTYifQ%3D%3D; expires=Wed, 09-Nov-2022 04:48:27 GMT; Max-Age=7200; path=/; httponly
next_lottery_domain=eyJpdiI6IkliQ0dRc3Bjbk9cL0JMeXFFYjQ4NmlRPT0iLCJ2YWx1ZSI6IjBoN1RLWTV2ZnFWWUFYVG0zSHhcL29LME5CXC9wd0k3U3UrUFJJbnlMbmx1Yz0iLCJtYWMiOiIxZmJmMzk3NzJkZDdjNGVjMzFlYThkZTU0ZmE3YjQ5OTg0OTBjOWVmOWY3M2M0ODhmNmJmM2NlMjdmZDNhZDFmIn0%3D; expires=Mon, 08-Nov-2027 02:48:27 GMT; Max-Age=157680000; path=/; httponly
Vary: Accept-Encoding
X-Powered-By: PHP/7.3.2
Content-Length: 55
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4599ea4ab89bca0461dfc4e86cf90610
d513a3fca97e06dbc1a6cdd02fbdd3c7253c865a
6056ef181a66539dd449318a89c133c3711e3244394126a66b8ebd29cff4692b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6056EF181A66539DD449318A89C133C3711E3244394126A66B8EBD29CFF4692B"
Last-Modified: Tue, 08 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12742
Expires: Wed, 09 Nov 2022 06:20:49 GMT
Date: Wed, 09 Nov 2022 02:48:27 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4599ea4ab89bca0461dfc4e86cf90610
d513a3fca97e06dbc1a6cdd02fbdd3c7253c865a
6056ef181a66539dd449318a89c133c3711e3244394126a66b8ebd29cff4692b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6056EF181A66539DD449318A89C133C3711E3244394126A66B8EBD29CFF4692B"
Last-Modified: Tue, 08 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12742
Expires: Wed, 09 Nov 2022 06:20:49 GMT
Date: Wed, 09 Nov 2022 02:48:27 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4599ea4ab89bca0461dfc4e86cf90610
d513a3fca97e06dbc1a6cdd02fbdd3c7253c865a
6056ef181a66539dd449318a89c133c3711e3244394126a66b8ebd29cff4692b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6056EF181A66539DD449318A89C133C3711E3244394126A66B8EBD29CFF4692B"
Last-Modified: Tue, 08 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12742
Expires: Wed, 09 Nov 2022 06:20:49 GMT
Date: Wed, 09 Nov 2022 02:48:27 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4599ea4ab89bca0461dfc4e86cf90610
d513a3fca97e06dbc1a6cdd02fbdd3c7253c865a
6056ef181a66539dd449318a89c133c3711e3244394126a66b8ebd29cff4692b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6056EF181A66539DD449318A89C133C3711E3244394126A66B8EBD29CFF4692B"
Last-Modified: Tue, 08 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12742
Expires: Wed, 09 Nov 2022 06:20:49 GMT
Date: Wed, 09 Nov 2022 02:48:27 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4599ea4ab89bca0461dfc4e86cf90610
d513a3fca97e06dbc1a6cdd02fbdd3c7253c865a
6056ef181a66539dd449318a89c133c3711e3244394126a66b8ebd29cff4692b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6056EF181A66539DD449318A89C133C3711E3244394126A66B8EBD29CFF4692B"
Last-Modified: Tue, 08 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12742
Expires: Wed, 09 Nov 2022 06:20:49 GMT
Date: Wed, 09 Nov 2022 02:48:27 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4e2853cc6ec6223160471401e6871f4b
f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c
bf4b9145ea043d87a30fd3aeeae21a1a0aa27004cd2467e7aa843bc894ae1f60
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10462
x-amzn-requestid: 43480a38-fd89-4c47-b8c4-e6ba90b1321c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aMF6oEz_oAMF8Hg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634e5043-6617fd2e59cab00135301cdd;Sampled=0
x-amzn-remapped-date: Tue, 18 Oct 2022 07:05:39 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: C7GYpM3mXSf0hVyGO9Zzlxa3IHXHdyPlXsvr3i0GoQnaPZF6lO-OwA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 08 Nov 2022 06:28:01 GMT
age: 73226
