|
|
detectportal.firefox.com/success.txt?ipv4 |
 34.107.221.82 |
200 OK |
8 |
-
URL
HTTP/1.1
detectportal.firefox.com/success.txt?ipv4
-
IP
34.107.221.82:0
-
-
-
-
-
Hash
ae780585f49b94ce1444eb7d28906123
7d5ca8c0c03e883c56c4eb1ef6f6bb9bccad4d86
81b2bd4ea98c8db66554fbc8d7637a1a69a130f331feb732b75caab4c4868fd5
-
-
GET /success.txt?ipv4 HTTP/1.1
Host: detectportal.firefox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
-
HTTP/1.1 200 OK
Server: nginx
Content-Length: 8
Via: 1.1 google
Date: Thu, 23 Feb 2023 08:06:21 GMT
Age: 32583
Content-Type: text/plain
Cache-Control: public,must-revalidate,max-age=0,s-maxage=3600
-
|
|
|
|
r3.o.lencr.org/ |
 23.36.76.249 |
200 OK |
503 |
-
-
IP
23.36.76.249:0
-
ASN
#20940 Akamai International B.V.
-
-
-
-
Hash
67fc460ed2f69dde3c410ec607ef3510
ba9f582ec321351e5c06c9b2c381f06b685ef274
85df74fac7d59d76840b6359bac24648fede201c0048f2a8382af6468225ffb8
-
-
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
-
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "85DF74FAC7D59D76840B6359BAC24648FEDE201C0048F2A8382AF6468225FFB8"
Last-Modified: Wed, 22 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19209
Expires: Thu, 23 Feb 2023 22:29:33 GMT
Date: Thu, 23 Feb 2023 17:09:24 GMT
Connection: keep-alive
-
|
|
|
|
r3.o.lencr.org/ |
23.36.76.249 |
200 OK |
503 |
-
-
IP
23.36.76.249:0
-
ASN
#20940 Akamai International B.V.
-
-
-
-
Hash
c111b52b3610804b2963fdda8c9ba0de
6c60faf365023cb4cad49b1ca4fad1f373b92b87
b03c3b15d37d60d95a46ceb898445559066e8c0657e35d6d20580a301b95cc38
-
-
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
-
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B03C3B15D37D60D95A46CEB898445559066E8C0657E35D6D20580A301B95CC38"
Last-Modified: Wed, 22 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3309
Expires: Thu, 23 Feb 2023 18:04:33 GMT
Date: Thu, 23 Feb 2023 17:09:24 GMT
Connection: keep-alive
-
|
|
|
|
getpocket.cdn.mozilla.net/v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30 |
34.120.5.221 |
200 OK |
46641 |
-
URL
HTTP/2
getpocket.cdn.mozilla.net/v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30
-
IP
34.120.5.221:0
-
-
-
-
Magic
JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
-
Hash
41f1143d65f4627ba9ac44f5611fb2e4
e030d7a8e2a83c45a70c8756041c47fcd04bdbe4
543c2556817b6ea7f553b7baee47c3ebb74b4edf823b5b37a57a5e3d3ef08a12
-
-
GET /v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30 HTTP/1.1
Host: getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
-
HTTP/2 200 OK
server: nginx
content-location: global-recs.php
tcn: choice
x-frame-options: SAMEORIGIN
status: 200 OK
x-source: Pocket
pragma: cache
p3p: policyref="/w3c/p3p.xml", CP="ALL CURa ADMa DEVa OUR IND UNI COM NAV INT STA PRE"
x-cache: Hit from cloudfront
x-amz-cf-pop: SEA73-P2
x-amz-cf-id: AXxl-DHUmy3FNMcwwDZA9oGrFE-17bZtdcbLQ26BlMs6EUG9cSW6SQ==
content-encoding: gzip
via: 1.1 1352c0a623ff0601dd16439f3f225f70.cloudfront.net (CloudFront), 1.1 google
date: Thu, 23 Feb 2023 17:04:00 GMT
age: 324
content-type: application/json
vary: Accept-Encoding
content-length: 46641
cache-control: s-maxage=900,public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
-
|
|
|
|
r3.o.lencr.org/ |
23.36.76.249 |
200 OK |
503 |
-
-
IP
23.36.76.249:0
-
ASN
#20940 Akamai International B.V.
-
-
-
-
Hash
d4569ebd95f766b8f22ed69d69334c37
a7fcd3f640877885077a4126708968d7e1e0d252
e485343a8251f50009506dfc6a42c82ca6b09b434d1e0984ea7c2dfea7dcd28d
-
-
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
-
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E485343A8251F50009506DFC6A42C82CA6B09B434D1E0984EA7C2DFEA7DCD28D"
Last-Modified: Wed, 22 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18546
Expires: Thu, 23 Feb 2023 22:18:30 GMT
Date: Thu, 23 Feb 2023 17:09:24 GMT
Connection: keep-alive
-
|
|
|
|
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain |
34.160.144.191 |
200 OK |
5348 |
-
URL
HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
-
IP
34.160.144.191:0
-
-
-
-
Magic
PEM certificate\012- , ASCII text
-
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
-
-
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
-
HTTP/2 200 OK
x-amz-id-2: 2yDSgORj0kC15EaOJb8hOmINGeqCgWwP4KQ6mKD+dxzCRnufUhMsIqYLprCL9RsKSAZZEzpbH6c=
x-amz-request-id: NG3PY6M3B4GYYW6W
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 23 Feb 2023 16:20:24 GMT
age: 2940
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
-
|
|
|
|
r3.o.lencr.org/ |
23.36.76.249 |
200 OK |
503 |
-
-
IP
23.36.76.249:0
-
ASN
#20940 Akamai International B.V.
