| r3.o.lencr.org/ | 23.33.119.10 | 200 OK | 503 B |
IP23.33.119.10:0 ASN#20940 Akamai International B.V.
Hash6f313739c4c44174fc9a97ac63621b46 319da68d06694330ad9f7901bcde1ca0a6eeac0d 321236ee07769c741890815bc56fd2700ff1974b0534368b9ff2e96320ae4fee
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "321236EE07769C741890815BC56FD2700FF1974B0534368B9FF2E96320AE4FEE"
Last-Modified: Wed, 22 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7883
Expires: Fri, 24 Feb 2023 00:17:32 GMT
Date: Thu, 23 Feb 2023 22:06:09 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.10 | 200 OK | 503 B |
IP23.33.119.10:0 ASN#20940 Akamai International B.V.
Hash67fc460ed2f69dde3c410ec607ef3510 ba9f582ec321351e5c06c9b2c381f06b685ef274 85df74fac7d59d76840b6359bac24648fede201c0048f2a8382af6468225ffb8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "85DF74FAC7D59D76840B6359BAC24648FEDE201C0048F2A8382AF6468225FFB8"
Last-Modified: Wed, 22 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5505
Expires: Thu, 23 Feb 2023 23:37:54 GMT
Date: Thu, 23 Feb 2023 22:06:09 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.10 | 200 OK | 503 B |
IP23.33.119.10:0 ASN#20940 Akamai International B.V.
Hash7fb59e5d3cdf08b94e5f41fdeb9aec6c ff644039db3b9f74d7e2fab10f93581bea10614a 861573a00d75364e15783c5e448c4f8b4da48b38d9beba3ebd33a87f993489a5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "861573A00D75364E15783C5E448C4F8B4DA48B38D9BEBA3EBD33A87F993489A5"
Last-Modified: Wed, 22 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6380
Expires: Thu, 23 Feb 2023 23:52:29 GMT
Date: Thu, 23 Feb 2023 22:06:09 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash7f03faaba3392caae6dae54467bfdf6d 57ea1f14e8bfbcca8190c706d708c9fda12442c1 02ac551ba61fcbc6b04f244df065948b181a8a258db5c2e197aae66fdfcea8ee
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 23 Feb 2023 21:53:57 GMT
content-type: application/json
age: 732
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hashb5ba6334e73496995e3e3a9ecd0eb323 ad80d3b7718c28364e8c2004fb38a13a1747e462 aa5abb52515c6383c014aadb63a86c9f798ad64de53c0218616c1fc6d424d2e2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: vq2O38KS0NnN5eUXC4XApbTQoX0pzANllHPeV/6Yz8aO4fA8j0IHE7Bq6ZbO1XDKu7HCGiFrzhQ=
x-amz-request-id: TT272W6FRK1J9MWZ
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 23 Feb 2023 21:49:14 GMT
age: 1015
last-modified: Sat, 18 Feb 2023 20:28:27 GMT
etag: "b5ba6334e73496995e3e3a9ecd0eb323"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| historianmail.ga/ | 89.38.96.112 | 301 Moved Permanently | 162 B |
IP89.38.96.112:0 ASN#49981 WorldStream B.V.
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hash4f8e702cc244ec5d4de32740c0ecbd97 3adb1f02d5b6054de0046e367c1d687b6cdf7aff 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
NIDS | Severity | Alert | suricata | medium | ET INFO HTTP Request to a *.ga domain |
GET / HTTP/1.1
Host: historianmail.ga
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 23 Feb 2023 22:06:09 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://firstmail.ltd/webmail
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Frame-Options: sameorigin
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Content-Security-Policy: default-src https: data: 'unsafe-inline' 'unsafe-eval'
Referrer-Policy: strict-origin
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 23 Feb 2023 22:06:09 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Cache-Control, Backoff, Pragma, Expires, Last-Modified, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 23 Feb 2023 21:20:35 GMT
age: 2735
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hash56cd85a02d031d2f7b794f1f2cfda4eb 878162e77393da15f0a1c8bf8a83a777a6caf317 15bc2ef238d6cf940adc4a29a31bd3fa0ee1712529d89c1a2fd74fb32d5ffe5e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Feb 2023 22:06:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| r3.o.lencr.org/ | 23.33.119.10 | 200 OK | 503 B |
IP23.33.119.10:0 ASN#20940 Akamai International B.V.
Hash5fa728a339ca32e616d483e61d0aebcd 6a63966de94d16390c8f1e47e5b67fe5bb67f7cd 7e83729d554404e59f1f1ff809ac776d3596487e2b062a1e38af8e29f33c0686
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7E83729D554404E59F1F1FF809AC776D3596487E2B062A1E38AF8E29F33C0686"
Last-Modified: Wed, 22 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9169
Expires: Fri, 24 Feb 2023 00:38:59 GMT
Date: Thu, 23 Feb 2023 22:06:10 GMT
Connection: keep-alive
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hash56cd85a02d031d2f7b794f1f2cfda4eb 878162e77393da15f0a1c8bf8a83a777a6caf317 15bc2ef238d6cf940adc4a29a31bd3fa0ee1712529d89c1a2fd74fb32d5ffe5e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Feb 2023 22:06:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| push.services.mozilla.com/ | 35.165.41.15 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP35.165.41.15:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: VQmGSW8yGP8zIdsymVxIdA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: j6COdOgGZIF95+VB8/s57lFEyio=
|
|
| ocsp.globalsign.com/gseccovsslca2018 | 104.18.21.226 | 200 OK | 940 B |
URL HTTP/1.1ocsp.globalsign.com/gseccovsslca2018 IP104.18.21.226:0
Hashae9173802977642c7a8d149b50c3f2d7 d457bb137cdbf4faf0392101e5cf2cb88b8c3c26 4c6679a8397dea0cd89cf4ded2c1f993b1ceb7865d5cae9397f41efbfe458314
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 22:06:11 GMT
Content-Type: application/ocsp-response
Content-Length: 940
Connection: keep-alive
Expires: Mon, 27 Feb 2023 19:47:42 GMT
ETag: "d457bb137cdbf4faf0392101e5cf2cb88b8c3c26"
Last-Modified: Thu, 23 Feb 2023 19:47:43 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2757
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79e344689881b521-OSL
|
|
| firstmail.ltd/assets/vendor/libs/tagify/tagify.js | 89.38.96.112 | 200 OK | 46 kB |
URL HTTP/2firstmail.ltd/assets/vendor/libs/tagify/tagify.js IP89.38.96.112:0 ASN#49981 WorldStream B.V.