etag: "f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ae49d16-09cf-4def-b9d2-7463e61acc35.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ae49d16-09cf-4def-b9d2-7463e61acc35.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ee8f7d6daf8c20aeb6b71bc18225661f
17d67f22e69197701dd8e77aed0907007e444f26
3c42a717dab0144a05c23465af0bed25b76de574b2d8e62339ad2a2f2c41febd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ae49d16-09cf-4def-b9d2-7463e61acc35.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14211
x-amzn-requestid: fd1004b0-95ea-4d28-9498-4882b4d7043e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bNeREHvnIAMFlFA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63687739-4abe287a66322b5f6422c58f;Sampled=0
x-amzn-remapped-date: Mon, 07 Nov 2022 03:10:49 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: xvK05YxUhXAnqvo-2BidCEx84ObUjgnpxJYDOwpS31n09dgbPUgn6g==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 08 Nov 2022 06:49:05 GMT
age: 71962
etag: "17d67f22e69197701dd8e77aed0907007e444f26"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b197dc2-1415-4c19-8d36-1fa334168ba5.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b197dc2-1415-4c19-8d36-1fa334168ba5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 29429581f8dc762c69c5916009f70080
9265cae98aa663a5498925b70079abdd8e7031fd
c3deee74c80905a1e92b84868b9987cb30ad7a210dca066b97c325cc2c83872e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b197dc2-1415-4c19-8d36-1fa334168ba5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9313
x-amzn-requestid: be3f6b0f-cf61-4bec-ad1a-87abdbc45d73
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bTTTwF5AoAMFZAw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636acc17-5ca45b5b1065a4ea492f2ac6;Sampled=0
x-amzn-remapped-date: Tue, 08 Nov 2022 21:37:27 GMT
x-amz-cf-pop: SEA19-C3, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 9lVY7YgQQ0FAP3ItgCSWePY0Msd4RIyBz4eNPc-K51BtnWUjOObv6g==
via: 1.1 31dfa94142c6eaf975b0e5454c00340a.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 08 Nov 2022 21:43:31 GMT
etag: "9265cae98aa663a5498925b70079abdd8e7031fd"
content-type: image/jpeg
age: 18296
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F84109408-bbc7-4166-8974-df4b4fbbf1c1.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F84109408-bbc7-4166-8974-df4b4fbbf1c1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 11ef1d34ac2d42662fe53fc58c882fdf
16f1e048895ed1ee0c0c071e3939e741113e4969
61c42bae12654cf9bd1e7ca0f616164ff4139dc470fb6c1033176374444d6bda
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F84109408-bbc7-4166-8974-df4b4fbbf1c1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6272
x-amzn-requestid: 7287a2fe-853d-497f-a63e-1d521dd5326e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bG3dSGEIIAMF7Kg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6365d2bb-4c6803ad2d4ea46e68abd386;Sampled=0
x-amzn-remapped-date: Sat, 05 Nov 2022 03:04:27 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: EkLfQ2GJ8U9Zm5lJlAv3cCtg-5hbjNCd_8BViMjpzvNHo8tJjQ3ZbA==
via: 1.1 6a6653dfb47ccc5082f2a5b9d0d168ce.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 08 Nov 2022 09:36:18 GMT
age: 61929
etag: "16f1e048895ed1ee0c0c071e3939e741113e4969"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0fc93e21-4183-4c02-95b0-b3d44d9d41f6.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0fc93e21-4183-4c02-95b0-b3d44d9d41f6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1c688c72a0a785ef6d485c2ba57ed11a
032f4a224f693fafc9e57e24d1e760e494c2b1e5
19990655154191d879c0b7c92cfed9e93b41eec55e6752e1b3f2ea95df542831
