Report - business-request-appeal-9694172.web.app/

Report Overview

Submitted URL
business-request-appeal-9694172.web.app/
IP
199.36.158.100
ASN
#54113 FASTLY
Submitted
2023-03-28 03:04:29
Access
public
Website Title
Final URL
Tags
suspicious
urlquery detections
Suspicious - Suspicious JS code

Detections

urlquery
2
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-29T05:09:11Z	2.4 kB	6.2 kB	23.33.119.27
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-29T05:09:03Z	782 B	2.4 kB	35.241.9.150
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-29T05:09:04Z	3.8 kB	7.7 kB	142.250.74.131
cdnjs.cloudflare.com	235	2015-04-17T22:46:33Z	2023-03-29T05:16:53Z	415 B	5.2 kB	104.17.24.14
cdn.jsdelivr.net	439	2012-09-30T02:15:09Z	2023-03-29T06:27:16Z	442 B	56 kB	151.101.193.229
business-request-appeal-9694172.web.app	unknown	2023-03-27T15:20:52Z	2023-03-27T15:20:52Z	840 B	1.6 kB	199.36.158.100
ajax.googleapis.com	12905	2013-08-16T11:51:31Z	2023-03-29T10:10:07Z	415 B	32 kB	142.250.74.170
ocsp.globalsign.com	2075	2012-07-20T19:46:16Z	2023-03-29T05:11:35Z	368 B	2.0 kB	151.101.194.133
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-29T05:09:31Z	413 B	5.9 kB	34.160.144.191
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-29T05:09:12Z	3.2 kB	72 kB	34.120.237.76
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-29T10:13:53Z	435 B	630 B	172.217.21.170
ka-f.fontawesome.com	3598	2019-12-17T07:36:13Z	2023-03-29T05:34:09Z	2.0 kB	4.5 kB	172.64.168.22
api.ipregistry.co	207993	2019-06-15T23:08:20Z	2023-03-29T12:35:03Z	481 B	696 B	104.18.26.170
netdna.bootstrapcdn.com	3413	2012-09-07T17:11:00Z	2023-03-29T13:23:08Z	436 B	903 B	104.18.11.207
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-29T11:19:48Z	1.5 kB	50 kB	142.250.74.35
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-29T05:09:32Z	606 B	127 B	54.202.152.202
firestore.googleapis.com	1961	2017-10-10T16:33:50Z	2023-03-29T06:18:34Z	1.5 kB	1.2 kB	142.250.74.10
kit.fontawesome.com	1868	2019-12-16T20:51:31Z	2023-03-29T05:25:02Z	446 B	646 B	104.18.23.52
stackpath.bootstrapcdn.com	2467	2018-06-15T22:36:43Z	2023-03-29T13:32:47Z	491 B	934 B	104.18.10.207
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-29T05:09:31Z	333 B	391 B	34.117.237.239

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (7)

	URL	Size	First Seen	Last Seen
	unknown	0 B	2023-03-07	2024-04-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-25 15:24:39 Times Seen37064924 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	business-request-appeal-9694172.web.app/js/app.fbea83ae.js	52 kB	2023-03-29	2023-03-29
Pretty URL business-request-appeal-9694172.web.app/js/app.fbea83ae.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:29:28 Last Seen2023-03-29 23:29:28 Times Seen1 Hash 1878eb9bd60fbda7f28f6e7a8d4678bf 262e15d8c0b2c6a65805baae73c910df43fadc3e 7625da45ec5c7f37c3cf92c826d3e84101ea7ecdd82a01a1aba3136950df2a1d Loading...

	cdnjs.cloudflare.com/ajax/libs/axios/0.18.0/axios.min.js	13 kB	2023-03-07	2024-03-21
Pretty URL cdnjs.cloudflare.com/ajax/libs/axios/0.18.0/axios.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:15:09 Last Seen2024-03-21 08:15:33 Times Seen549 Hash fc5ab06feef9eeba24c6f19e558e79f5 2cdd24012271ad08af4dc5a85d4059143c324391 9a99eb2790e9119664c24135660904410256ff8e8248487f493ad928e07faa83 Loading...

	business-request-appeal-9694172.web.app/js/bootstrap.js	51 kB	2023-03-26	2023-05-30
Pretty URL business-request-appeal-9694172.web.app/js/bootstrap.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 11:11:56 Last Seen2023-05-30 14:37:10 Times Seen177 Hash 7faef7d97a68958248ffae40c87d8c74 256d130fb580eedaecf3860240ebd8662f3e76f7 3aa25829c1d525831ca2764de876999b31adb637781f3fffe118d47e591d236c Loading...

	kit.fontawesome.com/83fd8385f7.js	11 kB	2023-03-29	2023-05-30
Pretty URL kit.fontawesome.com/83fd8385f7.js IP 104.18.23.52 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 23:28:56 Last Seen2023-05-30 14:37:10 Times Seen432 Hash f57f750930e2b14c947974ed84176830 f54d63f55f241bd4270ecd2fdf23a604a5cb6743 36da8ad26974d552b901a75e671363718cb8f7ae80ca5d5674fe83444e0fdbc1 Loading...

	ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js	90 kB	2023-03-07	2024-04-25
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js IP 142.250.74.170 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-04-25 15:21:39 Times Seen139127 Hash dc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d Loading...

	business-request-appeal-9694172.web.app/js/common.js	1.5 kB	2023-03-26	2023-05-30
Pretty URL business-request-appeal-9694172.web.app/js/common.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 11:11:56 Last Seen2023-05-30 14:37:10 Times Seen129 Hash 05b14d044d900e7f79a17f2b60cf09a2 aae0b994a8541ff8a4ef7f3096bfecb12338055c 9e5c22c4944e64cdf6bccaee914ce6531f4423906c2af1b7348c5cd4fdca1d75 Loading...

