| 34.81.83.87:8080/supershell/login/supershell/login/supershell/login/supershell/login | 34.81.83.87 | 302 FOUND | 221 B |
URL User Request GET HTTP/1.134.81.83.87:8080/supershell/login/supershell/login/supershell/login/supershell/login IP34.81.83.87:8080 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeHTML document, ASCII text Hash88ffecfff07bf5086b8d123dcb7ce361 58e591d9f4772dca8195e37685bd44f6ea82a0c0 9279bd33ed7c9e30f89e9861fa2fd1bb9612d56277f76adf306cc9985958555a
Analyzer | Verdict | Alert | urlquery | malware | Malware - Botnet panel | Quad9 DNS | malicious | Sinkholed |
GET /supershell/login/supershell/login/supershell/login/supershell/login HTTP/1.1
Host: 34.81.83.87:8080
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 FOUND
Server: nginx/1.18.0
Date: Fri, 29 Mar 2024 10:39:02 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 221
Connection: keep-alive
Location: /supershell/login
|
|
| 34.81.83.87:8080/supershell/login | 34.81.83.87 | 200 OK | 1.5 kB |
URL User Request GET HTTP/1.134.81.83.87:8080/supershell/login IP34.81.83.87:8080 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeHTML document, Unicode text, UTF-8 text Hash8e5e6a715fb0e79cfcb1b566c3ab3156 eec9e11cae4d956295d00f9399c438df2860b04c 6084d5352ce347a3f6b9f7b789acc8b422b748a0cd99549f2ea534e439b8999b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /supershell/login HTTP/1.1
Host: 34.81.83.87:8080
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Fri, 29 Mar 2024 10:39:02 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Content-Encoding: gzip
|
|
| rsms.me/inter/inter.css | 104.21.234.235 | 200 OK | 10 kB |
IP104.21.234.235:443
Requested byhttp://34.81.83.87:8080/supershell/login CertificateIssuerLet's Encrypt Subjectrsms.me Fingerprint6C:46:89:5E:85:32:C8:EF:9E:7B:DE:40:06:38:8C:D7:84:04:DA:C8 ValidityMon, 26 Feb 2024 08:01:03 GMT - Sun, 26 May 2024 08:01:02 GMT
Hashc64a4ac8b3294c33af995b611a01ea33 80299860a6975cdbc960e183ab2f43fcb3535671 8fedfb7def1421aa9d58d1732be7164e33eec27b9c87193e010b9ddaa67b6a18
GET /inter/inter.css HTTP/1.1
Host: rsms.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://34.81.83.87:8080/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 29 Mar 2024 10:39:03 GMT
content-type: text/css; charset=utf-8
x-origin-cache: HIT
last-modified: Mon, 25 Mar 2024 16:53:19 GMT
access-control-allow-origin: *
etag: W/"6601abff-1b8d"
expires: Tue, 26 Mar 2024 00:20:27 GMT
cache-control: max-age=14400
x-proxy-cache: MISS
x-github-request-id: 807C:212527:7F7EDE:814CCD:6601ACC9
via: 1.1 varnish
age: 335
x-served-by: cache-lcy-eglc8600038-LCY
x-cache: HIT
x-cache-hits: 1
x-timer: S1711385910.600465,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 6e98a45f4f0488c9e407ce889c21262b4e53898f
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gJ3AoUGnxGiQI7ya%2BtqIN27W7oorplBbio%2BnmO8czDNAfW1lPPDJrrAmfTD4Efnj%2FEXn2nkJ0tvyQTgDlgffHlvoTUuEhMQv4TPuEBSHg%2Fu84lhBe3p3mEgD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bf3bdcaec77201-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| 34.81.83.87:8080/static/css/toastr.min.css | 34.81.83.87 | 200 OK | 6.5 kB |
URL GET HTTP/1.134.81.83.87:8080/static/css/toastr.min.css IP34.81.83.87:8080 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttp://34.81.83.87:8080/supershell/login
File typeASCII text, with very long lines (6454), with no line terminators Hashf284028c678041d687c6f1be6968f68a a668ec5d16eec86372216a8c1b161cdec3eebecf 47dd690f8f315bea076e92581a7e7147443bb4c847e313ab5a7d50a8c44836d0