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0fc93e21-4183-4c02-95b0-b3d44d9d41f6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7501
x-amzn-requestid: d5f757b6-d4b7-4311-9c39-014fa73e59b4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bDB3qGCToAMFQdQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636449ca-29cb4d1873338ce60014656d;Sampled=0
x-amzn-remapped-date: Thu, 03 Nov 2022 23:07:54 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: id3AfCTC55yItA8JHdNXBzZv3iuE_K4-zQeRTzYdmDu8XiZQYAN1Ag==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Tue, 08 Nov 2022 04:58:20 GMT
age: 78607
etag: "032f4a224f693fafc9e57e24d1e760e494c2b1e5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2d4ddd67-c616-4121-a20d-93a46ca683a5.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2d4ddd67-c616-4121-a20d-93a46ca683a5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b52a8b78f7273b02455e93107edb9633
7a09033d8e92af7e492e5ec41d6d90c473b848f6
b239606b1c37e680536a899808e845ccf270b1eadec03476e0cbfdf9911c149b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2d4ddd67-c616-4121-a20d-93a46ca683a5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7620
x-amzn-requestid: 4938029b-6e40-4549-8404-63ca28e79961
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bTU_WEQgIAMFU2w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636acec8-2bda1b015e94c4127df2b052;Sampled=0
x-amzn-remapped-date: Tue, 08 Nov 2022 21:48:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: N-7W40j1csZhuoQvk_awKDRBjxJukydzyRVHvJNBSBx-AqYJQrUYGg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Tue, 08 Nov 2022 22:02:26 GMT
age: 17161
etag: "7a09033d8e92af7e492e5ec41d6d90c473b848f6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.livechatinc.com/tracking.js
23.36.79.16301 Moved Permanently 0 B URL HTTP/1.1 cdn.livechatinc.com/tracking.js
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tracking.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://interwell.social-previews.top/
HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://cdn.livechatinc.com/tracking.js
Cache-Control: max-age=28800
Expires: Wed, 09 Nov 2022 10:48:29 GMT
Date: Wed, 09 Nov 2022 02:48:29 GMT
Connection: keep-alive
Content-Type: application/javascript; charset=utf-8
Access-Control-Allow-Origin: *
cdn.livechatinc.com/tracking.js
23.36.79.16200 OK 26 kB URL HTTP/2 cdn.livechatinc.com/tracking.js
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
Hash a999754f16b8daec8a9cbf8f7ebe66e6
f9e186f2ec53236f0a7243c5ade2eb9078f105e1
4776e9fad6b51bf5f32ce820a79001980c4176681a81fa2f874175a9045205e8
GET /tracking.js HTTP/1.1
Host: cdn.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://interwell.social-previews.top/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 24 Oct 2022 08:58:48 GMT
x-amz-version-id: J0ZctSlvHtSRiIvfxqT23ytGFYmKTZjx
server: AmazonS3
content-encoding: br
etag: W/"481c490ab1b0f3f7814823d600c180a0"
vary: Accept-Encoding
x-amz-cf-pop: HAM50-P2
x-amz-cf-id: 4C6_uBwvaLK-N-fEDiaGCPjm5ALxlCfWv-H_S921Sp4Tt97ZtAYSrw==
content-length: 25731
cache-control: max-age=28800
expires: Wed, 09 Nov 2022 10:48:29 GMT
date: Wed, 09 Nov 2022 02:48:29 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
X-Firefox-Spdy: h2
api.livechatinc.com/v3.3/customer/action/get_dynamic_configuration?license_id=6461921&url=http%3A%2F%2Finterwell.social-previews.top%2F&channel_type=code&jsonp=__vw73slltpnk
23.36.79.16200 OK 215 B URL HTTP/2 api.livechatinc.com/v3.3/customer/action/get_dynamic_configuration?license_id=6461921&url=http%3A%2F%2Finterwell.social-previews.top%2F&channel_type=code&jsonp=__vw73slltpnk
