| s.yimg.com/zz/combo?os/stencil/3.0.1/desktop/styles-ltr.css | 188.125.94.206 | 200 OK | 19 kB |
URL GET HTTP/2s.yimg.com/zz/combo?os/stencil/3.0.1/desktop/styles-ltr.css IP188.125.94.206:443
Requested byhttp://kaitori.select7onlines.com/js/cjhfjh/yh/yh/y/cameo.php CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hash082f1526cb1439c60d42a6a3efc95d96 09efeee710f4c1437e2184476943669b89e2581d 86527ec354b48ba17a5294dd3ec4825d98a43c3d65e4fb17c964c61a6e0f36c4
GET /zz/combo?os/stencil/3.0.1/desktop/styles-ltr.css HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://kaitori.select7onlines.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Fri, 15 Mar 2024 07:39:16 GMT
content-type: text/css
access-control-allow-origin: *
expires: Tue, 15 May 2035 04:34:18 GMT
cache-control: max-age=536112000, Public
content-encoding: gzip
date: Fri, 15 Mar 2024 07:39:16 GMT
age: 2836787
strict-transport-security: max-age=31536000
server: ATS
referrer-policy: no-referrer-when-downgrade
content-length: 19336
ats-carp-promotion: 1
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| kaitori.select7onlines.com/js/cjhfjh/yh/yh/y/cameo.php | 133.242.182.155 | 200 OK | 112 kB |
URL User Request GET HTTP/1.1kaitori.select7onlines.com/js/cjhfjh/yh/yh/y/cameo.php IP133.242.182.155:80 ASN#7684 SAKURA Internet Inc.
File typeHTML document, ASCII text, with very long lines (39697), with CRLF line terminators Size112 kB (111647 bytes) Hash6c31409402313e8dc02825f77228c30d 5aed0a8caf5138c28118145e68a1b628a339bd15 b36dde946d22e07fc3b630685befa972e8134bd1ba18605c11c791679a496d21
Analyzer | Verdict | Alert | OpenPhish | phishing | Yahoo! Inc |
GET /js/cjhfjh/yh/yh/y/cameo.php HTTP/1.1
Host: kaitori.select7onlines.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 17 Apr 2024 03:39:02 GMT
Server: Apache
X-Powered-By: PHP/5.4.21
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
|
|
| s.yimg.com/zz/combo?/sf/assets/mbrlogin/js/3/login-yui-3.18.1-combined-min.js&/ss/rapid-3.19.js&/sf/assets/mbrlogin/js/5/mbr-min.js&/sf/assets/mbrlogin/js/5/cache-min.js&/sf/assets/mbrlogin/js/10/useractivity-min.js&/sf/assets/mbrlogin/js/5/fieldmon-min.js&/sf/assets/mbrlogin/js/1/ajax-min.js&/sf/assets/mbrlogin/js/1/poll-min.js&/sf/assets/mbrlogin/js/3/mbr-desktop-min.js&/sf/assets/mbrlogin/js/desktop/login/74/login-min.js&/sf/assets/mbrlogin/js/mobile/deviceswitcher/1/deviceswitcher-min.js&/sf/assets/mbrlogin/js/common/comscore/1/comscore-min.js&/sf/assets/mbrlogin/js/desktop/lad/12/lad-min.js&kx/yucs/uh3s/uh/414/js/uh-min.js&kx/yucs/uh2/common/145/js/jsonp-super-cached-min.js&kx/yucs/uh3s/uh/379/js/escregex-min.js&kx/yucs/uh3s/uh/376/js/persistence-min.js&kx/yucs/uh3s/uh/401/js/menu_group_plugin-min.js&kx/yucs/uh3s/uh/430/js/menu-plugin-min.js&kx/yucs/uh3s/uh/429/js/menu_handler_v2-min.js&kx/yucs/uh3s/uh/376/js/gallery-jsonp-min.js&kx/yucs/uh3s/uh/408/js/logo_debug-min.js&kx/yucs/uh3/uh/js/958/localeDateFormat-min.js&kx/yucs/uh3s/uh/409/js/timestamp_library-min.js&kx/yucs/uh3s/uh/376/js/usermenu_v2-min.js&kx/yucs/uh3/signout-link/10/js/signout-min.js&kx/yucs/uhc/rapid/48/js/uh_rapid-min.js&kx/yucs/uhc/meta/66/js/meta-min.js | 188.125.94.206 | 400 Bad Request | 3.3 kB |