Analyzer | Verdict | Alert | urlquery | malware | Malware - Botnet panel | Quad9 DNS | malicious | Sinkholed |
GET /static/css/toastr.min.css HTTP/1.1
Host: 34.81.83.87:8080
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://34.81.83.87:8080/supershell/login
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Fri, 29 Mar 2024 10:39:03 GMT
Content-Type: text/css
Content-Length: 6454
Last-Modified: Tue, 21 Mar 2023 12:47:12 GMT
Connection: keep-alive
ETag: "6419a750-1936"
Accept-Ranges: bytes
|
|
| 34.81.83.87:8080/static/js/toastr.min.js | 34.81.83.87 | 200 OK | 5.3 kB |
URL GET HTTP/1.134.81.83.87:8080/static/js/toastr.min.js IP34.81.83.87:8080 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttp://34.81.83.87:8080/supershell/login
File typeJavaScript source, ASCII text, with very long lines (5215) Hash8ee1218b09fb02d43fcf0b84e30637ad f871160d56be073d37159b169da23945fa132ab7 1e0c2ad4e069276efa1d43fd1f7549912bfd64219119037e26574f27ca4d7143
Analyzer | Verdict | Alert | urlquery | malware | Malware - Botnet panel | Quad9 DNS | malicious | Sinkholed |
GET /static/js/toastr.min.js HTTP/1.1
Host: 34.81.83.87:8080
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://34.81.83.87:8080/supershell/login
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Fri, 29 Mar 2024 10:39:03 GMT
Content-Type: application/javascript
Content-Length: 5251
Last-Modified: Tue, 21 Mar 2023 12:47:03 GMT
Connection: keep-alive
ETag: "6419a747-1483"
Accept-Ranges: bytes
|
|
| 34.81.83.87:8080/static/js/func/login.js | 34.81.83.87 | 200 OK | 2.8 kB |
URL GET HTTP/1.134.81.83.87:8080/static/js/func/login.js IP34.81.83.87:8080 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttp://34.81.83.87:8080/supershell/login
File typeJavaScript source, Unicode text, UTF-8 text Hashbcbb4af9c70de03edd8fc6c64604de7b af8abcc821cff7f7e34f10c2b3d3da50ddbf247c 0c170addf4db0652f05cb8692978add1e819daa3891780164468c600055f5159
Analyzer | Verdict | Alert | urlquery | malware | Malware - Botnet panel | Quad9 DNS | malicious | Sinkholed |
GET /static/js/func/login.js HTTP/1.1
Host: 34.81.83.87:8080
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://34.81.83.87:8080/supershell/login
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Fri, 29 Mar 2024 10:39:03 GMT
Content-Type: application/javascript
Content-Length: 2756
Last-Modified: Tue, 21 Mar 2023 12:47:04 GMT
Connection: keep-alive
ETag: "6419a748-ac4"
Accept-Ranges: bytes
|
|
| 34.81.83.87:8080/static/js/jquery.min.js | 34.81.83.87 | 200 OK | 84 kB |
URL GET HTTP/1.134.81.83.87:8080/static/js/jquery.min.js IP34.81.83.87:8080 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttp://34.81.83.87:8080/supershell/login
File typeJavaScript source, ASCII text, with very long lines (32025) Hash7a7b18606448bded22cd1cf48d4712cc 5b9df089eb85cecb320fd9ed3f0f9da173c92d61 ab0d063b4ff2827192c0e44103d3091457a1d2374c3b6243721c5679bb61eae2
Analyzer | Verdict | Alert | urlquery | malware | Malware - Botnet panel | Quad9 DNS | malicious | Sinkholed |
GET /static/js/jquery.min.js HTTP/1.1
Host: 34.81.83.87:8080
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://34.81.83.87:8080/supershell/login
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Fri, 29 Mar 2024 10:39:03 GMT
Content-Type: application/javascript
Content-Length: 84344
Last-Modified: Tue, 21 Mar 2023 12:47:04 GMT
Connection: keep-alive
ETag: "6419a748-14978"
Accept-Ranges: bytes
|
|
| 34.81.83.87:8080/static/js/tabler.min.js | 34.81.83.87 | 200 OK | 147 kB |
URL GET HTTP/1.134.81.83.87:8080/static/js/tabler.min.js IP34.81.83.87:8080 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttp://34.81.83.87:8080/supershell/login
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65272) Size147 kB (146911 bytes) Hash7b9f247cfec72dca7cd63aeb4a3ddbee 4538feb553ec996f1483d19edbb6d16a481042ef 70092f07f13a46d5f8fab402c92d50d1677f703ec9656590ca7a0f264296f067
Analyzer | Verdict | Alert | urlquery | malware | Malware - Botnet panel | Quad9 DNS | malicious | Sinkholed |
GET /static/js/tabler.min.js HTTP/1.1
Host: 34.81.83.87:8080
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://34.81.83.87:8080/supershell/login
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Fri, 29 Mar 2024 10:39:03 GMT
Content-Type: application/javascript
Content-Length: 146911
Last-Modified: Tue, 21 Mar 2023 12:47:03 GMT
Connection: keep-alive
ETag: "6419a747-23ddf"
Accept-Ranges: bytes
|
|
| 34.81.83.87:8080/static/css/tabler.min.css | 34.81.83.87 | 200 OK | 499 kB |
URL GET HTTP/1.134.81.83.87:8080/static/css/tabler.min.css IP34.81.83.87:8080 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttp://34.81.83.87:8080/supershell/login
File typeUnicode text, UTF-8 text, with very long lines (65269) Size499 kB (498576 bytes) Hash8af8e772a872021c5ab4ac15887f83b9 337336efcea0d47e92ee1857314a51d704cf65e6 c3e9d7da708c0f3a5998e558656f2ec90f3fbbe8973651b534da0a60b24563ea
Analyzer | Verdict | Alert | urlquery | malware | Malware - Botnet panel | Quad9 DNS | malicious | Sinkholed |
GET /static/css/tabler.min.css HTTP/1.1
Host: 34.81.83.87:8080
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://34.81.83.87:8080/supershell/login
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Fri, 29 Mar 2024 10:39:03 GMT
Content-Type: text/css
Content-Length: 498576
Last-Modified: Tue, 21 Mar 2023 12:47:10 GMT
Connection: keep-alive
ETag: "6419a74e-79b90"
Accept-Ranges: bytes
|
|
| 34.81.83.87:8080/static/img/logo.svg | 34.81.83.87 | 200 OK | 18 kB |
URL GET HTTP/1.134.81.83.87:8080/static/img/logo.svg IP34.81.83.87:8080 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttp://34.81.83.87:8080/supershell/login
File typeSVG Scalable Vector Graphics image Hash49c9f1790bffe6655f6c02b5e48787ab 42aaadc455b442e34d716f81c132a19f7c111321 662b68e7f5cec8085faf5f341578bea97a3bc6785f5e900a677da664fb4202de
Analyzer | Verdict | Alert | urlquery | malware | Malware - Botnet panel | Quad9 DNS | malicious | Sinkholed |
GET /static/img/logo.svg HTTP/1.1
Host: 34.81.83.87:8080
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://34.81.83.87:8080/supershell/login
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Fri, 29 Mar 2024 10:39:04 GMT
Content-Type: image/svg+xml
Content-Length: 17610
Last-Modified: Tue, 21 Mar 2023 12:48:02 GMT
Connection: keep-alive
ETag: "6419a782-44ca"
Accept-Ranges: bytes
|
|
| rsms.me/inter/font-files/InterVariable.woff2?v=4.0 | 104.21.234.235 | 200 OK | 346 kB |
URL GET HTTP/3rsms.me/inter/font-files/InterVariable.woff2?v=4.0 IP104.21.234.235:443
Requested byhttp://34.81.83.87:8080/supershell/login CertificateIssuerLet's Encrypt Subjectrsms.me Fingerprint6C:46:89:5E:85:32:C8:EF:9E:7B:DE:40:06:38:8C:D7:84:04:DA:C8 ValidityMon, 26 Feb 2024 08:01:03 GMT - Sun, 26 May 2024 08:01:02 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 345588, version 4.0 Size346 kB (345588 bytes) Hash499fcada6ddb2c38718c2c16a190d639 9ef5d7d28925b9e0213f67b8105870e0afade711 8af7bd5b545567adffb3dfceb5bedb353a522d7bf1b3a2b8af7b6064156babc0
GET /inter/font-files/InterVariable.woff2?v=4.0 HTTP/1.1
Host: rsms.me
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://34.81.83.87:8080
DNT: 1
Connection: keep-alive
Referer: https://rsms.me/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 29 Mar 2024 10:39:04 GMT
content-type: font/woff2
content-length: 345588
x-origin-cache: HIT
last-modified: Mon, 25 Mar 2024 16:53:19 GMT
access-control-allow-origin: *
etag: "6601abff-545f4"
expires: Mon, 25 Mar 2024 17:06:23 GMT
cache-control: max-age=2678400
x-proxy-cache: HIT
x-github-request-id: 2846:0E80:89CD03F:8C1D422:6601ACBC
via: 1.1 varnish
x-served-by: cache-lcy-eglc8600059-LCY
x-cache: HIT
x-cache-hits: 1
x-timer: S1711708745.600991,VS0,VE2
vary: Accept-Encoding
x-fastly-request-id: 3850d3843f22fc8810cc3ac2ae0de18bdd4bad99
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2TaNJCcYr2eOJxJO9yl8jtmdp%2BR%2BJFqLjKzAHsx3IZslwkdtRNaliQPkUlqPxi%2BQXp886bI33WH2unhsLga2e%2Br0%2FQBVhlVK9c6jwHxKZwRQfYWfSnRR5sVV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 86bf3be5a91079c6-LHR
alt-svc: h3=":443"; ma=86400
|
|
| 34.81.83.87:8080/static/img/favicon.ico | 34.81.83.87 | 200 OK | 5.6 kB |
URL GET HTTP/1.134.81.83.87:8080/static/img/favicon.ico IP34.81.83.87:8080 ASN#396982 GOOGLE-CLOUD-PLATFORM
Requested byhttp://34.81.83.87:8080/supershell/login
File typeMS Windows icon resource - 1 icon, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel Hashcb183a53ebfc2b61b3968c9d4aa4b14a 7ecdf1b8ec7a60388850f693d377540b651c2aed 8a0bfe63bcd9859d68e4e60ac703c20e6242c2a9c690638c4887e32eadf59ceb
Analyzer | Verdict | Alert | urlquery | malware | Malware - Botnet panel | Quad9 DNS | malicious | Sinkholed |
GET /static/img/favicon.ico HTTP/1.1
Host: 34.81.83.87:8080
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://34.81.83.87:8080/supershell/login
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Fri, 29 Mar 2024 10:39:04 GMT
Content-Type: image/x-icon
Content-Length: 5563
Last-Modified: Tue, 21 Mar 2023 12:47:13 GMT
Connection: keep-alive
ETag: "6419a751-15bb"
Accept-Ranges: bytes
|
|
| aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-97-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml | 35.244.181.201 | | 444 B |
URL aus5.mozilla.org/update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-97-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml IP35.244.181.201:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeXML 1.0 document, ASCII text, with very long lines (332) Hash3b324dec137a87ef7e24a30a65b13dd0 c0faa95b2f1018e264b3a14aaf50d1003e6c27b3 6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463
GET /update/3/GMP/111.0a1/20240129201730/Linux_x86_64-gcc3/null/default/Linux%205.15.0-97-generic%20(GTK%203.24.37%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-04-29-22-13-57.chain; p384ecdsa=8zil4FZVau50uxdseWHZLD63i6scqcGlYRKMH9ZRMWwNVpEKBPSemR8Hbc4tshgR2MSaEa3GJSyrY5EQxfFX_WfYrd1hMpILCxP2bS7yXFc0A6SKll3OOBTv_mWVNL3r
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: EXPIRED
content-encoding: gzip
via: 1.1 google
date: Fri, 29 Mar 2024 10:38:11 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
content-length: 444
age: 70
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2
|
|