Hash5de2f4a3bf2f7b38dc2e6a1fada71420 a658b17115abb56005d4671a2cc2e75dd3de9885 0fe82b8158f4991d1ffd9fdf64948d7cb8ee2dc25fedde2e8eb4bab50a7a8134
GET /assets/vendor/libs/tagify/tagify.js HTTP/1.1
Host: firstmail.ltd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstmail.ltd/webmail
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Feb 2023 22:06:10 GMT
content-type: application/javascript; charset=UTF-8
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Tue, 04 Oct 2022 18:41:12 GMT
etag: W/"22632-183a44d49a7"
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval'; script-src * 'unsafe-inline' 'script-src' 'unsafe-eval'; connect-src * 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src *; style-src * 'unsafe-inline'; http://beta.firstmail.ru
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/ibmplexsans/v14/zYXgKVElMYYaJe8bpLHnCwDKhdHeFQ.woff2 | 142.250.74.35 | 200 OK | 18 kB |
URL HTTP/2fonts.gstatic.com/s/ibmplexsans/v14/zYXgKVElMYYaJe8bpLHnCwDKhdHeFQ.woff2 IP142.250.74.35:0
File typeWeb Open Font Format (Version 2), TrueType, length 18000, version 1.0\012- data Hash560995d7cd4dc2b997fe8a9ef9601982 d688e6d4db3d5ded8039208ec478049e971f4075 fcecb97c12786d7a9387a81e74e4179790fd84425c9c75be1aec3aed645bf6e2
GET /s/ibmplexsans/v14/zYXgKVElMYYaJe8bpLHnCwDKhdHeFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://firstmail.ltd
Connection: keep-alive
Referer: https://firstmail.ltd/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 17 Feb 2023 02:06:23 GMT
expires: Sat, 17 Feb 2024 02:06:23 GMT
cache-control: public, max-age=31536000
age: 590388
last-modified: Tue, 26 Apr 2022 15:46:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| firstmail.ltd/assets/vendor/libs/jquery/jquery.js | 89.38.96.112 | 200 OK | 231 kB |
URL HTTP/2firstmail.ltd/assets/vendor/libs/jquery/jquery.js IP89.38.96.112:0 ASN#49981 WorldStream B.V.
Size231 kB (231068 bytes) Hash91ca6a6ede4a7a50d8fd909d40045f74 a7a5f37e870da07a3d36144ac0eb6adedb882518 37de6a49db0539915616962cd701ec6a1b7ee98d55794c578ec8323abce56132
GET /assets/vendor/libs/jquery/jquery.js HTTP/1.1
Host: firstmail.ltd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstmail.ltd/webmail
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Feb 2023 22:06:10 GMT
content-type: application/javascript; charset=UTF-8
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Tue, 04 Oct 2022 18:41:12 GMT
etag: W/"cb5da-183a44d4963"
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval'; script-src * 'unsafe-inline' 'script-src' 'unsafe-eval'; connect-src * 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src *; style-src * 'unsafe-inline'; http://beta.firstmail.ru
X-Firefox-Spdy: h2
|
|
| mc.yandex.ru/metrika/tag.js | 93.158.134.119 | 200 OK | 74 kB |
URL HTTP/2mc.yandex.ru/metrika/tag.js IP93.158.134.119:0
File typeUnicode text, UTF-8 (with BOM) text, with very long lines (659) Hash6a599c9bd605553d6e8ea26b240017e5 ce6de2eaa815569841f1b16de3de7aa841ac7e88 8ee4a7bf51b198d826a7320c21965e73d95fd1642d9071a1a840e566ee9303de
GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstmail.ltd/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 73790
date: Thu, 23 Feb 2023 22:06:11 GMT
access-control-allow-origin: *
etag: "63f47caa-1203e"
expires: Thu, 23 Feb 2023 23:06:11 GMT
last-modified: Tue, 21 Feb 2023 11:11:22 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: application/javascript
content-encoding: br
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| firstmail.ltd/assets/img/flags/en.png | 89.38.96.112 | 200 OK | 20 kB |
URL HTTP/2firstmail.ltd/assets/img/flags/en.png IP89.38.96.112:0 ASN#49981 WorldStream B.V.
File typePNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data Hashaac0dfefc080856931658ea9c760534e 6495d0a202721472461a53b11c79aea953184a7c 16d2af8dfe6bff63fd76dc7434e09f1c98de85b1aa8d35ab98b473bae3c1f97d
GET /assets/img/flags/en.png HTTP/1.1
Host: firstmail.ltd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstmail.ltd/webmail
Cookie: i18n_redirected=en; _ga_D17MT12KF4=GS1.1.1677189995.1.0.1677189996.0.0.0; _ga=GA1.1.1253268134.1677189996
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Feb 2023 22:06:11 GMT
content-type: image/png
content-length: 19575
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Tue, 04 Oct 2022 18:41:11 GMT
etag: W/"4c77-183a44d47c7"
content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval'; script-src * 'unsafe-inline' 'script-src' 'unsafe-eval'; connect-src * 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src *; style-src * 'unsafe-inline'; http://beta.firstmail.ru
X-Firefox-Spdy: h2
|
|
| firstmail.ltd/assets/vendor/libs/hammer/hammer.js | 89.38.96.112 | 200 OK | 64 kB |
URL HTTP/2firstmail.ltd/assets/vendor/libs/hammer/hammer.js IP89.38.96.112:0 ASN#49981 WorldStream B.V.