URL GET HTTP/2s.yimg.com/zz/combo?/sf/assets/mbrlogin/js/3/login-yui-3.18.1-combined-min.js&/ss/rapid-3.19.js&/sf/assets/mbrlogin/js/5/mbr-min.js&/sf/assets/mbrlogin/js/5/cache-min.js&/sf/assets/mbrlogin/js/10/useractivity-min.js&/sf/assets/mbrlogin/js/5/fieldmon-min.js&/sf/assets/mbrlogin/js/1/ajax-min.js&/sf/assets/mbrlogin/js/1/poll-min.js&/sf/assets/mbrlogin/js/3/mbr-desktop-min.js&/sf/assets/mbrlogin/js/desktop/login/74/login-min.js&/sf/assets/mbrlogin/js/mobile/deviceswitcher/1/deviceswitcher-min.js&/sf/assets/mbrlogin/js/common/comscore/1/comscore-min.js&/sf/assets/mbrlogin/js/desktop/lad/12/lad-min.js&kx/yucs/uh3s/uh/414/js/uh-min.js&kx/yucs/uh2/common/145/js/jsonp-super-cached-min.js&kx/yucs/uh3s/uh/379/js/escregex-min.js&kx/yucs/uh3s/uh/376/js/persistence-min.js&kx/yucs/uh3s/uh/401/js/menu_group_plugin-min.js&kx/yucs/uh3s/uh/430/js/menu-plugin-min.js&kx/yucs/uh3s/uh/429/js/menu_handler_v2-min.js&kx/yucs/uh3s/uh/376/js/gallery-jsonp-min.js&kx/yucs/uh3s/uh/408/js/logo_debug-min.js&kx/yucs/uh3/uh/js/958/localeDateFormat-min.js&kx/yucs/uh3s/uh/409/js/timestamp_library-min.js&kx/yucs/uh3s/uh/376/js/usermenu_v2-min.js&kx/yucs/uh3/signout-link/10/js/signout-min.js&kx/yucs/uhc/rapid/48/js/uh_rapid-min.js&kx/yucs/uhc/meta/66/js/meta-min.js IP188.125.94.206:443
Requested byhttp://kaitori.select7onlines.com/js/cjhfjh/yh/yh/y/cameo.php CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
File typePNG image data, 701 x 40, 8-bit colormap, non-interlaced Hashf9cfa57285fa7b50680b36a34e249a58 00175152375e129a71f449bdffcffd78b72b9189 f2d2954c92bde1ca42361ce83e1d02f929f1463f4f9d1b11d4e5c430c9aff8b4
GET /zz/combo?/sf/assets/mbrlogin/js/3/login-yui-3.18.1-combined-min.js&/ss/rapid-3.19.js&/sf/assets/mbrlogin/js/5/mbr-min.js&/sf/assets/mbrlogin/js/5/cache-min.js&/sf/assets/mbrlogin/js/10/useractivity-min.js&/sf/assets/mbrlogin/js/5/fieldmon-min.js&/sf/assets/mbrlogin/js/1/ajax-min.js&/sf/assets/mbrlogin/js/1/poll-min.js&/sf/assets/mbrlogin/js/3/mbr-desktop-min.js&/sf/assets/mbrlogin/js/desktop/login/74/login-min.js&/sf/assets/mbrlogin/js/mobile/deviceswitcher/1/deviceswitcher-min.js&/sf/assets/mbrlogin/js/common/comscore/1/comscore-min.js&/sf/assets/mbrlogin/js/desktop/lad/12/lad-min.js&kx/yucs/uh3s/uh/414/js/uh-min.js&kx/yucs/uh2/common/145/js/jsonp-super-cached-min.js&kx/yucs/uh3s/uh/379/js/escregex-min.js&kx/yucs/uh3s/uh/376/js/persistence-min.js&kx/yucs/uh3s/uh/401/js/menu_group_plugin-min.js&kx/yucs/uh3s/uh/430/js/menu-plugin-min.js&kx/yucs/uh3s/uh/429/js/menu_handler_v2-min.js&kx/yucs/uh3s/uh/376/js/gallery-jsonp-min.js&kx/yucs/uh3s/uh/408/js/logo_debug-min.js&kx/yucs/uh3/uh/js/958/localeDateFormat-min.js&kx/yucs/uh3s/uh/409/js/timestamp_library-min.js&kx/yucs/uh3s/uh/376/js/usermenu_v2-min.js&kx/yucs/uh3/signout-link/10/js/signout-min.js&kx/yucs/uhc/rapid/48/js/uh_rapid-min.js&kx/yucs/uhc/meta/66/js/meta-min.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://kaitori.select7onlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 400 Bad Request
date: Wed, 17 Apr 2024 03:39:03 GMT
age: 3
strict-transport-security: max-age=31536000
server: ATS
referrer-policy: no-referrer-when-downgrade