HTTP Transactions (49)

	URL	IP	Response	Size
	business-request-appeal-9694172.web.app/	199.36.158.100	301 Moved Permanently	0 B
URL HTTP/1.1 business-request-appeal-9694172.web.app/ IP 199.36.158.100:0 ASN #54113 FASTLY File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET / HTTP/1.1 Host: business-request-appeal-9694172.web.app User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` `HTTP/1.1 301 Moved Permanently Connection: close Content-Length: 0 Server: Varnish Retry-After: 0 Location: https://business-request-appeal-9694172.web.app/ Accept-Ranges: bytes Date: Tue, 28 Mar 2023 03:04:18 GMT X-Served-By: cache-bma1625-BMA X-Cache: HIT X-Cache-Hits: 0 X-Timer: S1679972658.457916,VS0,VE0 alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 93f633ce30c038eb581544323c5a971e 2f60526cb750c6babccc207f75fb5a8ae6f7598b 0ff6df80a892199848fb943af78541b66efc09a7ab70d4b169906fdbac1eabf8 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "0FF6DF80A892199848FB943AF78541B66EFC09A7AB70D4B169906FDBAC1EABF8" Last-Modified: Mon, 27 Mar 2023 14:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=12463 Expires: Tue, 28 Mar 2023 06:32:01 GMT Date: Tue, 28 Mar 2023 03:04:18 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash c83d39f350161ed2f5d20dcd68e47c92 2695a888e652cb314f8094cc6073c3364336d272 62e5cc6aea61c3c32acd964d4bbe143806416008181eebc4451a8f035b69a0bc HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "62E5CC6AEA61C3C32ACD964D4BBE143806416008181EEBC4451A8F035B69A0BC" Last-Modified: Mon, 27 Mar 2023 06:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8038 Expires: Tue, 28 Mar 2023 05:18:16 GMT Date: Tue, 28 Mar 2023 03:04:18 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash 4ad6984a756720fbfff47b37a75513a2 355e35258114452af8b9638985ed9d8ef3bf0aca 43181fccb10652c68cae86e5e32b4e8f426fb5ad49d8125cb99e072cff573cf5 HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Retry-After, Content-Length, Alert, Content-Type, Backoff content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Tue, 28 Mar 2023 02:15:48 GMT content-type: application/json age: 2910 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 5ad3eec59bebbf969f175627757507c1 b176af3a70db378c9e1f219bab24d9d446070d6f 704fa284035b4c9aa487331b516f5f11c324e204756ae2503bad2606ed34f25e HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "704FA284035B4C9AA487331B516F5F11C324E204756AE2503BAD2606ED34F25E" Last-Modified: Mon, 27 Mar 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=9591 Expires: Tue, 28 Mar 2023 05:44:09 GMT Date: Tue, 28 Mar 2023 03:04:18 GMT Connection: keep-alive`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash e7bace7c1e04d44012e37ddffe36e5d5 3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2 6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2 HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK x-amz-id-2: b/7VcSYGbsEfAM5nqrwLNZpSZg7XayiOMeiB5CBNH7lh2zxao56NYAD/euM8WbSVVlhDsE0vd6c= x-amz-request-id: E1C11CC2M3TB86GW x-amz-server-side-encryption: AES256 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Tue, 28 Mar 2023 03:01:53 GMT age: 145 last-modified: Sat, 11 Mar 2023 16:53:15 GMT etag: "e7bace7c1e04d44012e37ddffe36e5d5" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2

	business-request-appeal-9694172.web.app/	199.36.158.100	200 OK	592 B
URL HTTP/2 business-request-appeal-9694172.web.app/ IP 199.36.158.100:0 ASN #54113 FASTLY File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1929), with no line terminators Size 592 B (592 bytes) Hash 4b90f7c3343515e0e48f5c7d7ef477fd 0f8a9c407993c6550b52d38203a21ac75137ef8b 2cdc66044d705ac046a4584b577bbe487615183caa79b04cc895957b0d644dd0 HTTP Headers `GET / HTTP/1.1 Host: business-request-appeal-9694172.web.app User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` HTTP/2 200 OK cache-control: max-age=3600 content-encoding: br content-type: text/html; charset=utf-8 etag: "c6fc79a9acd9495bff451df62c232defad4b6349f5c2b019e6f80691d82fc208-br" last-modified: Thu, 23 Mar 2023 05:29:39 GMT strict-transport-security: max-age=31556926; includeSubDomains; preload accept-ranges: bytes date: Tue, 28 Mar 2023 03:04:18 GMT x-served-by: cache-bma1676-BMA x-cache: HIT x-cache-hits: 1 x-timer: S1679972659.758743,VS0,VE1 vary: x-fh-requested-host, accept-encoding alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 592 X-Firefox-Spdy: h2