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type ASCII text, with no line terminators
Hash 336dfb6545ecd2110b965aa97315117d
867f6fb16800d35db4d30f97d729056f20bccf28
d373843063fdd956bb58ae5b3ed9ceffcd2f94a14457d33d5d61f07caf495b60
GET /v3.3/customer/action/get_dynamic_configuration?license_id=6461921&url=http%3A%2F%2Finterwell.social-previews.top%2F&channel_type=code&jsonp=__vw73slltpnk HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://interwell.social-previews.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-security-policy: frame-ancestors http://interwell.social-previews.top/;
content-type: application/javascript; charset=UTF-8
legacy: 2023-06-30
vary: Accept-Encoding
x-frame-options: allow-from http://interwell.social-previews.top/
content-length: 215
date: Wed, 09 Nov 2022 02:48:29 GMT
X-Firefox-Spdy: h2
api.livechatinc.com/v3.3/customer/action/get_configuration?license_id=6461921&version=2951.10.10.1198.25.34.21.13.8.31.8.13.1&group_id=0&jsonp=__lc_static_config
23.36.79.16200 OK 1.5 kB URL HTTP/2 api.livechatinc.com/v3.3/customer/action/get_configuration?license_id=6461921&version=2951.10.10.1198.25.34.21.13.8.31.8.13.1&group_id=0&jsonp=__lc_static_config
IP 23.36.79.16:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (4841), with no line terminators
Hash 077cb2cb9e517cadb4b262db904ba0e3
56087c96b024b544bfdb308c047066d4331b8347
fd1caf3ee9f80b19d0b8f8add42d3b44094cd88d615bd158b622bc739f2aa871
GET /v3.3/customer/action/get_configuration?license_id=6461921&version=2951.10.10.1198.25.34.21.13.8.31.8.13.1&group_id=0&jsonp=__lc_static_config HTTP/1.1
Host: api.livechatinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://interwell.social-previews.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
legacy: 2023-06-30
vary: Accept-Encoding
content-length: 1494
cache-control: public, max-age=600
expires: Wed, 09 Nov 2022 02:58:29 GMT
date: Wed, 09 Nov 2022 02:48:29 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 81387af62d2831245bdbf07effde75f0
5ed26463b4af8f4776a1d5113b74c6ccdd24a6e0
92e8c57ccf0ed13308f7493a61716038ff8d84b00c09d955828191a3bda24ac2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4327
Cache-Control: max-age=140089
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 02:48:31 GMT
Etag: "636a8451-117"
Expires: Thu, 10 Nov 2022 17:43:20 GMT
Last-Modified: Tue, 08 Nov 2022 16:31:13 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 279
player.vimeo.com/video/251553421
162.159.138.60200 OK 6.1 kB URL HTTP/1.1 player.vimeo.com/video/251553421
IP 162.159.138.60:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (19006), with no line terminators
Hash dc6866d615b2489c35870f4cff98163a
c9358d3f2abf37106bb7b037e694a6538dea45c7
b68124604b75dbf4c8d63f7556f3aa19bebed22ca6a3cbbf4c3bb76da8307d78
GET /video/251553421 HTTP/1.1
Host: player.vimeo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://interwell.social-previews.top/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 09 Nov 2022 02:48:31 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: resource: https://f.vimeocdn.com https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://cdn.kollective.app/ https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv https://f.vimeocdn.com; style-src 'self' 'unsafe-inline' https://f.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com https://f.vimeocdn.com; connect-src 'self' ws: wss: https://vimeo.com https://vimeo.dev https://api.vimeo.com https://api.vimeo.dev https://*.ci.vimeows.com https://csi.gstatic.com https://fresnel-player-staging.vimeows.com https://fresnel-event-staging.vimeows.com https://player-telemetry.vimeo.com https://*.akamaized.net https://*.akamaized-staging.net https://*.vimeocdn.com https://netflux.cloud.vimeo.com https://lic.staging.drmtoday.com https://lic.drmtoday.