Hash1a1e08a5b628dfcf955c424b24e487cd 86c51a2231c426f17436102b213748a9c23c9a75 e00629844a22f27815ce59535d482191d1ed3791f51364b552d92e699d644f7a
GET /assets/vendor/libs/hammer/hammer.js HTTP/1.1
Host: firstmail.ltd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstmail.ltd/webmail
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Feb 2023 22:06:10 GMT
content-type: application/javascript; charset=UTF-8
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Tue, 04 Oct 2022 18:41:12 GMT
etag: W/"31b67-183a44d4957"
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval'; script-src * 'unsafe-inline' 'script-src' 'unsafe-eval'; connect-src * 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src *; style-src * 'unsafe-inline'; http://beta.firstmail.ru
X-Firefox-Spdy: h2
|
|
| firstmail.ltd/assets/vendor/libs/apex-charts/apexcharts.js | 89.38.96.112 | 200 OK | 367 kB |
URL HTTP/2firstmail.ltd/assets/vendor/libs/apex-charts/apexcharts.js IP89.38.96.112:0 ASN#49981 WorldStream B.V.
Size367 kB (367266 bytes) Hashab5c81967c3e8b515a23d3768cfd5d80 06f7ce101ceac9f541a9db2b7bd79767ba3a4454 529cfc48912015799b3decc40ab0542c3653e64bfe90fb5a11737d0f9b0efc0f
GET /assets/vendor/libs/apex-charts/apexcharts.js HTTP/1.1
Host: firstmail.ltd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstmail.ltd/webmail
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Feb 2023 22:06:10 GMT
content-type: application/javascript; charset=UTF-8
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Tue, 04 Oct 2022 18:41:11 GMT
etag: W/"1318c3-183a44d492b"
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval'; script-src * 'unsafe-inline' 'script-src' 'unsafe-eval'; connect-src * 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src *; style-src * 'unsafe-inline'; http://beta.firstmail.ru
X-Firefox-Spdy: h2
|
|
| firstmail.ltd/_nuxt/a46a8b9.js | 89.38.96.112 | 200 OK | 45 kB |
URL HTTP/2firstmail.ltd/_nuxt/a46a8b9.js IP89.38.96.112:0 ASN#49981 WorldStream B.V.
Hashb54cec1b982b44d51af2a9123c53d4a2 2b6ee41aa85de81b62972433fb8d46d3ebcea981 1618d3ab436f97c7c707e4b4e64747d4a44ee06615feeebb07a71f9e28135853
GET /_nuxt/a46a8b9.js HTTP/1.1
Host: firstmail.ltd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstmail.ltd/webmail
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Feb 2023 22:06:10 GMT
content-type: application/javascript; charset=UTF-8
accept-ranges: bytes
cache-control: public, max-age=31536000
last-modified: Fri, 10 Feb 2023 15:55:55 GMT
etag: W/"1a008-1863c0a5431"
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval'; script-src * 'unsafe-inline' 'script-src' 'unsafe-eval'; connect-src * 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src *; style-src * 'unsafe-inline'; http://beta.firstmail.ru
X-Firefox-Spdy: h2
|
|
| firstmail.ltd/assets/vendor/libs/bootstrap-select/bootstrap-select.js | 89.38.96.112 | 200 OK | 94 kB |
URL HTTP/2firstmail.ltd/assets/vendor/libs/bootstrap-select/bootstrap-select.js IP89.38.96.112:0 ASN#49981 WorldStream B.V.
Hashceb41a0e30a752f8cc81a7919816cc5b 04d92a891e90fc041e0005727c422fd0d96d1b3e 30b8a891d4da96e7353593539c8fa0949f7cbf6f52f96c01ac5155a51b881829
GET /assets/vendor/libs/bootstrap-select/bootstrap-select.js HTTP/1.1
Host: firstmail.ltd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstmail.ltd/webmail
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Feb 2023 22:06:10 GMT
content-type: application/javascript; charset=UTF-8
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Tue, 04 Oct 2022 18:41:11 GMT
etag: W/"4d80e-183a44d4933"
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval'; script-src * 'unsafe-inline' 'script-src' 'unsafe-eval'; connect-src * 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src *; style-src * 'unsafe-inline'; http://beta.firstmail.ru
X-Firefox-Spdy: h2
|
|
| firstmail.ltd/assets/vendor/js/menu.js | 89.38.96.112 | 200 OK | 59 kB |
URL HTTP/2firstmail.ltd/assets/vendor/js/menu.js IP89.38.96.112:0 ASN#49981 WorldStream B.V.