	ocsp.pki.goog/s/gts1d4int/t-n5gwylMXE	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/s/gts1d4int/t-n5gwylMXE IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 989f5ec43d499dbbce50b1c5024185ca 12cf7f45d88a493b05d8341b4095230989e914c7 7f4d3bfd1ef5289419fce1c47db5267ff7b393ade0f6c3ec7dfcf9c99d0488bc HTTP Headers `POST /s/gts1d4int/t-n5gwylMXE HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 28 Mar 2023 03:04:18 GMT Cache-Control: public, max-age=14400 Server: scaffolding on HTTPServer2 Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Tue, 28 Mar 2023 03:04:18 GMT content-type: application/json content-length: 12 access-control-allow-credentials: true vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers access-control-expose-headers: content-type strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	cdnjs.cloudflare.com/ajax/libs/axios/0.18.0/axios.min.js	104.17.24.14	200 OK	4.2 kB
URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/axios/0.18.0/axios.min.js IP 104.17.24.14:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (9701) Size 4.2 kB (4163 bytes) Hash 4468617063b863e46b224c00012cb0b6 9149db262a059c8af82daa735bb1c72b18f3c7b6 cf0f3a7f02c7d34c15d4ce3332fa44d8b4cfb7ff5f9366739e56760c70399af8 HTTP Headers `GET /ajax/libs/axios/0.18.0/axios.min.js HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://business-request-appeal-9694172.web.app/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Tue, 28 Mar 2023 03:04:18 GMT content-type: application/javascript; charset=utf-8 content-length: 4163 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb03d6a-328d" last-modified: Mon, 04 May 2020 16:06:02 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff vary: Accept-Encoding cf-cache-status: HIT age: 11428599 expires: Sun, 17 Mar 2024 03:04:18 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wZ0lnt5jUk4nS0kcdqiU5wdDH8fWS8g%2FlxgKLoEuk4mBVgidkbhzZYFkJ1DHzUVcT1MTghT%2FPJKo09CUqT3oCWIzG3Xiw%2Fsb%2BDPmLqPWe4kDIIcNQf9CtCxMAQcrFPSlne%2FHbEGc"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 7aeca51e7a67b51d-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash d2d4415f4eeb34e663d209eeddd8d25d 5d239718d7235d1f62e10d7d381c5a063e94c73a cc35be0a21b7442cc2628ea8cd42023f81eb2deea66e5149a22776228b105213 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 28 Mar 2023 03:04:18 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash d2d4415f4eeb34e663d209eeddd8d25d 5d239718d7235d1f62e10d7d381c5a063e94c73a cc35be0a21b7442cc2628ea8cd42023f81eb2deea66e5149a22776228b105213 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 28 Mar 2023 03:04:19 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	cdn.jsdelivr.net/npm/@mdi/font@latest/css/materialdesignicons.min.css	151.101.193.229	200 OK	55 kB
URL HTTP/2 cdn.jsdelivr.net/npm/@mdi/font@latest/css/materialdesignicons.min.css IP 151.101.193.229:0 ASN #54113 FASTLY File type ASCII text, with very long lines (65536), with no line terminators Size 55 kB (54765 bytes) Hash dae8e8f8a8cb3ec0cf4864f8a7b79970 69b0d975b6aea48a159aff7743990bc8a4db6341 55c77c99a44d20cfa0cc1caba324ec042597de722f40c6ab6449a425ae916957 HTTP Headers `GET /npm/@mdi/font@latest/css/materialdesignicons.min.css HTTP/1.1 Host: cdn.jsdelivr.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://business-request-appeal-9694172.web.app/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: * timing-allow-origin: * cache-control: public, max-age=604800, s-maxage=43200 cross-origin-resource-policy: cross-origin x-content-type-options: nosniff strict-transport-security: max-age=31536000; includeSubDomains; preload content-type: text/css; charset=utf-8 x-jsd-version: 7.2.96 x-jsd-version-type: version etag: W/"52d34-McwSlO6CU7M543fkTyDaQiyOjpU" content-encoding: br accept-ranges: bytes date: Tue, 28 Mar 2023 03:04:19 GMT age: 7470 x-served-by: cache-fra-eddf8230030-FRA, cache-bma1683-BMA x-cache: HIT, HIT vary: Accept-Encoding alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 54765 X-Firefox-Spdy: h2

	ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js	142.250.74.170	200 OK	31 kB
URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.5.1/jquery.min.js IP 142.250.74.170:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (65451) Size 31 kB (31021 bytes) Hash 903bc7a7e510f87aa5d0201eb59a0832 ac9aa4dd94cde1bcba9037e94087138b127e41fc 41a7ac8150cc9f38421451d5143c1ffec7a1f1fafbf7a7fc0f51b98ad699cf8f HTTP Headers `GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1 Host: ajax.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://business-request-appeal-9694172.web.app/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers" report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]} timing-allow-origin: * content-length: 31021 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Sat, 25 Mar 2023 13:34:00 GMT expires: Sun, 24 Mar 2024 13:34:00 GMT cache-control: public, max-age=31536000, stale-while-revalidate=2592000 last-modified: Fri, 08 May 2020 07:05:03 GMT content-type: text/javascript; charset=UTF-8 vary: Accept-Encoding age: 221419 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash d2d4415f4eeb34e663d209eeddd8d25d 5d239718d7235d1f62e10d7d381c5a063e94c73a cc35be0a21b7442cc2628ea8cd42023f81eb2deea66e5149a22776228b105213 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 28 Mar 2023 03:04:19 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash d2d4415f4eeb34e663d209eeddd8d25d 5d239718d7235d1f62e10d7d381c5a063e94c73a cc35be0a21b7442cc2628ea8cd42023f81eb2deea66e5149a22776228b105213 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 28 Mar 2023 03:04:19 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4	151.101.194.133	200 OK	1.5 kB
URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4 IP 151.101.194.133:0 ASN #54113 FASTLY File type data Size 1.5 kB (1462 bytes) Hash 604a3b81379331884772f707d8f2b46e c8b124640e7ab5515009235c8000aa1982a8ae8e bf1410e7200c2fcdaf95d01d1d25c9f6c553c15efc976481bad5f32a341e2d8c HTTP Headers `POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1 Host: ocsp.globalsign.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Connection: keep-alive Content-Length: 1462 Content-Type: application/ocsp-response Etag: "1D5EEE5E17513227A3FBD2D94776C9674627A3D3" Expires: Tue, 28 Mar 2023 14:00:00 UTC Last-Modified: Tue, 28 Mar 2023 02:00:00 UTC Cache-Control: s-maxage=3600, public, no-transform, must-revalidate Accept-Ranges: bytes Date: Tue, 28 Mar 2023 03:04:19 GMT Via: 1.1 varnish Age: 3493 X-Served-By: cache-bma1641-BMA X-Cache: HIT X-Cache-Hits: 1 X-Timer: S1679972659.121381,VS0,VE1`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Length, ETag, Content-Type, Cache-Control, Pragma, Alert, Last-Modified, Retry-After, Backoff, Expires content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Tue, 28 Mar 2023 02:14:35 GMT age: 2984 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash da5340ee69a1000f751686df9e716663 a5da880a61ed119790a7990bbdcc0c97eecf04f2 d1ff10bfe40f290935abe1feeb975a6af8cf310f9ce9d45bbf482a604da73560 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "D1FF10BFE40F290935ABE1FEEB975A6AF8CF310F9CE9D45BBF482A604DA73560" Last-Modified: Mon, 27 Mar 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=19787 Expires: Tue, 28 Mar 2023 08:34:06 GMT Date: Tue, 28 Mar 2023 03:04:19 GMT Connection: keep-alive`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 7927fa1bac0e5bcc27ed32b6b5107bd3 68da43f59df9c524940efc35f40e3599b9a1995b f48f276b9dee3b509dd0554b8e660039fe61020bd793cbf9a0381d3e5f76ae59 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 28 Mar 2023 03:04:19 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 7927fa1bac0e5bcc27ed32b6b5107bd3 68da43f59df9c524940efc35f40e3599b9a1995b f48f276b9dee3b509dd0554b8e660039fe61020bd793cbf9a0381d3e5f76ae59 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 28 Mar 2023 03:04:19 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2	142.250.74.35	200 OK	16 kB
URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP 142.250.74.35:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data Size 16 kB (15744 bytes) Hash 15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615 HTTP Headers `GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://business-request-appeal-9694172.web.app Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15744 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Fri, 24 Mar 2023 10:26:41 GMT expires: Sat, 23 Mar 2024 10:26:41 GMT cache-control: public, max-age=31536000 last-modified: Wed, 11 May 2022 19:24:48 GMT content-type: font/woff2 age: 319058 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 7927fa1bac0e5bcc27ed32b6b5107bd3 68da43f59df9c524940efc35f40e3599b9a1995b f48f276b9dee3b509dd0554b8e660039fe61020bd793cbf9a0381d3e5f76ae59 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 28 Mar 2023 03:04:19 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2	142.250.74.35	200 OK	16 kB
URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP 142.250.74.35:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data Size 16 kB (15920 bytes) Hash 3a44e06eb954b96aa043227f3534189d 23cef6993ddb2b2979e8e7647fc3763694e2ba7d b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e HTTP Headers `GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://business-request-appeal-9694172.web.app Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15920 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Fri, 24 Mar 2023 10:26:43 GMT expires: Sat, 23 Mar 2024 10:26:43 GMT cache-control: public, max-age=31536000 last-modified: Wed, 11 May 2022 19:24:45 GMT content-type: font/woff2 age: 319056 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2	142.250.74.35	200 OK	16 kB
URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 IP 142.250.74.35:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data Size 16 kB (15860 bytes) Hash e9f5aaf547f165386cd313b995dddd8e acdef5603c2387b0e5bffd744b679a24a8bc1968 f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860 HTTP Headers `GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://business-request-appeal-9694172.web.app Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15860 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Fri, 24 Mar 2023 10:26:42 GMT expires: Sat, 23 Mar 2024 10:26:42 GMT cache-control: public, max-age=31536000 last-modified: Wed, 11 May 2022 19:24:42 GMT content-type: font/woff2 age: 319057 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 7927fa1bac0e5bcc27ed32b6b5107bd3 68da43f59df9c524940efc35f40e3599b9a1995b f48f276b9dee3b509dd0554b8e660039fe61020bd793cbf9a0381d3e5f76ae59 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 28 Mar 2023 03:04:19 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 4115d207d8c80aa7d4258aecf1746728 17c9db357338dbfaa0dbd5f15076b64e662cdb74 bb5c50c59052de8bf5dc5b8a6d9d27848bda5ef52faa49d4b33c7fd70545f36e HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 28 Mar 2023 03:04:19 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	push.services.mozilla.com/	54.202.152.202	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 54.202.152.202:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: beCCPEApLvaXgyaYBKVklA== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: QMzXRMOAW9L3LuFN3ZGXMemAm7M=`