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://sentry.io https://*.ingest.sentry.io https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://*.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://*.dna-delivery.com https://*.kollective.app/ https://mimir.cloud.vimeo.com https://*.wirewax.com https://*.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; media-src 'self' blob: https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net https://*.gvt1.com https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://devcaptions.cloud.vimeo.com/; object-src 'self' https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net; default-src 'none'; font-src https://edge-assets.wirewax.com https://player.vimeo.com https://fonts.gstatic.com; img-src 'self' data: https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://player.vimeo.com https://*.ci.vimeows.com https://videoapi-sprites.vimeocdn.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com https://f.vimeocdn.com; frame-src 'self' https://*
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
link: <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin, <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin
p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy"
expires: Wed, 09 Nov 2022 02:50:46 GMT
x-host: player-7486488c59-6lhrq
via: 1.1 varnish, 1.1 varnish
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-varnish-cache: 1
x-vserver: playproxy-rollout-prod-varnish-2
x-backend-proxy: playproxy3
x-bapp-server: player-7486488c59-6lhrq
Age: 0
X-Served-By: cache-bma1678-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1667962111.258235,VS0,VE497
Vary: Accept-Encoding
X-Player-Backend: p
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=waJN58vN3swy3fY9TvPHU0oXO6GQbk9YCzNHR3w4r1g-1667962111-0-AeoxGYzkc6ktMBAg6qjZPuovYw8nm4H4QQQkeCM3lQWquqzMCSLPYsIxIXF3FRsHkik60K2RLFwptEv5obF42C4=; path=/; expires=Wed, 09-Nov-22 03:18:31 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 76733adb4a580b39-OSL
Content-Encoding: gzip
f.vimeocdn.com/p/4.13.2/css/player.css
151.101.86.109200 OK 20 kB URL HTTP/2 f.vimeocdn.com/p/4.13.2/css/player.css
IP 151.101.86.109:0
File type ASCII text, with very long lines (65495)
Hash 9cffff599bf7157ce18611ba14e0abba
f79a239bf94f2f7a83b90040c0c90f73d57f11ec
135e3378f27f81e61a3f5a7e1bbb1f13f59ff5a7cbffe7806ab4d47675f511c4
GET /p/4.13.2/css/player.css HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 09 Nov 2022 02:48:31 GMT
age: 103756
x-served-by: cache-iad-kjyo7100020-IAD, cache-bma1634-BMA
x-cache: HIT, HIT
x-cache-hits: 60, 25618
x-timer: S1667962112.869873,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 20326
X-Firefox-Spdy: h2
i.vimeocdn.com/video/677948780-1e9ff3eb4189338c2fbc3755801f3123a2a4330276716750c3493c9d82b0f643-d.jpg?mw=80&q=85
151.101.86.109200 OK 1.1 kB URL HTTP/2 i.vimeocdn.com/video/677948780-1e9ff3eb4189338c2fbc3755801f3123a2a4330276716750c3493c9d82b0f643-d.jpg?mw=80&q=85
IP 151.101.86.109:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x40, components 3\012- data
Hash 52295d72be8fe34a029dd90ef584316f
a43fc38660c4cce6b9531cf14dc3bbc91d0ac38d
00736455a2a39365c06bf601b347abd952230dd2834d9e29f4f4728d26a33872
GET /video/677948780-1e9ff3eb4189338c2fbc3755801f3123a2a4330276716750c3493c9d82b0f643-d.jpg?mw=80&q=85 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: 52295d72be8fe34a029dd90ef584316f
x-viewmaster-lossless-format: lossy
viewmaster-server: viewmaster-us-central1-cz95
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Wed, 09 Nov 2022 02:48:31 GMT
age: 2475469
x-served-by: cache-dfw-kdfw8210021-DFW, cache-bma1634-BMA
x-cache: miss, HIT, HIT
x-cache-hits: 246, 1
x-timer: S1667962112.882736,VS0,VE1
content-length: 1105
X-Firefox-Spdy: h2
f.vimeocdn.com/p/4.13.2/js/player.module.js
151.101.86.109200 OK 114 kB URL HTTP/2 f.vimeocdn.com/p/4.13.2/js/player.module.js
IP 151.101.86.109:0
File type Unicode text, UTF-8 text, with very long lines (65445)
Size 114 kB (113604 bytes)
Hash ee481cfb844b5f8cbdfcb86dc09df76c
776335470296e72405ae3e9baeb759cfa713ab85
af37d4de7105ba93e9ce592d86c1086bb3921c1b3a7f8dbb37d11ddc50ce5da0
GET /p/4.13.2/js/player.module.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 09 Nov 2022 02:48:31 GMT
age: 103756
x-served-by: cache-iad-kjyo7100117-IAD, cache-bma1634-BMA
x-cache: HIT, HIT
x-cache-hits: 50, 18424
x-timer: S1667962112.883433,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 113604
X-Firefox-Spdy: h2
f.vimeocdn.com/p/4.13.2/js/vendor.module.js
151.101.86.109200 OK 118 kB URL HTTP/2 f.vimeocdn.com/p/4.13.2/js/vendor.module.js
IP 151.101.86.109:0
File type ASCII text, with very long lines (65457)
Size 118 kB (117859 bytes)
Hash efda7cb04bdc9ecd62dd32f87553e470
869a056b3fe764b4b76a2b4a27ee4a519dacc3e4
33a816685cbe9284179da694713c8d2e7e12c37f9949cd7297edcbdafd102995
GET /p/4.13.2/js/vendor.module.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://f.vimeocdn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 09 Nov 2022 02:48:32 GMT
age: 103755
x-served-by: cache-iad-kiad7000083-IAD, cache-bma1644-BMA
x-cache: HIT, HIT
x-cache-hits: 52, 24246
x-timer: S1667962112.036906,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 117859
X-Firefox-Spdy: h2
f.vimeocdn.com/js_opt/modules/utils/vuid.min.js
151.101.86.109200 OK 997 B URL HTTP/2 f.vimeocdn.com/js_opt/modules/utils/vuid.min.js
IP 151.101.86.109:0
File type ASCII text, with very long lines (1839)
Hash 3d2ec727486c897591d751098283c68f
7b2b2e59063caf74de6bf2c96bffb68b748f257d
10c72391adec6fe62bb10a273adff205864ceafcc63c664bcc4eb7902481ba8b
GET /js_opt/modules/utils/vuid.min.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
cache-control: public, max-age=2592000
timing-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 09 Nov 2022 02:48:32 GMT
age: 1762274
x-served-by: cache-iad-kiad7000106-IAD, cache-bma1634-BMA
x-cache: HIT, HIT
x-cache-hits: 139, 195380
x-timer: S1667962112.235071,VS0,VE0
vary: Accept-Encoding,x-http-method-override
content-length: 997
X-Firefox-Spdy: h2
i.vimeocdn.com/video/677948780-1e9ff3eb4189338c2fbc3755801f3123a2a4330276716750c3493c9d82b0f643-d?mw=800&mh=397
151.101.86.109200 OK 7.7 kB URL HTTP/2 i.vimeocdn.com/video/677948780-1e9ff3eb4189338c2fbc3755801f3123a2a4330276716750c3493c9d82b0f643-d?mw=800&mh=397
IP 151.101.86.109:0
File type ISO Media, AVIF Image\012- data
Hash c7fac380763d566cd8210661401e833c
cbfa78f98890ce7b13848ac3e5b29434cc33ebc9
90f4f946a5b7132da8b162968836768263a1baa6f39d4713b251a83873504e9d
GET /video/677948780-1e9ff3eb4189338c2fbc3755801f3123a2a4330276716750c3493c9d82b0f643-d?mw=800&mh=397 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/avif
etag: c7fac380763d566cd8210661401e833c
x-viewmaster-lossless-format: automatic
viewmaster-server: viewmaster-us-central1-gln7
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Wed, 09 Nov 2022 02:48:32 GMT
age: 1265554
x-served-by: cache-dfw-kdfw8210070-DFW, cache-bma1634-BMA