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| s1.yimg.com/rz/d/yahoo_en-US_f_p_bestfit_2x.png | 188.125.94.206 | 200 OK | 3.1 kB |
URL GET HTTP/2s1.yimg.com/rz/d/yahoo_en-US_f_p_bestfit_2x.png IP188.125.94.206:443
Requested byhttp://kaitori.select7onlines.com/js/cjhfjh/yh/yh/y/cameo.php CertificateIssuerDigiCert Inc Subject*.ec.yimg.com FingerprintB0:73:95:7A:75:DC:F9:A5:42:BE:E2:E2:09:6D:AC:8B:6E:E4:85:5F ValidityWed, 20 Mar 2024 00:00:00 GMT - Wed, 19 Jun 2024 23:59:59 GMT
File typePNG image data, 180 x 74, 8-bit colormap, non-interlaced Hash6919fd582e1387e697f8e772008530db e00b871dfd52f1bb0e95ef27578a59eb8d0da055 19b644434cfa9f5d12e1e90a3c2d062aacf27da9ecbe8393df77383ab3c00208
GET /rz/d/yahoo_en-US_f_p_bestfit_2x.png HTTP/1.1
Host: s1.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://kaitori.select7onlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: /PoM+wNI59GkQqOmUuKCM5XFDOVdam6meHiXoCAp1rHRT0+RTnZMm4p6J6Gle73/arqw2Tyr4P4=
x-amz-request-id: Y18HFMWGXBGYYJV3
date: Wed, 17 Apr 2024 03:39:05 GMT
last-modified: Tue, 16 Apr 2024 21:26:54 GMT
x-amz-server-side-encryption: AES256
cache-control: private
accept-ranges: bytes
content-type: image/png
server: ATS
content-length: 3066
referrer-policy: no-referrer-when-downgrade
vary: Origin
etag: "6919fd582e1387e697f8e772008530db"
expires: Wed, 17 Apr 2024 23:00:00 GMT
age: 0
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| s.yimg.com/rz/d/yahoo_mail_en-US_s_f_pw_351x40_mail.png | 188.125.94.206 | 200 OK | 3.3 kB |
URL GET HTTP/2s.yimg.com/rz/d/yahoo_mail_en-US_s_f_pw_351x40_mail.png IP188.125.94.206:443
Requested byhttp://kaitori.select7onlines.com/js/cjhfjh/yh/yh/y/cameo.php CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
File typePNG image data, 701 x 40, 8-bit colormap, non-interlaced Hashf9cfa57285fa7b50680b36a34e249a58 00175152375e129a71f449bdffcffd78b72b9189 f2d2954c92bde1ca42361ce83e1d02f929f1463f4f9d1b11d4e5c430c9aff8b4
GET /rz/d/yahoo_mail_en-US_s_f_pw_351x40_mail.png HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://kaitori.select7onlines.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: +aQu+CKE1kbMyFV5tR2WV7YmZiYxlZTV2oKbf1nxAqiC+7MC9LeOHn5B+ZmT21X/bg59iRH8gqs=
x-amz-request-id: ZJQHRRVJD5ATEQJ2
date: Tue, 16 Apr 2024 15:21:56 GMT
last-modified: Mon, 15 Apr 2024 21:28:12 GMT
x-amz-server-side-encryption: AES256
cache-control: private
accept-ranges: bytes
content-type: image/png
server: ATS
content-length: 3273
referrer-policy: no-referrer-when-downgrade
vary: Origin
etag: "f9cfa57285fa7b50680b36a34e249a58"
expires: Tue, 16 Apr 2024 23:00:00 GMT
age: 44229
ats-carp-promotion: 1
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| s.yimg.com/zz/combo?/sf/assets/mbrlogin/css/pure-0.3.0-min.css&/sf/assets/mbrlogin/css/18/mbr-min.css&/sf/assets/mbrlogin/css/6/sprite-min.css&/sf/assets/mbrlogin/css/19/mbr-desktop-min.css&/sf/assets/mbrlogin/css/desktop/header/2/header-min.css&/sf/assets/mbrlogin/css/desktop/contents/2/contents-min.css&/sf/assets/mbrlogin/css/desktop/login/1/flags-min.css&/sf/assets/mbrlogin/css/desktop/login/67/login-min.css&/sf/assets/mbrlogin/css/desktop/footer/8/footer-min.css&/sf/assets/mbrlogin/css/mobile/deviceswitcher/2/deviceswitcher-min.css&/sf/assets/mbrlogin/css/desktop/lad/1/lad-min.css&kx/yucs/uh3s/atomic/84/css/atomic-min.css&kx/yucs/uh_common/meta/3/css/meta-min.css&kx/yucs/uh3s/uh/394/css/uh-center-aligned-min.css | 188.125.94.206 | 400 Bad Request | 0 B |