	firestore.googleapis.com/google.firestore.v1.Firestore/Write/channel?database=projects%2Fbusiness-request-appeal-969456%2Fdatabases%2F(default)&VER=8&RID=40337&CVER=22&X-HTTP-Session-Id=gsessionid&%24httpHeaders=X-Goog-Api-Client%3Agl-js%2F%20fire%2F7.24.0%0D%0AContent-Type%3Atext%2Fplain%0D%0A&zx=lkgs5pvdi3e&t=1	142.250.74.10	200 OK	71 B
URL HTTP/2 firestore.googleapis.com/google.firestore.v1.Firestore/Write/channel?database=projects%2Fbusiness-request-appeal-969456%2Fdatabases%2F(default)&VER=8&RID=40337&CVER=22&X-HTTP-Session-Id=gsessionid&%24httpHeaders=X-Goog-Api-Client%3Agl-js%2F%20fire%2F7.24.0%0D%0AContent-Type%3Atext%2Fplain%0D%0A&zx=lkgs5pvdi3e&t=1 IP 142.250.74.10:0 ASN #15169 GOOGLE File type ASCII text Size 71 B (71 bytes) Hash af50cff9a0f5dd34b6bd1da918ff4c0f 17354d4100f7369b4ed8195a889573a4747f3941 1f4502be31854fe0019ccf26bfa646470bcbad682cef74f4e9977a01828e1d5d HTTP Headers POST /google.firestore.v1.Firestore/Write/channel?database=projects%2Fbusiness-request-appeal-969456%2Fdatabases%2F(default)&VER=8&RID=40337&CVER=22&X-HTTP-Session-Id=gsessionid&%24httpHeaders=X-Goog-Api-Client%3Agl-js%2F%20fire%2F7.24.0%0D%0AContent-Type%3Atext%2Fplain%0D%0A&zx=lkgs5pvdi3e&t=1 HTTP/1.1 Host: firestore.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded Content-Length: 122 Origin: https://business-request-appeal-9694172.web.app Connection: keep-alive Referer: https://business-request-appeal-9694172.web.app/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK x-client-wire-protocol: h2 x-http-session-id: QezipzexAW8Inll3seHP0O6yneTTsDsCG_zTof87iHA content-type: text/plain; charset=utf-8 content-encoding: gzip date: Tue, 28 Mar 2023 03:04:19 GMT server: ESF cache-control: private content-length: 71 x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff access-control-allow-origin: https://business-request-appeal-9694172.web.app vary: origin access-control-allow-credentials: true access-control-expose-headers: x-client-wire-protocol,x-http-session-id alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 4115d207d8c80aa7d4258aecf1746728 17c9db357338dbfaa0dbd5f15076b64e662cdb74 bb5c50c59052de8bf5dc5b8a6d9d27848bda5ef52faa49d4b33c7fd70545f36e HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 28 Mar 2023 03:04:20 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash be1cd1cf8e462ca6f6acb2f132e614d5 037f3bc7ab850fa2c69f2584bb24340b25bb6f3c e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA" Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=15166 Expires: Tue, 28 Mar 2023 07:17:06 GMT Date: Tue, 28 Mar 2023 03:04:20 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash be1cd1cf8e462ca6f6acb2f132e614d5 037f3bc7ab850fa2c69f2584bb24340b25bb6f3c e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA" Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=15166 Expires: Tue, 28 Mar 2023 07:17:06 GMT Date: Tue, 28 Mar 2023 03:04:20 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.33.119.27	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.33.119.27:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash be1cd1cf8e462ca6f6acb2f132e614d5 037f3bc7ab850fa2c69f2584bb24340b25bb6f3c e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA" Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=15166 Expires: Tue, 28 Mar 2023 07:17:06 GMT Date: Tue, 28 Mar 2023 03:04:20 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F178b294b-fb7e-4482-a48e-31bbcc320554.png	34.120.237.76	200 OK	20 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F178b294b-fb7e-4482-a48e-31bbcc320554.png IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 20 kB (20349 bytes) Hash b3e093e7b5c12cfc2aee601f823ea47e d76b3958471b2ed70a2b52f078ec638748fdb441 de4fc669195611c4ea6fe7d920482987aef077973b4973c01e2f362aeb18c2ea HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F178b294b-fb7e-4482-a48e-31bbcc320554.png HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 20349 x-amzn-requestid: 2de7d242-f277-42a6-9dc4-2fc98207a978 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CdbumFzOIAMF3hA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64220cc3-5f20ad7b2216219138f7b557;Sampled=0 x-amzn-remapped-date: Mon, 27 Mar 2023 21:38:11 GMT x-amz-cf-pop: HIO52-P1, SEA19-C1 x-cache: Miss from cloudfront x-amz-cf-id: pnby7LhwZDWxJHtyWBlI7l_AO8l-tjjTVHatiCKG2htZ4RQNQOZkgQ== via: 1.1 88a7ff956a5b49ec3a35abfc0027af12.cloudfront.net (CloudFront), 1.1 34f8ef0e4c880df0650a814412a26ea6.cloudfront.net (CloudFront), 1.1 google date: Mon, 27 Mar 2023 21:48:21 GMT age: 18959 etag: "d76b3958471b2ed70a2b52f078ec638748fdb441" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb43b8abf-1aec-420b-bc1c-ccfbe765332e.jpeg	34.120.237.76	200 OK	12 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb43b8abf-1aec-420b-bc1c-ccfbe765332e.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 12 kB (11894 bytes) Hash ee9c83faa5fdb77ba988a41207800b0e 4ac4c600767de39c5134cb97f78fcb29a681ee18 9039f7232ada16ae6d8a447225a15ef949c705a6f9e7aa20b367d001cd88c94f HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb43b8abf-1aec-420b-bc1c-ccfbe765332e.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 11894 x-amzn-requestid: 27689ac4-87c8-4c3b-bb2b-5577c82793c7 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Cdb7_EoHIAMFprQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64220d19-0c2e035d4465b1d458a996c9;Sampled=0 x-amzn-remapped-date: Mon, 27 Mar 2023 21:39:37 GMT x-amz-cf-pop: HIO52-P1, SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: vGkA0y2G3zApNzW9bdZ4TyUWXMGjIXNHHQKrD2T8767oA7qBnqKDqQ== via: 1.1 ffc1e24c06bfbb135c0a4d240b382048.cloudfront.net (CloudFront), 1.1 49cdeca097624936e070b73619df7da8.cloudfront.net (CloudFront), 1.1 google date: Mon, 27 Mar 2023 22:01:37 GMT age: 18163 etag: "4ac4c600767de39c5134cb97f78fcb29a681ee18" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F008df6b4-92c5-423a-a32e-4ab5016464ba.jpeg	34.120.237.76	200 OK	7.0 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F008df6b4-92c5-423a-a32e-4ab5016464ba.