-
-
-
-
Hash
6f313739c4c44174fc9a97ac63621b46
319da68d06694330ad9f7901bcde1ca0a6eeac0d
321236ee07769c741890815bc56fd2700ff1974b0534368b9ff2e96320ae4fee
-
-
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
-
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "321236EE07769C741890815BC56FD2700FF1974B0534368B9FF2E96320AE4FEE"
Last-Modified: Wed, 22 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2291
Expires: Thu, 23 Feb 2023 17:47:35 GMT
Date: Thu, 23 Feb 2023 17:09:24 GMT
Connection: keep-alive
-
|
|
|
|
contile.services.mozilla.com/v1/tiles |
34.117.237.239 |
200 OK |
12 |
-
URL
HTTP/2
contile.services.mozilla.com/v1/tiles
-
IP
34.117.237.239:0
-
-
-
-
Magic
JSON data\012- , ASCII text, with no line terminators
-
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
-
-
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
-
HTTP/2 200 OK
server: nginx
date: Thu, 23 Feb 2023 17:09:24 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
-
|
|
|
|
firefox.settings.services.mozilla.com/v1/ |
35.241.9.150 |
200 OK |
939 |
-
URL
HTTP/2
firefox.settings.services.mozilla.com/v1/
-
IP
35.241.9.150:0
-
-
-
-
Magic
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
-
Hash
4ad6984a756720fbfff47b37a75513a2
355e35258114452af8b9638985ed9d8ef3bf0aca
43181fccb10652c68cae86e5e32b4e8f426fb5ad49d8125cb99e072cff573cf5
-
-
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
-
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 23 Feb 2023 16:53:56 GMT
content-type: application/json
age: 928
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
-
|
|
|
|
r3.o.lencr.org/ |
23.36.76.249 |
200 OK |
503 |
-
-
IP
23.36.76.249:0
-
ASN
#20940 Akamai International B.V.
-
-
-
-
Hash
3de3099f73b77bc058269e6b81d7b791
6cfab591c3c66ddf49b30aef8adf74fb17dab546
f3498fdbd2226b2f19a1544c01bdf014e88ff759dc79f52f1914e3341adbe37e
-
-
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
-
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F3498FDBD2226B2F19A1544C01BDF014E88FF759DC79F52F1914E3341ADBE37E"
Last-Modified: Thu, 23 Feb 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21535
Expires: Thu, 23 Feb 2023 23:08:20 GMT
Date: Thu, 23 Feb 2023 17:09:25 GMT
Connection: keep-alive
-
|
|
|
|
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US |
35.241.9.150 |
200 OK |
329 |
-
URL
HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
-
IP
35.241.9.150:0
-
-
-
-
Magic
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
-
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
-
-
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
-
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Expires, Last-Modified, Cache-Control, ETag, Backoff, Content-Type, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 23 Feb 2023 16:51:26 GMT
age: 1079
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
-
|
|
|
|
detectportal.firefox.com/success.txt?ipv4 |
34.107.221.82 |
200 OK |
8 |
-
URL
HTTP/1.1
detectportal.firefox.com/success.txt?ipv4
-
IP
34.107.221.82:0
-
-
-
-
-
Hash
ae780585f49b94ce1444eb7d28906123
7d5ca8c0c03e883c56c4eb1ef6f6bb9bccad4d86
81b2bd4ea98c8db66554fbc8d7637a1a69a130f331feb732b75caab4c4868fd5
-
-
GET /success.txt?ipv4 HTTP/1.1
Host: detectportal.firefox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
-
HTTP/1.1 200 OK
Server: nginx
Content-Length: 8
Via: 1.1 google
Date: Thu, 23 Feb 2023 08:06:21 GMT
Age: 32584
Content-Type: text/plain
Cache-Control: public,must-revalidate,max-age=0,s-maxage=3600
-
|
|
|
|
ocsp.digicert.com/ |
 93.184.220.29 |
200 OK |
471 |
-
-
IP
93.184.220.29:0
-
-
-
-
-
Hash
5aa46280b9f4ef8602f5e1b6864d898f
f1b8d2278116c2873ec0683122818fc186c74392
bb61e1178bc48dc26984f63f54d2621706fe49faa6f9a5651b06befa53cea9a0
-
-
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
-
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5863
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 23 Feb 2023 17:09:25 GMT
Last-Modified: Thu, 23 Feb 2023 15:31:42 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
-
|
|
|
|
r3.o.lencr.org/ |
23.36.76.249 |
200 OK |
503 |
-
-
IP
23.36.76.249:0
-
ASN
#20940 Akamai International B.V.
-
-
-
-
Hash
4aaa1f1be68ba53b441e577dcbf8b7c1
618b2e62b7f2feb82093a3706573e18ff9f69827
8d3978b35fd96458b8fff71c9dbb47ab616dfd49d669027fd6c5a52a4e9bafa0
-
-
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
-
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8D3978B35FD96458B8FFF71C9DBB47AB616DFD49D669027FD6C5A52A4E9BAFA0"
Last-Modified: Wed, 22 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18409
Expires: Thu, 23 Feb 2023 22:16:14 GMT
Date: Thu, 23 Feb 2023 17:09:25 GMT
Connection: keep-alive
-
|
|
|
|
shavar.services.mozilla.com/downloads?client=Firefox&appver=96.0a&pver=2.2 |
34.208.254.89 |
200 OK |
8 |
-
URL
HTTP/1.1
shavar.services.mozilla.com/downloads?client=Firefox&appver=96.0a&pver=2.2
-
IP
34.208.254.89:0
-
-
-
-
-
Hash
29fc57841962e407cb50c1be60284bf7
ce968a77e2996da5eee8925182318f171ccdce47
ae7e7075247dcfad763f1e131aeac3d2e756bb03d48b0d315a50c69636e5dc8b
-
-
POST /downloads?client=Firefox&appver=96.0a&pver=2.2 HTTP/1.1
Host: shavar.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 773
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache
-
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Date: Thu, 23 Feb 2023 17:09:25 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Length: 8
Connection: Close
-
|
|
|
|
ocsp.pki.goog/gts1c3 |
142.250.74.131 |
200 OK |
471 |
-
-
IP
142.250.74.131:0
-
-
-
-
-
Hash
295ecb42da084d2556789eada5291422
24c3605ff6984776ca77a2aa3b3b4bba4267f76f
f787cdc01fe5b6c0889f133cdf9cd0e38973f4cb8515014e8a14418521af04bf
-
-
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
-
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Feb 2023 17:09:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
-
|
|
|
|
push.services.mozilla.com/ |
35.160.122.190 |
101 Switching Protocols |
0 |
-
URL
HTTP/1.1
push.services.mozilla.com/
-
IP