x-cache: miss, HIT, HIT
x-cache-hits: 158, 1
x-timer: S1667962112.250706,VS0,VE1
vary: Accept
content-length: 7692
X-Firefox-Spdy: h2
163vod-adaptive.akamaized.net/exp=1667966011~acl=%2Fefa712cf-a4f1-4711-b139-6276e51ca29a%2F%2A~hmac=1f91f67d708acec809d25bd1cf37c094f3f9f5f22aa04f1548d593393322c345/efa712cf-a4f1-4711-b139-6276e51ca29a/sep/video/6c85cb4c,4d4399b2,e3463b9b,833b86dc/master.json?base64_init=1
2.21.8.251200 OK 4.1 kB URL HTTP/1.1 163vod-adaptive.akamaized.net/exp=1667966011~acl=%2Fefa712cf-a4f1-4711-b139-6276e51ca29a%2F%2A~hmac=1f91f67d708acec809d25bd1cf37c094f3f9f5f22aa04f1548d593393322c345/efa712cf-a4f1-4711-b139-6276e51ca29a/sep/video/6c85cb4c,4d4399b2,e3463b9b,833b86dc/master.json?base64_init=1
IP 2.21.8.251:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , ASCII text, with very long lines (22439)
Hash 96275fec4923eb964e6946460644fa9c
d7350ed8cff7ad3a6794d74edc3b3fa5425a9821
743670767ae17fafcdfddd2e2bc3ae477f38c46720254694a85bcf70353060eb
GET /exp=1667966011~acl=%2Fefa712cf-a4f1-4711-b139-6276e51ca29a%2F%2A~hmac=1f91f67d708acec809d25bd1cf37c094f3f9f5f22aa04f1548d593393322c345/efa712cf-a4f1-4711-b139-6276e51ca29a/sep/video/6c85cb4c,4d4399b2,e3463b9b,833b86dc/master.json?base64_init=1 HTTP/1.1
Host: 163vod-adaptive.akamaized.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
origin-retrieved-hour: 1657656000
Access-Control-Max-Age: 86400
timing-allow-origin: *
Content-Encoding: gzip
Content-Length: 4065
Aka-c-hit: cache-hit
Cache-Control: max-age=29821234
Date: Wed, 09 Nov 2022 02:48:32 GMT
Connection: keep-alive
Vary: Accept-Encoding
Akamai-Mon-Iucid-Del: 877678
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
AK-REFERENCE-ID: 0.f7081502.1667962112.5f4b52a
X-VIM-CACHEBC: EP:H11,E:m,TD0:m,PE:h
Access-Control-Expose-Headers: Akamai-Edge-IP, X-VIM-CACHEBC, X-Akamai-Request-ID, AK-REFERENCE-ID
Akamai-Edge-IP: 2.21.8.251
Access-Control-Allow-Headers: Content-Type, Accept-Encoding, Range, X-OTT-Agent,CMCD-Request,CMCD-Object,CMCD-Status,CMCD-Session
Access-Control-Allow-Origin: *
ocsp.pki.goog/s/gts1d4/QNGijQL5IyE
142.250.74.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/QNGijQL5IyE
IP 142.250.74.3:0
Hash 33f6b8e67490cfb18efb573a53cdf88e
77b54665298fd2bcfe97841a48a0e49fae8a24f6
d9de7e3a7b78b2d153def9c04fb383eaad5e51be961e60d52086a5eecc8e8eb3
POST /s/gts1d4/QNGijQL5IyE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 02:48:32 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/QNGijQL5IyE
142.250.74.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/QNGijQL5IyE
IP 142.250.74.3:0
Hash 33f6b8e67490cfb18efb573a53cdf88e
77b54665298fd2bcfe97841a48a0e49fae8a24f6
d9de7e3a7b78b2d153def9c04fb383eaad5e51be961e60d52086a5eecc8e8eb3
POST /s/gts1d4/QNGijQL5IyE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 02:48:32 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fresnel.vimeocdn.com/add/player-test-impression?beacon=1
34.120.202.204200 OK 0 B URL HTTP/2 fresnel.vimeocdn.com/add/player-test-impression?beacon=1
IP 34.120.202.204:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /add/player-test-impression?beacon=1 HTTP/1.1
Host: fresnel.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 116
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
date: Wed, 09 Nov 2022 02:48:33 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=b8f60b910404524bdad06bf8965ba641ece68e011667962111
34.120.202.204200 OK 0 B URL HTTP/2 fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=b8f60b910404524bdad06bf8965ba641ece68e011667962111
IP 34.120.202.204:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /add/player-stats?beacon=1&session-id=b8f60b910404524bdad06bf8965ba641ece68e011667962111 HTTP/1.1
Host: fresnel.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1436
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
date: Wed, 09 Nov 2022 02:48:33 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/QNGijQL5IyE
142.250.74.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/QNGijQL5IyE
IP 142.250.74.3:0
Hash 33f6b8e67490cfb18efb573a53cdf88e
77b54665298fd2bcfe97841a48a0e49fae8a24f6
d9de7e3a7b78b2d153def9c04fb383eaad5e51be961e60d52086a5eecc8e8eb3
POST /s/gts1d4/QNGijQL5IyE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 02:48:33 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=b8f60b910404524bdad06bf8965ba641ece68e011667962111
34.120.202.204200 OK 0 B URL HTTP/2 fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=b8f60b910404524bdad06bf8965ba641ece68e011667962111
IP 34.120.202.204:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /add/player-stats?beacon=1&session-id=b8f60b910404524bdad06bf8965ba641ece68e011667962111 HTTP/1.1
Host: fresnel.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1744
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
date: Wed, 09 Nov 2022 02:48:33 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.8.1/css/all.css
172.64.132.15200 OK 0 B URL HTTP/2 use.fontawesome.com/releases/v5.8.1/css/all.css
IP 172.64.132.15:0
GET /releases/v5.8.1/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://interwell.social-previews.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 09 Nov 2022 02:48:25 GMT
content-type: text/css
x-amz-id-2: kUevwWVC7+ZA8dgkwn+HZv0bHm3V3ZMRf21iJcMuboHQpuqomZBxvE6OQ1rr8xRFYmzKhRBeiNo=
x-amz-request-id: 34H4XSXXRKFS10PT
last-modified: Wed, 30 Jun 2021 15:46:39 GMT
etag: W/"e4c542a7f6bf6f74fdd8cdf6e8096396"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 1143441
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MaQ%2FvyD1P%2FtUbiv8aLYZJY4LacOCOX%2F4HMivIE4CuWfdS5KeC1jglFHJDcJNjyFiEWkY06eiLneHQy1jlaba3SuU%2BkGAQvcahFL0w4CCUCGzZ%2BcXST95t51RmQuh%2F9Bb665%2BwvbZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76733ab79cbf7723-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.8.1/css/all.css
172.64.132.15200 OK 0 B URL HTTP/2 use.fontawesome.com/releases/v5.8.1/css/all.css
IP 172.64.132.15:0
GET /releases/v5.8.1/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://interwell.social-previews.top
Connection: keep-alive
Referer: http://interwell.social-previews.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 09 Nov 2022 02:48:25 GMT
content-type: text/css
x-amz-id-2: fzFf9uMyqiog0tims2o2jD4GSUiIRc5lTq5xBOh01utP3JGIGu2iJCuz4rAhANop+xzvHMDILeQ=
x-amz-request-id: 268GHS0CCD6TK7CA
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:46:39 GMT
etag: W/"e4c542a7f6bf6f74fdd8cdf6e8096396"
cache-control: max-age=31556926
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mD4WEvPLVd4bs%2FET1Ff7wuZJraLCopJ2CMBdb2OUJwZEplgBGBdx8ZOVcEXuGq0W%2FVuU8VU7%2F6fsUDo372EXkPiU8Y1Ktw%2FgINZahEBnCKC6XWeJ117kf4PxeS05znlGHacrv%2BS4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76733ab708967330-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:300,400,500,600,700
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:300,400,500,600,700
IP 142.250.74.10:0
GET /css?family=Open+Sans:300,400,500,600,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://interwell.social-previews.top/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 09 Nov 2022 02:48:25 GMT
date: Wed, 09 Nov 2022 02:48:25 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2