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.0 kB (6970 bytes) Hash e5d955ec5d3a9f655e4ca0523acfd039 e8b2cd28a02a2cee1b4e57c57570f2598721ff57 e7753ef91d6f04dce00f83cb1ba3ea4f1abb52140993fbee375e506597cee529 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F008df6b4-92c5-423a-a32e-4ab5016464ba.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 6970 x-amzn-requestid: 9f7a82d7-dbba-4c67-a330-6a7f2b68177d x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Cdn3zGn7oAMFwNQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64222031-1d97c16f7a9c163c02fe72ac;Sampled=0 x-amzn-remapped-date: Mon, 27 Mar 2023 23:01:05 GMT x-amz-cf-pop: HIO52-P1, SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: tFYFwzjyNtfiOJ3pLPC126YgOclndkmPYWrFTdLcWP9LgP9xjj_snQ== via: 1.1 185f4b03b711932fc7e735c08fdc5abe.cloudfront.net (CloudFront), 1.1 d042f60a962591f741406f28a8170c5a.cloudfront.net (CloudFront), 1.1 google date: Mon, 27 Mar 2023 23:12:05 GMT age: 13935 etag: "e8b2cd28a02a2cee1b4e57c57570f2598721ff57" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae134d44-b08a-4ffa-be9d-c8e95b802ca1.jpeg	34.120.237.76	200 OK	7.8 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae134d44-b08a-4ffa-be9d-c8e95b802ca1.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.8 kB (7830 bytes) Hash 51e8fbd1f743ea697aad0c06cd2b6b79 0635c18e823921e9c7d2fbdffdc2ca635f765a09 3dc5adab42ee368a8067181023a991a5bc784426bfa67319869d011c65e57b93 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae134d44-b08a-4ffa-be9d-c8e95b802ca1.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 7830 x-amzn-requestid: c35d031c-1647-468b-9d34-a2916f2cd630 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Cdbp3GTIoAMFbmA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64220ca5-105e1fd1356d413b5ea9d142;Sampled=0 x-amzn-remapped-date: Mon, 27 Mar 2023 21:37:41 GMT x-amz-cf-pop: HIO52-P1, SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: dwbsLBCkfCfLFL7clLBahHkACC0cp4EwTdcYDV__ODQh0c68CtkMmQ== via: 1.1 22ea0ab0881473261b786ecbb5e00f54.cloudfront.net (CloudFront), 1.1 6ca7826fb0f4c565b1af9c7737725c48.cloudfront.net (CloudFront), 1.1 google date: Mon, 27 Mar 2023 21:49:43 GMT age: 18877 etag: "0635c18e823921e9c7d2fbdffdc2ca635f765a09" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg	34.120.237.76	200 OK	9.9 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 9.9 kB (9859 bytes) Hash da174e6ccc9451c5071ba10eeb97f6f6 c38827a9ac1218768839877263e1f2984fbdc454 76da406c8ae8cd6ca8471928f3aec3876aed2c21bc10edc0fbdaef5c100c1030 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 9859 x-amzn-requestid: 7571f483-0d57-4f3f-9d86-2f18175cc0b1 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CRP5DG2BoAMFrdg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-641d2d06-400180d700df598366b8b16f;Sampled=0 x-amzn-remapped-date: Fri, 24 Mar 2023 04:54:30 GMT x-amz-cf-pop: SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: 8LzPrLvhUnXntYPNCg_QN2LFUvQ-4FL4SMyYBxPOwlGd1sgL3j-Znw== via: 1.1 8f251d23da31b683c3c9d6fad6ca944c.cloudfront.net (CloudFront), 1.1 b4085435efbe95a420f374958bd145be.cloudfront.net (CloudFront), 1.1 google date: Mon, 27 Mar 2023 21:50:10 GMT age: 18850 etag: "c38827a9ac1218768839877263e1f2984fbdc454" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6469f625-03ad-45a7-a918-5f220169711a.png	34.120.237.76	200 OK	8.6 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6469f625-03ad-45a7-a918-5f220169711a.png IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.6 kB (8553 bytes) Hash e828b7227de7aa7a7b7c54c96e0cef9a 9a717142ab25dabf9123485ef51ed586662d2a71 0390f8771432de010cc11e11be2e2dfa7c303664858a5b066e66a628a1f3dd66 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6469f625-03ad-45a7-a918-5f220169711a.png HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8553 x-amzn-requestid: 05cb5115-a27b-485a-89fd-670bdb5bb06f x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CdbofHHPIAMFkQA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64220c9c-774bb5d725336b35088e2527;Sampled=0 x-amzn-remapped-date: Mon, 27 Mar 2023 21:37:32 GMT x-amz-cf-pop: HIO52-P1, SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: NcKs_URb5dFDbkEoCqy2_fjKWneX7mifmEbd5MA5unqkhiPAIH9GPg== via: 1.1 22ea0ab0881473261b786ecbb5e00f54.cloudfront.net (CloudFront), 1.1 aa623e134417515bd2496cb01d5e5626.cloudfront.net (CloudFront), 1.1 google date: Mon, 27 Mar 2023 21:50:10 GMT age: 18850 etag: "9a717142ab25dabf9123485ef51ed586662d2a71" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	kit.fontawesome.com/83fd8385f7.js	104.18.23.52	200 OK	0 B
URL HTTP/2 kit.fontawesome.com/83fd8385f7.js IP 104.18.23.52:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /83fd8385f7.js HTTP/1.1 Host: kit.fontawesome.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://business-request-appeal-9694172.web.app Connection: keep-alive Referer: https://business-request-appeal-9694172.web.app/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Tue, 28 Mar 2023 03:04:19 GMT content-type: text/javascript access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token access-control-allow-methods: GET, OPTIONS access-control-allow-origin: * access-control-max-age: 3000 cache-control: max-age=60, public, must-revalidate strict-transport-security: max-age=31536000; preload vary: origin, accept-encoding, access-control-request-headers, access-control-request-method x-request-id: F1B2O4TWlKzG_OEKmqsh cf-cache-status: EXPIRED server: cloudflare cf-ray: 7aeca51ead35b509-OSL content-encoding: gzip X-Firefox-Spdy: h2