Hash9b76e80559949f7fd5ac6112fcb4e025 661b06ca976ead4748e3e9570423ab35369a8f78 b2dfdf7da0cae8b5531b11eb193f4ca53f0742b04ac51238858789a33d5a81d6
GET /assets/vendor/js/menu.js HTTP/1.1
Host: firstmail.ltd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstmail.ltd/webmail
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Feb 2023 22:06:10 GMT
content-type: application/javascript; charset=UTF-8
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Tue, 04 Oct 2022 18:41:11 GMT
etag: W/"22779-183a44d4927"
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval'; script-src * 'unsafe-inline' 'script-src' 'unsafe-eval'; connect-src * 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src *; style-src * 'unsafe-inline'; http://beta.firstmail.ru
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/ibmplexsans/v14/zYX9KVElMYYaJe8bpLHnCwDKjWr7AIFsdA.woff2 | 142.250.74.35 | 200 OK | 18 kB |
URL HTTP/2fonts.gstatic.com/s/ibmplexsans/v14/zYX9KVElMYYaJe8bpLHnCwDKjWr7AIFsdA.woff2 IP142.250.74.35:0
File typeWeb Open Font Format (Version 2), TrueType, length 18232, version 1.0\012- data Hash68f022f10e4e3d97c91facdea94febf6 f8c531fb9efe8e003e11ae43337a4fbab54adc4f ea18ca3fe3ae4d94d21bb36a2912258193fb4f257be81be3dabe0e3809a312e5
GET /s/ibmplexsans/v14/zYX9KVElMYYaJe8bpLHnCwDKjWr7AIFsdA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://firstmail.ltd
Connection: keep-alive
Referer: https://firstmail.ltd/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18232
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 17 Feb 2023 02:07:54 GMT
expires: Sat, 17 Feb 2024 02:07:54 GMT
cache-control: public, max-age=31536000
age: 590297
last-modified: Tue, 26 Apr 2022 16:45:00 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| firstmail.ltd/_nuxt/b5255cc.js | 89.38.96.112 | 200 OK | 42 kB |
URL HTTP/2firstmail.ltd/_nuxt/b5255cc.js IP89.38.96.112:0 ASN#49981 WorldStream B.V.
Hashbdc4798a372b90cda8a2ab636ff5fbbd c94ac558748514f5f8aa345e485b21ea77d27362 ea9c283bef5e00e43cdc58a7c186689eb3ab369ba5490d3a281858abf2f27431
GET /_nuxt/b5255cc.js HTTP/1.1
Host: firstmail.ltd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstmail.ltd/webmail
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Feb 2023 22:06:10 GMT
content-type: application/javascript; charset=UTF-8
accept-ranges: bytes
cache-control: public, max-age=31536000
last-modified: Fri, 10 Feb 2023 15:55:55 GMT
etag: W/"21031-1863c0a542d"
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval'; script-src * 'unsafe-inline' 'script-src' 'unsafe-eval'; connect-src * 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src *; style-src * 'unsafe-inline'; http://beta.firstmail.ru
X-Firefox-Spdy: h2
|
|
| firstmail.ltd/js/ga.js | 89.38.96.112 | 200 OK | 8.0 kB |
IP89.38.96.112:0 ASN#49981 WorldStream B.V.
Hashc3f78f81ba2bbf0be2adc3717f4b0f83 acd761a1b6ce6bccae581543ad5af4d512c83cf6 bcb061321d72c7bfd9702ed6389be1f41289a717ab5f53f2ecbfc51de0609a46
GET /js/ga.js HTTP/1.1
Host: firstmail.ltd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstmail.ltd/webmail
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Feb 2023 22:06:10 GMT
content-type: application/javascript; charset=UTF-8
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Tue, 04 Oct 2022 18:41:12 GMT
etag: W/"8f-183a44d49ab"
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval'; script-src * 'unsafe-inline' 'script-src' 'unsafe-eval'; connect-src * 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src *; style-src * 'unsafe-inline'; http://beta.firstmail.ru
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/ibmplexsans/v14/zYX9KVElMYYaJe8bpLHnCwDKjQ76AIFsdA.woff2 | 142.250.74.35 | 200 OK | 19 kB |
URL HTTP/2fonts.gstatic.com/s/ibmplexsans/v14/zYX9KVElMYYaJe8bpLHnCwDKjQ76AIFsdA.woff2 IP142.250.74.35:0
File typeWeb Open Font Format (Version 2), TrueType, length 19124, version 1.0\012- data Hashc1b5d14d0136309bd96218e6847b3918 6d73e6d49b1e6313768d3a34b00d643ab0ac34b4 bf4eae9216be01f9a411ac93c5008eb38a3abdbb12fdb50ef974a4599e90220a
GET /s/ibmplexsans/v14/zYX9KVElMYYaJe8bpLHnCwDKjQ76AIFsdA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://firstmail.ltd
Connection: keep-alive
Referer: https://firstmail.ltd/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19124
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Feb 2023 17:35:18 GMT
expires: Fri, 23 Feb 2024 17:35:18 GMT
cache-control: public, max-age=31536000
age: 16253
last-modified: Tue, 26 Apr 2022 15:47:30 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/ibmplexsans/v14/zYX9KVElMYYaJe8bpLHnCwDKjQ76AIVsdO_q.woff2 | 142.250.74.35 | 200 OK | 10 kB |
URL HTTP/2fonts.gstatic.com/s/ibmplexsans/v14/zYX9KVElMYYaJe8bpLHnCwDKjQ76AIVsdO_q.woff2 IP142.250.74.35:0
File typeWeb Open Font Format (Version 2), TrueType, length 10484, version 1.0\012- data Hash5252d82bf6dedb407302f4c05f00d44e 649975fc7cba33c9bc464263d0779ac77aab6dd2 42d3c36a7b28fd3fa41d43a1b508a479887954d341f864cecbf7781cba9916b6
GET /s/ibmplexsans/v14/zYX9KVElMYYaJe8bpLHnCwDKjQ76AIVsdO_q.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://firstmail.ltd
Connection: keep-alive
Referer: https://firstmail.ltd/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10484
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 21 Feb 2023 19:01:12 GMT
expires: Wed, 21 Feb 2024 19:01:12 GMT
cache-control: public, max-age=31536000
age: 183899
last-modified: Tue, 26 Apr 2022 15:48:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| firstmail.ltd/_nuxt/fonts/boxicons.df635aa.woff2 | 89.38.96.112 | 200 OK | 116 kB |
URL HTTP/2firstmail.ltd/_nuxt/fonts/boxicons.df635aa.woff2 IP89.38.96.112:0 ASN#49981 WorldStream B.V.
File typeWeb Open Font Format (Version 2), TrueType, length 115680, version 1.0\012- data Size116 kB (115680 bytes) Hashaab73283f839e775f9ac86d642983653 758608b6e39cd423dd99eec3980f8e8aae0d96b0 4b87cbc74f3ffaf08314a5d81b501be6fc36f553dbe446ef5a4b29f0138ba0b0
GET /_nuxt/fonts/boxicons.df635aa.woff2 HTTP/1.1
Host: firstmail.ltd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://firstmail.ltd/_nuxt/css/a4130bb.css
Cookie: i18n_redirected=en; _ga_D17MT12KF4=GS1.1.1677189995.1.0.1677189996.0.0.0; _ga=GA1.1.1253268134.1677189996
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Feb 2023 22:06:11 GMT
content-type: font/woff2
content-length: 115680
accept-ranges: bytes
cache-control: public, max-age=31536000
last-modified: Fri, 10 Feb 2023 15:55:55 GMT
etag: W/"1c3e0-1863c0a5425"
content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval'; script-src * 'unsafe-inline' 'script-src' 'unsafe-eval'; connect-src * 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src *; style-src * 'unsafe-inline'; http://beta.firstmail.ru
X-Firefox-Spdy: h2
|
|
| firstmail.ltd/assets/vendor/js/helpers.js | 89.38.96.112 | 200 OK | 36 kB |
URL HTTP/2firstmail.ltd/assets/vendor/js/helpers.js IP89.38.96.112:0 ASN#49981 WorldStream B.V.
File typeASCII text, with very long lines (61642) Hash8a28c31513171d1fa1f3e440600a6046 020a485d8f7ad8151b143970994391994bcca4ba 66cec2f60e6b624a616815b4c4a57e9745f8efc0375dc331f7fc39876ed6aad8
GET /assets/vendor/js/helpers.js HTTP/1.1
Host: firstmail.ltd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstmail.ltd/webmail
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Feb 2023 22:06:10 GMT
content-type: application/javascript; charset=UTF-8
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Tue, 04 Oct 2022 18:41:11 GMT
etag: W/"1f474-183a44d4927"
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval'; script-src * 'unsafe-inline' 'script-src' 'unsafe-eval'; connect-src * 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src *; style-src * 'unsafe-inline'; http://beta.firstmail.ru
X-Firefox-Spdy: h2
|
|
| api-v2.firstmail.ltd/v1/mail/getAll | 89.38.96.112 | 500 Internal Server Error | 145 B |
URL HTTP/2api-v2.firstmail.ltd/v1/mail/getAll IP89.38.96.112:0 ASN#49981 WorldStream B.V.
File typeHTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Hashac6a5d6f575db01370a1a7dba173f6d1 cf3c66fffbe8d92202232623698f67b8f1d10897 fd62a53afdd49595ccd111b6ac06466a1690e7c8da4aeb0e884b5e0f4e937624
POST /v1/mail/getAll HTTP/1.1
Host: api-v2.firstmail.ltd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 2
Origin: https://firstmail.ltd
Connection: keep-alive
Referer: https://firstmail.ltd/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 500 Internal Server Error
date: Thu, 23 Feb 2023 22:06:11 GMT
content-type: text/html; charset=utf-8
content-length: 145
server: WSGIServer/0.2 CPython/3.8.10
x-frame-options: DENY
vary: Origin, Cookie
access-control-allow-origin: *
x-content-type-options: nosniff
referrer-policy: same-origin
cross-origin-opener-policy: same-origin
X-Firefox-Spdy: h2
|
|
| mc.yandex.ru/watch/91277418?wmode=7&page-url=https%3A%2F%2Ffirstmail.ltd%2Fwebmail&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24cmhk4ozkpnx0n%3Afp%3A2201%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A970%3Acn%3A1%3Adp%3A0%3Als%3A776674946221%3Ahid%3A1041332663%3Az%3A0%3Ai%3A20230223220636%3Aet%3A1677189996%3Ac%3A1%3Arn%3A163068703%3Arqn%3A1%3Au%3A1677189996743536770%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A175%2C91%2C28%2C1%2C495%2C0%2C%2C1094%2C9%2C%2C%2C%2C1915%3Aco%3A0%3Ans%3A1677189993948%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1677189996%3At%3AFirstmail%20LTD%20%7C%20%D0%90%D0%B2%D1%82%D0%BE%D1%80%D0%B8%D0%B7%D0%B0%D1%86%D0%B8%D1%8F&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) | 93.158.134.119 | 302 Found | 407 B |
URL HTTP/2mc.yandex.ru/watch/91277418?wmode=7&page-url=https%3A%2F%2Ffirstmail.ltd%2Fwebmail&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24cmhk4ozkpnx0n%3Afp%3A2201%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A970%3Acn%3A1%3Adp%3A0%3Als%3A776674946221%3Ahid%3A1041332663%3Az%3A0%3Ai%3A20230223220636%3Aet%3A1677189996%3Ac%3A1%3Arn%3A163068703%3Arqn%3A1%3Au%3A1677189996743536770%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A175%2C91%2C28%2C1%2C495%2C0%2C%2C1094%2C9%2C%2C%2C%2C1915%3Aco%3A0%3Ans%3A1677189993948%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1677189996%3At%3AFirstmail%20LTD%20%7C%20%D0%90%D0%B2%D1%82%D0%BE%D1%80%D0%B8%D0%B7%D0%B0%D1%86%D0%B8%D1%8F&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) IP93.158.134.119:0
File typeJSON data\012- , ASCII text, with very long lines (407), with no line terminators Hashe279c65397b80b6fb4378cbd679e9c4d cbf858a8085089708ed4941c3450efd58864d234 357352e8eea2b4eee0ab22b03a56630b831f0f081e34813988ecc0a3b01ba42e
GET /watch/91277418?wmode=7&page-url=https%3A%2F%2Ffirstmail.ltd%2Fwebmail&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24cmhk4ozkpnx0n%3Afp%3A2201%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A970%3Acn%3A1%3Adp%3A0%3Als%3A776674946221%3Ahid%3A1041332663%3Az%3A0%3Ai%3A20230223220636%3Aet%3A1677189996%3Ac%3A1%3Arn%3A163068703%3Arqn%3A1%3Au%3A1677189996743536770%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A175%2C91%2C28%2C1%2C495%2C0%2C%2C1094%2C9%2C%2C%2C%2C1915%3Aco%3A0%3Ans%3A1677189993948%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1677189996%3At%3AFirstmail%20LTD%20%7C%20%D0%90%D0%B2%D1%82%D0%BE%D1%80%D0%B8%D0%B7%D0%B0%D1%86%D0%B8%D1%8F&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://firstmail.ltd
Connection: keep-alive
Referer: https://firstmail.ltd/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/91277418/1?wmode=7&page-url=https%3A%2F%2Ffirstmail.ltd%2Fwebmail&charset=utf-8&browser-info=pv%3A1%3Avf%3Asm0eap24cmhk4ozkpnx0n%3Afp%3A2201%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A970%3Acn%3A1%3Adp%3A0%3Als%3A776674946221%3Ahid%3A1041332663%3Az%3A0%3Ai%3A20230223220636%3Aet%3A1677189996%3Ac%3A1%3Arn%3A163068703%3Arqn%3A1%3Au%3A1677189996743536770%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A175%2C91%2C28%2C1%2C495%2C0%2C%2C1094%2C9%2C%2C%2C%2C1915%3Aco%3A0%3Ans%3A1677189993948%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1677189996%3At%3AFirstmail%20LTD%20%7C%20%D0%90%D0%B2%D1%82%D0%BE%D1%80%D0%B8%D0%B7%D0%B0%D1%86%D0%B8%D1%8F&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29ti%282%29
date: Thu, 23 Feb 2023 22:06:11 GMT
access-control-allow-origin: https://firstmail.ltd
set-cookie: yabs-sid=2593935301677189971; Path=/; SameSite=None; Secure
i=oJr12MmuQGg+FdvoSPKtCku4E98G+YM6ELH3pWVN2nGWTI1JMmQBhwx8mjJ7LNEuM20q4JZbMJlTJborsmGbsJR+WjI=; Expires=Sun, 20-Feb-2033 22:06:06 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
yandexuid=8476372251677189971; Expires=Fri, 23-Feb-2024 22:06:11 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=8476372251677189971; Expires=Fri, 23-Feb-2024 22:06:11 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
ymex=1708725971.yc.1677189971#1708725971.yrts.1677189971#1708725971.yrtsi.1677189971; Expires=Fri, 23-Feb-2024 22:06:11 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 23-Feb-2023 22:06:11 GMT
last-modified: Thu, 23-Feb-2023 22:06:11 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| region1.google-analytics.com/g/collect?v=2&tid=G-D17MT12KF4>m=45je32m0&_p=1913471678&cid=1253268134.1677189996&ul=en-us&sr=1280x1024&_s=1&sid=1677189995&sct=1&seg=0&dl=https%3A%2F%2Ffirstmail.ltd%2Fwebmail&dt=Firstmail%20LTD%20%7C%20%D0%92%D0%B5%D1%87%D0%BD%D1%8B%D0%B5%20%D0%BF%D0%BE%D1%87%D1%82%D0%BE%D0%B2%D1%8B%D0%B5%20%D0%B0%D0%BA%D0%BA%D0%B0%D1%83%D0%BD%D1%82%D1%8B%20%D1%81%20IMAP&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 | 216.239.32.36 | 204 No Content | 0 B |
URL HTTP/2region1.google-analytics.com/g/collect?v=2&tid=G-D17MT12KF4>m=45je32m0&_p=1913471678&cid=1253268134.1677189996&ul=en-us&sr=1280x1024&_s=1&sid=1677189995&sct=1&seg=0&dl=https%3A%2F%2Ffirstmail.ltd%2Fwebmail&dt=Firstmail%20LTD%20%7C%20%D0%92%D0%B5%D1%87%D0%BD%D1%8B%D0%B5%20%D0%BF%D0%BE%D1%87%D1%82%D0%BE%D0%B2%D1%8B%D0%B5%20%D0%B0%D0%BA%D0%BA%D0%B0%D1%83%D0%BD%D1%82%D1%8B%20%D1%81%20IMAP&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 IP216.239.32.36:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-D17MT12KF4>m=45je32m0&_p=1913471678&cid=1253268134.1677189996&ul=en-us&sr=1280x1024&_s=1&sid=1677189995&sct=1&seg=0&dl=https%3A%2F%2Ffirstmail.ltd%2Fwebmail&dt=Firstmail%20LTD%20%7C%20%D0%92%D0%B5%D1%87%D0%BD%D1%8B%D0%B5%20%D0%BF%D0%BE%D1%87%D1%82%D0%BE%D0%B2%D1%8B%D0%B5%20%D0%B0%D0%BA%D0%BA%D0%B0%D1%83%D0%BD%D1%82%D1%8B%20%D1%81%20IMAP&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://firstmail.ltd
Connection: keep-alive
Referer: https://firstmail.ltd/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://firstmail.ltd
date: Thu, 23 Feb 2023 22:06:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| mc.yandex.ru/metrika/advert.gif | 93.158.134.119 | 200 OK | 43 B |
URL HTTP/2mc.yandex.ru/metrika/advert.gif IP93.158.134.119:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashdf3e567d6f16d040326c7a0ea29a4f41 ea7df583983133b62712b5e73bffbcd45cc53736 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstmail.ltd/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Thu, 23 Feb 2023 22:06:12 GMT
access-control-allow-origin: *
etag: "63f47caa-2b"
expires: Thu, 23 Feb 2023 23:06:12 GMT
accept-ranges: bytes
last-modified: Tue, 21 Feb 2023 11:11:22 GMT
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| firstmail.ltd/_nuxt/img/logo.51e595c.png | 89.38.96.112 | 200 OK | 153 kB |
URL HTTP/2firstmail.ltd/_nuxt/img/logo.51e595c.png IP89.38.96.112:0 ASN#49981 WorldStream B.V.
File typePNG image data, 600 x 510, 8-bit/color RGBA, non-interlaced\012- data Size153 kB (153146 bytes) Hash96c412835c92ce6e3d191055b54588b6 d47a0bd09dddbc51ddd4fc5b8b9dd4f4546a89a3 02ff327f678c4193d6842d424d23cada95f5e4c4a4297b96f6c516ed0da79cfb
GET /_nuxt/img/logo.51e595c.png HTTP/1.1
Host: firstmail.ltd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstmail.ltd/webmail/login
Cookie: i18n_redirected=en; _ga_D17MT12KF4=GS1.1.1677189995.1.0.1677189996.0.0.0; _ga=GA1.1.1253268134.1677189996; _ym_uid=1677189996743536770; _ym_d=1677189996
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Feb 2023 22:06:12 GMT
content-type: image/png
content-length: 153146
accept-ranges: bytes
cache-control: public, max-age=31536000
last-modified: Fri, 10 Feb 2023 15:55:55 GMT
etag: W/"2563a-1863c0a5425"
content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval'; script-src * 'unsafe-inline' 'script-src' 'unsafe-eval'; connect-src * 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src *; style-src * 'unsafe-inline'; http://beta.firstmail.ru
X-Firefox-Spdy: h2
|
|
| firstmail.ltd/_nuxt/cf1b506.js | 89.38.96.112 | 200 OK | 3.9 kB |
URL HTTP/2firstmail.ltd/_nuxt/cf1b506.js IP89.38.96.112:0 ASN#49981 WorldStream B.V.
Hash89dd3e2caaf00abd17c8f7bc044c68b0 2764ccbd414d6fa481420c882d4420072247bf26 fa02a01924c48cc7fd5b9fcbe76af7fce23fc6088376160ab1bf217182fc756b
GET /_nuxt/cf1b506.js HTTP/1.1
Host: firstmail.ltd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstmail.ltd/webmail/login
Cookie: i18n_redirected=en; _ga_D17MT12KF4=GS1.1.1677189995.1.0.1677189996.0.0.0; _ga=GA1.1.1253268134.1677189996; _ym_uid=1677189996743536770; _ym_d=1677189996; _ym_isad=2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Feb 2023 22:06:12 GMT
content-type: application/javascript; charset=UTF-8
accept-ranges: bytes
cache-control: public, max-age=31536000
last-modified: Fri, 10 Feb 2023 15:55:55 GMT
etag: W/"63a8-1863c0a5431"
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval'; script-src * 'unsafe-inline' 'script-src' 'unsafe-eval'; connect-src * 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src *; style-src * 'unsafe-inline'; http://beta.firstmail.ru
X-Firefox-Spdy: h2
|
|
| firstmail.ltd/_nuxt/6158862.js | 89.38.96.112 | 200 OK | 6.8 kB |
URL HTTP/2firstmail.ltd/_nuxt/6158862.js IP89.38.96.112:0 ASN#49981 WorldStream B.V.
Hash461ffa0725cd90fe65c0e842b1b4beab 1004371d26b2e808290e6fed2e8493cce3757126 709bae39039c1bca18124539fb3290e4aecefc789ccb9c4bee8e141c519813a9
GET /_nuxt/6158862.js HTTP/1.1
Host: firstmail.ltd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://firstmail.ltd/webmail/login
Cookie: i18n_redirected=en; _ga_D17MT12KF4=GS1.1.1677189995.1.0.1677189996.0.0.0; _ga=GA1.1.1253268134.1677189996; _ym_uid=1677189996743536770; _ym_d=1677189996; _ym_isad=2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 23 Feb 2023 22:06:12 GMT
content-type: application/javascript; charset=UTF-8
accept-ranges: bytes
cache-control: public, max-age=31536000
last-modified: Fri, 10 Feb 2023 15:55:55 GMT
etag: W/"9420-1863c0a5431"
vary: Accept-Encoding
content-encoding: gzip
content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval'; script-src * 'unsafe-inline' 'script-src' 'unsafe-eval'; connect-src * 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src *; style-src * 'unsafe-inline'; http://beta.firstmail.ru
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.33.119.10 | 200 OK | 503 B |
IP23.33.119.10:0 ASN#20940 Akamai International B.V.
Hashfe121133a6eaf8645743a14717612cd5 b9276c474ba3e40e5cc2921accb452bb7b11ecb2 4c72ab325e4608168d6258ba615ffc21f94a3594a8d1ef48f28b8622b198c27b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4C72AB325E4608168D6258BA615FFC21F94A3594A8D1EF48F28B8622B198C27B"
Last-Modified: Wed, 22 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6081
Expires: Thu, 23 Feb 2023 23:47:33 GMT
Date: Thu, 23 Feb 2023 22:06:12 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.10 | 200 OK | 503 B |
IP23.33.119.10:0 ASN#20940 Akamai International B.V.
Hashfe121133a6eaf8645743a14717612cd5 b9276c474ba3e40e5cc2921accb452bb7b11ecb2 4c72ab325e4608168d6258ba615ffc21f94a3594a8d1ef48f28b8622b198c27b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4C72AB325E4608168D6258BA615FFC21F94A3594A8D1EF48F28B8622B198C27B"
Last-Modified: Wed, 22 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6081
Expires: Thu, 23 Feb 2023 23:47:33 GMT
Date: Thu, 23 Feb 2023 22:06:12 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.10 | 200 OK | 503 B |
IP23.33.119.10:0 ASN#20940 Akamai International B.V.
Hashfe121133a6eaf8645743a14717612cd5 b9276c474ba3e40e5cc2921accb452bb7b11ecb2 4c72ab325e4608168d6258ba615ffc21f94a3594a8d1ef48f28b8622b198c27b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4C72AB325E4608168D6258BA615FFC21F94A3594A8D1EF48F28B8622B198C27B"
Last-Modified: Wed, 22 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6081
Expires: Thu, 23 Feb 2023 23:47:33 GMT
Date: Thu, 23 Feb 2023 22:06:12 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F58e71ab7-6d45-4fe0-96bb-7faa4a54fe6a.jpeg | 34.120.237.76 | 200 OK | 9.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F58e71ab7-6d45-4fe0-96bb-7faa4a54fe6a.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hasha1598be3f85d30c5999ee301f974603a f74df5e6145c1a10d64dd1f5a09bd90363a8eb59 57f179081f7cf17e985b0628cd07bacc744fcea97131594bb03b11c2a8b52d7c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F58e71ab7-6d45-4fe0-96bb-7faa4a54fe6a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9610
x-amzn-requestid: defacc06-ccad-4190-9442-9b603acbe6d7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Az9M6EnsoAMFx4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f7dbeb-651f70531153842f6f431d69;Sampled=0
x-amzn-remapped-date: Thu, 23 Feb 2023 21:34:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: L_BW66xCZLeGZHqe3cK2W5zmTt_AwD2IvSuGLuEdNXzeWPZwzAWA_Q==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Feb 2023 21:34:36 GMT
etag: "f74df5e6145c1a10d64dd1f5a09bd90363a8eb59"
content-type: image/jpeg
age: 1896
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb97e8f2e-6da0-4f8b-b12c-1af676e3e4da.jpeg | 34.120.237.76 | 200 OK | 9.1 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb97e8f2e-6da0-4f8b-b12c-1af676e3e4da.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash2a5f3d376fe6a3a78a5d1fe136f962fb 3e9b03cc296e954d63526a4e7e75beea3130fc3b c8cf4f1c0352102764247e4dc5a2076921e0eaa18bfd110e5b0b97a55c706690
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb97e8f2e-6da0-4f8b-b12c-1af676e3e4da.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9093
x-amzn-requestid: 3fd9f8c8-cf10-4222-a2cc-5f18ff7b2e9f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Az9D3HqmoAMFeBQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f7dbb2-352315613cc0c2bc7eb28e05;Sampled=0
x-amzn-remapped-date: Thu, 23 Feb 2023 21:33:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: bGDTF9U77Y1pmqtYk-yDa2GsiRraTcwCOBV-yAzDPT2PvS89NeCtZg==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Feb 2023 21:34:34 GMT
age: 1898
etag: "3e9b03cc296e954d63526a4e7e75beea3130fc3b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6e0f61d-f4aa-4f95-9bb6-85293a1c2a7b.jpeg | 34.120.237.76 | 200 OK | 4.2 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6e0f61d-f4aa-4f95-9bb6-85293a1c2a7b.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashd85d33259ccf1aafbe8982507e3a4fbd 28b000d1da5b8a1f82152ebc91b3693512ba66ce 4dc76b0f8bef989d90463cc3ca0431d87008d5c93eee05ece9661c1f08a90686
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6e0f61d-f4aa-4f95-9bb6-85293a1c2a7b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4234
x-amzn-requestid: 555774d4-9947-40dc-a01c-4a0fcb4e2078
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Az9M5FUdoAMFY_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f7dbeb-51fdadb066a95c0943d77264;Sampled=0
x-amzn-remapped-date: Thu, 23 Feb 2023 21:34:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Mkf2mhD61mrJDVubC_YtYZraPUDvIfpvqBWVtrLb6gWVhtZrHK6LbQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Feb 2023 21:34:36 GMT
etag: "28b000d1da5b8a1f82152ebc91b3693512ba66ce"
content-type: image/jpeg
age: 1896
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c954b4f-5062-47f3-a3d2-491b26b9e060.jpeg | 34.120.237.76 | 200 OK | 7.2 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c954b4f-5062-47f3-a3d2-491b26b9e060.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashd004bb66a718bd6fb4a8436869d83fbe e5858f5d3dd9269338e012116a456ac74f2f842a edb76478844a402643ae8524625b933bb215399d836002f0ccb00efbc6c23f56
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c954b4f-5062-47f3-a3d2-491b26b9e060.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7242
x-amzn-requestid: a79e6b1f-2714-4b7f-8a0c-71764481c9a7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Az9M5E2noAMFj2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63f7dbeb-4a04b9d319b927f0480ce1f5;Sampled=0
x-amzn-remapped-date: Thu, 23 Feb 2023 21:34:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 54un0_r021t7LpVLiJ15fnEqsJ4epIMOEb1VpgQBiDdxZiLfsPtJkA==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Feb 2023 21:34:36 GMT
etag: "e5858f5d3dd9269338e012116a456ac74f2f842a"
content-type: image/jpeg
age: 1896
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F137aee85-a8db-4c5c-b88f-0857f7ba3677.jpeg | 34.120.237.76 | 200 OK | 7.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F137aee85-a8db-4c5c-b88f-0857f7ba3677.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash34013daae3d217976ee1f5a9b7f339ba 2f772756bec7dea5018de069d66011fea212ac11 6a3cfb5871a65921559de5db2a58cc2de03f7ff9fa7764e3c63958d721de4639
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-pr
|