35.160.122.190:0
-
-
-
-
-
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
-
-
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Hzctfo9K3NGlb//Vz/hjNQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
-
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: QH3zIxp87ZBnR5Ctbt5/2EP/wiA=
-
|
|
|
|
ajax.googleapis.com/ajax/libs/jquery/2.1.1/jquery.min.js |
142.250.74.138 |
200 OK |
29671 |
-
URL
HTTP/2
ajax.googleapis.com/ajax/libs/jquery/2.1.1/jquery.min.js
-
IP
142.250.74.138:0
-
-
-
-
Magic
ASCII text, with very long lines (32061)
-
Hash
b90b3d2618cce9d766152cd3092b5c27
496339457cd00caab8118e2e1f30ea18dc05b9f4
b7b155aa8c6b5db28f9a6b41e88c96e9462c196c700add426f8ef32c9ce1ed41
-
-
GET /ajax/libs/jquery/2.1.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blackandblue.co.nz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
-
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29671
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 21 Feb 2023 22:44:56 GMT
expires: Wed, 21 Feb 2024 22:44:56 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 152669
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
-
|
|
|
|
ocsp.pki.goog/gts1c3 |
142.250.74.131 |
200 OK |
471 |
-
-
IP
142.250.74.131:0
-
-
-
-
-
Hash
295ecb42da084d2556789eada5291422
24c3605ff6984776ca77a2aa3b3b4bba4267f76f
f787cdc01fe5b6c0889f133cdf9cd0e38973f4cb8515014e8a14418521af04bf
-
-
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
-
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 23 Feb 2023 17:09:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
-
|
|
|
|
ocsp2.globalsign.com/rootr3 |
 104.18.21.226 |
200 OK |
1432 |
-
URL
HTTP/1.1
ocsp2.globalsign.com/rootr3
-
IP
104.18.21.226:0
-
-
-
-
-
Hash
a77b549417303ea89cc4a591c88e5187
8f8f1fba968a10d02874afa817e5b5e3ca5c5729
451a0dcfe6c5fc326eee1da0e814568f2f6a2655c4f23596b10cbfe4624913a5
-
-
POST /rootr3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 81
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
-
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 17:09:25 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Mon, 27 Feb 2023 14:17:04 GMT
ETag: "8f8f1fba968a10d02874afa817e5b5e3ca5c5729"
Last-Modified: Thu, 23 Feb 2023 14:17:05 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2712
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79e191b43be50b51-OSL
-
|
|
|
|
ocsp2.globalsign.com/rootr3 |
104.18.21.226 |
200 OK |
1432 |
-
URL
HTTP/1.1
ocsp2.globalsign.com/rootr3
-
IP
104.18.21.226:0
-
-
-
-
-
Hash
a77b549417303ea89cc4a591c88e5187
8f8f1fba968a10d02874afa817e5b5e3ca5c5729
451a0dcfe6c5fc326eee1da0e814568f2f6a2655c4f23596b10cbfe4624913a5
-
-
POST /rootr3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 81
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
-
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 17:09:25 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Mon, 27 Feb 2023 14:17:04 GMT
ETag: "8f8f1fba968a10d02874afa817e5b5e3ca5c5729"
Last-Modified: Thu, 23 Feb 2023 14:17:05 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2712
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79e191b44fdeb4fa-OSL
-
|
|
|
|
ocsp2.globalsign.com/rootr3 |
104.18.21.226 |
200 OK |
1432 |
-
URL
HTTP/1.1
ocsp2.globalsign.com/rootr3
-
IP
104.18.21.226:0
-
-
-
-
-
Hash
a77b549417303ea89cc4a591c88e5187
8f8f1fba968a10d02874afa817e5b5e3ca5c5729
451a0dcfe6c5fc326eee1da0e814568f2f6a2655c4f23596b10cbfe4624913a5
-
-
POST /rootr3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 81
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
-
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 17:09:25 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Mon, 27 Feb 2023 14:17:04 GMT
ETag: "8f8f1fba968a10d02874afa817e5b5e3ca5c5729"
Last-Modified: Thu, 23 Feb 2023 14:17:05 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2712
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79e191b45c190b51-OSL
-
|
|
|
|
ocsp2.globalsign.com/rootr3 |
104.18.21.226 |
200 OK |
1432 |
-
URL
HTTP/1.1
ocsp2.globalsign.com/rootr3
-
IP
104.18.21.226:0
-
-
-
-
-
Hash
a77b549417303ea89cc4a591c88e5187
8f8f1fba968a10d02874afa817e5b5e3ca5c5729
451a0dcfe6c5fc326eee1da0e814568f2f6a2655c4f23596b10cbfe4624913a5
-
-
POST /rootr3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 81
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
-
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 17:09:25 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Mon, 27 Feb 2023 14:17:04 GMT
ETag: "8f8f1fba968a10d02874afa817e5b5e3ca5c5729"
Last-Modified: Thu, 23 Feb 2023 14:17:05 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2712
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79e191b44d9ffab8-OSL
-
|
|
|
|
ocsp2.globalsign.com/rootr3 |
104.18.21.226 |
200 OK |
1432 |
-
URL
HTTP/1.1
ocsp2.globalsign.com/rootr3
-
IP
104.18.21.226:0
-
-
-
-
-
Hash
a77b549417303ea89cc4a591c88e5187
8f8f1fba968a10d02874afa817e5b5e3ca5c5729
451a0dcfe6c5fc326eee1da0e814568f2f6a2655c4f23596b10cbfe4624913a5
-
-
POST /rootr3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 81
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
-
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 17:09:25 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Mon, 27 Feb 2023 14:17:04 GMT
ETag: "8f8f1fba968a10d02874afa817e5b5e3ca5c5729"
Last-Modified: Thu, 23 Feb 2023 14:17:05 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2712
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79e191b45ff1b4fa-OSL
-
|
|
|
|
ocsp2.globalsign.com/gsextendvalsha2g3r3 |
104.18.21.226 |
200 OK |
1444 |
-
URL
HTTP/1.1
ocsp2.globalsign.com/gsextendvalsha2g3r3
-
IP
104.18.21.226:0
-
-
-
-
-
Hash
a4532eb2e4ee2a9d2a205f7d5b356f02
4fbbf785e265375ee87f18a5a4050c5dac78eada
9f2025d0a02c0bcf6eba692ff117534b5021aadc547b9c113b92134398aeae34
-
-
POST /gsextendvalsha2g3r3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
-
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 17:09:25 GMT
Content-Type: application/ocsp-response
Content-Length: 1444
Connection: keep-alive
Expires: Mon, 27 Feb 2023 13:10:49 GMT
ETag: "4fbbf785e265375ee87f18a5a4050c5dac78eada"
Last-Modified: Thu, 23 Feb 2023 13:10:50 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1260
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79e191b49c770b51-OSL
-
|
|
|
|
ocsp2.globalsign.com/gsextendvalsha2g3r3 |
104.18.21.226 |
200 OK |
1444 |
-
URL
HTTP/1.1
ocsp2.globalsign.com/gsextendvalsha2g3r3
-
IP
104.18.21.226:0
-
-
-
-
-
Hash
a4532eb2e4ee2a9d2a205f7d5b356f02
4fbbf785e265375ee87f18a5a4050c5dac78eada
9f2025d0a02c0bcf6eba692ff117534b5021aadc547b9c113b92134398aeae34
-
-
POST /gsextendvalsha2g3r3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
-
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 17:09:25 GMT
Content-Type: application/ocsp-response
Content-Length: 1444
Connection: keep-alive
Expires: Mon, 27 Feb 2023 13:10:49 GMT
ETag: "4fbbf785e265375ee87f18a5a4050c5dac78eada"
Last-Modified: Thu, 23 Feb 2023 13:10:50 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1260
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79e191b4ad4db4f3-OSL
-
|
|
|
|
ocsp2.globalsign.com/gsextendvalsha2g3r3 |
104.18.21.226 |
200 OK |
1444 |
-
URL
HTTP/1.1
ocsp2.globalsign.com/gsextendvalsha2g3r3
-
IP
104.18.21.226:0
-
-
-
-
-
Hash
a4532eb2e4ee2a9d2a205f7d5b356f02
4fbbf785e265375ee87f18a5a4050c5dac78eada
9f2025d0a02c0bcf6eba692ff117534b5021aadc547b9c113b92134398aeae34
-
-
POST /gsextendvalsha2g3r3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
-
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 17:09:25 GMT
Content-Type: application/ocsp-response
Content-Length: 1444
Connection: keep-alive
Expires: Mon, 27 Feb 2023 13:10:49 GMT
ETag: "4fbbf785e265375ee87f18a5a4050c5dac78eada"
Last-Modified: Thu, 23 Feb 2023 13:10:50 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1260
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79e191b4aaafb51e-OSL
-
|
|
|
|
firefox.settings.services.mozilla.com/v1/buckets/monitor/collections/changes/changeset?_expected=%221677169679041%22 |
35.241.9.150 |
200 OK |
21681 |
-
URL
HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/monitor/collections/changes/changeset?_expected=%221677169679041%22
-
IP
35.241.9.150:0
-
-
-
-
Magic
JSON data\012- , ASCII text, with very long lines (21681), with no line terminators
-
Hash
813f445188bb2e620c9996e1b327bc68
2b08fa7a69fa1b3064ad5bc8a156130205c08cd5
29d88cd24761bda0c774c5ffab4df68f76f4cad4f5f9abd91cd9a4e1766e54e5
-
-
GET /v1/buckets/monitor/collections/changes/changeset?_expected=%221677169679041%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
-
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Content-Type, Backoff, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 21681
via: 1.1 google
date: Thu, 23 Feb 2023 16:32:05 GMT
last-modified: Thu, 23 Feb 2023 16:27:59 GMT
content-type: application/json
age: 2240
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
-
|
|
|
|
ocsp2.globalsign.com/gsextendvalsha2g3r3 |
104.18.21.226 |
200 OK |
1444 |
-
URL
HTTP/1.1
ocsp2.globalsign.com/gsextendvalsha2g3r3
-
IP
104.18.21.226:0
-
-
-
-
-
Hash
a4532eb2e4ee2a9d2a205f7d5b356f02
4fbbf785e265375ee87f18a5a4050c5dac78eada
9f2025d0a02c0bcf6eba692ff117534b5021aadc547b9c113b92134398aeae34
-
-
POST /gsextendvalsha2g3r3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
-
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 17:09:25 GMT
Content-Type: application/ocsp-response
Content-Length: 1444
Connection: keep-alive
Expires: Mon, 27 Feb 2023 13:10:49 GMT
ETag: "4fbbf785e265375ee87f18a5a4050c5dac78eada"
Last-Modified: Thu, 23 Feb 2023 13:10:50 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1260
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79e191b49de8fab8-OSL
-
|
|
|
|
ocsp2.globalsign.com/gsextendvalsha2g3r3 |
104.18.21.226 |
200 OK |
1444 |
-
URL
HTTP/1.1
ocsp2.globalsign.com/gsextendvalsha2g3r3
-
IP
104.18.21.226:0
-
-
-
-
-
Hash
a4532eb2e4ee2a9d2a205f7d5b356f02
4fbbf785e265375ee87f18a5a4050c5dac78eada
9f2025d0a02c0bcf6eba692ff117534b5021aadc547b9c113b92134398aeae34
-
-
POST /gsextendvalsha2g3r3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
-
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 17:09:25 GMT
Content-Type: application/ocsp-response
Content-Length: 1444
Connection: keep-alive
Expires: Mon, 27 Feb 2023 13:10:49 GMT
ETag: "4fbbf785e265375ee87f18a5a4050c5dac78eada"
Last-Modified: Thu, 23 Feb 2023 13:10:50 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1260
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 79e191b49874b4fa-OSL
-
|
|
|
|
firefox.settings.services.mozilla.com/v1/buckets/blocklists/collections/addons-bloomfilters/changeset?_expected=1677069440866&_since=%221666204638208%22 |
35.241.9.150 |
200 OK |
32643 |
-
URL
HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/blocklists/collections/addons-bloomfilters/changeset?_expected=1677069440866&_since=%221666204638208%22
-
IP
35.241.9.150:0
-
-
-
-
Magic
JSON data\012- , ASCII text, with very long lines (32643), with no line terminators
-
Hash
111a124bfe0fcca1d00eacc4056304c0
09f7b2abd4d09de09db0e11add552e995346c23c
3dfc4c61e3f4a5d95c359d2914ec2dcf4bfc413116dec9b98bc104ecc9f446bf
-
-
GET /v1/buckets/blocklists/collections/addons-bloomfilters/changeset?_expected=1677069440866&_since=%221666204638208%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
-
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 32643
via: 1.1 google
date: Thu, 23 Feb 2023 16:35:04 GMT
age: 2061
last-modified: Wed, 22 Feb 2023 12:37:20 GMT
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
-
|
|
|
|
www.intesasanpaolo.com/ib/public/login/css/ArchIbPublicStyle.css |
 193.41.198.216 |
200 OK |
16997 |
-
URL
HTTP/1.1
www.intesasanpaolo.com/ib/public/login/css/ArchIbPublicStyle.css
-
IP
193.41.198.216:0
-
ASN
#20942 Intesa Sanpaolo S.p.A.
-
-
-
Magic
ASCII text, with very long lines (27465)
-
Hash
813c287cb552d3893880f19f6f1385e3
1d8069a147ca13ca331a949b3b3f3b377ff70106
a36e83b0a321dc743c3e84a8fc60083d1da58690c21e3718cc443b1b3bb17140
-
-
GET /ib/public/login/css/ArchIbPublicStyle.css HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blackandblue.co.nz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
-
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 17:09:25 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page,ISP-X-CJCALLERID,ISP-X-CJCALLERABI,x-isp-cypher-drw
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
Accept-Ranges: bytes
Vary: User-Agent
Content-Encoding: gzip
X-Frame-Options: SAMEORIGIN
Cache-Control: must-revalidate, proxy-revalidate, max-age=15552000
Content-Length: 16997
Keep-Alive: timeout=17, max=100
Connection: Keep-Alive
Content-Type: text/css
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d74a64c75207e2b1d2dbf851a7d68965ac991f1aab58b1aad250d6f142c77589d5949a3942d62a59a61531e437da75027; Path=/; Secure; HTTPOnly
-
|
|
|
|
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain |
34.160.144.191 |
200 OK |
5348 |
-
URL
HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain
-
IP
34.160.144.191:0
-
-
-
-
Magic
PEM certificate\012- , ASCII text
-
Hash
b5ba6334e73496995e3e3a9ecd0eb323
ad80d3b7718c28364e8c2004fb38a13a1747e462
aa5abb52515c6383c014aadb63a86c9f798ad64de53c0218616c1fc6d424d2e2
-
-
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
-
HTTP/2 200 OK
x-amz-id-2: ymqfLbIqtZ0OBiKu79QN1MoRDegFLHwFsd06hR5Bz91zgbATokPKsp1mE2SlFRG9ElIj6sauy4E=
x-amz-request-id: 5D1QG1WXMXEGNQGT
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 23 Feb 2023 16:49:09 GMT
age: 1216
last-modified: Sat, 18 Feb 2023 20:28:27 GMT
etag: "b5ba6334e73496995e3e3a9ecd0eb323"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
-
|
|
|
|
firefox.settings.services.mozilla.com/v1/ |
35.241.9.150 |
200 OK |
939 |
-
URL
HTTP/2
firefox.settings.services.mozilla.com/v1/
-
IP
35.241.9.150:0
-
-
-
-
Magic
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
-
Hash
7f03faaba3392caae6dae54467bfdf6d
57ea1f14e8bfbcca8190c706d708c9fda12442c1
02ac551ba61fcbc6b04f244df065948b181a8a258db5c2e197aae66fdfcea8ee
-
-
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
-
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Content-Type, Backoff, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 23 Feb 2023 16:38:21 GMT
content-type: application/json
age: 1865
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
-
|
|
|
|
blackandblue.co.nz/login/intesa-sanpaolo/8342df9213bc934fb384e14135c75ea8/login/files/flag_eng.png |
 185.184.154.17 |
200 OK |
1502 |
-
URL
HTTP/2
blackandblue.co.nz/login/intesa-sanpaolo/8342df9213bc934fb384e14135c75ea8/login/files/flag_eng.png
-
IP
185.184.154.17:0
-
ASN
#38719 Dreamscape Networks Limited
-
-
-
Magic
PNG image data, 19 x 10, 8-bit/color RGB, non-interlaced\012- data
-
Hash
3aadce088b74fd250abcdb82d51ba273
1e9f10dbc5fcd6c98a94659c0344907e0b7b59d6
b9cf5ac56dd524668e1156759674215a9224dcaec961914e0e36c2c0efcb9bc0
-
-
GET /login/intesa-sanpaolo/8342df9213bc934fb384e14135c75ea8/login/files/flag_eng.png HTTP/1.1
Host: blackandblue.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blackandblue.co.nz/login/intesa-sanpaolo/8342df9213bc934fb384e14135c75ea8/login/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
-
HTTP/2 200 OK
server: nginx
date: Thu, 23 Feb 2023 17:09:25 GMT
content-type: image/png
content-length: 1502
last-modified: Thu, 23 Feb 2023 08:17:01 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
-
|
|
|
|
r3.o.lencr.org/ |
23.36.76.249 |
200 OK |
503 |
-
-
IP
23.36.76.249:0
-
ASN
#20940 Akamai International B.V.
-
-
-
-
Hash
135606a5e990506b3e92eda82ef79170
a3de3c800534ad64b2e2198941e3911a4e51df8e
558ce08e84a4581859ae4302371540e4240e0b85866e37fb03174786388d5546
-
-
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
-
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "558CE08E84A4581859AE4302371540E4240E0B85866E37FB03174786388D5546"
Last-Modified: Wed, 22 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6268
Expires: Thu, 23 Feb 2023 18:53:54 GMT
Date: Thu, 23 Feb 2023 17:09:26 GMT
Connection: keep-alive
-
|
|
|
|
www.intesasanpaolo.com/etc/designs/vetrina/clientlib-all.css |
193.41.198.216 |
200 OK |
103358 |
-
URL
HTTP/1.1
www.intesasanpaolo.com/etc/designs/vetrina/clientlib-all.css
-
IP
193.41.198.216:0
-
ASN
#20942 Intesa Sanpaolo S.p.A.
-
-
-
Magic
ASCII text, with very long lines (65011)
-
Hash
77d47d336e4f228fdb7905c2cac7995f
a36f6a9e56f1d4bf11055ae79566fdf656bf90ad
81d1cf1827a7e107dddfa12c3856a45e8f65d5ca5958cee0b4ee0c24dac33730
-
-
GET /etc/designs/vetrina/clientlib-all.css HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blackandblue.co.nz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
-
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 17:09:25 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "c3197-gzip"
Accept-Ranges: bytes
Vary: User-Agent
Content-Encoding: gzip
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/css
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d59a1c3685faf32b39f12f0104c84a9c43140139cbb5ef0bba9c6b17a991635c4a83920656c6417369a3ec3c6aebdcd36; Path=/; Secure; HTTPOnly
Transfer-Encoding: chunked
-
|
|
|
|
firefox-settings-attachments.cdn.mozilla.net/staging/addons-bloomfilters/8038652a-6557-460a-858c-84f19a5a0987.bin |
34.111.73.144 |
200 OK |
807180 |
-
URL
HTTP/2
firefox-settings-attachments.cdn.mozilla.net/staging/addons-bloomfilters/8038652a-6557-460a-858c-84f19a5a0987.bin
-
IP
34.111.73.144:0
-
-
-
-
-
Hash
914be443bdfbe8a1c3ded61e1c114bd6
4fe7c5ff83f6a29e6699f4cebc17550891504661
41b036d0c889509d547296b238027a063c313261ad52d5f7bb81922011791857
-
-
GET /staging/addons-bloomfilters/8038652a-6557-460a-858c-84f19a5a0987.bin HTTP/1.1
Host: firefox-settings-attachments.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
-
HTTP/2 200 OK
x-amz-id-2: W0BOTyhr4twUvOZ5PXzJJypgQYWSdxyiNIVbzii2sCr6bqxjFhob0vSInGW+A8Nz6kahQNDtgAM=
x-amz-request-id: 5VNAE12H3Z1T7YB6
x-amz-version-id: K1ODzappZsD35qeu0OM5zvs_BP1eybj7
accept-ranges: bytes
server: AmazonS3
content-length: 807180
via: 1.1 google
date: Thu, 23 Feb 2023 11:49:07 GMT
age: 19219
last-modified: Tue, 10 Jan 2023 12:38:46 GMT
etag: "914be443bdfbe8a1c3ded61e1c114bd6"
content-type: application/octet-stream
cache-control: public,max-age=604800
alt-svc: clear
X-Firefox-Spdy: h2
-
|
|
|
|
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/studio-e-lavoro/_jcr_content/icon.img.png |
193.41.198.216 |
200 OK |
1023 |
-
URL
HTTP/1.1
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/studio-e-lavoro/_jcr_content/icon.img.png
-
IP
193.41.198.216:0
-
ASN
#20942 Intesa Sanpaolo S.p.A.
-
-
-
Magic
PNG image data, 30 x 27, 8-bit/color RGBA, non-interlaced\012- data
-
Hash
e386b810ca1b33a6e67d98b0e42324e7
e11d099289ef780c5770b532dd709c52fe64d11a
3b579671f0f852fb817840c791e1375fce7d12fe48589c41539e0811365020ba
-
-
GET /content/vetrina/it/persone-e-famiglie/bisogni/studio-e-lavoro/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blackandblue.co.nz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
-
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 17:09:26 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "3ff"
Accept-Ranges: bytes
Content-Length: 1023
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d43fd9fc67a692cd02f9c96ae5ad65d45443a23dca75fe725509c8977aad7af0449cf0b359d03bdc9be83852bc4d0f26c; Path=/; Secure; HTTPOnly
-
|
|
|
|
blackandblue.co.nz/login/intesa-sanpaolo/8342df9213bc934fb384e14135c75ea8/login/files/logo-intesasanpaolo.png |
185.184.154.17 |
200 OK |
5229 |
-
URL
HTTP/2
blackandblue.co.nz/login/intesa-sanpaolo/8342df9213bc934fb384e14135c75ea8/login/files/logo-intesasanpaolo.png
-
IP
185.184.154.17:0
-
ASN
#38719 Dreamscape Networks Limited
-
-
-
Magic
PNG image data, 279 x 38, 8-bit/color RGBA, non-interlaced\012- data
-
Hash
9fa2e7d279a9e8509db5ab5f300091c9
8fa4d667ca1df6df6fe9b7fac0d6a9f4c14daf55
559bde803d8dedb905509859f3c1d14c9837788f2d5cf6ee26f1518f528d0cf8
-
-
GET /login/intesa-sanpaolo/8342df9213bc934fb384e14135c75ea8/login/files/logo-intesasanpaolo.png HTTP/1.1
Host: blackandblue.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blackandblue.co.nz/login/intesa-sanpaolo/8342df9213bc934fb384e14135c75ea8/login/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
-
HTTP/2 200 OK
server: nginx
date: Thu, 23 Feb 2023 17:09:25 GMT
content-type: image/png
content-length: 5229
last-modified: Thu, 23 Feb 2023 08:16:59 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
-
|
|
|
|
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/sicurezza-digitale/_jcr_content/icon.img.png |
193.41.198.216 |
200 OK |
1750 |
-
URL
HTTP/1.1
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/sicurezza-digitale/_jcr_content/icon.img.png
-
IP
193.41.198.216:0
-
ASN
#20942 Intesa Sanpaolo S.p.A.
-
-
-
Magic
PNG image data, 30 x 30, 8-bit/color RGBA, interlaced\012- data
-
Hash
96162c4dab3c7028437f8290c93e0fd9
9ea2a567a95ecce36a6760e5ae77138ef86d922e
dce4673512de52fd393e1eacc72ff22313515d00603a353f3df4383d13959a68
-
-
GET /content/vetrina/it/persone-e-famiglie/bisogni/sicurezza-digitale/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blackandblue.co.nz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
-
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 17:09:26 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "6d6"
Accept-Ranges: bytes
Content-Length: 1750
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238dc9d275397cec2e6e61bd7c0d883a2bf11c36ab422f7cd387d1b1079bd7f6a9a531a6e696c5715e172b784401f9bbef28; Path=/; Secure; HTTPOnly
-
|
|
|
|
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/casa/_jcr_content/icon.img.png |
193.41.198.216 |
200 OK |
596 |
-
URL
HTTP/1.1
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/casa/_jcr_content/icon.img.png
-
IP
193.41.198.216:0
-
ASN
#20942 Intesa Sanpaolo S.p.A.
-
-
-
Magic
PNG image data, 30 x 27, 8-bit/color RGBA, non-interlaced\012- data
-
Hash
c7d2c21bd468f05bfdabb2e0b2238b3c
46e8967dc3ee2cd90e0e4b627b7b9fc96e8b2288
718107e6d810e9b67562f6a863033f4d10a36a4f64593dd01312aff95bc7ea16
-
-
GET /content/vetrina/it/persone-e-famiglie/bisogni/casa/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blackandblue.co.nz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
-
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 17:09:26 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "254"
Accept-Ranges: bytes
Content-Length: 596
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d7915f08f8ebec7f7e78b317c8213e00774ea08331b9947bad1e505222ca6471cd52a863355efbdc5025477140b899eba; Path=/; Secure; HTTPOnly
-
|
|
|
|
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/risparmi-ogni-giorno/offerte-speciali-a-un-clic-da-te/_jcr_content/icon.img.png |
193.41.198.216 |
200 OK |
769 |
-
URL
HTTP/1.1
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/risparmi-ogni-giorno/offerte-speciali-a-un-clic-da-te/_jcr_content/icon.img.png
-
IP
193.41.198.216:0
-
ASN
#20942 Intesa Sanpaolo S.p.A.
-
-
-
Magic
PNG image data, 30 x 35, 8-bit/color RGBA, non-interlaced\012- data
-
Hash
e46bd471bd30126c3da601d9d94b9655
81bfcc60c7ac3f6324d676ca948c25b9b7d8730d
de06f4ebd0f89a97e88aaf43f277bfe3fd14727e9d57370c0b65faaf7940f656
-
-
GET /content/vetrina/it/persone-e-famiglie/tutti-i-giorni/risparmi-ogni-giorno/offerte-speciali-a-un-clic-da-te/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blackandblue.co.nz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
-
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 17:09:26 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "301"
Accept-Ranges: bytes
Content-Length: 769
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238db8292cb3c59dc7fd8d993aaae312a04676126f274136883faa510ed1036bd8ba2382db930b2e5874fb0d96370fc626e3; Path=/; Secure; HTTPOnly
-
|
|
|
|
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/famiglia/_jcr_content/icon.img.png |
193.41.198.216 |
200 OK |
930 |
-
URL
HTTP/1.1
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/famiglia/_jcr_content/icon.img.png
-
IP
193.41.198.216:0
-
ASN
#20942 Intesa Sanpaolo S.p.A.
-
-
-
Magic
PNG image data, 30 x 28, 8-bit/color RGBA, non-interlaced\012- data
-
Hash
8786b476163b5626790111201de7a105
f432a249eac59b4a057f0ab2a34cfa99adc898c6
7a2b1b4bff76a3cb518c06ef6abbd483c60e5b2d6377020a6bf1198134ebb8ab
-
-
GET /content/vetrina/it/persone-e-famiglie/bisogni/famiglia/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blackandblue.co.nz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
-
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 17:09:26 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "3a2"
Accept-Ranges: bytes
Content-Length: 930
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238d682e6ea67cdc64b8b7c02e9774badc82069c8b75578fa71c69e777f00e1a9c468ced14d02f3852fcd7c96b28e30d1866; Path=/; Secure; HTTPOnly
-
|
|
|
|
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/tempo-libero/_jcr_content/icon.img.png |
193.41.198.216 |
200 OK |
702 |
-
URL
HTTP/1.1
www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/tempo-libero/_jcr_content/icon.img.png
-
IP
193.41.198.216:0
-
ASN
#20942 Intesa Sanpaolo S.p.A.
-
-
-
Magic
PNG image data, 30 x 18, 8-bit/color RGBA, non-interlaced\012- data
-
Hash
0ecbc8cec38438e1f4883c26b97eb7e2
0c6d07f1cff42c4546455ec766259e85339bf3b8
d324d101d0340ef2a01fabab8d52815a08a51c0cfab63daf120b3db017b7b0e7
-
-
GET /content/vetrina/it/persone-e-famiglie/bisogni/tempo-libero/_jcr_content/icon.img.png HTTP/1.1
Host: www.intesasanpaolo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blackandblue.co.nz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
-
HTTP/1.1 200 OK
Date: Thu, 23 Feb 2023 17:09:26 GMT
Access-Control-Max-Age: 86400
Access-Control-Allow-Headers: accept,accept-encoding,accessmode,applicationname,authorization,bank-code,bt,caller,channel,clientversion,content-type,lang,operationsystem,origin,profilo-reset,useragent,x-isp-keyid,x-isp-signature,x-requested-with,formname,X-File-Size,cEgida,accept-language,connection,content-length,host,referer,accept-ranges,range,user-agent,devicemodel,geolocation,x-request-id,my-host,digest,signature,devicedna,f&f,deviceIDrba,deviceSignature,tipoCliente,x-bear-session-token,x-isp-session-id,x-isp-transaction-id,x-isp-execution,x-isp-cypher,x-isp-browsername,,x-ma-bid,x-ma-sid,x-ma-hostname,x-ma-pid,uniqueid,Page
Access-Control-Expose-Headers: accept-ranges,content-encoding,content-length,content-range,deviceIDrba
Access-Control-Allow-Methods: POST, GET, OPTIONS, DELETE, PUT, PATCH
Access-Control-Allow-Credentials: true
ETag: "2be"
Accept-Ranges: bytes
Content-Length: 702
X-Frame-Options: SAMEORIGIN
Cache-Control: no-cache
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: image/png
Strict-Transport-Security: max-age=16070400; includeSubDomains
Set-Cookie: TS0108408c=014f3a238dfa3d78227c2e8fa24a81933c4f6f6618c30d61cf252dcdbb89b998bef0385bf338918cdc17a57d441e250fa436eb33f5; Path=/; Secure; HTTPOnly
-
|
|
|
|
blackandblue.co.nz/login/intesa-sanpaolo/8342df9213bc934fb384e14135c75ea8/login/files/ico-parla-con-noi.png |
185.184.154.17 |
200 OK |
1925 |
-
URL
HTTP/2
blackandblue.co.nz/login/intesa-sanpaolo/8342df9213bc934fb384e14135c75ea8/login/files/ico-parla-con-noi.png
-
IP
185.184.154.17:0
-
ASN
#38719 Dreamscape Networks Limited
-
-
-
Magic
PNG image data, 43 x 27, 8-bit/color RGBA, non-interlaced\012- data
-
Hash
bed2ce651195bd358c9e92df2984b52e
8b135fc67e0639a317b4fef7517858064edb81ed
9e5f7acbc049c135bfae2d725aa23aeced8e05320aadf2629ca8fa11f5dafb14
-
-
GET /login/intesa-sanpaolo/8342df9213bc934fb384e14135c75ea8/login/files/ico-parla-con-noi.png HTTP/1.1
Host: blackandblue.co.nz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://blackandblue.co.nz/login/intesa-sanpaolo/8342df9213bc934fb384e14135c75ea8/login/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
-
HTTP/2 200 OK
server: nginx
date: Thu, 23 Feb 2023 17:09:25 GMT
content-type: image/png
content-length: 1925
last-modified: Thu, 23 Feb 2023 08:16:59 GMT
accept-ranges: bytes
X-Firefox-Spdy: h2
-
|
|
|
|
blackandblue.co.nz/login/intesa-sanpaolo/8342df9213bc934fb384e14135c75ea8/login/files/ico_portafogli.png |
185.184.154.17 |
200 OK |
403 |
|
|
![URL blackandblue.co.nz/login/intesa-sanpaolo/8342df9213bc934fb384e14135c75ea8/login/files/flag_eng.png](/search?q=http.url.addr:"blackandblue.co.nz%2flogin%2fintesa-sanpaolo%2f8342df9213bc934fb384e14135c75ea8%2flogin%2ffiles%2fflag_eng.png"){kind=link}
![URL www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/studio-e-lavoro/_jcr_content/icon.img.png](/search?q=http.url.addr:"www.intesasanpaolo.com%2fcontent%2fvetrina%2fit%2fpersone-e-famiglie%2fbisogni%2fstudio-e-lavoro%2f_jcr_content%2ficon.img.png"){kind=link}
![URL blackandblue.co.nz/login/intesa-sanpaolo/8342df9213bc934fb384e14135c75ea8/login/files/logo-intesasanpaolo.png](/search?q=http.url.addr:"blackandblue.co.nz%2flogin%2fintesa-sanpaolo%2f8342df9213bc934fb384e14135c75ea8%2flogin%2ffiles%2flogo-intesasanpaolo.png"){kind=link}
![URL www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/sicurezza-digitale/_jcr_content/icon.img.png](/search?q=http.url.addr:"www.intesasanpaolo.com%2fcontent%2fvetrina%2fit%2fpersone-e-famiglie%2fbisogni%2fsicurezza-digitale%2f_jcr_content%2ficon.img.png"){kind=link}
![URL www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/casa/_jcr_content/icon.img.png](/search?q=http.url.addr:"www.intesasanpaolo.com%2fcontent%2fvetrina%2fit%2fpersone-e-famiglie%2fbisogni%2fcasa%2f_jcr_content%2ficon.img.png"){kind=link}
![URL www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/tutti-i-giorni/risparmi-ogni-giorno/offerte-speciali-a-un-clic-da-te/_jcr_content/icon.img.png](/search?q=http.url.addr:"www.intesasanpaolo.com%2fcontent%2fvetrina%2fit%2fpersone-e-famiglie%2ftutti-i-giorni%2frisparmi-ogni-giorno%2fofferte-speciali-a-un-clic-da-te%2f_jcr_content%2ficon.img.png"){kind=link}
![URL www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/famiglia/_jcr_content/icon.img.png](/search?q=http.url.addr:"www.intesasanpaolo.com%2fcontent%2fvetrina%2fit%2fpersone-e-famiglie%2fbisogni%2ffamiglia%2f_jcr_content%2ficon.img.png"){kind=link}
![URL www.intesasanpaolo.com/content/vetrina/it/persone-e-famiglie/bisogni/tempo-libero/_jcr_content/icon.img.png](/search?q=http.url.addr:"www.intesasanpaolo.com%2fcontent%2fvetrina%2fit%2fpersone-e-famiglie%2fbisogni%2ftempo-libero%2f_jcr_content%2ficon.img.png"){kind=link}
![URL blackandblue.co.nz/login/intesa-sanpaolo/8342df9213bc934fb384e14135c75ea8/login/files/ico-parla-con-noi.png](/search?q=http.url.addr:"blackandblue.co.nz%2flogin%2fintesa-sanpaolo%2f8342df9213bc934fb384e14135c75ea8%2flogin%2ffiles%2fico-parla-con-noi.png"){kind=link}
![URL blackandblue.co.nz/login/intesa-sanpaolo/8342df9213bc934fb384e14135c75ea8/login/files/ico_portafogli.png](/search?q=http.url.addr:"blackandblue.co.nz%2flogin%2fintesa-sanpaolo%2f8342df9213bc934fb384e14135c75ea8%2flogin%2ffiles%2fico_portafogli.png"){kind=link}