	fonts.googleapis.com/css?family=Roboto:100,300,400,500,700,900	172.217.21.170	200 OK	0 B
URL HTTP/2 fonts.googleapis.com/css?family=Roboto:100,300,400,500,700,900 IP 172.217.21.170:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash HTTP Headers `GET /css?family=Roboto:100,300,400,500,700,900 HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://business-request-appeal-9694172.web.app/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Tue, 28 Mar 2023 03:04:19 GMT date: Tue, 28 Mar 2023 03:04:19 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ka-f.fontawesome.com/releases/v6.4.0/css/free.min.css?token=83fd8385f7	172.64.168.22	200 OK	0 B
URL HTTP/2 ka-f.fontawesome.com/releases/v6.4.0/css/free.min.css?token=83fd8385f7 IP 172.64.168.22:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /releases/v6.4.0/css/free.min.css?token=83fd8385f7 HTTP/1.1 Host: ka-f.fontawesome.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://business-request-appeal-9694172.web.app/ Origin: https://business-request-appeal-9694172.web.app Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Tue, 28 Mar 2023 03:04:19 GMT content-type: text/css access-control-allow-origin: * access-control-allow-methods: GET access-control-max-age: 3000 last-modified: Thu, 23 Mar 2023 21:29:21 GMT etag: W/"5febfb939e2fc4ddf14fffae53b72cf0" x-amz-server-side-encryption: AES256 cache-control: max-age=31556926 access-control-allow-headers: fa-kit-token vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 6ef53c06467f47a1223db91b4e03cb22.cloudfront.net (CloudFront) x-amz-cf-pop: PHL50-C1 x-amz-cf-id: pmy5qJQJ597mMo99sabIvrxk0c-a1KqECy4TAkuOcIlUbYiQ3zw8Vg== age: 27168 cf-cache-status: HIT report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FTrJxQHvmpvvJiwAgm5a8vFgPiqM3xtKlW3oJaeM6gFG8moH%2FZsqbRe3yV4AZEGeJdwczDBbE5YQVSvmE0EGH%2FzBSlk0vTLPplBQae5vfc7iol0RNK0uFKv9DawXZkj1NxGO8r%2FB7A%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7aeca520e86a88b0-LHR content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	firestore.googleapis.com/google.firestore.v1.Firestore/Write/channel?database=projects%2Fbusiness-request-appeal-969456%2Fdatabases%2F(default)&gsessionid=QezipzexAW8Inll3seHP0O6yneTTsDsCG_zTof87iHA&VER=8&RID=rpc&SID=Qa_dNw7Qy71cphatWos3Qg&CI=0&AID=0&TYPE=xmlhttp&zx=8b4s21uyxrzf&t=1	142.250.74.10	200 OK	0 B
URL HTTP/2 firestore.googleapis.com/google.firestore.v1.Firestore/Write/channel?database=projects%2Fbusiness-request-appeal-969456%2Fdatabases%2F(default)&gsessionid=QezipzexAW8Inll3seHP0O6yneTTsDsCG_zTof87iHA&VER=8&RID=rpc&SID=Qa_dNw7Qy71cphatWos3Qg&CI=0&AID=0&TYPE=xmlhttp&zx=8b4s21uyxrzf&t=1 IP 142.250.74.10:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash HTTP Headers GET /google.firestore.v1.Firestore/Write/channel?database=projects%2Fbusiness-request-appeal-969456%2Fdatabases%2F(default)&gsessionid=QezipzexAW8Inll3seHP0O6yneTTsDsCG_zTof87iHA&VER=8&RID=rpc&SID=Qa_dNw7Qy71cphatWos3Qg&CI=0&AID=0&TYPE=xmlhttp&zx=8b4s21uyxrzf&t=1 HTTP/1.1 Host: firestore.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://business-request-appeal-9694172.web.app Connection: keep-alive Referer: https://business-request-appeal-9694172.web.app/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 200 OK vary: Referer, origin cache-control: private, max-age=0 x-content-type-options: nosniff content-type: text/plain; charset=utf-8 content-encoding: gzip date: Tue, 28 Mar 2023 03:04:20 GMT server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN access-control-allow-origin: https://business-request-appeal-9694172.web.app access-control-allow-credentials: true alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	stackpath.bootstrapcdn.com/bootstrap/4.3.1/css/bootstrap.min.css	104.18.10.207	200 OK	0 B
URL HTTP/2 stackpath.bootstrapcdn.com/bootstrap/4.3.1/css/bootstrap.min.css IP 104.18.10.207:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /bootstrap/4.3.1/css/bootstrap.min.css HTTP/1.1 Host: stackpath.bootstrapcdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://business-request-appeal-9694172.web.app Connection: keep-alive Referer: https://business-request-appeal-9694172.web.app/ Sec-Fetch-Dest: style Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Tue, 28 Mar 2023 03:04:19 GMT content-type: text/css; charset=utf-8 vary: Accept-Encoding cdn-pullzone: 252412 cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74 cdn-requestcountrycode: DE access-control-allow-origin: * cache-control: public, max-age=31919000 etag: W/"a15c2ac3234aa8f6064ef9c1f7383c37" last-modified: Mon, 25 Jan 2021 22:04:08 GMT cdn-cachedat: 01/04/2023 11:35:40 cdn-proxyver: 1.03 cdn-requestpullcode: 200 cdn-requestpullsuccess: True cdn-edgestorageid: 1078 timing-allow-origin: * cross-origin-resource-policy: cross-origin x-content-type-options: nosniff cdn-status: 200 cdn-requestid: 0cbe29ce80e633a78bb1c6842de8db7b cdn-cache: HIT cf-cache-status: HIT strict-transport-security: max-age=31536000; includeSubDomains; preload server: cloudflare cf-ray: 7aeca51e6a7d0b51-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	ka-f.fontawesome.com/releases/v6.4.0/css/free-v4-shims.min.css?token=83fd8385f7	172.64.168.22	200 OK	0 B
URL HTTP/2 ka-f.fontawesome.com/releases/v6.4.0/css/free-v4-shims.min.css?token=83fd8385f7 IP 172.64.168.22:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /releases/v6.4.0/css/free-v4-shims.min.css?token=83fd8385f7 HTTP/1.1 Host: ka-f.fontawesome.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://business-request-appeal-9694172.web.app/ Origin: https://business-request-appeal-9694172.web.app Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Tue, 28 Mar 2023 03:04:19 GMT content-type: text/css access-control-allow-origin: * access-control-allow-methods: GET access-control-max-age: 3000 last-modified: Thu, 23 Mar 2023 21:29:20 GMT etag: W/"5193a6de5225940ae4ef5f7c82126be9" x-amz-server-side-encryption: AES256 cache-control: max-age=31556926 access-control-allow-headers: fa-kit-token vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 f40585e1285ddfba696e566c1dd902de.cloudfront.net (CloudFront) x-amz-cf-pop: LHR50-P1 x-amz-cf-id: W_2afi515VOgf69yd2Lq795uXQEQrrnBf96Iutz-SqGCUGL1bycA8A== age: 27168 cf-cache-status: HIT report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AehKbTtU4wsmN%2F36HcDlLG%2B3MNR2tfsSPRjfchy1V2une%2Bo6PY5VyLifUeyn%2BBVpOqx0zWeoHJIapsZpRvJy61PzjVk01tvEU5jWpKU0%2FwAB2zkI%2FVJ4RpW0gaghTe127APiJTuXHQ%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7aeca520982d88b0-LHR content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	ka-f.fontawesome.com/releases/v6.4.0/css/free-v4-font-face.min.css?token=83fd8385f7	172.64.168.22	200 OK	0 B
