This is the server side label slapped on you everytime your browser touches a website and/or banner ad.
It is vanilla legal HTTP, no malware or client side software needs to be installed to get this
it is similar to the log files servers have (varies per country) to keep
Stuff in italics have been redacted on this page for security reasons
| ALL_HTTP | HTTP_CACHE_CONTROL:no-cache HTTP_CONNECTION:close HTTP_PRAGMA:no-cache HTTP_CONTENT_LENGTH:0 HTTP_ACCEPT:text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7 HTTP_ACCEPT_ENCODING:gzip, deflate, br, zstd HTTP_HOST:kiwi-magic.com HTTP_USER_AGENT:Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com) HTTP_SEC_CH_UA:"Chromium";v="130", "HeadlessChrome";v="130", "Not?A_Brand";v="99" HTTP_SEC_CH_UA_MOBILE:?0 HTTP_SEC_CH_UA_PLATFORM:"Windows" HTTP_UPGRADE_INSECURE_REQUESTS:1 HTTP_SEC_FETCH_SITE:none HTTP_SEC_FETCH_MODE:navigate HTTP_SEC_FETCH_USER:?1 HTTP_SEC_FETCH_DEST:document HTTP_PRIORITY:u=0, i |
| ALL_RAW | Cache-Control: no-cache Connection: close Pragma: no-cache Content-Length: 0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7 Accept-Encoding: gzip, deflate, br, zstd Host: kiwi-magic.com User-Agent: Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com) sec-ch-ua: "Chromium";v="130", "HeadlessChrome";v="130", "Not?A_Brand";v="99" sec-ch-ua-mobile: ?0 sec-ch-ua-platform: "Windows" upgrade-insecure-requests: 1 sec-fetch-site: none sec-fetch-mode: navigate sec-fetch-user: ?1 sec-fetch-dest: document priority: u=0, i |
| APPL_MD_PATH | server internal |
| APPL_PHYSICAL_PATH | server internal |
| AUTH_TYPE | server internal |
| AUTH_USER | server internal |
| AUTH_PASSWORD | server internal |
| LOGON_USER | server internal |
| REMOTE_USER | |
| CERT_COOKIE | server internal |
| CERT_FLAGS | server internal |
| CERT_ISSUER | server internal |
| CERT_KEYSIZE | server internal |
| CERT_SECRETKEYSIZE | server internal |
| CERT_SERIALNUMBER | server internal |
| CERT_SERVER_ISSUER | server internal |
| CERT_SERVER_SUBJECT | server internal |
| CERT_SUBJECT | server internal |
| CONTENT_LENGTH | 0 |
| CONTENT_TYPE | |
| GATEWAY_INTERFACE | server internal |
| HTTPS | server internal |
| HTTPS_KEYSIZE | server internal |
| HTTPS_SECRETKEYSIZE | server internal |
| HTTPS_SERVER_ISSUER | server internal |
| HTTPS_SERVER_SUBJECT | server internal |
| INSTANCE_ID | server internal |
| INSTANCE_META_PATH | server internal |
| LOCAL_ADDR | server internal |
| PATH_INFO | server internal |
| PATH_TRANSLATED | server internal |
| QUERY_STRING | server internal |
| REMOTE_ADDR | 3.144.158.98 |
| REMOTE_HOST | 3.144.158.98 |
| REMOTE_PORT | 42754 |
| REQUEST_METHOD | server internal |
| SCRIPT_NAME | server internal |
| SERVER_NAME | server internal |
| SERVER_PORT | server internal |
| SERVER_PORT_SECURE | server internal |
| SERVER_PROTOCOL | server internal |
| SERVER_SOFTWARE | server internal |
| URL | /docs/whoru/Default.aspx |
| HTTP_CACHE_CONTROL | no-cache |
| HTTP_CONNECTION | close |
| HTTP_PRAGMA | no-cache |
| HTTP_CONTENT_LENGTH | 0 |
| HTTP_ACCEPT | text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,image/apng,*/*;q=0.8,application/signed-exchange;v=b3;q=0.7 |
| HTTP_ACCEPT_ENCODING | gzip, deflate, br, zstd |
| HTTP_HOST | kiwi-magic.com |
| HTTP_USER_AGENT | Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com) |
| HTTP_SEC_CH_UA | "Chromium";v="130", "HeadlessChrome";v="130", "Not?A_Brand";v="99" |
| HTTP_SEC_CH_UA_MOBILE | ?0 |
| HTTP_SEC_CH_UA_PLATFORM | "Windows" |
| HTTP_UPGRADE_INSECURE_REQUESTS | 1 |
| HTTP_SEC_FETCH_SITE | none |
| HTTP_SEC_FETCH_MODE | navigate |
| HTTP_SEC_FETCH_USER | ?1 |
| HTTP_SEC_FETCH_DEST | document |
| HTTP_PRIORITY | u=0, i |