URL GET HTTP/2s.yimg.com/zz/combo?/sf/assets/mbrlogin/css/pure-0.3.0-min.css&/sf/assets/mbrlogin/css/18/mbr-min.css&/sf/assets/mbrlogin/css/6/sprite-min.css&/sf/assets/mbrlogin/css/19/mbr-desktop-min.css&/sf/assets/mbrlogin/css/desktop/header/2/header-min.css&/sf/assets/mbrlogin/css/desktop/contents/2/contents-min.css&/sf/assets/mbrlogin/css/desktop/login/1/flags-min.css&/sf/assets/mbrlogin/css/desktop/login/67/login-min.css&/sf/assets/mbrlogin/css/desktop/footer/8/footer-min.css&/sf/assets/mbrlogin/css/mobile/deviceswitcher/2/deviceswitcher-min.css&/sf/assets/mbrlogin/css/desktop/lad/1/lad-min.css&kx/yucs/uh3s/atomic/84/css/atomic-min.css&kx/yucs/uh_common/meta/3/css/meta-min.css&kx/yucs/uh3s/uh/394/css/uh-center-aligned-min.css IP188.125.94.206:443
Requested byhttp://kaitori.select7onlines.com/js/cjhfjh/yh/yh/y/cameo.php CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /zz/combo?/sf/assets/mbrlogin/css/pure-0.3.0-min.css&/sf/assets/mbrlogin/css/18/mbr-min.css&/sf/assets/mbrlogin/css/6/sprite-min.css&/sf/assets/mbrlogin/css/19/mbr-desktop-min.css&/sf/assets/mbrlogin/css/desktop/header/2/header-min.css&/sf/assets/mbrlogin/css/desktop/contents/2/contents-min.css&/sf/assets/mbrlogin/css/desktop/login/1/flags-min.css&/sf/assets/mbrlogin/css/desktop/login/67/login-min.css&/sf/assets/mbrlogin/css/desktop/footer/8/footer-min.css&/sf/assets/mbrlogin/css/mobile/deviceswitcher/2/deviceswitcher-min.css&/sf/assets/mbrlogin/css/desktop/lad/1/lad-min.css&kx/yucs/uh3s/atomic/84/css/atomic-min.css&kx/yucs/uh_common/meta/3/css/meta-min.css&kx/yucs/uh3s/uh/394/css/uh-center-aligned-min.css HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://kaitori.select7onlines.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 400 Bad Request
date: Wed, 17 Apr 2024 03:39:02 GMT
age: 0
strict-transport-security: max-age=31536000
server: ATS
referrer-policy: no-referrer-when-downgrade
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| s.yimg.com/rq/darla/2-8-9/js/g-r-min.js | 188.125.94.206 | 403 Forbidden | 0 B |
URL GET HTTP/2s.yimg.com/rq/darla/2-8-9/js/g-r-min.js IP188.125.94.206:443
Requested byhttp://kaitori.select7onlines.com/js/cjhfjh/yh/yh/y/cameo.php CertificateIssuerDigiCert Inc Subject*.fantasysports.yahoo.com FingerprintF9:49:E1:CC:DE:98:74:FF:9B:DF:28:DC:D8:43:B9:82:99:B1:60:DB ValidityTue, 02 Apr 2024 00:00:00 GMT - Wed, 22 May 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rq/darla/2-8-9/js/g-r-min.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://kaitori.select7onlines.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
x-amz-request-id: WTAXCENAWC7ZB7FX
x-amz-id-2: d3hbcxta/4UJBX++Hz8c2+OVzDlKsPJF0xewz2ubXxHaeu4b07E/CwaMML7Bx1eWZODwkfobO8w=
content-type: application/xml
date: Wed, 17 Apr 2024 03:39:02 GMT
server: ATS
referrer-policy: no-referrer-when-downgrade
vary: Origin
age: 1
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|