URL HTTP/2 ka-f.fontawesome.com/releases/v6.4.0/css/free-v4-font-face.min.css?token=83fd8385f7 IP 172.64.168.22:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /releases/v6.4.0/css/free-v4-font-face.min.css?token=83fd8385f7 HTTP/1.1 Host: ka-f.fontawesome.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://business-request-appeal-9694172.web.app/ Origin: https://business-request-appeal-9694172.web.app Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Tue, 28 Mar 2023 03:04:19 GMT content-type: text/css access-control-allow-origin: * access-control-allow-methods: GET access-control-max-age: 3000 last-modified: Thu, 23 Mar 2023 21:29:20 GMT etag: W/"9e7f9f634ace089bcdacc3fcc5f23ce5" x-amz-server-side-encryption: AES256 cache-control: max-age=31556926 access-control-allow-headers: fa-kit-token vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 db92535f619848d07c0f5eb965b50adc.cloudfront.net (CloudFront) x-amz-cf-pop: LHR50-P1 x-amz-cf-id: hTdXcY1-BH3-TzSIWKxr4f77FsD7Q_zTuPbqaeZIgUNQg-88Isj8Mw== age: 27168 cf-cache-status: HIT report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZPS1%2FdtUVXmaDmi8uP8vq%2FhUX72ftWHrYtX13%2B%2BpRCbrwp%2B%2Fa2Sf4Y72LC7DT3idsecnFt%2F%2BsJ56CHWueWcWyHqPQ34XTDHZzbQLNX01o1w4imwHTdriry3bSU6PQ1Ljm%2FvZiqIl9A%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7aeca520d85b88b0-LHR content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	ka-f.fontawesome.com/releases/v6.4.0/css/free-v5-font-face.min.css?token=83fd8385f7	172.64.168.22	200 OK	0 B
URL HTTP/2 ka-f.fontawesome.com/releases/v6.4.0/css/free-v5-font-face.min.css?token=83fd8385f7 IP 172.64.168.22:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /releases/v6.4.0/css/free-v5-font-face.min.css?token=83fd8385f7 HTTP/1.1 Host: ka-f.fontawesome.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://business-request-appeal-9694172.web.app/ Origin: https://business-request-appeal-9694172.web.app Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Tue, 28 Mar 2023 03:04:19 GMT content-type: text/css access-control-allow-origin: * access-control-allow-methods: GET access-control-max-age: 3000 last-modified: Thu, 23 Mar 2023 21:29:20 GMT etag: W/"5856e3f07fbc36fc4d430a95a577a87f" x-amz-server-side-encryption: AES256 cache-control: max-age=31556926 access-control-allow-headers: fa-kit-token x-cache: Hit from cloudfront via: 1.1 76cca2ef798b9dc955bb151bf3bff218.cloudfront.net (CloudFront) x-amz-cf-pop: LHR50-P1 x-amz-cf-id: vyVxyh0BuUFC58T4sBzCfdI5CqY43iBTZZQjW-pnpNgbMrJnb8YIQQ== age: 27168 cf-cache-status: HIT report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LryO4IvBslyu4KQtlGPwK0eCQzBCJ%2FAZcDxa56eTcKLVRf%2Bdb1VnZhQ1a0V4wazHCRdVuF969M%2F6jCguTPRC3r3d3BMBTklDgaQ6%2FD9pNXldW4Yj8ypiZNp2pD8b3SWJ5TbG4VUvAA%3D%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 7aeca520e86888b0-LHR content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	api.ipregistry.co/?key=zw2zufkis9gaiujc	104.18.26.170	200 OK	0 B
URL HTTP/2 api.ipregistry.co/?key=zw2zufkis9gaiujc IP 104.18.26.170:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /?key=zw2zufkis9gaiujc HTTP/1.1 Host: api.ipregistry.co User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://business-request-appeal-9694172.web.app Connection: keep-alive Referer: https://business-request-appeal-9694172.web.app/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Tue, 28 Mar 2023 03:04:19 GMT content-type: application/json vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers access-control-allow-origin: * ipregistry-credits-remaining: 87850 ipregistry-credits-consumed: 1 ipregistry-version: 1 ipregistry-pod: ipregistry-api-664f54d6c5-2xxn5 access-control-expose-headers: Ipregistry-Credits-Remaining, Ipregistry-Credits-Consumed, Ipregistry-Version, Ipregistry-Pod strict-transport-security: max-age=15724800; includeSubDomains cf-cache-status: DYNAMIC server: cloudflare cf-ray: 7aeca5228a75067b-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	netdna.bootstrapcdn.com/font-awesome/3.2.1/css/font-awesome.css	104.18.11.207	200 OK	0 B
URL HTTP/2 netdna.bootstrapcdn.com/font-awesome/3.2.1/css/font-awesome.css IP 104.18.11.207:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /font-awesome/3.2.1/css/font-awesome.css HTTP/1.1 Host: netdna.bootstrapcdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://business-request-appeal-9694172.web.app/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Tue, 28 Mar 2023 03:04:18 GMT content-type: text/css; charset=utf-8 vary: Accept-Encoding cdn-pullzone: 252412 cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74 cdn-requestcountrycode: DE access-control-allow-origin: * cache-control: public, max-age=31919000 last-modified: Mon, 25 Jan 2021 22:04:51 GMT cdn-cachedat: 08/03/2021 17:42:29 cdn-edgestorageid: 601 cdn-requestpullcode: 200 cdn-requestpullsuccess: True timing-allow-origin: * cross-origin-resource-policy: cross-origin x-content-type-options: nosniff cdn-proxyver: 1.0 cdn-status: 200 cdn-requestid: 9026c9e4abb125cb82a6f9e5488a7cfc cdn-cache: HIT cf-cache-status: HIT age: 25413779 strict-transport-security: max-age=31536000; includeSubDomains; preload server: cloudflare cf-ray: 7aeca51ea9beb511-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (7)

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (49)

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers