regionic.info/jmb?tag=storm-damage-in-orange-beach-al
83.166.138.58301 Moved Permanently 269 B URL HTTP/1.1 regionic.info/jmb?tag=storm-damage-in-orange-beach-al
IP 83.166.138.58:0
ASN #29222 Infomaniak Network SA
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 18aa03048e26d2da16c5eff37a21f2e2
ca0f925849dc8d4336b3016ae13cd27836ff3a5e
9719d1db42877d65a12e5b5d958a9c9da7a9d471679ec63db342f6ecbaa18bfa
GET /jmb?tag=storm-damage-in-orange-beach-al HTTP/1.1
Host: regionic.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 11 Nov 2022 14:29:23 GMT
Server: Apache
Location: http://regionic.info/jmb/?tag=storm-damage-in-orange-beach-al
Content-Length: 269
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3d0727e32cd103ddd4b73f28c81758aa
197a7bf43d63723fc532c23c6dced68d5cc36652
d3f75d03561d6a47d19370292e821a86e58381466f0c69386a21175de55882ff
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D3F75D03561D6A47D19370292E821A86E58381466F0C69386A21175DE55882FF"
Last-Modified: Fri, 11 Nov 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14253
Expires: Fri, 11 Nov 2022 18:26:57 GMT
Date: Fri, 11 Nov 2022 14:29:24 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4edf853c470fcec0ab277c78527f3c2d
de93530ce15337e671c488d9fe05e7091d4956f0
b9d7976b398b1243ff8a571ddd3975d3a1317d69101061bdb1a755b3b56620e6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6260
Cache-Control: max-age=164783
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 14:29:24 GMT
Etag: "636e247f-1d7"
Expires: Sun, 13 Nov 2022 12:15:47 GMT
Last-Modified: Fri, 11 Nov 2022 10:31:27 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 2b57492bf85f4ae6abbd1641b17dc9ab
008e71ec05d47bf025ca64e17da2ea1bd8e71111
17894427c471f7fa02ca274795dc55df1bfc99d7bd83f9ee36249394035110fd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "17894427C471F7FA02CA274795DC55DF1BFC99D7BD83F9EE36249394035110FD"
Last-Modified: Wed, 09 Nov 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17601
Expires: Fri, 11 Nov 2022 19:22:45 GMT
Date: Fri, 11 Nov 2022 14:29:24 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4736bac84ca28f2b1e961159fb4ea098
1319612979f53896fcfeacd4215c2715d4951e4c
5e81213e111ddf68c7f884f72b4e06fc4dc95eb902c3cf0762236b2418840dba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 11 Nov 2022 13:43:52 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2732
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Z3VDFMON2e9rIpCnEjT7hfF/+ggwkoCQqTjj/sZ8F8QquklXGFMqDqVp2rHyrVq0X/qxIOJmVG4=
x-amz-request-id: RYDBV761RXD7MYJQ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 11 Nov 2022 14:12:36 GMT
age: 1008
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 11 Nov 2022 14:29:24 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
regionic.info/jmb/?tag=storm-damage-in-orange-beach-al
83.166.138.58301 Moved Permanently 268 B URL HTTP/1.1 regionic.info/jmb/?tag=storm-damage-in-orange-beach-al
IP 83.166.138.58:0
ASN #29222 Infomaniak Network SA
Hash 737ccc5b83966bf4e96ae79e455edd61
282e5815173b41b78b3e4203c3cd56fc46824a6f
ac03c87988282cc9c9617db2c5ccdf1bd8836536336e79b717316981822df7ea
Analyzer Verdict Alert fortinet Phishing
GET /jmb/?tag=storm-damage-in-orange-beach-al HTTP/1.1
Host: regionic.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 11 Nov 2022 14:29:24 GMT
Server: Apache
X-Redirect-By: WordPress
Location: http://www.regionic.info/jmb/?tag=storm-damage-in-orange-beach-al
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Cache-Control, Retry-After, Content-Length, Expires, ETag, Pragma, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 11 Nov 2022 13:44:48 GMT
cache-control: public,max-age=3600
age: 2676
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f7ff606fbc8634c858bbc04b69f55cf6
2441de2cba649239efd0dae7a878d7ef2245c0b4
95154e0dbb7e827b8f893cc141f986c29634ead618256470d753429aa65a0548
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4125
Cache-Control: max-age=157573
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 14:29:24 GMT
Etag: "636e10ac-1d7"
Expires: Sun, 13 Nov 2022 10:15:37 GMT
Last-Modified: Fri, 11 Nov 2022 09:06:52 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.189.35.180101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.189.35.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: VLSZ3VwY0cH/k+bNa4lG+w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: lZHb5q0SiEWzEnIYDQYxFXiawwc=
www.regionic.info/jmb/?tag=storm-damage-in-orange-beach-al
83.166.138.58200 OK 12 kB URL HTTP/1.1 www.regionic.info/jmb/?tag=storm-damage-in-orange-beach-al
IP 83.166.138.58:0
ASN #29222 Infomaniak Network SA
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash 07cab0a7cbc509fb27dd7b54bf9f508c
3a299beadf54895927507f7260feeb8cbd7b5e1d
c60ad0db3ce5130992c7e8655e224c1bccffd17adde234605d3637b90bc6c5ec
Analyzer Verdict Alert fortinet Phishing
GET /jmb/?tag=storm-damage-in-orange-beach-al HTTP/1.1
Host: www.regionic.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Fri, 11 Nov 2022 14:29:24 GMT
Server: Apache
Link: <http://www.regionic.info/jmb/index.php?rest_route=/>; rel="https://api.w.org/", <http://www.regionic.info/jmb/index.php?rest_route=/wp/v2/tags/4895>; rel="alternate"; type="application/json"
Upgrade: h2
Connection: Upgrade
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
www.regionic.info/jmb/wp-content/themes/twentyten/style.css
83.166.138.58200 OK 5.9 kB URL HTTP/1.1 www.regionic.info/jmb/wp-content/themes/twentyten/style.css
IP 83.166.138.58:0
ASN #29222 Infomaniak Network SA
File type ASCII text, with very long lines (535)
Hash 46b42de88554440913c99c306577b122
2c29e19ea1e71895b1b41138a59173dab15dfea5
2fe9193a48d8bb81f482b0cb299456e793d709bc5e86aee1426705d5e03f3743
GET /jmb/wp-content/themes/twentyten/style.css HTTP/1.1
Host: www.regionic.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/jmb/?tag=storm-damage-in-orange-beach-al
HTTP/1.1 200 OK
Date: Fri, 11 Nov 2022 14:29:25 GMT
Server: Apache
Last-Modified: Fri, 04 Mar 2016 14:18:20 GMT
ETag: "5c67-52d39c977a300-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5945
Content-Type: text/css
platform.linkedin.com/in.js?ver=6.0.3
23.36.76.121200 OK 163 kB URL HTTP/2 platform.linkedin.com/in.js?ver=6.0.3
IP 23.36.76.121:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (41594)
Size 163 kB (163353 bytes)
Hash da4721479e3eebb502449a14c05ee952
69891f90cc545992346f3eab81e9aa2ba5834261
8c582baf4cef5b98699f420de88571cc698c5df8b303782be05ee1ddebb014b8
GET /in.js?ver=6.0.3 HTTP/1.1
Host: platform.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.regionic.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Play
expires: Fri, 11 Nov 2022 14:55:46 GMT
cache-control: public, max-age=3600
content-encoding: gzip
content-type: text/javascript; charset=UTF-8
content-length: 163353
x-li-fabric: prod-lva1
x-li-pop: prod-lva1-x
x-li-proto: http/1.1
x-li-uuid: AAXtMj8XNWNC/XdVekHqhw==
date: Fri, 11 Nov 2022 14:29:25 GMT
vary: Accept-Encoding
x-cdn-client-ip-version: IPV4
x-cdn: AKAM
X-Firefox-Spdy: h2
www.regionic.info/jmb/wp-content/plugins/add-link-to-facebook/add-link-to-facebook.css?ver=6.0.3
83.166.138.58200 OK 220 B URL HTTP/1.1 www.regionic.info/jmb/wp-content/plugins/add-link-to-facebook/add-link-to-facebook.css?ver=6.0.3
IP 83.166.138.58:0
ASN #29222 Infomaniak Network SA
Hash 5960fb646f4ac405f4ec6c2c9ad2a027
0356668a2cf0a15628a6d1d0bea992a4264fc275
6e680f53135a6d4b2b75ffe9c7f687b33c4fe34abc1395e5d0e5acde4aaa595b
GET /jmb/wp-content/plugins/add-link-to-facebook/add-link-to-facebook.css?ver=6.0.3 HTTP/1.1
Host: www.regionic.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/jmb/?tag=storm-damage-in-orange-beach-al
HTTP/1.1 200 OK
Date: Fri, 11 Nov 2022 14:29:25 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade
Last-Modified: Fri, 04 Mar 2016 14:12:02 GMT
ETag: "10f-52d39b2efd080-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 220
Content-Type: text/css
www.regionic.info/jmb/wp-content/plugins/cardoza-facebook-like-box/cardozafacebook.css?ver=6.0.3
83.166.138.58200 OK 332 B URL HTTP/1.1 www.regionic.info/jmb/wp-content/plugins/cardoza-facebook-like-box/cardozafacebook.css?ver=6.0.3
IP 83.166.138.58:0
ASN #29222 Infomaniak Network SA
File type CSV text\012- , ASCII text, with CRLF line terminators
Hash bcb6bcdc3b9f75d9834b745fafbcd2ef
d559a6d33ef73c30d7a546a69e5e6c7843dec4e4
ffee38b18271e25849cfd2ce95e3206b34e15d01aa3c21acf6dd29da55ce60f4
GET /jmb/wp-content/plugins/cardoza-facebook-like-box/cardozafacebook.css?ver=6.0.3 HTTP/1.1
Host: www.regionic.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/jmb/?tag=storm-damage-in-orange-beach-al
HTTP/1.1 200 OK
Date: Fri, 11 Nov 2022 14:29:25 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade
Last-Modified: Tue, 21 Jun 2022 06:45:11 GMT
ETag: "437-5e1ef8fedeb50-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 332
Content-Type: text/css
www.regionic.info/jmb/wp-content/plugins/srizon-facebook-album/resources/css/elastislide.min.css?ver=6.0.3
83.166.138.58200 OK 635 B URL HTTP/1.1 www.regionic.info/jmb/wp-content/plugins/srizon-facebook-album/resources/css/elastislide.min.css?ver=6.0.3
IP 83.166.138.58:0
ASN #29222 Infomaniak Network SA
File type ASCII text, with very long lines (1962), with no line terminators
Hash db3c7868bfc439e8374d97ead0d4bdee
9e58e07495cc2d09a4bbcbaeb79f02767b6557c1
c50c163a065576f4e979be7146044b2af003b994aa9be1f967bb2fb06b5cf953
Analyzer Verdict Alert fortinet Phishing
GET /jmb/wp-content/plugins/srizon-facebook-album/resources/css/elastislide.min.css?ver=6.0.3 HTTP/1.1
Host: www.regionic.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/jmb/?tag=storm-damage-in-orange-beach-al
HTTP/1.1 200 OK
Date: Fri, 11 Nov 2022 14:29:25 GMT
Server: Apache
Last-Modified: Fri, 04 Mar 2016 14:16:24 GMT
ETag: "7aa-52d39c28d9e00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 635
Content-Type: text/css
www.regionic.info/jmb/wp-content/plugins/fb-social-reader/css/style.css?ver=6.0.3
83.166.138.58200 OK 1.5 kB URL HTTP/1.1 www.regionic.info/jmb/wp-content/plugins/fb-social-reader/css/style.css?ver=6.0.3
IP 83.166.138.58:0
ASN #29222 Infomaniak Network SA
Hash 846d7d2e9ab8ef1cc3045650d90be00c
4fc113ffe22a5cffb328c1ecb77e409c472c4c96
20c45d712b497f79bf178c2d6ee4a5955e6902c6bb7101969289a49bca98b949
GET /jmb/wp-content/plugins/fb-social-reader/css/style.css?ver=6.0.3 HTTP/1.1
Host: www.regionic.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/jmb/?tag=storm-damage-in-orange-beach-al
HTTP/1.1 200 OK
Date: Fri, 11 Nov 2022 14:29:25 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade
Last-Modified: Fri, 04 Mar 2016 14:13:07 GMT
ETag: "1918-52d39b6cfa2c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1521
Content-Type: text/css
www.regionic.info/jmb/wp-content/plugins/srizon-facebook-album/resources/css/srizon.custom.min.css?ver=2.3
83.166.138.58200 OK 2.1 kB URL HTTP/1.1 www.regionic.info/jmb/wp-content/plugins/srizon-facebook-album/resources/css/srizon.custom.min.css?ver=2.3
IP 83.166.138.58:0
ASN #29222 Infomaniak Network SA
File type ASCII text, with very long lines (8058), with no line terminators
Hash bfc3097d6a19406d6f000a8514db8c67
e92f355cf2aa7164c37640acab4d0ac189aef9ec
f453398a652ea2eeae098967a38ce361a0f0daf260fc33b208ecd97aea47ef90
GET /jmb/wp-content/plugins/srizon-facebook-album/resources/css/srizon.custom.min.css?ver=2.3 HTTP/1.1
Host: www.regionic.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/jmb/?tag=storm-damage-in-orange-beach-al
HTTP/1.1 200 OK
Date: Fri, 11 Nov 2022 14:29:25 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade
Last-Modified: Fri, 04 Mar 2016 14:16:24 GMT
ETag: "1f7a-52d39c28d9e00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2054
Content-Type: text/css
static.bufferapp.com/js/button.js
104.16.139.31301 Moved Permanently 0 B URL HTTP/1.1 static.bufferapp.com/js/button.js
IP 104.16.139.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/button.js HTTP/1.1
Host: static.bufferapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/
HTTP/1.1 301 Moved Permanently
Date: Fri, 11 Nov 2022 14:29:25 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Fri, 11 Nov 2022 15:29:25 GMT
Location: https://static.buffer.com/js/button.js
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7687b8514a70b4f7-OSL
www.reddit.com/static/button/button1.js?newwindow=1&url=http://www.regionic.info/jmb/?p=42435
151.101.85.140301 Moved Permanently 0 B URL HTTP/1.1 www.reddit.com/static/button/button1.js?newwindow=1&url=http://www.regionic.info/jmb/?p=42435
IP 151.101.85.140:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/button/button1.js?newwindow=1&url=http://www.regionic.info/jmb/?p=42435 HTTP/1.1
Host: www.reddit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 0
Retry-After: 0
Location: https://www.reddit.com/static/button/button1.js?newwindow=1&url=http://www.regionic.info/jmb/?p=42435
Accept-Ranges: bytes
Date: Fri, 11 Nov 2022 14:29:25 GMT
Via: 1.1 varnish
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Cache-Control: private, max-age=3600
Server: snooserv
Report-To: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}
NEL: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.2, "failure_fraction": 0.2}
www.reddit.com/static/button/button1.js?newwindow=1&url=http://www.regionic.info/jmb/?p=25290
151.101.85.140301 Moved Permanently 0 B URL HTTP/1.1 www.reddit.com/static/button/button1.js?newwindow=1&url=http://www.regionic.info/jmb/?p=25290
IP 151.101.85.140:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/button/button1.js?newwindow=1&url=http://www.regionic.info/jmb/?p=25290 HTTP/1.1
Host: www.reddit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 0
Retry-After: 0
Location: https://www.reddit.com/static/button/button1.js?newwindow=1&url=http://www.regionic.info/jmb/?p=25290
Accept-Ranges: bytes
Date: Fri, 11 Nov 2022 14:29:25 GMT
Via: 1.1 varnish
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Cache-Control: private, max-age=3600
Server: snooserv
Report-To: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}
NEL: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.2, "failure_fraction": 0.2}
www.reddit.com/static/button/button1.js?newwindow=1&url=http://www.regionic.info/jmb/?p=54247
151.101.85.140301 Moved Permanently 0 B URL HTTP/1.1 www.reddit.com/static/button/button1.js?newwindow=1&url=http://www.regionic.info/jmb/?p=54247
IP 151.101.85.140:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/button/button1.js?newwindow=1&url=http://www.regionic.info/jmb/?p=54247 HTTP/1.1
Host: www.reddit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 0
Retry-After: 0
Location: https://www.reddit.com/static/button/button1.js?newwindow=1&url=http://www.regionic.info/jmb/?p=54247
Accept-Ranges: bytes
Date: Fri, 11 Nov 2022 14:29:25 GMT
Via: 1.1 varnish
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
Cache-Control: private, max-age=3600
Server: snooserv
Report-To: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}
NEL: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.2, "failure_fraction": 0.2}
www.regionic.info/jmb/wp-content/plugins/recent-facebook-posts/assets/css/default.min.css?ver=2.0.8
83.166.138.58200 OK 762 B URL HTTP/1.1 www.regionic.info/jmb/wp-content/plugins/recent-facebook-posts/assets/css/default.min.css?ver=2.0.8
IP 83.166.138.58:0
ASN #29222 Infomaniak Network SA
File type ASCII text, with very long lines (2339), with no line terminators
Hash d4b976de1da7f7be59ad8d562245ee96
3a955fa2af18fd9d3bcdec9928021691179e43cf
6237be557b7c7539e51a3780f13bfe59761844242aab8af74f2f281509006c14
GET /jmb/wp-content/plugins/recent-facebook-posts/assets/css/default.min.css?ver=2.0.8 HTTP/1.1
Host: www.regionic.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/jmb/?tag=storm-damage-in-orange-beach-al
HTTP/1.1 200 OK
Date: Fri, 11 Nov 2022 14:29:25 GMT
Server: Apache
Last-Modified: Fri, 04 Mar 2016 14:16:21 GMT
ETag: "923-52d39c25fd740-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 762
Content-Type: text/css
www.regionic.info/jmb/wp-content/plugins/really-simple-facebook-twitter-share-buttons/style.css?ver=6.0.3
83.166.138.58200 OK 777 B URL HTTP/1.1 www.regionic.info/jmb/wp-content/plugins/really-simple-facebook-twitter-share-buttons/style.css?ver=6.0.3
IP 83.166.138.58:0
ASN #29222 Infomaniak Network SA
File type ASCII text, with CRLF line terminators
Hash 1ce521270815d9f13c11654b2c940766
b87c4a83005a7e36335cea34c80a29d2bcb5eeae
735a289163641abaa57b850a4b4c2c1734766701aaba58d73fb4107ffe2febb7
GET /jmb/wp-content/plugins/really-simple-facebook-twitter-share-buttons/style.css?ver=6.0.3 HTTP/1.1
Host: www.regionic.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/jmb/?tag=storm-damage-in-orange-beach-al
HTTP/1.1 200 OK
Date: Fri, 11 Nov 2022 14:29:25 GMT
Server: Apache
Last-Modified: Fri, 04 Mar 2016 14:16:19 GMT
ETag: "8c2-52d39c24152c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 777
Content-Type: text/css
www.regionic.info/jmb/wp-content/plugins/cardoza-facebook-like-box/cardozafacebook.js?ver=6.0.3
83.166.138.58200 OK 381 B URL HTTP/1.1 www.regionic.info/jmb/wp-content/plugins/cardoza-facebook-like-box/cardozafacebook.js?ver=6.0.3
IP 83.166.138.58:0
ASN #29222 Infomaniak Network SA
File type ASCII text, with CRLF line terminators
Hash c26c1149a61b90738434f96a6eb566be
60b7efad2c1852b4e66737965e2edd6afc8af2e9
5e3dba55cd599aefa42c63e6726f3c2e95cf14b077c7f1a8195f9788d77207d8
Analyzer Verdict Alert fortinet Phishing
GET /jmb/wp-content/plugins/cardoza-facebook-like-box/cardozafacebook.js?ver=6.0.3 HTTP/1.1
Host: www.regionic.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/jmb/?tag=storm-damage-in-orange-beach-al
HTTP/1.1 200 OK
Date: Fri, 11 Nov 2022 14:29:25 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade
Last-Modified: Tue, 21 Jun 2022 06:45:11 GMT
ETag: "b1f-5e1ef8fedeb50-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 381
Content-Type: application/javascript
www.regionic.info/jmb/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
83.166.138.58200 OK 4.2 kB URL HTTP/1.1 www.regionic.info/jmb/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 83.166.138.58:0
ASN #29222 Infomaniak Network SA
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
GET /jmb/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.regionic.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/jmb/?tag=storm-damage-in-orange-beach-al
HTTP/1.1 200 OK
Date: Fri, 11 Nov 2022 14:29:25 GMT
Server: Apache
Last-Modified: Tue, 21 Jun 2022 06:43:55 GMT
ETag: "2bd8-5e1ef8b65c353-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4169
Content-Type: application/javascript
www.regionic.info/jmb/wp-content/plugins/srizon-facebook-album/resources/js/modernizr.js?ver=6.0.3
83.166.138.58200 OK 4.0 kB URL HTTP/1.1 www.regionic.info/jmb/wp-content/plugins/srizon-facebook-album/resources/js/modernizr.js?ver=6.0.3
IP 83.166.138.58:0
ASN #29222 Infomaniak Network SA
File type HTML document text\012- HTML document, ASCII text, with very long lines (8960)
Hash ddb5e0e67e101b25f75010659ad3f6d6
eef831f9d2e37b5af10d758380844a822e929632
2ff3d1c2cbbe1c09812aa640450044a57965f6525588a11bdf3d1032e251da8b
Analyzer Verdict Alert fortinet Phishing
GET /jmb/wp-content/plugins/srizon-facebook-album/resources/js/modernizr.js?ver=6.0.3 HTTP/1.1
Host: www.regionic.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/jmb/?tag=storm-damage-in-orange-beach-al
HTTP/1.1 200 OK
Date: Fri, 11 Nov 2022 14:29:25 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade
Last-Modified: Fri, 04 Mar 2016 14:16:25 GMT
ETag: "23d3-52d39c29ce040-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4042
Content-Type: application/javascript
www.regionic.info/jmb/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
83.166.138.58200 OK 31 kB URL HTTP/1.1 www.regionic.info/jmb/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 83.166.138.58:0
ASN #29222 Infomaniak Network SA
File type ASCII text, with very long lines (65447)
Hash 9640915738503451aa21181699feab5b
c053eaf36ef0da96619706b3abda326305063bd6
f8834e669ad1f4039442c26aaa373ec39c35a233b9786d374fc3f670f16b0adc
Analyzer Verdict Alert fortinet Phishing
GET /jmb/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.regionic.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/jmb/?tag=storm-damage-in-orange-beach-al
HTTP/1.1 200 OK
Date: Fri, 11 Nov 2022 14:29:25 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade
Last-Modified: Tue, 21 Jun 2022 06:43:55 GMT
ETag: "15db1-5e1ef8b65f233-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 30908
Content-Type: application/javascript
www.regionic.info/jmb/wp-content/plugins/srizon-facebook-album/resources/js/jquery.collagePlus.min.js?ver=6.0.3
83.166.138.58200 OK 2.2 kB URL HTTP/1.1 www.regionic.info/jmb/wp-content/plugins/srizon-facebook-album/resources/js/jquery.collagePlus.min.js?ver=6.0.3
IP 83.166.138.58:0
ASN #29222 Infomaniak Network SA
File type ASCII text, with very long lines (6470), with no line terminators
Hash fa84b21a34f2d58c03aef662ae5abd67
7959d25dde0b746fb99b88728aa9f9b6e24de072
2daef4f3fae6b8a14be7374b5358e2a70ca7b82486627b73f94edfab41f054be
GET /jmb/wp-content/plugins/srizon-facebook-album/resources/js/jquery.collagePlus.min.js?ver=6.0.3 HTTP/1.1
Host: www.regionic.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/jmb/?tag=storm-damage-in-orange-beach-al
HTTP/1.1 200 OK
Date: Fri, 11 Nov 2022 14:29:25 GMT
Server: Apache
Last-Modified: Wed, 21 Nov 2018 20:29:03 GMT
ETag: "1946-57b3299de8183-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2159
Content-Type: application/javascript
www.regionic.info/jmb/wp-content/plugins/srizon-facebook-album/resources/js/mag-popup.js?ver=6.0.3
83.166.138.58200 OK 7.7 kB URL HTTP/1.1 www.regionic.info/jmb/wp-content/plugins/srizon-facebook-album/resources/js/mag-popup.js?ver=6.0.3
IP 83.166.138.58:0
ASN #29222 Infomaniak Network SA
File type ASCII text, with very long lines (20844)
Hash dbfe5bc7c17594ecb1c525e501da9564
f65f4f1d4f7043b85898ee231dfb9aba3e4220a1
86688bb51a8303ea530de4fafb4c91d3885e0447f7c10b45b3f1eb44091d558a
Analyzer Verdict Alert fortinet Phishing
GET /jmb/wp-content/plugins/srizon-facebook-album/resources/js/mag-popup.js?ver=6.0.3 HTTP/1.1
Host: www.regionic.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/jmb/?tag=storm-damage-in-orange-beach-al
HTTP/1.1 200 OK
Date: Fri, 11 Nov 2022 14:29:25 GMT
Server: Apache
Last-Modified: Fri, 04 Mar 2016 14:16:25 GMT
ETag: "5270-52d39c29ce040-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7677
Content-Type: application/javascript
www.regionic.info/jmb/wp-content/plugins/fb-social-reader/js/sr.min.js?ver=1.6.0.6
83.166.138.58200 OK 16 kB URL HTTP/1.1 www.regionic.info/jmb/wp-content/plugins/fb-social-reader/js/sr.min.js?ver=1.6.0.6
IP 83.166.138.58:0
ASN #29222 Infomaniak Network SA
File type Unicode text, UTF-8 text, with very long lines (56742)
Hash 44ee5d1989ce366ebf46a1977c0b4524
89b21bc7b7fcf4d0ab95df2d0d2aea997ca3fa5e
89eb529dbfefcb00a30a74bf8d13f414f37a27bcfcbe8537b62c1d6ca0f55d7c
Analyzer Verdict Alert fortinet Phishing
GET /jmb/wp-content/plugins/fb-social-reader/js/sr.min.js?ver=1.6.0.6 HTTP/1.1
Host: www.regionic.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/jmb/?tag=storm-damage-in-orange-beach-al
HTTP/1.1 200 OK
Date: Fri, 11 Nov 2022 14:29:25 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade
Last-Modified: Fri, 04 Mar 2016 14:13:08 GMT
ETag: "dec1-52d39b6dee500-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 16453
Content-Type: application/javascript
www.regionic.info/jmb/wp-content/plugins/fb-social-reader/js/lib/require.js?ver=1.6.0.6
83.166.138.58200 OK 20 kB URL HTTP/1.1 www.regionic.info/jmb/wp-content/plugins/fb-social-reader/js/lib/require.js?ver=1.6.0.6
IP 83.166.138.58:0
ASN #29222 Infomaniak Network SA
Hash a90955a13115bcf2a0a18e5e5051b670
294f5e6ae3a8a187c890d8388356ce631c72f2e0
c66d608e487e67cfc925c3399a0db7438e59d7c48676f44e1266ee20455ec1d8
Analyzer Verdict Alert fortinet Phishing
GET /jmb/wp-content/plugins/fb-social-reader/js/lib/require.js?ver=1.6.0.6 HTTP/1.1
Host: www.regionic.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/jmb/?tag=storm-damage-in-orange-beach-al
HTTP/1.1 200 OK
Date: Fri, 11 Nov 2022 14:29:25 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade
Last-Modified: Fri, 04 Mar 2016 14:13:08 GMT
ETag: "13706-52d39b6dee500-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 19494
Content-Type: application/javascript
platform.tumblr.com/v1/share.js?ver=6.0.3
74.114.154.15302 Moved Temporarily 142 B URL HTTP/1.1 platform.tumblr.com/v1/share.js?ver=6.0.3
IP 74.114.154.15:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /v1/share.js?ver=6.0.3 HTTP/1.1
Host: platform.tumblr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/
HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Fri, 11 Nov 2022 14:29:25 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
Location: https://platform.tumblr.com/v1/share.js?ver=6.0.3
www.regionic.info/jmb/wp-content/plugins/srizon-facebook-album/resources/js/jquery.elastislide.min.js?ver=6.0.3
83.166.138.58200 OK 4.1 kB URL HTTP/1.1 www.regionic.info/jmb/wp-content/plugins/srizon-facebook-album/resources/js/jquery.elastislide.min.js?ver=6.0.3
IP 83.166.138.58:0
ASN #29222 Infomaniak Network SA
File type ASCII text, with very long lines (13599), with no line terminators
Hash c37425cd901572f8f757e6a36627f2c6
e5810a1f9fb0be1ef033a26296ca3bdb38bdecbc
2e6289be6d9fc69faaf37cc4614af6f6ee9b8bff60259d419e08dc2fa19bcf8f
GET /jmb/wp-content/plugins/srizon-facebook-album/resources/js/jquery.elastislide.min.js?ver=6.0.3 HTTP/1.1
Host: www.regionic.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/jmb/?tag=storm-damage-in-orange-beach-al
HTTP/1.1 200 OK
Date: Fri, 11 Nov 2022 14:29:25 GMT
Server: Apache
Last-Modified: Wed, 21 Nov 2018 20:29:03 GMT
ETag: "351f-57b3299de8183-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4142
Content-Type: application/javascript
api.flattr.com/js/0.6/load.js?mode=auto&ver=6.0.3
104.26.11.251301 Moved Permanently 178 B URL HTTP/2 api.flattr.com/js/0.6/load.js?mode=auto&ver=6.0.3
IP 104.26.11.251:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET /js/0.6/load.js?mode=auto&ver=6.0.3 HTTP/1.1
Host: api.flattr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.regionic.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Fri, 11 Nov 2022 14:29:25 GMT
content-type: text/html
content-length: 178
location: https://button.flattr.com/loader.js?mode=auto&ver=6.0.3
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lA0W9DWDSmfwyuAPiEDAlTNaCad1ezMOXQxStGhtCPpyooLhvNgPWUmt3Tsty54OFyLe0CN3dHiS2TowU8jpI5XO45ykybnM1wfaEJJj%2BP7zoPOt8shQse4xzp2rfM2P"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7687b850fa1fb4f7-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.regionic.info/jmb/wp-content/plugins/srizon-facebook-album/resources/js/srizon.custom.min.js?ver=2.3.2
83.166.138.58200 OK 3.4 kB URL HTTP/1.1 www.regionic.info/jmb/wp-content/plugins/srizon-facebook-album/resources/js/srizon.custom.min.js?ver=2.3.2
IP 83.166.138.58:0
ASN #29222 Infomaniak Network SA
File type HTML document, ASCII text, with very long lines (11853), with no line terminators
Hash 15522215729c753f7b3723e5abf2028b
ef370e5c588147a02076ea9ff496ff510e36e39f
e9a438f36dc15af555a2bf372a222715f96a8959d62888b386858e53c5c336d3
Analyzer Verdict Alert fortinet Phishing
GET /jmb/wp-content/plugins/srizon-facebook-album/resources/js/srizon.custom.min.js?ver=2.3.2 HTTP/1.1
Host: www.regionic.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/jmb/?tag=storm-damage-in-orange-beach-al
HTTP/1.1 200 OK
Date: Fri, 11 Nov 2022 14:29:25 GMT
Server: Apache
Last-Modified: Fri, 04 Mar 2016 14:16:25 GMT
ETag: "2e4d-52d39c29ce040-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3448
Content-Type: application/javascript
www.regionic.info/jmb/wp-content/plugins/srizon-facebook-album/resources/css/mag-popup.min.css?ver=6.0.3
83.166.138.58200 OK 1.7 kB URL HTTP/1.1 www.regionic.info/jmb/wp-content/plugins/srizon-facebook-album/resources/css/mag-popup.min.css?ver=6.0.3
IP 83.166.138.58:0
ASN #29222 Infomaniak Network SA
File type ASCII text, with very long lines (6065), with no line terminators
Hash af7191bfbee1f7906b91594e564b3b54
d16ecd7e4548743a605d649e90219b4ef69dae01
94e39de77d84991a731ebf77fa6c75641127ce142213b07317536768511b2cbb
Analyzer Verdict Alert fortinet Phishing
GET /jmb/wp-content/plugins/srizon-facebook-album/resources/css/mag-popup.min.css?ver=6.0.3 HTTP/1.1
Host: www.regionic.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/jmb/?tag=storm-damage-in-orange-beach-al
HTTP/1.1 200 OK
Date: Fri, 11 Nov 2022 14:29:25 GMT
Server: Apache
Last-Modified: Fri, 04 Mar 2016 14:16:24 GMT
ETag: "17b1-52d39c28d9e00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1705
Content-Type: text/css
www.tipy.com/button_compact.gif
3.74.170.143301 Moved Permanently 185 B URL HTTP/1.1 www.tipy.com/button_compact.gif
IP 3.74.170.143:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4c555068310076e85908835c721911f5
9ec990aabb4391e139034f68e5e657e0f1d0b74d
568b4de0ad30e85670e724dc30ccb675924353b77807356c5ad7f29c8c38f510
GET /button_compact.gif HTTP/1.1
Host: www.tipy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/
HTTP/1.1 301 Moved Permanently
Server: nginx/1.14.2
Date: Fri, 11 Nov 2022 14:29:25 GMT
Content-Type: text/html
Content-Length: 185
Connection: keep-alive
Location: https://www.tipy.com/button_compact.gif
www.regionic.info/jmb/wp-content/plugins/really-simple-facebook-twitter-share-buttons/images/specificfeeds_follow.png
83.166.138.58200 OK 714 B URL HTTP/1.1 www.regionic.info/jmb/wp-content/plugins/really-simple-facebook-twitter-share-buttons/images/specificfeeds_follow.png
IP 83.166.138.58:0
ASN #29222 Infomaniak Network SA
File type PNG image data, 26 x 13, 8-bit/color RGBA, non-interlaced\012- data
Hash 346c3031219692aa036b3f70a049357e
1be1d28a7fd3c97ec06bd5acc0c1965975904dff
8eed0123cea1bc7373855ce7371d01f5c4bfbf58d0f70d9c9f2b945940f48c61
GET /jmb/wp-content/plugins/really-simple-facebook-twitter-share-buttons/images/specificfeeds_follow.png HTTP/1.1
Host: www.regionic.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/jmb/?tag=storm-damage-in-orange-beach-al
HTTP/1.1 200 OK
Date: Fri, 11 Nov 2022 14:29:25 GMT
Server: Apache
Last-Modified: Fri, 04 Mar 2016 14:16:19 GMT
ETag: "2ca-52d39c24152c0"
Accept-Ranges: bytes
Content-Length: 714
Content-Type: image/png
www.regionic.info/jmb/wp-content/plugins/really-simple-facebook-twitter-share-buttons/images/rss.png
83.166.138.58200 OK 1.0 kB URL HTTP/1.1 www.regionic.info/jmb/wp-content/plugins/really-simple-facebook-twitter-share-buttons/images/rss.png
IP 83.166.138.58:0
ASN #29222 Infomaniak Network SA
File type PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash 05e27acef3866d11912ffd5f5a8082e6
21fdfecf0185d7006dda0ca426926b3ed4d2b2b4
91eebabc35aac7ff6bc31bd78f5bba8ae01a1621dbee807f2fe26aec8076db45
GET /jmb/wp-content/plugins/really-simple-facebook-twitter-share-buttons/images/rss.png HTTP/1.1
Host: www.regionic.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/jmb/?tag=storm-damage-in-orange-beach-al
HTTP/1.1 200 OK
Date: Fri, 11 Nov 2022 14:29:25 GMT
Server: Apache
Last-Modified: Fri, 04 Mar 2016 14:16:19 GMT
ETag: "407-52d39c24152c0"
Accept-Ranges: bytes
Content-Length: 1031
Content-Type: image/png
www.regionic.info/jmb/wp-content/plugins/really-simple-facebook-twitter-share-buttons/images/email.png
83.166.138.58200 OK 2.0 kB URL HTTP/1.1 www.regionic.info/jmb/wp-content/plugins/really-simple-facebook-twitter-share-buttons/images/email.png
IP 83.166.138.58:0
ASN #29222 Infomaniak Network SA
File type PNG image data, 30 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash 49e12c71bf7fc34e81b089e93cb24e97
6dbacc6dbc4e218bfecd3667027ac60f0f5f2ad8
6716dbbcf4c38a706abf0b7ad4398ca2f1d471c647ea8ef588fe680a1494501a
GET /jmb/wp-content/plugins/really-simple-facebook-twitter-share-buttons/images/email.png HTTP/1.1
Host: www.regionic.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/jmb/?tag=storm-damage-in-orange-beach-al
HTTP/1.1 200 OK
Date: Fri, 11 Nov 2022 14:29:25 GMT
Server: Apache
Last-Modified: Fri, 04 Mar 2016 14:16:19 GMT
ETag: "7be-52d39c24152c0"
Accept-Ranges: bytes
Content-Length: 1982
Content-Type: image/png
www.reddit.com/static/button/button1.js?newwindow=1&url=http://www.regionic.info/jmb/?p=54247
151.101.85.140200 OK 1.1 kB URL HTTP/2 www.reddit.com/static/button/button1.js?newwindow=1&url=http://www.regionic.info/jmb/?p=54247
IP 151.101.85.140:0
Hash 610788fd4961c058cee1869f473c374c
43c8308946d4f121b91aae5fb1a688392a234d01
fdc2e23dcb6a6ce8f2ada0e9933e7edbda5f15d450165c71482eb752c7c5ae24
GET /static/button/button1.js?newwindow=1&url=http://www.regionic.info/jmb/?p=54247 HTTP/1.1
Host: www.reddit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.regionic.info/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 22 Sep 2014 16:25:05 GMT
etag: "610788fd4961c058cee1869f473c374c"
content-type: application/javascript
accept-ranges: bytes
date: Fri, 11 Nov 2022 14:29:25 GMT
via: 1.1 varnish
strict-transport-security: max-age=31536000; includeSubdomains
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cache-control: private, max-age=3600
server: snooserv
report-to: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}
nel: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.2, "failure_fraction": 0.2}
content-length: 1074
X-Firefox-Spdy: h2
www.reddit.com/static/button/button1.js?newwindow=1&url=http://www.regionic.info/jmb/?p=42435
151.101.85.140200 OK 1.1 kB URL HTTP/2 www.reddit.com/static/button/button1.js?newwindow=1&url=http://www.regionic.info/jmb/?p=42435
IP 151.101.85.140:0
Hash 610788fd4961c058cee1869f473c374c
43c8308946d4f121b91aae5fb1a688392a234d01
fdc2e23dcb6a6ce8f2ada0e9933e7edbda5f15d450165c71482eb752c7c5ae24
GET /static/button/button1.js?newwindow=1&url=http://www.regionic.info/jmb/?p=42435 HTTP/1.1
Host: www.reddit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.regionic.info/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 22 Sep 2014 16:25:05 GMT
etag: "610788fd4961c058cee1869f473c374c"
content-type: application/javascript
accept-ranges: bytes
date: Fri, 11 Nov 2022 14:29:25 GMT
via: 1.1 varnish
strict-transport-security: max-age=31536000; includeSubdomains
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cache-control: private, max-age=3600
server: snooserv
report-to: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}
nel: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.2, "failure_fraction": 0.2}
content-length: 1074
X-Firefox-Spdy: h2
www.reddit.com/static/button/button1.js?newwindow=1&url=http://www.regionic.info/jmb/?p=25290
151.101.85.140200 OK 1.1 kB URL HTTP/2 www.reddit.com/static/button/button1.js?newwindow=1&url=http://www.regionic.info/jmb/?p=25290
IP 151.101.85.140:0
Hash 610788fd4961c058cee1869f473c374c
43c8308946d4f121b91aae5fb1a688392a234d01
fdc2e23dcb6a6ce8f2ada0e9933e7edbda5f15d450165c71482eb752c7c5ae24
GET /static/button/button1.js?newwindow=1&url=http://www.regionic.info/jmb/?p=25290 HTTP/1.1
Host: www.reddit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.regionic.info/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 22 Sep 2014 16:25:05 GMT
etag: "610788fd4961c058cee1869f473c374c"
content-type: application/javascript
accept-ranges: bytes
date: Fri, 11 Nov 2022 14:29:25 GMT
via: 1.1 varnish
strict-transport-security: max-age=31536000; includeSubdomains
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cache-control: private, max-age=3600
server: snooserv
report-to: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}
nel: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.2, "failure_fraction": 0.2}
content-length: 1074
X-Firefox-Spdy: h2
www.regionic.info/jmb/wp-content/uploads/2013/05/cropped-Carte_regions_Kamerun_Allemand_Batscham_mark_jmb2012N.jpg
83.166.138.58200 OK 106 kB URL HTTP/1.1 www.regionic.info/jmb/wp-content/uploads/2013/05/cropped-Carte_regions_Kamerun_Allemand_Batscham_mark_jmb2012N.jpg
IP 83.166.138.58:0
ASN #29222 Infomaniak Network SA
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 940x198, components 3\012- data
Size 106 kB (106068 bytes)
Hash ec53ed4bf2c9c19af19954b5f0dd3aaa
0d99b1707f02398171141abf1fd4ef106547cd36
bb16a4f2a4fa5fd5c218dd791144a197269bdf8afbbadabed8c8c10ff0cc71ad
GET /jmb/wp-content/uploads/2013/05/cropped-Carte_regions_Kamerun_Allemand_Batscham_mark_jmb2012N.jpg HTTP/1.1
Host: www.regionic.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/jmb/?tag=storm-damage-in-orange-beach-al
HTTP/1.1 200 OK
Date: Fri, 11 Nov 2022 14:29:25 GMT
Server: Apache
Last-Modified: Thu, 23 May 2013 11:07:30 GMT
ETag: "19e54-4dd60b0398080"
Accept-Ranges: bytes
Content-Length: 106068
Content-Type: image/jpeg
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 734c46c683771d3eda1c89d5eb00cce2
2fc8d70eb27b854580f9702e30730787c60cb015
f8851ec9dc471c9a1bcfd2ad27e3decd6392866ef6127c2b7648a985de75a3a4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F8851EC9DC471C9A1BCFD2AD27E3DECD6392866EF6127C2B7648A985DE75A3A4"
Last-Modified: Wed, 09 Nov 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Fri, 11 Nov 2022 20:29:25 GMT
Date: Fri, 11 Nov 2022 14:29:25 GMT
Connection: keep-alive
www.tipy.com/button_compact.gif
3.74.170.143404 Not Found 232 B URL HTTP/1.1 www.tipy.com/button_compact.gif
IP 3.74.170.143:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 328f87671c7c5a894d4f38b85b3d326b
8fea1b85bc8727669266925e412d94b74a07da38
d3dad34c1bffe93e3ec8a432f171db4a1da94b103966c11f277da95157a08ec5
GET /button_compact.gif HTTP/1.1
Host: www.tipy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.regionic.info/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: nginx/1.14.2
Date: Fri, 11 Nov 2022 14:29:25 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Encoding: gzip
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 4620c4f56b7559f1327d6349b6efc0d4
83adfabcf83a2506fd301defd82b160ff0ef00f3
daf76338ebf69cc82601f4eb3b6a126ed0159d10dcc407a87a2c4b594a0f3979
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 11 Nov 2022 14:29:25 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 10 Nov 2022 20:43:22 GMT
Expires: Thu, 17 Nov 2022 20:43:21 GMT
Etag: "83adfabcf83a2506fd301defd82b160ff0ef00f3"
Cache-Control: max-age=540235,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7687b8540f62b4fd-OSL
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0930e4e644ff6a29a2731fb6195a7b3d
5db0f7670b202f0ff6b8288f7eb60069b8ac7df6
ccebe5c1ec6e8370079618affdd27c048c46d69b3381d7d32242bcd6d00d4118
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CCEBE5C1EC6E8370079618AFFDD27C048C46D69B3381D7D32242BCD6D00D4118"
Last-Modified: Wed, 09 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21546
Expires: Fri, 11 Nov 2022 20:28:31 GMT
Date: Fri, 11 Nov 2022 14:29:25 GMT
Connection: keep-alive
www.learningtoolkit.club/link.php?zzz=4
54.67.93.101301 Moved Permanently 0 B URL HTTP/1.1 www.learningtoolkit.club/link.php?zzz=4
IP 54.67.93.101:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /link.php?zzz=4 HTTP/1.1
Host: www.learningtoolkit.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.regionic.info
Connection: keep-alive
Referer: http://www.regionic.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Date: Fri, 11 Nov 2022 14:29:23 GMT
Connection: Keep-Alive
Content-Length: 0
X-Frame-Options: SAMEORIGIN
Cache-Control: private, no-cache, no-store, max-age=0
Expires: Mon, 01 Jan 1990 0:00:00 GMT
Location: https://www.businessmagazine.org
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fb29db48daab83bcaed56b72093619cc
e0e0a09d729ffb1c41411419768896f1e1eb3346
08e24124f809f1ab7e6960355efcb419e13dd5fb6063c31caf04e11ebdb7a5cf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08E24124F809F1AB7E6960355EFCB419E13DD5FB6063C31CAF04E11EBDB7A5CF"
Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8103
Expires: Fri, 11 Nov 2022 16:44:29 GMT
Date: Fri, 11 Nov 2022 14:29:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fb29db48daab83bcaed56b72093619cc
e0e0a09d729ffb1c41411419768896f1e1eb3346
08e24124f809f1ab7e6960355efcb419e13dd5fb6063c31caf04e11ebdb7a5cf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08E24124F809F1AB7E6960355EFCB419E13DD5FB6063C31CAF04E11EBDB7A5CF"
Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8103
Expires: Fri, 11 Nov 2022 16:44:29 GMT
Date: Fri, 11 Nov 2022 14:29:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fb29db48daab83bcaed56b72093619cc
e0e0a09d729ffb1c41411419768896f1e1eb3346
08e24124f809f1ab7e6960355efcb419e13dd5fb6063c31caf04e11ebdb7a5cf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08E24124F809F1AB7E6960355EFCB419E13DD5FB6063C31CAF04E11EBDB7A5CF"
Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8103
Expires: Fri, 11 Nov 2022 16:44:29 GMT
Date: Fri, 11 Nov 2022 14:29:26 GMT
Connection: keep-alive
www.regionic.info/jmb/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
83.166.138.58200 OK 6.3 kB URL HTTP/1.1 www.regionic.info/jmb/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
IP 83.166.138.58:0
ASN #29222 Infomaniak Network SA
Hash a40f89379a8872e62d0e27f281b315ff
0575632387a6597d9fbb185388e8a0da05a821ca
55aa4e339176903df0846bf673e444860f0cb78494dadb4c109f28f652c550d7
Analyzer Verdict Alert fortinet Phishing
GET /jmb/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 HTTP/1.1
Host: www.regionic.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/jmb/?tag=storm-damage-in-orange-beach-al
HTTP/1.1 200 OK
Date: Fri, 11 Nov 2022 14:29:26 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade
Last-Modified: Tue, 21 Jun 2022 06:43:55 GMT
ETag: "48b9-5e1ef8b690f13-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5009
Content-Type: application/javascript
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fb29db48daab83bcaed56b72093619cc
e0e0a09d729ffb1c41411419768896f1e1eb3346
08e24124f809f1ab7e6960355efcb419e13dd5fb6063c31caf04e11ebdb7a5cf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08E24124F809F1AB7E6960355EFCB419E13DD5FB6063C31CAF04E11EBDB7A5CF"
Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8103
Expires: Fri, 11 Nov 2022 16:44:29 GMT
Date: Fri, 11 Nov 2022 14:29:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fb29db48daab83bcaed56b72093619cc
e0e0a09d729ffb1c41411419768896f1e1eb3346
08e24124f809f1ab7e6960355efcb419e13dd5fb6063c31caf04e11ebdb7a5cf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08E24124F809F1AB7E6960355EFCB419E13DD5FB6063C31CAF04E11EBDB7A5CF"
Last-Modified: Fri, 11 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8103
Expires: Fri, 11 Nov 2022 16:44:29 GMT
Date: Fri, 11 Nov 2022 14:29:26 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbdff5978-349f-4530-9552-e5cce667c694.jpeg
34.120.237.76200 OK 4.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbdff5978-349f-4530-9552-e5cce667c694.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 34a19397629678ac8f56ef4591f84a18
39a1402a8e60e27d314f91babcfe3794f3d96a63
0822f6c832e8b91a8003774ff18295987fa2359dbd6f99695d8623f5aa7d0bd4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbdff5978-349f-4530-9552-e5cce667c694.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4567
x-amzn-requestid: 2f786526-2230-434a-8521-bcab8ecfc628
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bM5l9EO0IAMFZbA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63683c8c-193ccf163e83754648d3662d;Sampled=0
x-amzn-remapped-date: Sun, 06 Nov 2022 23:00:28 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: 6mrbe_VR7Jrzz_FhGHYtEuPWzZ7Hv-SdsxSVj0c5ePbo-JqlXaQmxg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 de2dd11312f7d5ad3bcd0cb112c7fd0e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 10 Nov 2022 21:46:04 GMT
age: 60202
etag: "39a1402a8e60e27d314f91babcfe3794f3d96a63"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e7dc40a-e47f-44b5-b3b4-87b10cd8669d.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e7dc40a-e47f-44b5-b3b4-87b10cd8669d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e72f32944d6f03e005f7b6f3e87d8c72
5fe340bf33ac219f6a3d44810f31d0a8796c83a9
bcdcba30210d276996d0fe749bbfc69d666ae11ddfbfdb57307e4bb4d6e43d1f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e7dc40a-e47f-44b5-b3b4-87b10cd8669d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10671
x-amzn-requestid: 1b6053eb-64ac-4c24-a750-c1b8cd69157f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bJEh8GxPoAMFhPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6366b472-56c6a3bc07ec89ab56d4f3bd;Sampled=0
x-amzn-remapped-date: Sat, 05 Nov 2022 19:07:30 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: qJeWGvC4DM_d3k66OHN2V19elou-xoSNkep1BNalBO0NtKyQtAFzNQ==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 04:30:53 GMT
age: 35913
etag: "5fe340bf33ac219f6a3d44810f31d0a8796c83a9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4094512-9a5a-47aa-9796-9f630fb1c13f.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4094512-9a5a-47aa-9796-9f630fb1c13f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 13f7b6eea163326da8c58ae5c09efccd
e0d1ebb35a16c686eae3d31eb85ac72278459b05
13f2f428acb7806808d957a8167ab2c139a5d0f59798671465717f2b39b914a9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4094512-9a5a-47aa-9796-9f630fb1c13f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8581
x-amzn-requestid: 385174fe-153f-448f-be5e-9ea3b5757ff9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bZ4u1EYOIAMFncA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636d6e5e-6084a34f58df22037275e676;Sampled=0
x-amzn-remapped-date: Thu, 10 Nov 2022 21:34:22 GMT
x-amz-cf-pop: YVR50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xSnHWpFlXeyf08gYjPn02H88Hta9fhiDjDOukoKtt6PPVBl_gNTfgw==
via: 1.1 dfc972676b24a6d23251d4f298dfa08c.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Thu, 10 Nov 2022 21:46:56 GMT
age: 60150
etag: "e0d1ebb35a16c686eae3d31eb85ac72278459b05"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad1abae5-6437-44bf-8428-756b825e5be6.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad1abae5-6437-44bf-8428-756b825e5be6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 88c9931a009690991e73c5b37a1aa085
815a4a1eb8c8e2a138fb3d65ba777b0c18fa15d0
74e70391889e4b46742033b1d5daccfec415ba2ee999e429d1013fd4a1ebc61a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad1abae5-6437-44bf-8428-756b825e5be6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8294
x-amzn-requestid: 233f9724-1c36-426d-8299-1f6577a6e5e4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bZ4lmE60IAMF1Lw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636d6e23-4b2763b42d8a57044dfa8144;Sampled=0
x-amzn-remapped-date: Thu, 10 Nov 2022 21:33:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QaMTrn0ZUptFLGY0x7bytPsJZHnLvdpMnU0XGCBU2pkmiA4MO8DIUw==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 ddaf46a95abcfc80e8eae76235e2127c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 10 Nov 2022 21:46:56 GMT
etag: "815a4a1eb8c8e2a138fb3d65ba777b0c18fa15d0"
content-type: image/jpeg
age: 60150
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6f7d2f5-4807-4bbd-a3db-7a239962aca5.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6f7d2f5-4807-4bbd-a3db-7a239962aca5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 85c6f450b38f41a2fb924d6d9a9cbff8
691f59b65ca9fde4f59bbf96b37071e07351f190
c8f877488a2cf65f0d9829384fd4113847722a1b4df94b6b1d5788699689722c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6f7d2f5-4807-4bbd-a3db-7a239962aca5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5583
x-amzn-requestid: e844f42a-e87e-4e61-8c97-137c07c5ae28
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bNeQ9Ho7IAMF5_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63687739-62c44d2f7d23632e74895bd8;Sampled=0
x-amzn-remapped-date: Mon, 07 Nov 2022 03:10:49 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: uHlIN1IVGCFUVl5lx5pFSux0YncseT2HQjiwFDL9eaEaBa9CdnCl8g==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 11 Nov 2022 07:47:38 GMT
age: 24108
etag: "691f59b65ca9fde4f59bbf96b37071e07351f190"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c9847f2-3b5e-4950-9792-a512af36da58.jpeg
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c9847f2-3b5e-4950-9792-a512af36da58.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f29164fb4dd64d9ce60566fbebd40f0a
96de8f2627e1103c5e6beb5d64cdbc09f97fce82
8eba6095edfed1ee1402c050727f81b8a9942625fd1c9cbb3bac4e51ee178577
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c9847f2-3b5e-4950-9792-a512af36da58.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6517
x-amzn-requestid: 78eb1490-4afb-497e-9dbd-afd6ddf9cc48
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bG23pFPLoAMFxcg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6365d1ca-4c9caca164576bfe07c9c05c;Sampled=0
x-amzn-remapped-date: Sat, 05 Nov 2022 03:00:26 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: zllrXRZmtjHqA98lS_q0Wtx5TeEh2cEy3tr_eGkozM_jWxTIA5d60g==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Thu, 10 Nov 2022 21:48:34 GMT
age: 60052
etag: "96de8f2627e1103c5e6beb5d64cdbc09f97fce82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.learningtoolkit.club/link.php?zzz=5
54.67.93.101301 Moved Permanently 1.2 kB URL HTTP/1.1 www.learningtoolkit.club/link.php?zzz=5
IP 54.67.93.101:0
Hash f7b14ebb0675a0a99027e8db6a11fa4d
83c31fc91d039e1e2b20b63035ba10db970f9277
bf41d6180e224c625d2e62360d70ee7aea862241494b40c29582830fe9b526ae
Analyzer Verdict Alert fortinet Malware
GET /link.php?zzz=5 HTTP/1.1
Host: www.learningtoolkit.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.regionic.info
Connection: keep-alive
Referer: http://www.regionic.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Date: Fri, 11 Nov 2022 14:29:23 GMT
Connection: Keep-Alive
Content-Length: 0
X-Frame-Options: SAMEORIGIN
Cache-Control: private, no-cache, no-store, max-age=0
Expires: Mon, 01 Jan 1990 0:00:00 GMT
Location: https://www.businessmagazine.org
www.learningtoolkit.club/link.php?zzz=5
54.67.93.101301 Moved Permanently 0 B URL HTTP/1.1 www.learningtoolkit.club/link.php?zzz=5
IP 54.67.93.101:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /link.php?zzz=5 HTTP/1.1
Host: www.learningtoolkit.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.regionic.info
Connection: keep-alive
Referer: http://www.regionic.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Date: Fri, 11 Nov 2022 14:29:23 GMT
Connection: Keep-Alive
Content-Length: 0
X-Frame-Options: SAMEORIGIN
Cache-Control: private, no-cache, no-store, max-age=0
Expires: Mon, 01 Jan 1990 0:00:00 GMT
Location: https://www.businessmagazine.org
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash eb93232f13789de5f8cdba428fc5726d
8c1113b76e3d8cea6c2a1e7e93c230044ef43872
6e7d5e5ed7f52246d1cbc274f87d2ce0055bb85ec2a61a17a9ce35761e09eaa4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6E7D5E5ED7F52246D1CBC274F87D2CE0055BB85EC2A61A17A9CE35761E09EAA4"
Last-Modified: Fri, 11 Nov 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21568
Expires: Fri, 11 Nov 2022 20:28:54 GMT
Date: Fri, 11 Nov 2022 14:29:26 GMT
Connection: keep-alive
www.learningtoolkit.club/link.php?zzz=4
54.67.93.101301 Moved Permanently 0 B URL HTTP/1.1 www.learningtoolkit.club/link.php?zzz=4
IP 54.67.93.101:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /link.php?zzz=4 HTTP/1.1
Host: www.learningtoolkit.club
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.regionic.info
Connection: keep-alive
Referer: http://www.regionic.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Date: Fri, 11 Nov 2022 14:29:23 GMT
Connection: Keep-Alive
Content-Length: 0
X-Frame-Options: SAMEORIGIN
Cache-Control: private, no-cache, no-store, max-age=0
Expires: Mon, 01 Jan 1990 0:00:00 GMT
Location: https://www.businessmagazine.org
cdnjs.cloudflare.com/ajax/libs/json2/20121008/json2.min.js
104.17.24.14200 OK 1.3 kB URL HTTP/1.1 cdnjs.cloudflare.com/ajax/libs/json2/20121008/json2.min.js
IP 104.17.24.14:0
File type ASCII text, with very long lines (3385), with no line terminators
Hash 9dcd98b378b18da87ab0b80928cab48a
2daa54c68961571f76c9cf230f2c469079ba4629
1766ef15d29039deb1168ca7e34a98cc3b094f7a0d74475216c3696af5d6d6b9
GET /ajax/libs/json2/20121008/json2.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/
HTTP/1.1 200 OK
Date: Fri, 11 Nov 2022 14:29:26 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 1347
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=30672000
Content-Encoding: gzip
ETag: "5eb03ec8-d39"
Last-Modified: Mon, 04 May 2020 16:11:52 GMT
cf-cdnjs-via: cfworker/kv
Cross-Origin-Resource-Policy: cross-origin
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 62067
Expires: Wed, 01 Nov 2023 14:29:26 GMT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zoi30AbHGIxjBSKM9X8u3m4eRY7YySIf3DtomwRf1yo5w0e4wxNtrRG5NaLE9GxeWXBl%2BJtTj3yEnjoRzMqQkyM6qt5dGm1REYforZoj6p%2F7%2FAlZXTi8a290Fv%2Fo6jnQG%2BcArO0r"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7687b85bafbbb517-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
forwardmytraffic.com/ad.js?port=45
192.102.6.94200 OK 312 B URL HTTP/1.1 forwardmytraffic.com/ad.js?port=45
IP 192.102.6.94:0
File type ASCII text, with CRLF, LF line terminators
Hash 16b6266a012feb7ea9f58d6cedee3087
c1c31bdc63f030c288bdf500a01d74dc309019b6
a66cbaa6396f8b7923fffa0939d3ed8502aa3563963bab760f2e029c9a4602bd
GET /ad.js?port=45 HTTP/1.1
Host: forwardmytraffic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.regionic.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.14.1
Date: Fri, 11 Nov 2022 14:29:26 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.3.4
button.buffer.com/button/?id=a712b14b1bf15b73&url=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Fp%3D54247&text=Step%20By%20Action%20Instructions%20On%20How%20To%20Restore%20A%20Water%20Damaged%20Iphone&count=horizontal&placement=button&utm_source=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Ftag%3Dstorm-damage-in-orange-beach-al&utm_medium=buffer_button&utm_campaign=buffer
104.16.140.52301 Moved Permanently 0 B URL HTTP/1.1 button.buffer.com/button/?id=a712b14b1bf15b73&url=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Fp%3D54247&text=Step%20By%20Action%20Instructions%20On%20How%20To%20Restore%20A%20Water%20Damaged%20Iphone&count=horizontal&placement=button&utm_source=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Ftag%3Dstorm-damage-in-orange-beach-al&utm_medium=buffer_button&utm_campaign=buffer
IP 104.16.140.52:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /button/?id=a712b14b1bf15b73&url=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Fp%3D54247&text=Step%20By%20Action%20Instructions%20On%20How%20To%20Restore%20A%20Water%20Damaged%20Iphone&count=horizontal&placement=button&utm_source=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Ftag%3Dstorm-damage-in-orange-beach-al&utm_medium=buffer_button&utm_campaign=buffer HTTP/1.1
Host: button.buffer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 11 Nov 2022 14:29:27 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Fri, 11 Nov 2022 15:29:27 GMT
Location: https://button.buffer.com/button/?id=a712b14b1bf15b73&url=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Fp%3D54247&text=Step%20By%20Action%20Instructions%20On%20How%20To%20Restore%20A%20Water%20Damaged%20Iphone&count=horizontal&placement=button&utm_source=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Ftag%3Dstorm-damage-in-orange-beach-al&utm_medium=buffer_button&utm_campaign=buffer
Set-Cookie: __cf_bm=o1HwCwaOCVeZpDvtVOc0djLe2AyCWG5fRPpUumk_HyE-1668176967-0-AUBkwVDSAGssxROIaafkByYzlVO8CtbRhrfWx8HU2dqw3mhcZQlZ6c1O5y/FAuZlauQY0S5klJRr1UkuamT49u4=; path=/; expires=Fri, 11-Nov-22 14:59:27 GMT; domain=.buffer.com; HttpOnly; SameSite=None
Server-Timing: cf-q-config;dur=7.0000000960135e-06
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 7687b85bef6e0b3d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.tipy.com/button.js
3.74.170.143404 Not Found 232 B IP 3.74.170.143:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 328f87671c7c5a894d4f38b85b3d326b
8fea1b85bc8727669266925e412d94b74a07da38
d3dad34c1bffe93e3ec8a432f171db4a1da94b103966c11f277da95157a08ec5
GET /button.js HTTP/1.1
Host: www.tipy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.regionic.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: nginx/1.14.2
Date: Fri, 11 Nov 2022 14:29:27 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Encoding: gzip
www.hyves.nl/respect/button?url=http://www.regionic.info/jmb/?p=54247
172.67.161.202301 Moved Permanently 0 B URL HTTP/1.1 www.hyves.nl/respect/button?url=http://www.regionic.info/jmb/?p=54247
IP 172.67.161.202:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /respect/button?url=http://www.regionic.info/jmb/?p=54247 HTTP/1.1
Host: www.hyves.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 11 Nov 2022 14:29:27 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Fri, 11 Nov 2022 15:29:27 GMT
Location: https://hyvesgames.nl/forwarded
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DekhOZcMxBa2Jw44x8qKaV0pfGCe%2Fs2oc%2FidpcGOui68khRGcBjO7crTfEqhuwyKLXAvxd6RPI55JQI8F8pwTf3IAAmxIuwJRnYQZdq%2BoGKJnu3PGB4m42T2Y9K1zMY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7687b85c2b81b505-OSL
alt-svc: h2=":443"; ma=60
www.tipy.com/button_compact.gif
3.74.170.143404 Not Found 232 B URL HTTP/1.1 www.tipy.com/button_compact.gif
IP 3.74.170.143:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 328f87671c7c5a894d4f38b85b3d326b
8fea1b85bc8727669266925e412d94b74a07da38
d3dad34c1bffe93e3ec8a432f171db4a1da94b103966c11f277da95157a08ec5
GET /button_compact.gif HTTP/1.1
Host: www.tipy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.regionic.info/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: nginx/1.14.2
Date: Fri, 11 Nov 2022 14:29:27 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Encoding: gzip
www.hyves.nl/respect/button?url=http://www.regionic.info/jmb/?p=42435
172.67.161.202301 Moved Permanently 0 B URL HTTP/1.1 www.hyves.nl/respect/button?url=http://www.regionic.info/jmb/?p=42435
IP 172.67.161.202:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /respect/button?url=http://www.regionic.info/jmb/?p=42435 HTTP/1.1
Host: www.hyves.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 11 Nov 2022 14:29:27 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Fri, 11 Nov 2022 15:29:27 GMT
Location: https://hyvesgames.nl/forwarded
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JnrUIv3LHskPYJo6PddOByXdzUf5mBBe%2BrpnyPRfX0EFpvoltq%2BOEbUSpWcclkcMjITEC5Ic35HbUvtZMVCr10nr1UdbLhSK9m0VCqGCV9gPQbu4xpItc8%2BTXn53DfQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7687b85c3daf0b65-OSL
alt-svc: h2=":443"; ma=60
button.buffer.com/button/?id=8febcdcb00f7fbd6&url=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Fp%3D42435&text=How%20To%20Dry%20Out%20Wall%20After%20Water%20Damage&count=horizontal&placement=button&utm_source=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Ftag%3Dstorm-damage-in-orange-beach-al&utm_medium=buffer_button&utm_campaign=buffer
104.16.140.52301 Moved Permanently 0 B URL HTTP/1.1 button.buffer.com/button/?id=8febcdcb00f7fbd6&url=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Fp%3D42435&text=How%20To%20Dry%20Out%20Wall%20After%20Water%20Damage&count=horizontal&placement=button&utm_source=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Ftag%3Dstorm-damage-in-orange-beach-al&utm_medium=buffer_button&utm_campaign=buffer
IP 104.16.140.52:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /button/?id=8febcdcb00f7fbd6&url=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Fp%3D42435&text=How%20To%20Dry%20Out%20Wall%20After%20Water%20Damage&count=horizontal&placement=button&utm_source=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Ftag%3Dstorm-damage-in-orange-beach-al&utm_medium=buffer_button&utm_campaign=buffer HTTP/1.1
Host: button.buffer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 11 Nov 2022 14:29:27 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Fri, 11 Nov 2022 15:29:27 GMT
Location: https://button.buffer.com/button/?id=8febcdcb00f7fbd6&url=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Fp%3D42435&text=How%20To%20Dry%20Out%20Wall%20After%20Water%20Damage&count=horizontal&placement=button&utm_source=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Ftag%3Dstorm-damage-in-orange-beach-al&utm_medium=buffer_button&utm_campaign=buffer
Set-Cookie: __cf_bm=JzH5S5n_3Xjnmd3K.O3vJW.FCApT2899nkoz2WcNEmg-1668176967-0-Aa06mZCA76HdjVLZzjFQcmSHnxOEMom8ZMOXci8A30S7RvWQoAdn7KGWcZ/vD6BtXoM0IM/2spegUFb4AhLv4J4=; path=/; expires=Fri, 11-Nov-22 14:59:27 GMT; domain=.buffer.com; HttpOnly; SameSite=None
Server-Timing: cf-q-config;dur=7.0000000960135e-06
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 7687b85c5fb00b3d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.regionic.info/jmb/wp-content/plugins/really-simple-facebook-twitter-share-buttons/images/facebook-share.png
83.166.138.58200 OK 838 B URL HTTP/1.1 www.regionic.info/jmb/wp-content/plugins/really-simple-facebook-twitter-share-buttons/images/facebook-share.png
IP 83.166.138.58:0
ASN #29222 Infomaniak Network SA
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 95f675e77a2c67a004771ee5d7dce1ee
74151d65e20475ac234287288c56ab2f370f502b
6a0b082d7f6c52899ed6d19d85676486c4a9a37894b7e0daaaeaf065929ab026
GET /jmb/wp-content/plugins/really-simple-facebook-twitter-share-buttons/images/facebook-share.png HTTP/1.1
Host: www.regionic.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/jmb/wp-content/plugins/really-simple-facebook-twitter-share-buttons/style.css?ver=6.0.3
HTTP/1.1 200 OK
Date: Fri, 11 Nov 2022 14:29:27 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade
Last-Modified: Fri, 04 Mar 2016 14:16:19 GMT
ETag: "346-52d39c24152c0"
Accept-Ranges: bytes
Content-Length: 838
Content-Type: image/png
www.tipy.com/button.js
3.74.170.143404 Not Found 232 B IP 3.74.170.143:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 328f87671c7c5a894d4f38b85b3d326b
8fea1b85bc8727669266925e412d94b74a07da38
d3dad34c1bffe93e3ec8a432f171db4a1da94b103966c11f277da95157a08ec5
GET /button.js HTTP/1.1
Host: www.tipy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.regionic.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: nginx/1.14.2
Date: Fri, 11 Nov 2022 14:29:27 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Encoding: gzip
odnaknopka.ru/ok9.js
142.132.202.70200 OK 143 B IP 142.132.202.70:0
ASN #24940 Hetzner Online GmbH
File type ASCII text, with CRLF line terminators
Hash 01d104f1d2a961f6fc241ec08ba1af54
2e9f73a9137283c94c79bff44fd10f5b1a2738b6
f70c6e0720a4769e224d4ceb25d9908ae0f9da93dac347971cac311be73b1022
GET /ok9.js HTTP/1.1
Host: odnaknopka.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 11 Nov 2022 14:29:27 GMT
Content-Type: text/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
ETag: f3e57493f7e859d272a3b8708a2a403c
www.hyves.nl/respect/button?url=http://www.regionic.info/jmb/?p=25290
172.67.161.202301 Moved Permanently 0 B URL HTTP/1.1 www.hyves.nl/respect/button?url=http://www.regionic.info/jmb/?p=25290
IP 172.67.161.202:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /respect/button?url=http://www.regionic.info/jmb/?p=25290 HTTP/1.1
Host: www.hyves.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 11 Nov 2022 14:29:27 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Fri, 11 Nov 2022 15:29:27 GMT
Location: https://hyvesgames.nl/forwarded
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=npTjSL1hLgkPf%2FfF%2BAZ6DKHEesB3uutmOoFOqVuHiBKwTxCd49HQCtF%2FXHMrVTCVg90woHkKvCod6bncZIzUuyeRKlRul73sL9PR5ddQ%2FwmNsLLrmKQrfDHMADlJx%2B0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7687b85cbc2ab505-OSL
alt-svc: h2=":443"; ma=60
www.redditstatic.com/button/button1.html?url=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Ftag%3Dstorm-damage-in-orange-beach-al
151.101.85.140200 OK 1.7 kB URL HTTP/1.1 www.redditstatic.com/button/button1.html?url=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Ftag%3Dstorm-damage-in-orange-beach-al
IP 151.101.85.140:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1522)
Hash 4a408b7d64f2c0937eb0d1b944e3229e
e9edc11acdf9d5ae0357b680590d3dc719bf0adc
91aee29aee50d42c1a027a0c9b82f759847e37b6027af3d7b96ccf68db3fe685
GET /button/button1.html?url=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Ftag%3Dstorm-damage-in-orange-beach-al HTTP/1.1
Host: www.redditstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1709
Last-Modified: Wed, 30 Jul 2014 19:09:19 GMT
ETag: "ce91c4f683d32f8907f0e97f3fb93696"
Expires: Thu, 31 Dec 2037 23:59:59 GMT
Content-Type: text/html
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Fri, 11 Nov 2022 14:29:27 GMT
Vary: Accept-Encoding,Origin
Server: snooserv
Report-To: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}
NEL: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.02, "failure_fraction": 0.02}
odnaknopka.ru/stat.js
142.132.202.70200 OK 348 B IP 142.132.202.70:0
ASN #24940 Hetzner Online GmbH
Hash 9532bbc8a403737808a3afe76cff1c0a
74579dbbd1816103b195c7d9b22fde06937a1957
9508816a8f54649532663386ed600a78097659dc078a84352f97565accf3023b
GET /stat.js HTTP/1.1
Host: odnaknopka.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 11 Nov 2022 14:29:27 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
www.tipy.com/button.js
3.74.170.143404 Not Found 232 B IP 3.74.170.143:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 328f87671c7c5a894d4f38b85b3d326b
8fea1b85bc8727669266925e412d94b74a07da38
d3dad34c1bffe93e3ec8a432f171db4a1da94b103966c11f277da95157a08ec5
GET /button.js HTTP/1.1
Host: www.tipy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.regionic.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: nginx/1.14.2
Date: Fri, 11 Nov 2022 14:29:27 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Encoding: gzip
www.regionic.info/jmb/wp-content/uploads/2012/03/bmask_pedjo_blanc_301.png
83.166.138.58200 OK 61 kB URL HTTP/1.1 www.regionic.info/jmb/wp-content/uploads/2012/03/bmask_pedjo_blanc_301.png
IP 83.166.138.58:0
ASN #29222 Infomaniak Network SA
File type PNG image data, 138 x 237, 8-bit/color RGB, non-interlaced\012- data
Hash b74ef2596fd00a4b03c23aa91d9c92cf
4f5bc4506d9d95e1999b9088bd2acbe529c20707
ebb9cb51888811438828a39576992f273077047babbb1951c6a666b913fffcad
GET /jmb/wp-content/uploads/2012/03/bmask_pedjo_blanc_301.png HTTP/1.1
Host: www.regionic.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/jmb/?tag=storm-damage-in-orange-beach-al
HTTP/1.1 200 OK
Date: Fri, 11 Nov 2022 14:29:27 GMT
Server: Apache
Last-Modified: Fri, 09 Mar 2012 17:32:38 GMT
ETag: "eda1-4bad2c7649980"
Accept-Ranges: bytes
Content-Length: 60833
Content-Type: image/png
www.tipy.com/button_compact.gif
3.74.170.143404 Not Found 232 B URL HTTP/1.1 www.tipy.com/button_compact.gif
IP 3.74.170.143:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 328f87671c7c5a894d4f38b85b3d326b
8fea1b85bc8727669266925e412d94b74a07da38
d3dad34c1bffe93e3ec8a432f171db4a1da94b103966c11f277da95157a08ec5
GET /button_compact.gif HTTP/1.1
Host: www.tipy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.regionic.info/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Server: nginx/1.14.2
Date: Fri, 11 Nov 2022 14:29:27 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Encoding: gzip
www.redditstatic.com/button/button1.html?url=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Ftag%3Dstorm-damage-in-orange-beach-al
151.101.85.140200 OK 1.7 kB URL HTTP/1.1 www.redditstatic.com/button/button1.html?url=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Ftag%3Dstorm-damage-in-orange-beach-al
IP 151.101.85.140:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1522)
Hash 4a408b7d64f2c0937eb0d1b944e3229e
e9edc11acdf9d5ae0357b680590d3dc719bf0adc
91aee29aee50d42c1a027a0c9b82f759847e37b6027af3d7b96ccf68db3fe685
GET /button/button1.html?url=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Ftag%3Dstorm-damage-in-orange-beach-al HTTP/1.1
Host: www.redditstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1709
Last-Modified: Wed, 30 Jul 2014 19:09:19 GMT
ETag: "ce91c4f683d32f8907f0e97f3fb93696"
Expires: Thu, 31 Dec 2037 23:59:59 GMT
Content-Type: text/html
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Fri, 11 Nov 2022 14:29:27 GMT
Vary: Accept-Encoding,Origin
Server: snooserv
Report-To: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}
NEL: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.02, "failure_fraction": 0.02}
www.redditstatic.com/button/button-embed.js
151.101.85.140200 OK 983 B URL HTTP/1.1 www.redditstatic.com/button/button-embed.js
IP 151.101.85.140:0
Hash 894ad3ef79db45d25e29d456dc0d4749
44560c5236cc799ab5cb2e9aa39dfe85d2d9b120
d61a96c13920a9de38d7d426dde2c890535856bda84a26845dc0272f05b33e2d
GET /button/button-embed.js HTTP/1.1
Host: www.redditstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.redditstatic.com/button/button1.html?url=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Ftag%3Dstorm-damage-in-orange-beach-al
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 983
Last-Modified: Wed, 22 Oct 2014 17:47:37 GMT
ETag: "f6e79e0098bfda54ca2e0e02da223645"
Expires: Thu, 31 Dec 2037 23:59:59 GMT
Content-Type: application/javascript
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Fri, 11 Nov 2022 14:29:27 GMT
Vary: Accept-Encoding,Origin
Server: snooserv
Report-To: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}
NEL: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.02, "failure_fraction": 0.02}
www.redditstatic.com/button/button1.html?url=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Ftag%3Dstorm-damage-in-orange-beach-al
151.101.85.140200 OK 1.7 kB URL HTTP/1.1 www.redditstatic.com/button/button1.html?url=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Ftag%3Dstorm-damage-in-orange-beach-al
IP 151.101.85.140:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1522)
Hash 4a408b7d64f2c0937eb0d1b944e3229e
e9edc11acdf9d5ae0357b680590d3dc719bf0adc
91aee29aee50d42c1a027a0c9b82f759847e37b6027af3d7b96ccf68db3fe685
GET /button/button1.html?url=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Ftag%3Dstorm-damage-in-orange-beach-al HTTP/1.1
Host: www.redditstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1709
Last-Modified: Wed, 30 Jul 2014 19:09:19 GMT
ETag: "ce91c4f683d32f8907f0e97f3fb93696"
Expires: Thu, 31 Dec 2037 23:59:59 GMT
Content-Type: text/html
Content-Encoding: gzip
Via: 1.1 varnish, 1.1 varnish
Accept-Ranges: bytes
Date: Fri, 11 Nov 2022 14:29:27 GMT
Vary: Accept-Encoding,Origin
Server: snooserv
Report-To: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}
NEL: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.02, "failure_fraction": 0.02}
button.buffer.com/button/?id=cc78d4373af5f5c9&url=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Fp%3D25290&text=If%20You%20Leave%20It%20Damp%20%E2%80%93%20You%20May%20Be%20Sorry%20For%20It&count=horizontal&placement=button&utm_source=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Ftag%3Dstorm-damage-in-orange-beach-al&utm_medium=buffer_button&utm_campaign=buffer
104.16.140.52301 Moved Permanently 0 B URL HTTP/1.1 button.buffer.com/button/?id=cc78d4373af5f5c9&url=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Fp%3D25290&text=If%20You%20Leave%20It%20Damp%20%E2%80%93%20You%20May%20Be%20Sorry%20For%20It&count=horizontal&placement=button&utm_source=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Ftag%3Dstorm-damage-in-orange-beach-al&utm_medium=buffer_button&utm_campaign=buffer
IP 104.16.140.52:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /button/?id=cc78d4373af5f5c9&url=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Fp%3D25290&text=If%20You%20Leave%20It%20Damp%20%E2%80%93%20You%20May%20Be%20Sorry%20For%20It&count=horizontal&placement=button&utm_source=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Ftag%3Dstorm-damage-in-orange-beach-al&utm_medium=buffer_button&utm_campaign=buffer HTTP/1.1
Host: button.buffer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 11 Nov 2022 14:29:27 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Fri, 11 Nov 2022 15:29:27 GMT
Location: https://button.buffer.com/button/?id=cc78d4373af5f5c9&url=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Fp%3D25290&text=If%20You%20Leave%20It%20Damp%20%E2%80%93%20You%20May%20Be%20Sorry%20For%20It&count=horizontal&placement=button&utm_source=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Ftag%3Dstorm-damage-in-orange-beach-al&utm_medium=buffer_button&utm_campaign=buffer
Set-Cookie: __cf_bm=oqhBCuvuQHNZ2Ae5BpzKycAq.RFkJVVIYeSymSKGb_o-1668176967-0-AS8nZsFDw4QsjlFBcP03r3+VSULmvDNUzQV+Xj/OGvhoKYCBjr4/wPEmSUDrhgs17uNiZCvzd/kNIwK/TIGLys8=; path=/; expires=Fri, 11-Nov-22 14:59:27 GMT; domain=.buffer.com; HttpOnly; SameSite=None
Server-Timing: cf-q-config;dur=8.0000004345493e-06
Vary: Accept-Encoding
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 7687b85d188a0b3d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
connect.facebook.net/fr_FR/sdk.js
31.13.72.12200 OK 1.7 kB URL HTTP/1.1 connect.facebook.net/fr_FR/sdk.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (1961)
Hash 0751abdaa1abbac62af0c28abaacd6bb
9cf34fb25f52d7daf685194bcb38f454f139ce2c
60b5677766b049a3f70b5de3957b27f0580840df82c2e02944afa892817afaa2
GET /fr_FR/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Expose-Headers: X-FB-Content-MD5
x-fb-content-md5: 8f20a6ce037e6a554d7d31eb1aa35060
ETag: "602f4bc46de4df9934fe9974b673e8c8"
Content-Type: application/x-javascript; charset=utf-8
timing-allow-origin: *
Access-Control-Allow-Origin: *
cross-origin-resource-policy: cross-origin
Expires: Fri, 11 Nov 2022 14:45:59 GMT
Cache-Control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
X-Content-Type-Options: nosniff
x-fb-rlafr: 0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
Content-MD5: B1Gr2qGrusYq8MKKuqzWuw==
X-FB-Debug: LlF3BJonPFDmULbqbjKp0SRh1KZoTtOoJ5J7bYdfae3Nj97xag8USJTdYyarMNsNAfbi5DLpaWcK6vJhEhfqdw==
Priority: u=3,i
X-FB-TRIP-ID: 1904183273
Date: Fri, 11 Nov 2022 14:29:27 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 1686
assets.pinterest.com/js/pinit.js
151.101.84.84200 OK 290 B URL HTTP/1.1 assets.pinterest.com/js/pinit.js
IP 151.101.84.84:0
File type ASCII text, with very long lines (361), with no line terminators
Hash 82bfd941d2c9b3b9e0650a27c9d11737
2eb742a101e79067c9df4d15b518bde85e8eeb2e
3f6e9b85ad3ee165ec6c9587d98d2a43588f7ba0f63d31ad019a0d4cbfd3f3d1
GET /js/pinit.js HTTP/1.1
Host: assets.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 290
ETag: "82bfd941d2c9b3b9e0650a27c9d11737"
Content-Encoding: gzip
Content-Type: application/javascript; charset=utf-8
X-CDN: fastly
alt-svc: h3=":443";ma=600,h3-29=":443";ma=600,h3-27=":443";ma=600
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Access-Control-Max-Age: 86400
Access-Control-Expose-Headers: X-CDN
Vary: Accept-Encoding, Origin
Cache-Control: max-age=300
date: Fri, 11 Nov 2022 14:29:27 GMT
platform.twitter.com/widgets.js
93.184.220.66200 OK 29 kB URL HTTP/1.1 platform.twitter.com/widgets.js
IP 93.184.220.66:0
File type Unicode text, UTF-8 text, with very long lines (33915)
Hash 7899fffaf0046efb7f9be2495d9dc928
d4c60d88e8deea577a50f9d20e1b6b3a20cba2cf
07d50450f22df0588cc1b67f5a124cb91d99a032a229586eb7dc490cce9f7f30
GET /widgets.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.regionic.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 3000
Age: 745
Cache-Control: public, max-age=1800
Content-Type: application/javascript; charset=utf-8
Date: Fri, 11 Nov 2022 14:29:27 GMT
Etag: "6633f9603c759c40d9b200995454f17c+gzip"
Last-Modified: Wed, 02 Nov 2022 19:43:37 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71D)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
x-amzn-internal-status: 304
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 29221
assets.pinterest.com/images/pidgets/pin_it_button.png
151.101.84.84200 OK 909 B URL HTTP/2 assets.pinterest.com/images/pidgets/pin_it_button.png
IP 151.101.84.84:0
File type PNG image data, 40 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash cf5ce2d2dcfa060f6032b0af60d45aa2
7a2370ff54f007a20d64d57c9547736136612869
f942d5999c18b372d0c74273c936fce1723b0761e67d56dfa80abac87eff864e
GET /images/pidgets/pin_it_button.png HTTP/1.1
Host: assets.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.regionic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
etag: "cf5ce2d2dcfa060f6032b0af60d45aa2"
content-type: image/png
x-cdn: fastly
alt-svc: h3=":443";ma=600,h3-29=":443";ma=600,h3-27=":443";ma=600
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 86400
access-control-expose-headers: X-CDN
vary: Origin
cache-control: max-age=86400
date: Fri, 11 Nov 2022 14:29:27 GMT
content-length: 909
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 792664737c0b098dbfab6ef6e21397e7
29d50b16f6aa54641f6b2bf8b53789527269b9a5
6e34670f7d7490bfc7b0e90ae95668d8941e66f70b9ea2d7cc39b202f7bfc184
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=116026
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 14:29:27 GMT
Etag: "636d7e81-117"
Expires: Sat, 12 Nov 2022 22:43:13 GMT
Last-Modified: Thu, 10 Nov 2022 22:43:13 GMT
Server: nginx
Content-Length: 279
www.stumbleupon.com/hostedbadge.php?s=1&r=http://www.regionic.info/jmb/?p=42435
76.76.21.98404 Not Found 2.6 kB URL HTTP/2 www.stumbleupon.com/hostedbadge.php?s=1&r=http://www.regionic.info/jmb/?p=42435
IP 76.76.21.98:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (5822)
Hash 8fe412437bd861d9502910b4befaff75
c6cb94998fdb82b3525a0b7aa8e28dbc101f8677
a27f3bafdc1da5f7a7af0ac0d8db951e7edb7b1351498a5dd97f291bffdc9454
GET /hostedbadge.php?s=1&r=http://www.regionic.info/jmb/?p=42435 HTTP/1.1
Host: www.stumbleupon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.regionic.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
access-control-allow-origin: *
age: 1205101
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="404"
content-encoding: br
content-type: text/html; charset=utf-8
date: Fri, 11 Nov 2022 14:29:27 GMT
etag: W/"1a30bd62d0e7d6b9c85d90d076391f09"
server: Vercel
strict-transport-security: max-age=63072000
x-matched-path: /404
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::hkb86-1668176967048-acbc0afb8f8a
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 06d7d61a20669050493c3fd5d2b9798e
5d2d51f23582ef785072cdd0ca9ccf859b563b2d
653662665ea3298734fa313f693216a3932a64ac2903986d7415f60f97bcf27f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 14:29:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.stumbleupon.com/hostedbadge.php?s=1&r=http://www.regionic.info/jmb/?p=25290
76.76.21.98404 Not Found 2.1 kB URL HTTP/2 www.stumbleupon.com/hostedbadge.php?s=1&r=http://www.regionic.info/jmb/?p=25290
IP 76.76.21.98:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (5822)
Hash 2e0a875c3254a7c26aa414148ac90101
a3da41760403f3c083cdde8f5ef8378c02b13f0f
412a382a7c8c325ee2c2de666616a1781f98c8afed23523b99e202d0e40be684
GET /hostedbadge.php?s=1&r=http://www.regionic.info/jmb/?p=25290 HTTP/1.1
Host: www.stumbleupon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.regionic.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
access-control-allow-origin: *
age: 1205100
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="404"
content-encoding: br
content-type: text/html; charset=utf-8
date: Fri, 11 Nov 2022 14:29:25 GMT
etag: W/"1a30bd62d0e7d6b9c85d90d076391f09"
server: Vercel
strict-transport-security: max-age=63072000
x-matched-path: /404
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::qrjdm-1668176965361-94ede3ff266e
X-Firefox-Spdy: h2
www.regionic.info/jmb/wp-content/themes/twentyten/images/wordpress.png
83.166.138.58200 OK 794 B URL HTTP/1.1 www.regionic.info/jmb/wp-content/themes/twentyten/images/wordpress.png
IP 83.166.138.58:0
ASN #29222 Infomaniak Network SA
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash f51375d00e7d0a70c801c6256d432d3b
313aff1fffa73433673203db25ff4154d07511e2
61d00189e16b4ae467e9f3283ccf459d666950277c866c82f337534951b50f51
GET /jmb/wp-content/themes/twentyten/images/wordpress.png HTTP/1.1
Host: www.regionic.info
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/jmb/wp-content/themes/twentyten/style.css
HTTP/1.1 200 OK
Date: Fri, 11 Nov 2022 14:29:27 GMT
Server: Apache
Last-Modified: Fri, 04 Mar 2016 14:18:20 GMT
ETag: "31a-52d39c977a300"
Accept-Ranges: bytes
Content-Length: 794
Content-Type: image/png
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 170fefa8d834c6bed89f9ec16e547b43
2fa49283e12718e424af5274b293c48ad0334149
be44cc2147a4912761d96ffa406a8deada6d0b56fd3edc268986a1d4596f1451
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 14:29:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ab71a271fcd813ef92dc200eaefdab5c
20ea217b349ececc6a74addd68a4179ac03377eb
9a7830025f8ca36d5b2d77877f46e2ff42545eb634b76f0a7b95ab854081f0e8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9A7830025F8CA36D5B2D77877F46E2FF42545EB634B76F0A7B95AB854081F0E8"
Last-Modified: Fri, 11 Nov 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9850
Expires: Fri, 11 Nov 2022 17:13:37 GMT
Date: Fri, 11 Nov 2022 14:29:27 GMT
Connection: keep-alive
platform.tumblr.com/v1/share_2.png
74.114.154.15302 Moved Temporarily 142 B URL HTTP/1.1 platform.tumblr.com/v1/share_2.png
IP 74.114.154.15:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 82c98e8e012b79c922655461171cc2fa
0828d79135573276005b04be42d79a8a3291292b
745173bcc5c57ce9751dd019606e877e0aae13b60372fdb090f3db0470c3a43c
GET /v1/share_2.png HTTP/1.1
Host: platform.tumblr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.regionic.info/
HTTP/1.1 302 Moved Temporarily
Server: openresty
Date: Fri, 11 Nov 2022 14:29:27 GMT
Content-Type: text/html
Content-Length: 142
Connection: keep-alive
Location: https://platform.tumblr.com/v1/share_2.png
ajax.googleapis.com/ajax/libs/jquery/1.9.0/jquery.min.js
142.250.74.42200 OK 33 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.9.0/jquery.min.js
IP 142.250.74.42:0
File type ASCII text, with very long lines (32132)
Hash 19367efa6245eafdd8c6111a367da696
901ec681692d88afa09c28cee299ba120ca33a8b
cb11ee5a06892d5ffea634705118e1cc48f276c6d18fa20605c9bf5b9c33dc32
GET /ajax/libs/jquery/1.9.0/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.regionic.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33140
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 11 Nov 2022 01:59:17 GMT
expires: Sat, 11 Nov 2023 01:59:17 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 45010
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 792664737c0b098dbfab6ef6e21397e7
29d50b16f6aa54641f6b2bf8b53789527269b9a5
6e34670f7d7490bfc7b0e90ae95668d8941e66f70b9ea2d7cc39b202f7bfc184
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=116026
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 14:29:27 GMT
Etag: "636d7e81-117"
Expires: Sat, 12 Nov 2022 22:43:13 GMT
Last-Modified: Thu, 10 Nov 2022 22:43:13 GMT
Server: nginx
Content-Length: 279
buttons.reddit.com/button_info.json?jsonp=buttonEmbed.parseSubmission&url=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Ftag%3Dstorm-damage-in-orange-beach-al
151.101.85.140404 Not Found 13 B URL HTTP/1.1 buttons.reddit.com/button_info.json?jsonp=buttonEmbed.parseSubmission&url=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Ftag%3Dstorm-damage-in-orange-beach-al
IP 151.101.85.140:0
File type ASCII text, with no line terminators
Hash 1e6cd917ed71a1241e4bedc29264bd98
5b65037351caeb0e5a48d963d7ffa88d0271d546
7d04f7431bbfa41a04bcc7e6b98b9de0d919756c4c671c5785c99fff45f16402
GET /button_info.json?jsonp=buttonEmbed.parseSubmission&url=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Ftag%3Dstorm-damage-in-orange-beach-al HTTP/1.1
Host: buttons.reddit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.redditstatic.com/
HTTP/1.1 404 Not Found
Connection: close
Content-Length: 13
Server: Varnish
Retry-After: 0
Content-Type: text/plain
Accept-Ranges: bytes
Date: Fri, 11 Nov 2022 14:29:27 GMT
Via: 1.1 varnish
X-Served-By: cache-bma1665-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1668176967.379045,VS0,VE0
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e29331e62f992440480de84089899683
c493da75e5c0374030bf66b15670a2b25e9fb4e3
78e7780576547222916f8db48515401d2f95abf2ab8a657f3006672ff14c3f26
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2786
Cache-Control: max-age=130679
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 14:29:27 GMT
Etag: "636dacdc-1d7"
Expires: Sun, 13 Nov 2022 02:47:26 GMT
Last-Modified: Fri, 11 Nov 2022 02:01:00 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
apis.google.com/js/plusone.js
142.250.74.174200 OK 21 kB URL HTTP/2 apis.google.com/js/plusone.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1279)
Hash 557a84e1a4b4a45f586fb72599df1ad0
78eec98dcefee53f24a6684e407c81676e7952b4
a488b14f67aa02c62eb30b758d1eb76155478e3af0b2fd78dc52de4e28ed4014
GET /js/plusone.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.regionic.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20987
date: Fri, 11 Nov 2022 14:29:27 GMT
expires: Fri, 11 Nov 2022 14:29:27 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "c1b020d722de3a38"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
feneteko.com/a
142.132.202.70302 Found 0 B IP 142.132.202.70:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /a HTTP/1.1
Host: feneteko.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.regionic.info/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.18.0 (Ubuntu)
Date: Fri, 11 Nov 2022 14:29:27 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Set-Cookie: qwerty_a=0; expires=Sat, 12-Nov-2022 14:29:27 GMT; Max-Age=86400; path=/
Location: https://s.click.aliexpress.com/e/_DC3V8QR?af=a;2272&cn=oslo&cv=254808&dp=91.90.42.154
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash c9154d48ca2440e0071c7ef5288bd170
e0e27cacce40962e5536d6bd736766a96b5b05d3
3fc6fe3f89d1c8d7af8b97172defae7523356b73878fe29bf6b388d1d03f4e4d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6028
Cache-Control: max-age=150823
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 14:29:27 GMT
Etag: "636deee2-116"
Expires: Sun, 13 Nov 2022 08:23:10 GMT
Last-Modified: Fri, 11 Nov 2022 06:42:42 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 278
platform.twitter.com/widgets/widget_iframe.644279d1635fd969e87af94a98bd232b.html?origin=http%3A%2F%2Fwww.regionic.info
93.184.220.66200 OK 105 kB URL HTTP/1.1 platform.twitter.com/widgets/widget_iframe.644279d1635fd969e87af94a98bd232b.html?origin=http%3A%2F%2Fwww.regionic.info
IP 93.184.220.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56168)
Size 105 kB (105445 bytes)
Hash 2b4968b185495eddda0d85b2351ebb71
c665785ca0f4039f8c71d94631cd50a879d866b5
eb8af089d8082a58a6e90fedc23007f17a9e89ddbc6a29b6e535e4847ba94160
GET /widgets/widget_iframe.644279d1635fd969e87af94a98bd232b.html?origin=http%3A%2F%2Fwww.regionic.info HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.regionic.info/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 749314
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Fri, 11 Nov 2022 14:29:27 GMT
Etag: "50d73c0b4a4c7e4697b9c6ac6f1ecd75+gzip"
Last-Modified: Wed, 02 Nov 2022 19:36:59 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71D)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 105445
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 792664737c0b098dbfab6ef6e21397e7
29d50b16f6aa54641f6b2bf8b53789527269b9a5
6e34670f7d7490bfc7b0e90ae95668d8941e66f70b9ea2d7cc39b202f7bfc184
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=116026
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 14:29:27 GMT
Etag: "636d7e81-117"
Expires: Sat, 12 Nov 2022 22:43:13 GMT
Last-Modified: Thu, 10 Nov 2022 22:43:13 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3d17c7f30f0e4c98aa1c36876e9fdf9f
a49862d9612337b780dc915d28f8e5a755ebab02
712a948567d0ddf111e5ee0a6dc846c9646f94dda75d10277039b0b3221093ab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3978
Cache-Control: max-age=111708
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 14:29:27 GMT
Etag: "636d5e19-1d7"
Expires: Sat, 12 Nov 2022 21:31:15 GMT
Last-Modified: Thu, 10 Nov 2022 20:24:57 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
buttons.reddit.com/button_info.json?jsonp=buttonEmbed.parseSubmission&url=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Ftag%3Dstorm-damage-in-orange-beach-al
151.101.85.140404 Not Found 13 B URL HTTP/1.1 buttons.reddit.com/button_info.json?jsonp=buttonEmbed.parseSubmission&url=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Ftag%3Dstorm-damage-in-orange-beach-al
IP 151.101.85.140:0
File type ASCII text, with no line terminators
Hash 1e6cd917ed71a1241e4bedc29264bd98
5b65037351caeb0e5a48d963d7ffa88d0271d546
7d04f7431bbfa41a04bcc7e6b98b9de0d919756c4c671c5785c99fff45f16402
GET /button_info.json?jsonp=buttonEmbed.parseSubmission&url=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Ftag%3Dstorm-damage-in-orange-beach-al HTTP/1.1
Host: buttons.reddit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.redditstatic.com/
HTTP/1.1 404 Not Found
Connection: close
Content-Length: 13
Server: Varnish
Retry-After: 0
Content-Type: text/plain
Accept-Ranges: bytes
Date: Fri, 11 Nov 2022 14:29:27 GMT
Via: 1.1 varnish
X-Served-By: cache-bma1655-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1668176967.471306,VS0,VE0
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 06d7d61a20669050493c3fd5d2b9798e
5d2d51f23582ef785072cdd0ca9ccf859b563b2d
653662665ea3298734fa313f693216a3932a64ac2903986d7415f60f97bcf27f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 14:29:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 05bb9af901ca5b651e88fcbe236711f5
18412da7fc2d868fc74bc3e7c44b4add4bbbdef9
9b87e90e4f5356da47fd562f7d06c8fbdef90d011e8c20e5687afbeaf6e7d29b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 14:29:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 792664737c0b098dbfab6ef6e21397e7
29d50b16f6aa54641f6b2bf8b53789527269b9a5
6e34670f7d7490bfc7b0e90ae95668d8941e66f70b9ea2d7cc39b202f7bfc184
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=116026
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 14:29:27 GMT
Etag: "636d7e81-117"
Expires: Sat, 12 Nov 2022 22:43:13 GMT
Last-Modified: Thu, 10 Nov 2022 22:43:13 GMT
Server: nginx
Content-Length: 279
connect.facebook.net/fr_FR/sdk.js?hash=c41fac1d0dbf7aac443081a9146f2d46
31.13.72.12200 OK 88 kB URL HTTP/2 connect.facebook.net/fr_FR/sdk.js?hash=c41fac1d0dbf7aac443081a9146f2d46
IP 31.13.72.12:0
File type ASCII text, with very long lines (18530)
Hash 88d1507dbd52d048bfe2bb56672718d2
4ffb703f56d592b184bdab7d5bdf1b0d35b991ca
fcbda012f66d35efd9e3555873a962dc16caa444530f2ab79062d5d01f053831
GET /fr_FR/sdk.js?hash=c41fac1d0dbf7aac443081a9146f2d46 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.regionic.info
Connection: keep-alive
Referer: http://www.regionic.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: ab4b1960e305fc69140b648315259f14
etag: "6e684241e2f9e5576ee8b26a8a5fd4eb"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sat, 11 Nov 2023 10:14:57 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: iNFQfb1S0Ei/4rtWZycY0g==
x-fb-debug: /x3GbO19njCFOV3vflceb0nJAZJjVxHDwXl9jjTXIIOXBQu57DdHgfNwROr9K5reSbqs2ySGoucEwhKz1Uj78A==
content-length: 88414
x-fb-trip-id: 1904183273
date: Fri, 11 Nov 2022 14:29:27 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.P0B2vZm_jJk.O/m=auth/exm=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_nmCaDbrwZCe_WiNZEgKVKQ-FnSA/cb=gapi.loaded_1?le=scs
142.250.74.174200 OK 35 kB URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.P0B2vZm_jJk.O/m=auth/exm=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_nmCaDbrwZCe_WiNZEgKVKQ-FnSA/cb=gapi.loaded_1?le=scs
IP 142.250.74.174:0
File type ASCII text, with very long lines (859)
Hash 6a5e842577b12d6a18e574f7af1754a4
d4ed2e34a42b3f6c4f2e666f30a832da3c2cc438
a83ab4acd08d7cca1acd65df0f5539301cf7a54e05987a1f7a199388f6f079a2
GET /_/scs/abc-static/_/js/k=gapi.lb.en.P0B2vZm_jJk.O/m=auth/exm=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_nmCaDbrwZCe_WiNZEgKVKQ-FnSA/cb=gapi.loaded_1?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.regionic.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 35307
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 04 Nov 2022 22:35:13 GMT
expires: Sat, 04 Nov 2023 22:35:13 GMT
cache-control: public, max-age=31536000
age: 575654
last-modified: Tue, 04 Oct 2022 15:24:13 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.P0B2vZm_jJk.O/m=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_nmCaDbrwZCe_WiNZEgKVKQ-FnSA/cb=gapi.loaded_0?le=scs
142.250.74.174200 OK 56 kB URL HTTP/2 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.P0B2vZm_jJk.O/m=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_nmCaDbrwZCe_WiNZEgKVKQ-FnSA/cb=gapi.loaded_0?le=scs
IP 142.250.74.174:0
Hash aa7cd21346fcfeef2181ab8110d22c35
2cbd0d5644a21326afa2689478a3ccfb20212016
094e210b7901f48ff76a5fd1d1fd3de325069249373c398e813c8a3d650798bc
GET /_/scs/abc-static/_/js/k=gapi.lb.en.P0B2vZm_jJk.O/m=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_nmCaDbrwZCe_WiNZEgKVKQ-FnSA/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.regionic.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 51265
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 09 Nov 2022 18:59:14 GMT
expires: Thu, 09 Nov 2023 18:59:14 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 04 Oct 2022 15:24:13 GMT
content-type: text/javascript; charset=UTF-8
age: 156613
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
apis.google.com/u/0/se/0/_/+1/fastbutton?usegapi=1&size=medium&hl=fr&origin=http%3A%2F%2Fwww.regionic.info&url=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Fp%3D54247&gsrc=3p&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.P0B2vZm_jJk.O%2Fd%3D1%2Frs%3DAHpOoo_nmCaDbrwZCe_WiNZEgKVKQ-FnSA%2Fm%3D__features__
142.250.74.174301 Moved Permanently 226 B URL HTTP/2 apis.google.com/u/0/se/0/_/+1/fastbutton?usegapi=1&size=medium&hl=fr&origin=http%3A%2F%2Fwww.regionic.info&url=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Fp%3D54247&gsrc=3p&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.P0B2vZm_jJk.O%2Fd%3D1%2Frs%3DAHpOoo_nmCaDbrwZCe_WiNZEgKVKQ-FnSA%2Fm%3D__features__
IP 142.250.74.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 4df07581948280a6e769a24c5d99d775
843a2c95362347eb8894a6acb607f139be65ded4
3561b93a48d81fac116ccd6e60163bd382abb1d594c81240f5718feb1f197f73
GET /u/0/se/0/_/+1/fastbutton?usegapi=1&size=medium&hl=fr&origin=http%3A%2F%2Fwww.regionic.info&url=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Fp%3D54247&gsrc=3p&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.P0B2vZm_jJk.O%2Fd%3D1%2Frs%3DAHpOoo_nmCaDbrwZCe_WiNZEgKVKQ-FnSA%2Fm%3D__features__ HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.regionic.info/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
location: http://developers.google.com/
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Fri, 11 Nov 2022 14:29:27 GMT
expires: Fri, 11 Nov 2022 14:59:27 GMT
cache-control: public, max-age=1800
server: sffe
content-length: 226
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3d17c7f30f0e4c98aa1c36876e9fdf9f
a49862d9612337b780dc915d28f8e5a755ebab02
712a948567d0ddf111e5ee0a6dc846c9646f94dda75d10277039b0b3221093ab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3191
Cache-Control: max-age=110921
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 14:29:27 GMT
Etag: "636d5e19-1d7"
Expires: Sat, 12 Nov 2022 21:18:08 GMT
Last-Modified: Thu, 10 Nov 2022 20:24:57 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
apis.google.com/u/0/se/0/_/+1/fastbutton?usegapi=1&size=medium&hl=fr&origin=http%3A%2F%2Fwww.regionic.info&url=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Fp%3D42435&gsrc=3p&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.P0B2vZm_jJk.O%2Fd%3D1%2Frs%3DAHpOoo_nmCaDbrwZCe_WiNZEgKVKQ-FnSA%2Fm%3D__features__
142.250.74.174301 Moved Permanently 226 B URL HTTP/2 apis.google.com/u/0/se/0/_/+1/fastbutton?usegapi=1&size=medium&hl=fr&origin=http%3A%2F%2Fwww.regionic.info&url=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Fp%3D42435&gsrc=3p&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.P0B2vZm_jJk.O%2Fd%3D1%2Frs%3DAHpOoo_nmCaDbrwZCe_WiNZEgKVKQ-FnSA%2Fm%3D__features__
IP 142.250.74.174:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 4df07581948280a6e769a24c5d99d775
843a2c95362347eb8894a6acb607f139be65ded4
3561b93a48d81fac116ccd6e60163bd382abb1d594c81240f5718feb1f197f73
GET /u/0/se/0/_/+1/fastbutton?usegapi=1&size=medium&hl=fr&origin=http%3A%2F%2Fwww.regionic.info&url=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Fp%3D42435&gsrc=3p&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.P0B2vZm_jJk.O%2Fd%3D1%2Frs%3DAHpOoo_nmCaDbrwZCe_WiNZEgKVKQ-FnSA%2Fm%3D__features__ HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.regionic.info/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
location: http://developers.google.com/
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Fri, 11 Nov 2022 14:29:27 GMT
expires: Fri, 11 Nov 2022 14:59:27 GMT
cache-control: public, max-age=1800
server: sffe
content-length: 226
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 214052f4adfbb1c6e0ce0b54c297ed6d
6919947148dc5c2544e53e8a39533d5d96755289
e07038b643b4d302364592497f5b0c24fd3f9267dd1c1f266e6a55b5270cca40
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3694
Cache-Control: max-age=142717
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 14:29:27 GMT
Etag: "636dd856-138"
Expires: Sun, 13 Nov 2022 06:08:04 GMT
Last-Modified: Fri, 11 Nov 2022 05:06:30 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 312
developers.google.com/
142.250.74.14301 Moved Permanently 0 B IP 142.250.74.14:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: developers.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.regionic.info/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://developers.google.com/
X-Cloud-Trace-Context: 86a63318616c17f4bef32a9a890f470d
Date: Fri, 11 Nov 2022 14:29:27 GMT
Content-Type: text/html
Server: Google Frontend
Content-Length: 0
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 05bb9af901ca5b651e88fcbe236711f5
18412da7fc2d868fc74bc3e7c44b4add4bbbdef9
9b87e90e4f5356da47fd562f7d06c8fbdef90d011e8c20e5687afbeaf6e7d29b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 14:29:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 05bb9af901ca5b651e88fcbe236711f5
18412da7fc2d868fc74bc3e7c44b4add4bbbdef9
9b87e90e4f5356da47fd562f7d06c8fbdef90d011e8c20e5687afbeaf6e7d29b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 14:29:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 05bb9af901ca5b651e88fcbe236711f5
18412da7fc2d868fc74bc3e7c44b4add4bbbdef9
9b87e90e4f5356da47fd562f7d06c8fbdef90d011e8c20e5687afbeaf6e7d29b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 14:29:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 43e77312eb1fe87b78c7335565ad91e0
121493fd255c444f54ab21ef95d70a6b071eed11
a3ea328acdc6b1af8e29b8bf2dc16ae587bd7323d930d3c52efd665e510a108b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 14:29:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
hyvesgames.nl/forwarded/
172.67.215.15200 OK 7.8 kB IP 172.67.215.15:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9693)
Hash 64e5fc8ee2b7e9d943a6569b0ea0ebdc
8c9b73cb6b3d87f6cbae721d1a254b8cbea999fe
293e7fcde0c081df4d0195ade721be8877d96337bde725ed56bd198f3aeed7c1
GET /forwarded/ HTTP/1.1
Host: hyvesgames.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.regionic.info/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 11 Nov 2022 14:29:27 GMT
content-type: text/html
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=0
last-modified: Thu, 10 Nov 2022 17:35:13 GMT
vary: Accept-Encoding
p3p: CP="IDC DSP DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS UNI NAV INT PRE", CP="NOI DSP COR NID PSA ADM OUR IND NAV COM"
content-security-policy: sandbox allow-same-origin allow-scripts allow-orientation-lock allow-pointer-lock allow-forms allow-popups allow-top-navigation-by-user-activation;
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S6Eztun7EMA8SNWNYZAU%2FxHH2zcrwtbLs3CUhdCadbXcPyJtEgWbBhsppNKMTWlvKXywu8%2FMzr98g2tB7UV1hGtrSL7%2BZtLEL7Zr4CyzvJycPX4mdklycYvFxUmObcqi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7687b85e8cb6b518-OSL
content-encoding: br
X-Firefox-Spdy: h2
s.click.aliexpress.com/e/_DC3V8QR?af=a;2272&cn=oslo&cv=254808&dp=91.90.42.154
104.110.21.5302 Found 0 B URL HTTP/2 s.click.aliexpress.com/e/_DC3V8QR?af=a;2272&cn=oslo&cv=254808&dp=91.90.42.154
IP 104.110.21.5:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /e/_DC3V8QR?af=a;2272&cn=oslo&cv=254808&dp=91.90.42.154 HTTP/1.1
Host: s.click.aliexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.regionic.info/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-length: 0
server: Tengine
x-application-context: global-traffic-holmes-f:7001
access-control-allow-methods: GET, POST, OPTION
access-control-allow-credentials: true
p3p: CP="CAO PSA OUR"
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: 0
strict-transport-security: max-age=31536000 ; includeSubDomains
location: https://sale.aliexpress.ru/ru/__pc/continuation_default.htm?af=a&2272&cn=oslo&cv=254808&dp=91.90.42.154&aff_fcid=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&tt=CPS_NORMAL&aff_fsk=_DC3V8QR&aff_platform=portals-tool&sk=_DC3V8QR&aff_trace_key=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&terminal_id=f3d8eb0c5bef46c9898657fb33d46420
content-language: en-US
eagleeye-traceid: 2101d4a716681769679627056e4325
timing-allow-origin: *
date: Fri, 11 Nov 2022 14:29:28 GMT
set-cookie: xman_us_f=x_l=0&x_as_i=%7B%22aeuCID%22%3A%22022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%22%2C%22af%22%3A%22a%22%2C%22affiliateKey%22%3A%22_DC3V8QR%22%2C%22channel%22%3A%22AFFILIATE%22%2C%22cv%22%3A%221%22%2C%22isCookieCache%22%3A%22N%22%2C%22ms%22%3A%221%22%2C%22pid%22%3A%22716815331%22%2C%22tagtime%22%3A1668176967966%7D&acs_rt=f3d8eb0c5bef46c9898657fb33d46420; Domain=.aliexpress.com; Expires=Wed, 29-Nov-2090 17:43:34 GMT; Path=/
acs_usuc_t=x_csrf=180hrpvz06wnv&acs_rt=f3d8eb0c5bef46c9898657fb33d46420; Domain=.aliexpress.com; Path=/
aeu_cid=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR; Domain=.aliexpress.com; Expires=Wed, 29-Nov-2090 17:43:34 GMT; Path=/
xman_t=u1ofnQCAmUxNXHfuYftzs08XcpzstEeMGYjKFuezDEFQf4D5+BLCIpPhzhjl/u02; Domain=.aliexpress.com; Expires=Thu, 09-Feb-2023 14:29:27 GMT; Path=/; HttpOnly
xman_f=9ty9zyvWaVdCeO4USh6rANnvedAnyqdLg11sq25dRv6kQTlxaYB/oM3eDw5VRrc6vy2BynqKIjNnD584YftS3gNa1q4sM5xVqzqFJuAWysmldn6zSUymTA==; Domain=.aliexpress.com; Expires=Wed, 29-Nov-2090 17:43:34 GMT; Path=/; HttpOnly
traffic_se_co=%7B%7D; Domain=aliexpress.com; Expires=Wed, 29-Nov-2090 17:43:34 GMT; Path=/
af_ss_a=1; Path=/; Domain=.aliexpress.com; Max-Age=2147483647; Secure; SameSite=None
af_ss_b=1; Path=/; Domain=.aliexpress.com; Max-Age=2147483647; SameSite=Lax
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 50b7ad7d0cb47a73140b0c340b5b72b4
5b7fd8d7d4a5fb963c33d52675ef3be152f4e7e3
494e1c3410c113871960bd9b35b3d89c0d404ecb836c03669a8522d159391cd9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 14:29:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ssl.gstatic.com/accounts/o/1832714284-postmessagerelay.js
142.250.74.99200 OK 4.4 kB URL HTTP/2 ssl.gstatic.com/accounts/o/1832714284-postmessagerelay.js
IP 142.250.74.99:0
Hash 22b00a38faad32dc1c5be632f50fbc5a
975891343138ec599ff81a37499fa9380b9b70d8
fe6d46a7a501ebc6afcdac88e318f397fecac70dcc9b9c91aebf423075f5f0f8
GET /accounts/o/1832714284-postmessagerelay.js HTTP/1.1
Host: ssl.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://accounts.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/federated-signon-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="federated-signon-mpm-access"
report-to: {"group":"federated-signon-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/federated-signon-mpm-access"}]}
content-length: 4294
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 09 Nov 2022 18:48:12 GMT
expires: Thu, 09 Nov 2023 18:48:12 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 08 Nov 2022 01:07:49 GMT
content-type: text/javascript
age: 157276
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 50b7ad7d0cb47a73140b0c340b5b72b4
5b7fd8d7d4a5fb963c33d52675ef3be152f4e7e3
494e1c3410c113871960bd9b35b3d89c0d404ecb836c03669a8522d159391cd9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 11 Nov 2022 14:29:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
platform.twitter.com/js/button.d2f864f87f544dc0c11d7d712a191c1f.js
93.184.220.66200 OK 2.4 kB URL HTTP/1.1 platform.twitter.com/js/button.d2f864f87f544dc0c11d7d712a191c1f.js
IP 93.184.220.66:0
File type ASCII text, with very long lines (7017), with no line terminators
Hash 83616664e4155f8af0efb0576f8920cf
1277b0f4f935bec3ada0f87c45395bb6d9b2efbc
bb19d85932c5e8a952b6fc28c1df42aed6d6920f79ee3f2217d2484294d575d3
GET /js/button.d2f864f87f544dc0c11d7d712a191c1f.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.regionic.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 749312
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Fri, 11 Nov 2022 14:29:28 GMT
Etag: "7bb2d17ac20be3bd6ec1079356afecd9+gzip"
Last-Modified: Wed, 02 Nov 2022 19:36:52 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71D)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 2362
platform.twitter.com/widgets/tweet_button.644279d1635fd969e87af94a98bd232b.fr.html
93.184.220.66200 OK 14 kB URL HTTP/1.1 platform.twitter.com/widgets/tweet_button.644279d1635fd969e87af94a98bd232b.fr.html
IP 93.184.220.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32033)
Hash b4287f5f4e7144060cb7d55976a0dc7f
c5dc72929f46eb40fa323f073d832eb8b489ee0a
847bd24756126b49ffe04182885b0640e7d38a6888656ef850d962571e6b602b
GET /widgets/tweet_button.644279d1635fd969e87af94a98bd232b.fr.html HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.regionic.info/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 748850
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Fri, 11 Nov 2022 14:29:28 GMT
Etag: "53819b01f65edf7b7866e434b2c6ea89+gzip"
Last-Modified: Wed, 02 Nov 2022 19:36:56 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71D)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 13993
platform.twitter.com/widgets/tweet_button.644279d1635fd969e87af94a98bd232b.fr.html
93.184.220.66200 OK 14 kB URL HTTP/1.1 platform.twitter.com/widgets/tweet_button.644279d1635fd969e87af94a98bd232b.fr.html
IP 93.184.220.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32033)
Hash b4287f5f4e7144060cb7d55976a0dc7f
c5dc72929f46eb40fa323f073d832eb8b489ee0a
847bd24756126b49ffe04182885b0640e7d38a6888656ef850d962571e6b602b
GET /widgets/tweet_button.644279d1635fd969e87af94a98bd232b.fr.html HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.regionic.info/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 748850
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Fri, 11 Nov 2022 14:29:28 GMT
Etag: "53819b01f65edf7b7866e434b2c6ea89+gzip"
Last-Modified: Wed, 02 Nov 2022 19:36:56 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71D)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 13993
platform.twitter.com/widgets/tweet_button.644279d1635fd969e87af94a98bd232b.fr.html
93.184.220.66200 OK 14 kB URL HTTP/1.1 platform.twitter.com/widgets/tweet_button.644279d1635fd969e87af94a98bd232b.fr.html
IP 93.184.220.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32033)
Hash b4287f5f4e7144060cb7d55976a0dc7f
c5dc72929f46eb40fa323f073d832eb8b489ee0a
847bd24756126b49ffe04182885b0640e7d38a6888656ef850d962571e6b602b
GET /widgets/tweet_button.644279d1635fd969e87af94a98bd232b.fr.html HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.regionic.info/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 749280
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Fri, 11 Nov 2022 14:29:28 GMT
Etag: "53819b01f65edf7b7866e434b2c6ea89+gzip"
Last-Modified: Wed, 02 Nov 2022 19:36:56 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F716)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 13993
syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Ftag%3Dstorm-damage-in-orange-beach-al%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22fr%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1668176968198%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22a3525f077c700%3A1667415560940%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=cf7080252bbc5daeb6b6a96050300e036fc2211d
104.244.42.8200 OK 43 B URL HTTP/2 syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Ftag%3Dstorm-damage-in-orange-beach-al%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22fr%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1668176968198%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22a3525f077c700%3A1667415560940%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=cf7080252bbc5daeb6b6a96050300e036fc2211d
IP 104.244.42.8:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Ftag%3Dstorm-damage-in-orange-beach-al%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22fr%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1668176968198%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22a3525f077c700%3A1667415560940%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=cf7080252bbc5daeb6b6a96050300e036fc2211d HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.regionic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 11 Nov 2022 14:29:28 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Fri, 11 Nov 2022 14:29:28 GMT
content-length: 43
x-transaction-id: c8dce5182b0b20d3
strict-transport-security: max-age=631138519
x-response-time: 113
x-connection-hash: 0f5ef756949cb22ef4b23565111e27365bd037daf5e778a8fb521d5505e88db6
X-Firefox-Spdy: h2
syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Ftag%3Dstorm-damage-in-orange-beach-al%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22fr%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1668176968200%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22a3525f077c700%3A1667415560940%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=cf7080252bbc5daeb6b6a96050300e036fc2211d
104.244.42.8200 OK 43 B URL HTTP/2 syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Ftag%3Dstorm-damage-in-orange-beach-al%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22fr%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1668176968200%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22a3525f077c700%3A1667415560940%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=cf7080252bbc5daeb6b6a96050300e036fc2211d
IP 104.244.42.8:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Ftag%3Dstorm-damage-in-orange-beach-al%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22fr%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1668176968200%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22a3525f077c700%3A1667415560940%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=cf7080252bbc5daeb6b6a96050300e036fc2211d HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.regionic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 11 Nov 2022 14:29:28 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Fri, 11 Nov 2022 14:29:28 GMT
content-length: 43
x-transaction-id: 2a093cb76a1a2d25
strict-transport-security: max-age=631138519
x-response-time: 119
x-connection-hash: 0f5ef756949cb22ef4b23565111e27365bd037daf5e778a8fb521d5505e88db6
X-Firefox-Spdy: h2
syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Ftag%3Dstorm-damage-in-orange-beach-al%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22fr%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1668176968199%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22a3525f077c700%3A1667415560940%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=cf7080252bbc5daeb6b6a96050300e036fc2211d
104.244.42.8200 OK 43 B URL HTTP/2 syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Ftag%3Dstorm-damage-in-orange-beach-al%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22fr%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1668176968199%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22a3525f077c700%3A1667415560940%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=cf7080252bbc5daeb6b6a96050300e036fc2211d
IP 104.244.42.8:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Ftag%3Dstorm-damage-in-orange-beach-al%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22fr%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1668176968199%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22a3525f077c700%3A1667415560940%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=cf7080252bbc5daeb6b6a96050300e036fc2211d HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.regionic.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 11 Nov 2022 14:29:28 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Fri, 11 Nov 2022 14:29:28 GMT
content-length: 43
x-transaction-id: 1679605455804423
strict-transport-security: max-age=631138519
x-response-time: 115
x-connection-hash: 0f5ef756949cb22ef4b23565111e27365bd037daf5e778a8fb521d5505e88db6
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.20.226:0
Hash 406e195f33b949eea03681f6736acdf5
93addd65b5c92727604a7e598ba350935efb4555
0b5946b4cbafd0b20af19557d0edb05831eea966e13ceb64aba67711c9948af0
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 11 Nov 2022 14:29:29 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Tue, 15 Nov 2022 13:17:27 GMT
ETag: "93addd65b5c92727604a7e598ba350935efb4555"
Last-Modified: Fri, 11 Nov 2022 13:17:28 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2569
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7687b868bcaa0b59-OSL
sale.aliexpress.ru/ru/__pc/continuation_default.htm?af=a&2272&cn=oslo&cv=254808&dp=91.90.42.154&aff_fcid=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&tt=CPS_NORMAL&aff_fsk=_DC3V8QR&aff_platform=portals-tool&sk=_DC3V8QR&aff_trace_key=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&terminal_id=f3d8eb0c5bef46c9898657fb33d46420
47.246.133.22302 Found 0 B URL HTTP/2 sale.aliexpress.ru/ru/__pc/continuation_default.htm?af=a&2272&cn=oslo&cv=254808&dp=91.90.42.154&aff_fcid=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&tt=CPS_NORMAL&aff_fsk=_DC3V8QR&aff_platform=portals-tool&sk=_DC3V8QR&aff_trace_key=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&terminal_id=f3d8eb0c5bef46c9898657fb33d46420
IP 47.246.133.22:0
ASN #45102 Alibaba US Technology Co., Ltd.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ru/__pc/continuation_default.htm?af=a&2272&cn=oslo&cv=254808&dp=91.90.42.154&aff_fcid=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&tt=CPS_NORMAL&aff_fsk=_DC3V8QR&aff_platform=portals-tool&sk=_DC3V8QR&aff_trace_key=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&terminal_id=f3d8eb0c5bef46c9898657fb33d46420 HTTP/1.1
Host: sale.aliexpress.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.regionic.info/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 11 Nov 2022 14:29:29 GMT
content-length: 0
location: https://login.aliexpress.com/sync_cookie_read.htm?xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420
set-cookie: ali_apache_id=33.19.92.59.1668176969130.156029.8; path=/; domain=.aliexpress.com; expires=Wed, 30-Nov-2084 01:01:01 GMT
xman_us_f=x_l=0; Domain=.aliexpress.ru; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/
acs_usuc_t=x_csrf=1chuc1x4w9wuf&acs_rt=87f51fb9443c4f4296320702647d4e9b; Domain=.aliexpress.ru; Path=/
xman_t=18wbWBRMPoiBYE3ZDKSZfKDt1ROOEbOQyBopdfO4rfoVCLqSQzN8jpCkBFD+0vS+; Domain=.aliexpress.ru; Expires=Thu, 09-Feb-2023 14:29:29 GMT; Path=/; HttpOnly
xman_f=JdpfRFFJVWTws7CY6c3PfHGFBe465f9n+YRdSaoOV0vpj6IZ601wnjFyp//ZLRhA; Domain=.aliexpress.ru; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/; HttpOnly
p3p: CP="CAO PSA OUR"
server: Tengine/Aserver
eagleeye-traceid: 21135c3b16681769691308197e49f8
strict-transport-security: max-age=31536000
timing-allow-origin: *
X-Firefox-Spdy: h2
login.aliexpress.com/sync_cookie_read.htm?xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420
104.110.21.4302 Found 0 B URL HTTP/2 login.aliexpress.com/sync_cookie_read.htm?xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420
IP 104.110.21.4:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync_cookie_read.htm?xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420 HTTP/1.1
Host: login.aliexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.regionic.info/
Connection: keep-alive
Cookie: af_ss_a=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html;charset=UTF-8
content-length: 0
p3p: CP="CAO PSA OUR"
location: https://login.aliexpress.ru/sync_cookie_write.htm?acs_random_token=c34606338c864d4b832bddcdf8f19dfc&xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420
content-language: en-US
server: Tengine/Aserver
eagleeye-traceid: 2100bdde16681769692988834e76ba
strict-transport-security: max-age=31536000
timing-allow-origin: *
date: Fri, 11 Nov 2022 14:29:29 GMT
set-cookie: ali_apache_id=33.0.189.222.1668176969299.345716.3; path=/; domain=.aliexpress.com; expires=Wed, 30-Nov-2084 01:01:01 GMT
xman_us_f=x_l=0&acs_rt=c34606338c864d4b832bddcdf8f19dfc; Domain=.aliexpress.com; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/
xman_t=mxDKJ2Hj1Ur2wb3Ubza7wEzHAu7qxJfquCXpD4tq1p8b+FAWVKfLC5wsu6EUrVN0; Domain=.aliexpress.com; Expires=Thu, 09-Feb-2023 14:29:29 GMT; Path=/; HttpOnly
acs_usuc_t=acs_rt=c34606338c864d4b832bddcdf8f19dfc&x_csrf=_cis_i0f778r; Domain=.aliexpress.com; Path=/
xman_f=nOGDH/L4NhiWfMMyjDp9dG3FfTPQmCFUi/6Vuma5RQDaG+8O/QIPxFznrEOXePxjsDLItOSIxwD4FsQgMSHR/LReQExlVwg4jRtJcx8CgptI3vvHlobO7Q==; Domain=.aliexpress.com; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/; HttpOnly
ali_apache_track=; Domain=.aliexpress.com; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/
ali_apache_tracktmp=; Domain=.aliexpress.com; Path=/
xman_us_f=x_l=0&acs_rt=c34606338c864d4b832bddcdf8f19dfc; Domain=.aliexpress.com; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/
xman_t=DzTtDWUYnOrAnImTi9qjyhC6RQ8lMYavBNl9JkEFmnWbE78K59BcG/ByEIW01qRm; Domain=.aliexpress.com; Expires=Thu, 09-Feb-2023 14:29:29 GMT; Path=/; HttpOnly
acs_usuc_t=acs_rt=c34606338c864d4b832bddcdf8f19dfc&x_csrf=_cis_i0f778r; Domain=.aliexpress.com; Path=/
xman_f=KGXVXS2Z7X0e+I20HZIzVhksN7EetplAJ3BGoLaxVohiEbkS5NlIWClmxnzjPtcbcPcd3SG+XciLMltvBeij5OxAgF/5BIzAV82MPcWhZO+y/CyzgUPvkw==; Domain=.aliexpress.com; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/; HttpOnly
e_id=pt20; Expires=Mon, 08 Nov 2032 14:29:29 GMT; Path=/; Domain=.aliexpress.com
X-Firefox-Spdy: h2
login.aliexpress.ru/sync_cookie_write.htm?acs_random_token=c34606338c864d4b832bddcdf8f19dfc&xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420
47.246.133.22302 Found 0 B URL HTTP/2 login.aliexpress.ru/sync_cookie_write.htm?acs_random_token=c34606338c864d4b832bddcdf8f19dfc&xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420
IP 47.246.133.22:0
ASN #45102 Alibaba US Technology Co., Ltd.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync_cookie_write.htm?acs_random_token=c34606338c864d4b832bddcdf8f19dfc&xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420 HTTP/1.1
Host: login.aliexpress.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.regionic.info/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Fri, 11 Nov 2022 14:29:29 GMT
content-type: text/html;charset=UTF-8
content-length: 0
location: https://sale.aliexpress.ru/ru/__pc/continuation_default.htm?af=a&2272&cn=oslo&cv=254808&dp=91.90.42.154&aff_fcid=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&tt=CPS_NORMAL&aff_fsk=_DC3V8QR&aff_platform=portals-tool&sk=_DC3V8QR&aff_trace_key=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&terminal_id=f3d8eb0c5bef46c9898657fb33d46420
set-cookie: ali_apache_id=33.19.92.59.1668176969478.157043.5; path=/; domain=.aliexpress.com; expires=Wed, 30-Nov-2084 01:01:01 GMT
xman_us_f=x_l=0&acs_rt=c34606338c864d4b832bddcdf8f19dfc; Domain=.aliexpress.ru; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/
xman_t=TMQ8O0cx+/2pT3V2HGlbd7Up0cICOeqvAl4S26Ysky4LupY3IXA1Y1v+i7tsNxuf; Domain=.aliexpress.ru; Expires=Thu, 09-Feb-2023 14:29:29 GMT; Path=/; HttpOnly
acs_usuc_t=acs_rt=dcb3ee7c79a7406da98ed4abe4c2d4c4&x_csrf=o87gp8bp0shu; Domain=.aliexpress.ru; Path=/
xman_f=TdKYefUyXH1VsVbjxUuFGlNxMFBDSpTi6mBqXLnzgf86HKeh/csCuDUv/FwgRFBjESJcc0FSFyVaGYTyxxEHMn3AhQevx6dqKJHY8M2yTZYQYnlSC+fhuw==; Domain=.aliexpress.ru; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/; HttpOnly
ali_apache_track=; Domain=.alibaba.com; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/
ali_apache_tracktmp=; Domain=.alibaba.com; Path=/
xman_us_f=x_l=0&acs_rt=c34606338c864d4b832bddcdf8f19dfc; Domain=.aliexpress.ru; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/
xman_t=XcTpvVKEJgwP8GMGa3iXGnKCGJJaXc5fA67+33K7CHV8e79eAgaj2QZ9sIT5uwHZ; Domain=.aliexpress.ru; Expires=Thu, 09-Feb-2023 14:29:29 GMT; Path=/; HttpOnly
acs_usuc_t=acs_rt=dcb3ee7c79a7406da98ed4abe4c2d4c4&x_csrf=o87gp8bp0shu; Domain=.aliexpress.ru; Path=/
xman_f=WoJG4afNeIi/m+mzxf1jmKyuWYPGb6NNvf/VVPg9cXQz+JZETwQdyf3kXPjWeiWA82mDA7MeWvtuBptMI4qQO8nWb8PkiTFMCqqFJYHUoWU+mP1stHGC9A==; Domain=.aliexpress.ru; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/; HttpOnly
p3p: CP="CAO PSA OUR"
content-language: en-US
server: Tengine/Aserver
eagleeye-traceid: 21135c3b16681769694778208e49f8
strict-transport-security: max-age=31536000
timing-allow-origin: *
X-Firefox-Spdy: h2
sale.aliexpress.ru/ru/__pc/continuation_default.htm?af=a&2272&cn=oslo&cv=254808&dp=91.90.42.154&aff_fcid=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&tt=CPS_NORMAL&aff_fsk=_DC3V8QR&aff_platform=portals-tool&sk=_DC3V8QR&aff_trace_key=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&terminal_id=f3d8eb0c5bef46c9898657fb33d46420
47.246.133.22302 Found 0 B URL HTTP/2 sale.aliexpress.ru/ru/__pc/continuation_default.htm?af=a&2272&cn=oslo&cv=254808&dp=91.90.42.154&aff_fcid=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&tt=CPS_NORMAL&aff_fsk=_DC3V8QR&aff_platform=portals-tool&sk=_DC3V8QR&aff_trace_key=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&terminal_id=f3d8eb0c5bef46c9898657fb33d46420
IP 47.246.133.22:0
ASN #45102 Alibaba US Technology Co., Ltd.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ru/__pc/continuation_default.htm?af=a&2272&cn=oslo&cv=254808&dp=91.90.42.154&aff_fcid=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&tt=CPS_NORMAL&aff_fsk=_DC3V8QR&aff_platform=portals-tool&sk=_DC3V8QR&aff_trace_key=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&terminal_id=f3d8eb0c5bef46c9898657fb33d46420 HTTP/1.1
Host: sale.aliexpress.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.regionic.info/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Fri, 11 Nov 2022 14:29:29 GMT
content-length: 0
location: https://login.aliexpress.com/sync_cookie_read.htm?xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420
set-cookie: ali_apache_id=33.19.92.59.1668176969537.156916.3; path=/; domain=.aliexpress.com; expires=Wed, 30-Nov-2084 01:01:01 GMT
xman_us_f=x_l=0; Domain=.aliexpress.ru; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/
acs_usuc_t=x_csrf=i1hmbfe_fw99&acs_rt=a96e8c4e72224ae78d53871a3c48537b; Domain=.aliexpress.ru; Path=/
xman_t=PNc3YB/tkpYNIObbL97TV29g7Ck7GGJDjN0unDvLdZypBz2oyyNV8ueeCH/1Diyr; Domain=.aliexpress.ru; Expires=Thu, 09-Feb-2023 14:29:29 GMT; Path=/; HttpOnly
xman_f=RcRj8qlOivyVz98QXjZ6V3oKMFWqTI03reEg5jxCgJguLlGsPHIu1rl+acLUGv0Q; Domain=.aliexpress.ru; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/; HttpOnly
p3p: CP="CAO PSA OUR"
server: Tengine/Aserver
eagleeye-traceid: 21135c3b16681769695378213e49f8
strict-transport-security: max-age=31536000
timing-allow-origin: *
X-Firefox-Spdy: h2
login.aliexpress.com/sync_cookie_read.htm?xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420
104.110.21.4302 Found 0 B URL HTTP/2 login.aliexpress.com/sync_cookie_read.htm?xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420
IP 104.110.21.4:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync_cookie_read.htm?xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420 HTTP/1.1
Host: login.aliexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.regionic.info/
Connection: keep-alive
Cookie: af_ss_a=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-type: text/html;charset=UTF-8
content-length: 0
p3p: CP="CAO PSA OUR"
location: https://login.aliexpress.ru/sync_cookie_write.htm?acs_random_token=4f110b3509d9452eb33e422e8f7edb2f&xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420
content-language: en-US
server: Tengine/Aserver
eagleeye-traceid: 0b0a0ae216681769695715679e13c6
strict-transport-security: max-age=31536000
timing-allow-origin: *
date: Fri, 11 Nov 2022 14:29:29 GMT
set-cookie: ali_apache_id=11.10.10.226.1668176969597.329122.8; path=/; domain=.aliexpress.com; expires=Wed, 30-Nov-2084 01:01:01 GMT
xman_us_f=x_l=0&acs_rt=4f110b3509d9452eb33e422e8f7edb2f; Domain=.aliexpress.com; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/
xman_t=vKcldAnja7eTG55IH3asmoe+va1JkvlpYBt5wH/c8dGixlHov0t2SP2X8pmKTy8T; Domain=.aliexpress.com; Expires=Thu, 09-Feb-2023 14:29:29 GMT; Path=/; HttpOnly
acs_usuc_t=acs_rt=4f110b3509d9452eb33e422e8f7edb2f&x_csrf=pztkmnrwr02h; Domain=.aliexpress.com; Path=/
xman_f=mPC0282oR5VrQ7C7hRwAR3EnW86L/A+vkFn2+JgvbNFNbvCsFHfnaNDUAFBmupg2e33v9OCHgaHQ2YcbGDoWxNtriObFY1SGxDH8+hibDaxW1jNnGLHnVA==; Domain=.aliexpress.com; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/; HttpOnly
ali_apache_track=; Domain=.aliexpress.com; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/
ali_apache_tracktmp=; Domain=.aliexpress.com; Path=/
xman_us_f=x_l=0&acs_rt=4f110b3509d9452eb33e422e8f7edb2f; Domain=.aliexpress.com; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/
xman_t=9RN+GGD13WqlFw9lQiw0Dar1lp9iewvUGZ7+f+LyUu5bzQEHZEkJK+lVk3rBA8ZB; Domain=.aliexpress.com; Expires=Thu, 09-Feb-2023 14:29:29 GMT; Path=/; HttpOnly
acs_usuc_t=acs_rt=4f110b3509d9452eb33e422e8f7edb2f&x_csrf=pztkmnrwr02h; Domain=.aliexpress.com; Path=/
xman_f=Ez7iYNeN8EjNPH9QnXAdFE7DdNOaZkok3EjcGwWHVACkr6Ulorlq/7TbpvKtsjxHrBs/xzcxbXRtTLR087mFihJYtuwuRkrCmUKaT9vvfp2YtQEEg5Zp/A==; Domain=.aliexpress.com; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/; HttpOnly
e_id=pt80; Expires=Mon, 08 Nov 2032 14:29:29 GMT; Path=/; Domain=.aliexpress.com
X-Firefox-Spdy: h2
login.aliexpress.ru/sync_cookie_write.htm?acs_random_token=4f110b3509d9452eb33e422e8f7edb2f&xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420
47.246.133.22302 Found 0 B URL HTTP/2 login.aliexpress.ru/sync_cookie_write.htm?acs_random_token=4f110b3509d9452eb33e422e8f7edb2f&xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420
IP 47.246.133.22:0
ASN #45102 Alibaba US Technology Co., Ltd.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync_cookie_write.htm?acs_random_token=4f110b3509d9452eb33e422e8f7edb2f&xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420 HTTP/1.1
Host: login.aliexpress.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.regionic.info/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Fri, 11 Nov 2022 14:29:29 GMT
content-type: text/html;charset=UTF-8
content-length: 0
location: https://sale.aliexpress.ru/ru/__pc/continuation_default.htm?af=a&2272&cn=oslo&cv=254808&dp=91.90.42.154&aff_fcid=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&tt=CPS_NORMAL&aff_fsk=_DC3V8QR&aff_platform=portals-tool&sk=_DC3V8QR&aff_trace_key=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&terminal_id=f3d8eb0c5bef46c9898657fb33d46420
set-cookie: ali_apache_id=33.19.92.59.1668176969643.157082.3; path=/; domain=.aliexpress.com; expires=Wed, 30-Nov-2084 01:01:01 GMT
xman_us_f=x_l=0&acs_rt=4f110b3509d9452eb33e422e8f7edb2f; Domain=.aliexpress.ru; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/
xman_t=l0cKnoZhlRFI6Ayfee02vMvr9IZ8DnpKzfMeAzPVzYNLu/DurpVCQYCZZqx0TxY8; Domain=.aliexpress.ru; Expires=Thu, 09-Feb-2023 14:29:29 GMT; Path=/; HttpOnly
acs_usuc_t=acs_rt=8f6a012e25da4bbaba4c8a8cfc9b10e0&x_csrf=gxm75bq6xtfa; Domain=.aliexpress.ru; Path=/
xman_f=t6ufy0cMagU3Mkrnx5H1R8nz4j0EmQJBlRTFj/GZOX6YwD2ZsK8DUb0Ca/tJt6Y5wv45JTILHhRfKGbtYfeoZ3xounZX3gHx9qAsU2z59vcsD/WZDyQjKA==; Domain=.aliexpress.ru; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/; HttpOnly
ali_apache_track=; Domain=.alibaba.com; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/
ali_apache_tracktmp=; Domain=.alibaba.com; Path=/
xman_us_f=x_l=0&acs_rt=4f110b3509d9452eb33e422e8f7edb2f; Domain=.aliexpress.ru; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/
xman_t=RFe3JZpeLHy1JFRLUhxEcYhBIGpSZ3oYio5Jt1+UShPe5BfFv2X00HQ89eva2nUk; Domain=.aliexpress.ru; Expires=Thu, 09-Feb-2023 14:29:29 GMT; Path=/; HttpOnly
acs_usuc_t=acs_rt=8f6a012e25da4bbaba4c8a8cfc9b10e0&x_csrf=gxm75bq6xtfa; Domain=.aliexpress.ru; Path=/
xman_f=A5ZYWH3r/yyLLjy5Dadg80SjYWLovgaHmmOnYdGutN1wruVNWARiP+zsbfu6d2GVIjycPeejwALdhvskLLb0Y4LlRYliXRXbEekrbsXuIEs8CPqPeorunw==; Domain=.aliexpress.ru; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/; HttpOnly
p3p: CP="CAO PSA OUR"
content-language: en-US
server: Tengine/Aserver
eagleeye-traceid: 21135c3b16681769696448218e49f8
strict-transport-security: max-age=31536000
timing-allow-origin: *
X-Firefox-Spdy: h2
developers.google.com/
142.250.74.14200 OK 11 kB IP 142.250.74.14:0
Hash 2ac3a93ba89f5c29ef58aa00012acebf
9ce9acba9a19c6f8bd97984fefacb8890afe90e4
ef1538ee3857f882261019e00b87560fd81e920d70a5a1189f50081ff148fd67
GET / HTTP/1.1
Host: developers.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.regionic.info/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 18:10:23 GMT
content-type: text/html; charset=utf-8
set-cookie: _ga_devsite=GA1.3.2444605606.1668176969; Expires=Sun, 10 Nov 2024 14:29:29 GMT; Max-Age=63072000; Path=/
content-security-policy: base-uri 'self'; object-src 'none'; script-src 'strict-dynamic' 'unsafe-inline' https: http: 'nonce-hq+Vp7DxTxnDl1o4JcUNkLAjFcnTiq' 'unsafe-eval'; report-uri https://csp.withgoogle.com/csp/devsite/v2
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: SAMEORIGIN
x-xss-protection: 0
x-content-type-options: nosniff
cache-control: no-cache, must-revalidate
expires: 0
pragma: no-cache
content-encoding: gzip
x-cloud-trace-context: f770813b3d35da2f7bdcdeab5e24b000
vary: Accept-Encoding
date: Fri, 11 Nov 2022 14:29:29 GMT
server: Google Frontend
content-length: 22521
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
login.aliexpress.com/sync_cookie_read.htm?xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420
104.110.21.4302 Found 0 B URL HTTP/2 login.aliexpress.com/sync_cookie_read.htm?xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420
IP 104.110.21.4:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync_cookie_read.htm?xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420 HTTP/1.1
Host: login.aliexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.regionic.info/
Connection: keep-alive
Cookie: af_ss_a=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-type: text/html;charset=UTF-8
content-length: 0
p3p: CP="CAO PSA OUR"
location: https://login.aliexpress.ru/sync_cookie_write.htm?acs_random_token=b9cbbc5be4dc4c5298ec7c0eda351e56&xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420
content-language: en-US
server: Tengine/Aserver
eagleeye-traceid: 2100bdcf16681769697637745eacfc
strict-transport-security: max-age=31536000
timing-allow-origin: *
date: Fri, 11 Nov 2022 14:29:29 GMT
set-cookie: ali_apache_id=33.0.189.207.1668176969764.348907.3; path=/; domain=.aliexpress.com; expires=Wed, 30-Nov-2084 01:01:01 GMT
xman_us_f=x_l=0&acs_rt=b9cbbc5be4dc4c5298ec7c0eda351e56; Domain=.aliexpress.com; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/
xman_t=2tn/RkmxTon8v2pZoaBqjMK+MnC5RIOS4R09rqDugInl2yfApo6HdBIJdKOl5LlJ; Domain=.aliexpress.com; Expires=Thu, 09-Feb-2023 14:29:29 GMT; Path=/; HttpOnly
acs_usuc_t=acs_rt=b9cbbc5be4dc4c5298ec7c0eda351e56&x_csrf=i30_8hrxicea; Domain=.aliexpress.com; Path=/
xman_f=u3ivCdjdgjXOdeB0dlYIxxyvL2T3V983MKO7XEVPWwDC/JcwcYKfk8FkvOpFecAFDPTJdU0jqjsDsoSiEXRLdlaThcE4ftFANFLRlNSmv9Tvks4Xkt0fFA==; Domain=.aliexpress.com; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/; HttpOnly
ali_apache_track=; Domain=.aliexpress.com; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/
ali_apache_tracktmp=; Domain=.aliexpress.com; Path=/
xman_us_f=x_l=0&acs_rt=b9cbbc5be4dc4c5298ec7c0eda351e56; Domain=.aliexpress.com; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/
xman_t=W+uU18bLtNc69Jl81ud6ByXPulqPErEIbWlt7bOaDLyf8MUgg0/0EoZIaUvjHi2T; Domain=.aliexpress.com; Expires=Thu, 09-Feb-2023 14:29:29 GMT; Path=/; HttpOnly
acs_usuc_t=acs_rt=b9cbbc5be4dc4c5298ec7c0eda351e56&x_csrf=i30_8hrxicea; Domain=.aliexpress.com; Path=/
xman_f=WYiHqOH1Jvh2ZVzpjjQvmdXOyW56I2WVz5OB6KwQCdb/OEaNIsuX4+MK96NmloTt/ZqwPGOfF67kx99oVCkuGeqEzdkSOrzWXXuRiGTFSQjm8rAEzpkXEw==; Domain=.aliexpress.com; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/; HttpOnly
e_id=pt10; Expires=Mon, 08 Nov 2032 14:29:29 GMT; Path=/; Domain=.aliexpress.com
X-Firefox-Spdy: h2
login.aliexpress.ru/sync_cookie_write.htm?acs_random_token=b9cbbc5be4dc4c5298ec7c0eda351e56&xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420
47.246.133.22302 Found 0 B URL HTTP/2 login.aliexpress.ru/sync_cookie_write.htm?acs_random_token=b9cbbc5be4dc4c5298ec7c0eda351e56&xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420
IP 47.246.133.22:0
ASN #45102 Alibaba US Technology Co., Ltd.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync_cookie_write.htm?acs_random_token=b9cbbc5be4dc4c5298ec7c0eda351e56&xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420 HTTP/1.1
Host: login.aliexpress.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.regionic.info/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Fri, 11 Nov 2022 14:29:29 GMT
content-type: text/html;charset=UTF-8
content-length: 0
location: https://sale.aliexpress.ru/ru/__pc/continuation_default.htm?af=a&2272&cn=oslo&cv=254808&dp=91.90.42.154&aff_fcid=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&tt=CPS_NORMAL&aff_fsk=_DC3V8QR&aff_platform=portals-tool&sk=_DC3V8QR&aff_trace_key=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&terminal_id=f3d8eb0c5bef46c9898657fb33d46420
set-cookie: ali_apache_id=33.19.92.59.1668176969811.162461.5; path=/; domain=.aliexpress.com; expires=Wed, 30-Nov-2084 01:01:01 GMT
xman_us_f=x_l=0&acs_rt=b9cbbc5be4dc4c5298ec7c0eda351e56; Domain=.aliexpress.ru; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/
xman_t=XQD8Y7g9iNiSU6QV0nw0Hz0YQWqpjrBqCtaZF2t6QcKNM7xuey4ACVCeP4hLJerY; Domain=.aliexpress.ru; Expires=Thu, 09-Feb-2023 14:29:29 GMT; Path=/; HttpOnly
acs_usuc_t=acs_rt=69fc3586eb2c402d8164b6cadf40c491&x_csrf=118z6d2hq03qd; Domain=.aliexpress.ru; Path=/
xman_f=7KLIsEXXsQi925drL45X1w4HRjfHBMBs85/6RQcUUPsNv6XxYgGFWNH9cTV2x2M5wYYLDtL3ktMh6dC0Z2rOc4EWFW1w+tz8ViBcvxmW8AYawNYPFQqPFQ==; Domain=.aliexpress.ru; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/; HttpOnly
ali_apache_track=; Domain=.alibaba.com; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/
ali_apache_tracktmp=; Domain=.alibaba.com; Path=/
xman_us_f=x_l=0&acs_rt=b9cbbc5be4dc4c5298ec7c0eda351e56; Domain=.aliexpress.ru; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/
xman_t=jZnvAaqUh7wultnD0GA3esBXO4iCUmCDAup758TgIV1dL5wHCCkPJeiiLWEhS2Ua; Domain=.aliexpress.ru; Expires=Thu, 09-Feb-2023 14:29:29 GMT; Path=/; HttpOnly
acs_usuc_t=acs_rt=69fc3586eb2c402d8164b6cadf40c491&x_csrf=118z6d2hq03qd; Domain=.aliexpress.ru; Path=/
xman_f=e0VhL7Q0me8M/gmnOakAK12zGc9P+QhNFdKR9wlf9Er9oezWI28V90mzecXueQB2drjv1cynWn79kKXBXAiSg77Ebv41WFpBamKqF0rQluT/AivVGwUuWA==; Domain=.aliexpress.ru; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/; HttpOnly
p3p: CP="CAO PSA OUR"
content-language: en-US
server: Tengine/Aserver
eagleeye-traceid: 21135c3b16681769698118222e49f8
strict-transport-security: max-age=31536000
timing-allow-origin: *
X-Firefox-Spdy: h2
sale.aliexpress.ru/ru/__pc/continuation_default.htm?af=a&2272&cn=oslo&cv=254808&dp=91.90.42.154&aff_fcid=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&tt=CPS_NORMAL&aff_fsk=_DC3V8QR&aff_platform=portals-tool&sk=_DC3V8QR&aff_trace_key=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&terminal_id=f3d8eb0c5bef46c9898657fb33d46420
47.246.133.22302 Found 0 B URL HTTP/2 sale.aliexpress.ru/ru/__pc/continuation_default.htm?af=a&2272&cn=oslo&cv=254808&dp=91.90.42.154&aff_fcid=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&tt=CPS_NORMAL&aff_fsk=_DC3V8QR&aff_platform=portals-tool&sk=_DC3V8QR&aff_trace_key=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&terminal_id=f3d8eb0c5bef46c9898657fb33d46420
IP 47.246.133.22:0
ASN #45102 Alibaba US Technology Co., Ltd.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ru/__pc/continuation_default.htm?af=a&2272&cn=oslo&cv=254808&dp=91.90.42.154&aff_fcid=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&tt=CPS_NORMAL&aff_fsk=_DC3V8QR&aff_platform=portals-tool&sk=_DC3V8QR&aff_trace_key=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&terminal_id=f3d8eb0c5bef46c9898657fb33d46420 HTTP/1.1
Host: sale.aliexpress.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.regionic.info/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Fri, 11 Nov 2022 14:29:29 GMT
content-length: 0
location: https://login.aliexpress.com/sync_cookie_read.htm?xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420
set-cookie: ali_apache_id=33.19.92.59.1668176969870.156058.5; path=/; domain=.aliexpress.com; expires=Wed, 30-Nov-2084 01:01:01 GMT
xman_us_f=x_l=0; Domain=.aliexpress.ru; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/
acs_usuc_t=x_csrf=1c3_9gfz8k1ne&acs_rt=071435fc6d5f439b8bd23ef4c9c61e12; Domain=.aliexpress.ru; Path=/
xman_t=8tvNzKy62oJucSXXOOVVrwNb/YyJWmtifN/p6BYFae+ADEDUvff/ilBwfc3cE5Qq; Domain=.aliexpress.ru; Expires=Thu, 09-Feb-2023 14:29:29 GMT; Path=/; HttpOnly
xman_f=Nl6kVLK03nFiEu6261/cp5oVqDBZxFyY3A/Fwo4ft2N428jHuQofvqt3OBCRPIoc; Domain=.aliexpress.ru; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/; HttpOnly
p3p: CP="CAO PSA OUR"
server: Tengine/Aserver
eagleeye-traceid: 21135c3b16681769698688225e49f8
strict-transport-security: max-age=31536000
timing-allow-origin: *
X-Firefox-Spdy: h2
login.aliexpress.com/sync_cookie_read.htm?xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420
104.110.21.4302 Found 0 B URL HTTP/2 login.aliexpress.com/sync_cookie_read.htm?xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420
IP 104.110.21.4:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync_cookie_read.htm?xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420 HTTP/1.1
Host: login.aliexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.regionic.info/
Connection: keep-alive
Cookie: af_ss_a=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-type: text/html;charset=UTF-8
content-length: 0
p3p: CP="CAO PSA OUR"
location: https://login.aliexpress.ru/sync_cookie_write.htm?acs_random_token=6a6d91ede0744d7c82af5b020eb00413&xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420
content-language: en-US
server: Tengine/Aserver
eagleeye-traceid: 2100bdde16681769699268845e76ba
strict-transport-security: max-age=31536000
timing-allow-origin: *
date: Fri, 11 Nov 2022 14:29:29 GMT
set-cookie: ali_apache_id=33.0.189.222.1668176969927.341283.3; path=/; domain=.aliexpress.com; expires=Wed, 30-Nov-2084 01:01:01 GMT
xman_us_f=x_l=0&acs_rt=6a6d91ede0744d7c82af5b020eb00413; Domain=.aliexpress.com; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/
xman_t=q8k+I9brEIGTjSJgVSkfElIQNhGfUACWjOj7g0Ig+AiLpofF879SNJdEo8PvOxwX; Domain=.aliexpress.com; Expires=Thu, 09-Feb-2023 14:29:29 GMT; Path=/; HttpOnly
acs_usuc_t=acs_rt=6a6d91ede0744d7c82af5b020eb00413&x_csrf=dmi0t_y6hru1; Domain=.aliexpress.com; Path=/
xman_f=poP5bLiT7oOJjDanrPJl2DBYqh6TfLZbFpVCzrCcEeioaCKWL+vNyO4QmgTT1hO99jFhJ/H7hOsaGKrsp94oageocH1XP4bYrrBmCLSLn7hwztAsr8STaw==; Domain=.aliexpress.com; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/; HttpOnly
ali_apache_track=; Domain=.aliexpress.com; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/
ali_apache_tracktmp=; Domain=.aliexpress.com; Path=/
xman_us_f=x_l=0&acs_rt=6a6d91ede0744d7c82af5b020eb00413; Domain=.aliexpress.com; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/
xman_t=dG/Tcu4yDVT44HaqlWRw1uMUVeffxUXjddYGuZrYtZYb9II62PAvgzERPRG2l2FY; Domain=.aliexpress.com; Expires=Thu, 09-Feb-2023 14:29:29 GMT; Path=/; HttpOnly
acs_usuc_t=acs_rt=6a6d91ede0744d7c82af5b020eb00413&x_csrf=dmi0t_y6hru1; Domain=.aliexpress.com; Path=/
xman_f=pwtqnPuhoAf77lEwyS2tzcMKcdj/wu4F/UEe6I/R68u/gMb0VdZ0s5zYHlkTI2YL4tCwBymJ0xFvTDV/2xsQ3Imvo+L+0kk/bz0i9Quw9fYg0WlSF0FoPw==; Domain=.aliexpress.com; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/; HttpOnly
e_id=pt20; Expires=Mon, 08 Nov 2032 14:29:29 GMT; Path=/; Domain=.aliexpress.com
X-Firefox-Spdy: h2
login.aliexpress.ru/sync_cookie_write.htm?acs_random_token=6a6d91ede0744d7c82af5b020eb00413&xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420
47.246.133.22302 Found 0 B URL HTTP/2 login.aliexpress.ru/sync_cookie_write.htm?acs_random_token=6a6d91ede0744d7c82af5b020eb00413&xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420
IP 47.246.133.22:0
ASN #45102 Alibaba US Technology Co., Ltd.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync_cookie_write.htm?acs_random_token=6a6d91ede0744d7c82af5b020eb00413&xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420 HTTP/1.1
Host: login.aliexpress.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.regionic.info/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Fri, 11 Nov 2022 14:29:29 GMT
content-type: text/html;charset=UTF-8
content-length: 0
location: https://sale.aliexpress.ru/ru/__pc/continuation_default.htm?af=a&2272&cn=oslo&cv=254808&dp=91.90.42.154&aff_fcid=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&tt=CPS_NORMAL&aff_fsk=_DC3V8QR&aff_platform=portals-tool&sk=_DC3V8QR&aff_trace_key=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&terminal_id=f3d8eb0c5bef46c9898657fb33d46420
set-cookie: ali_apache_id=33.19.92.59.1668176969970.160675.5; path=/; domain=.aliexpress.com; expires=Wed, 30-Nov-2084 01:01:01 GMT
xman_us_f=x_l=0&acs_rt=6a6d91ede0744d7c82af5b020eb00413; Domain=.aliexpress.ru; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/
xman_t=VtpbyVLJkSuEH8bZrR/WsXpxPMeQP6hNZJ4vObPZe0YAZFIq5GBQqubnEsJYAiPU; Domain=.aliexpress.ru; Expires=Thu, 09-Feb-2023 14:29:29 GMT; Path=/; HttpOnly
acs_usuc_t=acs_rt=376e9839d0b74b7ab926c04662c37add&x_csrf=6oip8heqmaal; Domain=.aliexpress.ru; Path=/
xman_f=rHMBU/2sguSEzGvzRIlIkEkpeXwWUZQnGwzGpDSvzOCipwUGlDfPsmtTu6yNc6Fg+cruIQYRyrQfmwPfMoBFH4rhLOjvSx9FV9W4iaEzhf535XxsbY6Q6A==; Domain=.aliexpress.ru; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/; HttpOnly
ali_apache_track=; Domain=.alibaba.com; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/
ali_apache_tracktmp=; Domain=.alibaba.com; Path=/
xman_us_f=x_l=0&acs_rt=6a6d91ede0744d7c82af5b020eb00413; Domain=.aliexpress.ru; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/
xman_t=2LHktQgj/m/equzn4dobrswPBcd57HNQjOTfQwQAuLcYnlW10Hfnxeco+eA0gHPF; Domain=.aliexpress.ru; Expires=Thu, 09-Feb-2023 14:29:29 GMT; Path=/; HttpOnly
acs_usuc_t=acs_rt=376e9839d0b74b7ab926c04662c37add&x_csrf=6oip8heqmaal; Domain=.aliexpress.ru; Path=/
xman_f=Oh+I6fI8qHcotoch3yP23PxIxBxIbbkkReHSyzh2jBzntEXe+o0JS7Rz4AL6BgwqMB2JRvz4vkZkW4OOmsPk/6fzYO/Fik7bWkjnkc10N9e0d8nTKeUwxQ==; Domain=.aliexpress.ru; Expires=Wed, 29-Nov-2090 17:43:36 GMT; Path=/; HttpOnly
p3p: CP="CAO PSA OUR"
content-language: en-US
server: Tengine/Aserver
eagleeye-traceid: 21135c3b16681769699718229e49f8
strict-transport-security: max-age=31536000
timing-allow-origin: *
X-Firefox-Spdy: h2
sale.aliexpress.ru/ru/__pc/continuation_default.htm?af=a&2272&cn=oslo&cv=254808&dp=91.90.42.154&aff_fcid=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&tt=CPS_NORMAL&aff_fsk=_DC3V8QR&aff_platform=portals-tool&sk=_DC3V8QR&aff_trace_key=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&terminal_id=f3d8eb0c5bef46c9898657fb33d46420
47.246.133.22302 Found 0 B URL HTTP/2 sale.aliexpress.ru/ru/__pc/continuation_default.htm?af=a&2272&cn=oslo&cv=254808&dp=91.90.42.154&aff_fcid=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&tt=CPS_NORMAL&aff_fsk=_DC3V8QR&aff_platform=portals-tool&sk=_DC3V8QR&aff_trace_key=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&terminal_id=f3d8eb0c5bef46c9898657fb33d46420
IP 47.246.133.22:0
ASN #45102 Alibaba US Technology Co., Ltd.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ru/__pc/continuation_default.htm?af=a&2272&cn=oslo&cv=254808&dp=91.90.42.154&aff_fcid=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&tt=CPS_NORMAL&aff_fsk=_DC3V8QR&aff_platform=portals-tool&sk=_DC3V8QR&aff_trace_key=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&terminal_id=f3d8eb0c5bef46c9898657fb33d46420 HTTP/1.1
Host: sale.aliexpress.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.regionic.info/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Fri, 11 Nov 2022 14:29:30 GMT
content-length: 0
location: https://login.aliexpress.com/sync_cookie_read.htm?xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420
set-cookie: ali_apache_id=33.19.92.59.166817697026.160450.9; path=/; domain=.aliexpress.com; expires=Wed, 30-Nov-2084 01:01:01 GMT
xman_us_f=x_l=0; Domain=.aliexpress.ru; Expires=Wed, 29-Nov-2090 17:43:37 GMT; Path=/
acs_usuc_t=x_csrf=1eo7dyexa2_6l&acs_rt=529cc51922ba424689ea6a49b22ca0e4; Domain=.aliexpress.ru; Path=/
xman_t=eEnfKso9gvHtNTYP67Z6O3df1ktWHDK2egEJBPqlZa+vaPmWO2V7ekvNP6zIaYyR; Domain=.aliexpress.ru; Expires=Thu, 09-Feb-2023 14:29:30 GMT; Path=/; HttpOnly
xman_f=hgNZ2z5xTIJtMSau5PwNiI2/HmuNdZhWHE1w6tXWDfy+w55a0S3VltwX3ssKp4X3; Domain=.aliexpress.ru; Expires=Wed, 29-Nov-2090 17:43:37 GMT; Path=/; HttpOnly
p3p: CP="CAO PSA OUR"
server: Tengine/Aserver
eagleeye-traceid: 21135c3b16681769700288230e49f8
strict-transport-security: max-age=31536000
timing-allow-origin: *
X-Firefox-Spdy: h2
login.aliexpress.com/sync_cookie_read.htm?xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420
104.110.21.4302 Found 0 B URL HTTP/2 login.aliexpress.com/sync_cookie_read.htm?xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420
IP 104.110.21.4:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync_cookie_read.htm?xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420 HTTP/1.1
Host: login.aliexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.regionic.info/
Connection: keep-alive
Cookie: af_ss_a=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-type: text/html;charset=UTF-8
content-length: 0
p3p: CP="CAO PSA OUR"
location: https://login.aliexpress.ru/sync_cookie_write.htm?acs_random_token=9c1b74628eba466582538289a29893b7&xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420
content-language: en-US
server: Tengine/Aserver
eagleeye-traceid: 2100bb4c16681769700873091e6ff4
strict-transport-security: max-age=31536000
timing-allow-origin: *
date: Fri, 11 Nov 2022 14:29:30 GMT
set-cookie: ali_apache_id=33.0.187.76.166817697088.345770.7; path=/; domain=.aliexpress.com; expires=Wed, 30-Nov-2084 01:01:01 GMT
xman_us_f=x_l=0&acs_rt=9c1b74628eba466582538289a29893b7; Domain=.aliexpress.com; Expires=Wed, 29-Nov-2090 17:43:37 GMT; Path=/
xman_t=Lvn9AV4ahl8FpzgyT/PL413toV3QPBvVIxhFgfQJq87F0PM0XNeqR6UW3isL4t/D; Domain=.aliexpress.com; Expires=Thu, 09-Feb-2023 14:29:30 GMT; Path=/; HttpOnly
acs_usuc_t=acs_rt=9c1b74628eba466582538289a29893b7&x_csrf=1avxw5qe_5nnn; Domain=.aliexpress.com; Path=/
xman_f=uPUE7YSgyJXYzHVffFuxN8RlkrNfkI+t8JDB9mbIkziLhKvzyh/7JF5XEQ3cwaFGVa/DJZRA8jwNeXhKc7QMqw2Wm1jRuMZW27Ci3TXC78EQ2c+qpNyL1A==; Domain=.aliexpress.com; Expires=Wed, 29-Nov-2090 17:43:37 GMT; Path=/; HttpOnly
ali_apache_track=; Domain=.aliexpress.com; Expires=Wed, 29-Nov-2090 17:43:37 GMT; Path=/
ali_apache_tracktmp=; Domain=.aliexpress.com; Path=/
xman_us_f=x_l=0&acs_rt=9c1b74628eba466582538289a29893b7; Domain=.aliexpress.com; Expires=Wed, 29-Nov-2090 17:43:37 GMT; Path=/
xman_t=wuUXe3yHbkw9qviqOvvfqescr0xRhkH2lGI62OnnB9FG4zK2ZLiIml58KdD3lQuH; Domain=.aliexpress.com; Expires=Thu, 09-Feb-2023 14:29:30 GMT; Path=/; HttpOnly
acs_usuc_t=acs_rt=9c1b74628eba466582538289a29893b7&x_csrf=1avxw5qe_5nnn; Domain=.aliexpress.com; Path=/
xman_f=82qHD83ORjEBVq0i/w3U1T7C5s+DjonnOAVAXYYbHimFNby+qrvPLmU3uPJIobvO4IDiUPSm0B1iiYUMyR5oHauwYOlLAdci81TSTOG3kEnIf8Dc1zzcCg==; Domain=.aliexpress.com; Expires=Wed, 29-Nov-2090 17:43:37 GMT; Path=/; HttpOnly
e_id=pt80; Expires=Mon, 08 Nov 2032 14:29:30 GMT; Path=/; Domain=.aliexpress.com
X-Firefox-Spdy: h2
login.aliexpress.ru/sync_cookie_write.htm?acs_random_token=9c1b74628eba466582538289a29893b7&xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420
47.246.133.22302 Found 0 B URL HTTP/2 login.aliexpress.ru/sync_cookie_write.htm?acs_random_token=9c1b74628eba466582538289a29893b7&xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420
IP 47.246.133.22:0
ASN #45102 Alibaba US Technology Co., Ltd.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync_cookie_write.htm?acs_random_token=9c1b74628eba466582538289a29893b7&xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420 HTTP/1.1
Host: login.aliexpress.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.regionic.info/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Fri, 11 Nov 2022 14:29:30 GMT
content-type: text/html;charset=UTF-8
content-length: 0
location: https://sale.aliexpress.ru/ru/__pc/continuation_default.htm?af=a&2272&cn=oslo&cv=254808&dp=91.90.42.154&aff_fcid=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&tt=CPS_NORMAL&aff_fsk=_DC3V8QR&aff_platform=portals-tool&sk=_DC3V8QR&aff_trace_key=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&terminal_id=f3d8eb0c5bef46c9898657fb33d46420
set-cookie: ali_apache_id=33.19.92.59.1668176970131.155007.5; path=/; domain=.aliexpress.com; expires=Wed, 30-Nov-2084 01:01:01 GMT
xman_us_f=x_l=0&acs_rt=9c1b74628eba466582538289a29893b7; Domain=.aliexpress.ru; Expires=Wed, 29-Nov-2090 17:43:37 GMT; Path=/
xman_t=Gtb1tPVFvpu3Yz0s0s1CGTBGdKr9ogMUfHASd+rMiccE6l/sS+KrwUwqNntVLJlo; Domain=.aliexpress.ru; Expires=Thu, 09-Feb-2023 14:29:30 GMT; Path=/; HttpOnly
acs_usuc_t=acs_rt=2ec2f2b5154b49d387fe7938798cd53b&x_csrf=b2_ml6tvz3sl; Domain=.aliexpress.ru; Path=/
xman_f=LIRlSVIGZqTgto+NhCiXN0aX5mD16yWavzgB5q8Myl9BBxDlaM7FkvHYAEWvXPk/kmk4/MKJt63b2Z1NvgKU7r535OH1FwM2VumtncSC5XPmHqUJEg8nyg==; Domain=.aliexpress.ru; Expires=Wed, 29-Nov-2090 17:43:37 GMT; Path=/; HttpOnly
ali_apache_track=; Domain=.alibaba.com; Expires=Wed, 29-Nov-2090 17:43:37 GMT; Path=/
ali_apache_tracktmp=; Domain=.alibaba.com; Path=/
xman_us_f=x_l=0&acs_rt=9c1b74628eba466582538289a29893b7; Domain=.aliexpress.ru; Expires=Wed, 29-Nov-2090 17:43:37 GMT; Path=/
xman_t=ei29vQ2jNdktwwQnu+xu7Qh6mtWKwxpZ3HE8USvcE/fGdhstIJtoNhDzA5mN7KsU; Domain=.aliexpress.ru; Expires=Thu, 09-Feb-2023 14:29:30 GMT; Path=/; HttpOnly
acs_usuc_t=acs_rt=2ec2f2b5154b49d387fe7938798cd53b&x_csrf=b2_ml6tvz3sl; Domain=.aliexpress.ru; Path=/
xman_f=CNTlmNGHP3KYFNjJ/fmvg7LTyuoVOdLuaXEFRZwMdmvqOuO0JeRxoSVu6caxRxms4Rpl9+7dGy2oz2iYsjyQTkwOc1Vhua2at17obINpxLE9Hydrvxy/Sg==; Domain=.aliexpress.ru; Expires=Wed, 29-Nov-2090 17:43:37 GMT; Path=/; HttpOnly
p3p: CP="CAO PSA OUR"
content-language: en-US
server: Tengine/Aserver
eagleeye-traceid: 21135c3b16681769701328234e49f8
strict-transport-security: max-age=31536000
timing-allow-origin: *
X-Firefox-Spdy: h2
sale.aliexpress.ru/ru/__pc/continuation_default.htm?af=a&2272&cn=oslo&cv=254808&dp=91.90.42.154&aff_fcid=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&tt=CPS_NORMAL&aff_fsk=_DC3V8QR&aff_platform=portals-tool&sk=_DC3V8QR&aff_trace_key=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&terminal_id=f3d8eb0c5bef46c9898657fb33d46420
47.246.133.22302 Found 0 B URL HTTP/2 sale.aliexpress.ru/ru/__pc/continuation_default.htm?af=a&2272&cn=oslo&cv=254808&dp=91.90.42.154&aff_fcid=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&tt=CPS_NORMAL&aff_fsk=_DC3V8QR&aff_platform=portals-tool&sk=_DC3V8QR&aff_trace_key=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&terminal_id=f3d8eb0c5bef46c9898657fb33d46420
IP 47.246.133.22:0
ASN #45102 Alibaba US Technology Co., Ltd.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ru/__pc/continuation_default.htm?af=a&2272&cn=oslo&cv=254808&dp=91.90.42.154&aff_fcid=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&tt=CPS_NORMAL&aff_fsk=_DC3V8QR&aff_platform=portals-tool&sk=_DC3V8QR&aff_trace_key=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&terminal_id=f3d8eb0c5bef46c9898657fb33d46420 HTTP/1.1
Host: sale.aliexpress.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.regionic.info/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Fri, 11 Nov 2022 14:29:30 GMT
content-length: 0
location: https://login.aliexpress.com/sync_cookie_read.htm?xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420
set-cookie: ali_apache_id=33.19.92.59.1668176970201.156270.0; path=/; domain=.aliexpress.com; expires=Wed, 30-Nov-2084 01:01:01 GMT
xman_us_f=x_l=0; Domain=.aliexpress.ru; Expires=Wed, 29-Nov-2090 17:43:37 GMT; Path=/
acs_usuc_t=x_csrf=16j8u9g7btwj3&acs_rt=8b3ccce5595045d8870c9420880385e3; Domain=.aliexpress.ru; Path=/
xman_t=hozZ8aRLYOLpCXgY6o82rfQpwyAUmts7fDI1i0fbwnE/SAIRTtwkakBGPXkedJW5; Domain=.aliexpress.ru; Expires=Thu, 09-Feb-2023 14:29:30 GMT; Path=/; HttpOnly
xman_f=m6NdRhhFFvkv/XkDTc16/GfFJ+LFjBKH+oW2GRfQNK3kASty5FWFjfMuNUxWyttg; Domain=.aliexpress.ru; Expires=Wed, 29-Nov-2090 17:43:37 GMT; Path=/; HttpOnly
p3p: CP="CAO PSA OUR"
server: Tengine/Aserver
eagleeye-traceid: 21135c3b16681769702008236e49f8
strict-transport-security: max-age=31536000
timing-allow-origin: *
X-Firefox-Spdy: h2
login.aliexpress.com/sync_cookie_read.htm?xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420
104.110.21.4302 Found 0 B URL HTTP/2 login.aliexpress.com/sync_cookie_read.htm?xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420
IP 104.110.21.4:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync_cookie_read.htm?xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420 HTTP/1.1
Host: login.aliexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.regionic.info/
Connection: keep-alive
Cookie: af_ss_a=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-type: text/html;charset=UTF-8
content-length: 0
p3p: CP="CAO PSA OUR"
location: https://login.aliexpress.ru/sync_cookie_write.htm?acs_random_token=e5e24ffeb3024f6791cf390be9e63bb9&xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420
content-language: en-US
server: Tengine/Aserver
eagleeye-traceid: 0b0a182b16681769702374931ee8f5
strict-transport-security: max-age=31536000
timing-allow-origin: *
date: Fri, 11 Nov 2022 14:29:30 GMT
set-cookie: ali_apache_id=11.10.24.43.1668176970238.359262.1; path=/; domain=.aliexpress.com; expires=Wed, 30-Nov-2084 01:01:01 GMT
xman_us_f=x_l=0&acs_rt=e5e24ffeb3024f6791cf390be9e63bb9; Domain=.aliexpress.com; Expires=Wed, 29-Nov-2090 17:43:37 GMT; Path=/
xman_t=4S+3hGHoVCDeyEWAojyB7lvcvLp3yV1KBnbIYWpMax8YbAVxPjyLP9RC8zgKHtLF; Domain=.aliexpress.com; Expires=Thu, 09-Feb-2023 14:29:30 GMT; Path=/; HttpOnly
acs_usuc_t=acs_rt=e5e24ffeb3024f6791cf390be9e63bb9&x_csrf=10z9zz_wftfyc; Domain=.aliexpress.com; Path=/
xman_f=N6ZfyehpPAvVPwX0RffOzQUIZqE97mIBeAGYWvDWn5Knp/jkLorjDDTbrptFW7abZuZPD4zrWeLUCVOoJz2Rt8BBcSw7irU7PdKVVlGAK2RiJOn0mbu2bA==; Domain=.aliexpress.com; Expires=Wed, 29-Nov-2090 17:43:37 GMT; Path=/; HttpOnly
ali_apache_track=; Domain=.aliexpress.com; Expires=Wed, 29-Nov-2090 17:43:37 GMT; Path=/
ali_apache_tracktmp=; Domain=.aliexpress.com; Path=/
xman_us_f=x_l=0&acs_rt=e5e24ffeb3024f6791cf390be9e63bb9; Domain=.aliexpress.com; Expires=Wed, 29-Nov-2090 17:43:37 GMT; Path=/
xman_t=7yVAFLebwB6zx71vF2Iw6oeHJvozIbdn995KZl/DYe+1HzbPjikCgWJsTmaAgRkb; Domain=.aliexpress.com; Expires=Thu, 09-Feb-2023 14:29:30 GMT; Path=/; HttpOnly
acs_usuc_t=acs_rt=e5e24ffeb3024f6791cf390be9e63bb9&x_csrf=10z9zz_wftfyc; Domain=.aliexpress.com; Path=/
xman_f=YYzuw8K6npicyv6HRTtk2Bb7OgdvdjX2Gc/C8hTX0oeuZa8HiS5U5ajUt2DUJkHzFlwEUtlivIbv/IoB9zT6m8MdfRMszFMGw6Cvxj4Hw0GYqIOpB5NpRA==; Domain=.aliexpress.com; Expires=Wed, 29-Nov-2090 17:43:37 GMT; Path=/; HttpOnly
e_id=pt10; Expires=Mon, 08 Nov 2032 14:29:30 GMT; Path=/; Domain=.aliexpress.com
X-Firefox-Spdy: h2
login.aliexpress.ru/sync_cookie_write.htm?acs_random_token=e5e24ffeb3024f6791cf390be9e63bb9&xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420
47.246.133.22302 Found 0 B URL HTTP/2 login.aliexpress.ru/sync_cookie_write.htm?acs_random_token=e5e24ffeb3024f6791cf390be9e63bb9&xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420
IP 47.246.133.22:0
ASN #45102 Alibaba US Technology Co., Ltd.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync_cookie_write.htm?acs_random_token=e5e24ffeb3024f6791cf390be9e63bb9&xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420 HTTP/1.1
Host: login.aliexpress.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.regionic.info/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Fri, 11 Nov 2022 14:29:30 GMT
content-type: text/html;charset=UTF-8
content-length: 0
location: https://sale.aliexpress.ru/ru/__pc/continuation_default.htm?af=a&2272&cn=oslo&cv=254808&dp=91.90.42.154&aff_fcid=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&tt=CPS_NORMAL&aff_fsk=_DC3V8QR&aff_platform=portals-tool&sk=_DC3V8QR&aff_trace_key=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&terminal_id=f3d8eb0c5bef46c9898657fb33d46420
set-cookie: ali_apache_id=33.19.92.59.1668176970305.160493.6; path=/; domain=.aliexpress.com; expires=Wed, 30-Nov-2084 01:01:01 GMT
xman_us_f=x_l=0&acs_rt=e5e24ffeb3024f6791cf390be9e63bb9; Domain=.aliexpress.ru; Expires=Wed, 29-Nov-2090 17:43:37 GMT; Path=/
xman_t=qkPxMG/FTOiJw9kObA+OnaPzCF/t3DlWEX7KuwYzQ6KnhNVSMkmFUnBKBnXZzkyn; Domain=.aliexpress.ru; Expires=Thu, 09-Feb-2023 14:29:30 GMT; Path=/; HttpOnly
acs_usuc_t=acs_rt=50f0d8101e9a4c42b98fa7f58b58a733&x_csrf=jp2svfwjzxgm; Domain=.aliexpress.ru; Path=/
xman_f=NikcHDrKQ5b/7FakD6g+IxJlkLQrte/sdonGQStta83uL81PnGbOHwcvWRabvoredxF9bNdM3w3Z2v3W5xWUdJB8+PUuAEVIlmJguqtl2Pwk6MIH46mWbg==; Domain=.aliexpress.ru; Expires=Wed, 29-Nov-2090 17:43:37 GMT; Path=/; HttpOnly
ali_apache_track=; Domain=.alibaba.com; Expires=Wed, 29-Nov-2090 17:43:37 GMT; Path=/
ali_apache_tracktmp=; Domain=.alibaba.com; Path=/
xman_us_f=x_l=0&acs_rt=e5e24ffeb3024f6791cf390be9e63bb9; Domain=.aliexpress.ru; Expires=Wed, 29-Nov-2090 17:43:37 GMT; Path=/
xman_t=jKc0G21vt8v1CgvFk2IORDZp4OS5+NCxFkOWNgl47fi7/OzA/ttZvxOAHEbZyyVG; Domain=.aliexpress.ru; Expires=Thu, 09-Feb-2023 14:29:30 GMT; Path=/; HttpOnly
acs_usuc_t=acs_rt=50f0d8101e9a4c42b98fa7f58b58a733&x_csrf=jp2svfwjzxgm; Domain=.aliexpress.ru; Path=/
xman_f=Yh3Gt0Nt+91PDjBAkXYmB6cnAf3CkR8d1khszIh7dIIzMfdQ3/TAx0xAhruZjVAQU7r/2A1y7HBD5CQm5Qkx9iIy5ddwMQAUt/MA1q2jxh+FFwK0bd52kw==; Domain=.aliexpress.ru; Expires=Wed, 29-Nov-2090 17:43:37 GMT; Path=/; HttpOnly
p3p: CP="CAO PSA OUR"
content-language: en-US
server: Tengine/Aserver
eagleeye-traceid: 21135c3b16681769703058241e49f8
strict-transport-security: max-age=31536000
timing-allow-origin: *
X-Firefox-Spdy: h2
sale.aliexpress.ru/ru/__pc/continuation_default.htm?af=a&2272&cn=oslo&cv=254808&dp=91.90.42.154&aff_fcid=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&tt=CPS_NORMAL&aff_fsk=_DC3V8QR&aff_platform=portals-tool&sk=_DC3V8QR&aff_trace_key=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&terminal_id=f3d8eb0c5bef46c9898657fb33d46420
47.246.133.22302 Found 0 B URL HTTP/2 sale.aliexpress.ru/ru/__pc/continuation_default.htm?af=a&2272&cn=oslo&cv=254808&dp=91.90.42.154&aff_fcid=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&tt=CPS_NORMAL&aff_fsk=_DC3V8QR&aff_platform=portals-tool&sk=_DC3V8QR&aff_trace_key=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&terminal_id=f3d8eb0c5bef46c9898657fb33d46420
IP 47.246.133.22:0
ASN #45102 Alibaba US Technology Co., Ltd.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ru/__pc/continuation_default.htm?af=a&2272&cn=oslo&cv=254808&dp=91.90.42.154&aff_fcid=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&tt=CPS_NORMAL&aff_fsk=_DC3V8QR&aff_platform=portals-tool&sk=_DC3V8QR&aff_trace_key=022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR&terminal_id=f3d8eb0c5bef46c9898657fb33d46420 HTTP/1.1
Host: sale.aliexpress.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.regionic.info/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Fri, 11 Nov 2022 14:29:30 GMT
content-length: 0
location: https://login.aliexpress.com/sync_cookie_read.htm?xman_goto=https%3A%2F%2Fsale.aliexpress.ru%2Fru%2F__pc%2Fcontinuation_default.htm%3Faf%3Da%262272%26cn%3Doslo%26cv%3D254808%26dp%3D91.90.42.154%26aff_fcid%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26tt%3DCPS_NORMAL%26aff_fsk%3D_DC3V8QR%26aff_platform%3Dportals-tool%26sk%3D_DC3V8QR%26aff_trace_key%3D022c6c773670414aba77fa625bf04995-1668176967966-04000-_DC3V8QR%26terminal_id%3Df3d8eb0c5bef46c9898657fb33d46420
set-cookie: ali_apache_id=33.19.92.59.1668176970364.156820.4; path=/; domain=.aliexpress.com; expires=Wed, 30-Nov-2084 01:01:01 GMT
xman_us_f=x_l=0; Domain=.aliexpress.ru; Expires=Wed, 29-Nov-2090 17:43:37 GMT; Path=/
acs_usuc_t=x_csrf=106hl7ca5o9_p&acs_rt=9c263897ecb84e959b2afe2d29e14cfc; Domain=.aliexpress.ru; Path=/
xman_t=AaQCRBM/07HauoRIThK9YGL1uqQAw+32anawRWB+w9izqs/X1JlPdK55rbAO5beX; Domain=.aliexpress.ru; Expires=Thu, 09-Feb-2023 14:29:30 GMT; Path=/; HttpOnly
xman_f=5JRcOHJtFBrt7LNLdPoun3NDyHqCagJ4wH3cJf1cM/5vPpakAARKlMIDSDMIuUAZ; Domain=.aliexpress.ru; Expires=Wed, 29-Nov-2090 17:43:37 GMT; Path=/; HttpOnly
p3p: CP="CAO PSA OUR"
server: Tengine/Aserver
eagleeye-traceid: 21135c3b16681769703648243e49f8
strict-transport-security: max-age=31536000
timing-allow-origin: *
X-Firefox-Spdy: h2
www.facebook.com/v2.0/plugins/like.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df23b95afa871c2c%26domain%3Dwww.regionic.info%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fwww.regionic.info%252Ff3800456a9fc76c%26relation%3Dparent.parent&container_width=0&href=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Fp%3D54247&layout=button_count&locale=fr_FR&sdk=joey&share=true&width=100
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/v2.0/plugins/like.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df23b95afa871c2c%26domain%3Dwww.regionic.info%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fwww.regionic.info%252Ff3800456a9fc76c%26relation%3Dparent.parent&container_width=0&href=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Fp%3D54247&layout=button_count&locale=fr_FR&sdk=joey&share=true&width=100
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v2.0/plugins/like.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df23b95afa871c2c%26domain%3Dwww.regionic.info%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fwww.regionic.info%252Ff3800456a9fc76c%26relation%3Dparent.parent&container_width=0&href=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Fp%3D54247&layout=button_count&locale=fr_FR&sdk=joey&share=true&width=100 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.regionic.info/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html;charset=utf-8
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: e6Q9/nQOwews5YLfbjQhEb3Vyu8hPQ/qP8lKY2AykvjBlE434vcDKYk0HXL4ZTzBbhrBYZ4Aq1nBhvOCVQZOWA==
content-length: 0
date: Fri, 11 Nov 2022 14:29:31 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/v2.0/plugins/like.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df47e7644251768%26domain%3Dwww.regionic.info%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fwww.regionic.info%252Ff3800456a9fc76c%26relation%3Dparent.parent&container_width=0&href=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Fp%3D25290&layout=button_count&locale=fr_FR&sdk=joey&share=true&width=100
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/v2.0/plugins/like.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df47e7644251768%26domain%3Dwww.regionic.info%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fwww.regionic.info%252Ff3800456a9fc76c%26relation%3Dparent.parent&container_width=0&href=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Fp%3D25290&layout=button_count&locale=fr_FR&sdk=joey&share=true&width=100
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v2.0/plugins/like.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df47e7644251768%26domain%3Dwww.regionic.info%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fwww.regionic.info%252Ff3800456a9fc76c%26relation%3Dparent.parent&container_width=0&href=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Fp%3D25290&layout=button_count&locale=fr_FR&sdk=joey&share=true&width=100 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.regionic.info/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html;charset=utf-8
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: mUYCHTKrI70VNdlmhVR8sKe8S+XEmrSZOid6awoFXe6nPuHh/bd44wUiQPyOH4NtTlu2Tr3JHqLus7PnbDHNTA==
content-length: 0
date: Fri, 11 Nov 2022 14:29:31 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/v2.0/plugins/like.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df17e4aa6db340d6%26domain%3Dwww.regionic.info%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fwww.regionic.info%252Ff3800456a9fc76c%26relation%3Dparent.parent&container_width=0&href=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Fp%3D42435&layout=button_count&locale=fr_FR&sdk=joey&share=true&width=100
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/v2.0/plugins/like.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df17e4aa6db340d6%26domain%3Dwww.regionic.info%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fwww.regionic.info%252Ff3800456a9fc76c%26relation%3Dparent.parent&container_width=0&href=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Fp%3D42435&layout=button_count&locale=fr_FR&sdk=joey&share=true&width=100
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v2.0/plugins/like.php?app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df17e4aa6db340d6%26domain%3Dwww.regionic.info%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252Fwww.regionic.info%252Ff3800456a9fc76c%26relation%3Dparent.parent&container_width=0&href=http%3A%2F%2Fwww.regionic.info%2Fjmb%2F%3Fp%3D42435&layout=button_count&locale=fr_FR&sdk=joey&share=true&width=100 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.regionic.info/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html;charset=utf-8
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: 1EeVFCXopbod7v3BmsTMZ39dXlhlAOQXZxrPSkRVtCowgi98V2N0w89Im4+c58DztU8l2cne/vVkIIX3hlWUUQ==
content-length: 0
date: Fri, 11 Nov 2022 14:29:31 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
developers.google.com/
142.250.74.14200 OK 0 B IP 142.250.74.14:0
GET / HTTP/1.1
Host: developers.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.regionic.info/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 18:10:23 GMT
content-type: text/html; charset=utf-8
set-cookie: _ga_devsite=GA1.3.3709420139.1668176968; Expires=Sun, 10 Nov 2024 14:29:28 GMT; Max-Age=63072000; Path=/
content-security-policy: base-uri 'self'; object-src 'none'; script-src 'strict-dynamic' 'unsafe-inline' https: http: 'nonce-ODwqTEY18qnKAjn2mw8d25nLAYO2k1' 'unsafe-eval'; report-uri https://csp.withgoogle.com/csp/devsite/v2
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: SAMEORIGIN
x-xss-protection: 0
x-content-type-options: nosniff
cache-control: no-cache, must-revalidate
expires: 0
pragma: no-cache
content-encoding: gzip
x-cloud-trace-context: a2469aaca50cc254bdafaf98edfb83a7
vary: Accept-Encoding
date: Fri, 11 Nov 2022 14:29:28 GMT
server: Google Frontend
content-length: 22562
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
platform.tumblr.com/v1/share.js?ver=6.0.3
74.114.154.15200 OK 0 B URL HTTP/2 platform.tumblr.com/v1/share.js?ver=6.0.3
IP 74.114.154.15:0
GET /v1/share.js?ver=6.0.3 HTTP/1.1
Host: platform.tumblr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.regionic.info/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: openresty
date: Fri, 11 Nov 2022 14:29:25 GMT
content-type: application/javascript; charset=utf-8
last-modified: Sun, 21 Aug 2022 06:27:38 GMT
vary: Accept-Encoding
etag: W/"6301d05a-60"
expires: Fri, 11 Nov 2022 15:29:25 GMT
pragma: public
content-encoding: br
cache-control: max-age=3600, immutable
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.stumbleupon.com/hostedbadge.php?s=1&r=http://www.regionic.info/jmb/?p=25290
76.76.21.98404 Not Found 0 B URL HTTP/2 www.stumbleupon.com/hostedbadge.php?s=1&r=http://www.regionic.info/jmb/?p=25290
IP 76.76.21.98:0
GET /hostedbadge.php?s=1&r=http://www.regionic.info/jmb/?p=25290 HTTP/1.1
Host: www.stumbleupon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.regionic.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
access-control-allow-origin: *
age: 1205101
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="404"
content-encoding: br
content-type: text/html; charset=utf-8
date: Fri, 11 Nov 2022 14:29:27 GMT
etag: W/"1a30bd62d0e7d6b9c85d90d076391f09"
server: Vercel
strict-transport-security: max-age=63072000
x-matched-path: /404
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::ttgdq-1668176967130-d2f4b9707c2a
X-Firefox-Spdy: h2
static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
104.16.57.101200 OK 0 B URL HTTP/2 static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
IP 104.16.57.101:0
GET /beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://button.buffer.com
Connection: keep-alive
Referer: https://button.buffer.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 11 Nov 2022 14:29:27 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2022.10.1
last-modified: Fri, 21 Oct 2022 01:56:09 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 7687b85ea807b503-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
developers.google.com/
142.250.74.14200 OK 0 B IP 142.250.74.14:0
GET / HTTP/1.1
Host: developers.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.regionic.info/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Nov 2022 18:10:23 GMT
content-type: text/html; charset=utf-8
set-cookie: _ga_devsite=GA1.3.742782673.1668176971; Expires=Sun, 10 Nov 2024 14:29:31 GMT; Max-Age=63072000; Path=/
content-security-policy: base-uri 'self'; object-src 'none'; script-src 'strict-dynamic' 'unsafe-inline' https: http: 'nonce-WIBIgtkDZHS6oCTxrVmSUJKkqRWSLm' 'unsafe-eval'; report-uri https://csp.withgoogle.com/csp/devsite/v2
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: SAMEORIGIN
x-xss-protection: 0
x-content-type-options: nosniff
cache-control: no-cache, must-revalidate
expires: 0
pragma: no-cache
content-encoding: gzip
x-cloud-trace-context: 523247b280977438d7cae6dd5343cf0c
vary: Accept-Encoding
date: Fri, 11 Nov 2022 14:29:31 GMT
server: Google Frontend
content-length: 22422
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.stumbleupon.com/hostedbadge.php?s=1&r=http://www.regionic.info/jmb/?p=42435
76.76.21.98404 Not Found 0 B URL HTTP/2 www.stumbleupon.com/hostedbadge.php?s=1&r=http://www.regionic.info/jmb/?p=42435
IP 76.76.21.98:0
GET /hostedbadge.php?s=1&r=http://www.regionic.info/jmb/?p=42435 HTTP/1.1
Host: www.stumbleupon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.regionic.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
access-control-allow-origin: *
age: 1205100
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="404"
content-encoding: br
content-type: text/html; charset=utf-8
date: Fri, 11 Nov 2022 14:29:25 GMT
etag: W/"1a30bd62d0e7d6b9c85d90d076391f09"
server: Vercel
strict-transport-security: max-age=63072000
x-matched-path: /404
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::qrjdm-1668176965366-4bef2f4b312e
X-Firefox-Spdy: h2
www.stumbleupon.com/hostedbadge.php?s=1&r=http://www.regionic.info/jmb/?p=54247
76.76.21.98404 Not Found 0 B URL HTTP/2 www.stumbleupon.com/hostedbadge.php?s=1&r=http://www.regionic.info/jmb/?p=54247
IP 76.76.21.98:0
GET /hostedbadge.php?s=1&r=http://www.regionic.info/jmb/?p=54247 HTTP/1.1
Host: www.stumbleupon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.regionic.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
access-control-allow-origin: *
age: 1205100
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="404"
content-encoding: br
content-type: text/html; charset=utf-8
date: Fri, 11 Nov 2022 14:29:25 GMT
etag: W/"1a30bd62d0e7d6b9c85d90d076391f09"
server: Vercel
strict-transport-security: max-age=63072000
x-matched-path: /404
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::mq9jd-1668176965369-ba27bca6e49f
X-Firefox-Spdy: h2
static.buffer.com/js/button.js
104.16.140.52200 OK 0 B URL HTTP/2 static.buffer.com/js/button.js
IP 104.16.140.52:0
GET /js/button.js HTTP/1.1
Host: static.buffer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.regionic.info/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 11 Nov 2022 14:29:25 GMT
content-type: text/javascript
x-amz-id-2: Ez4lz1aR1yMYZHegBAJ5vo0CmbjWEJDT1L7iuTPXlEI15UkH8cOSAh+JlIzIVKpOc5SOw7ZdQLw=
x-amz-request-id: PR1Y3NMPESV3ARMJ
last-modified: Sat, 01 Apr 2017 01:06:37 GMT
etag: W/"c8686dc19498aa717127b1d47a53a912"
cf-cache-status: HIT
age: 898
expires: Fri, 11 Nov 2022 18:29:25 GMT
cache-control: public, max-age=14400
set-cookie: __cf_bm=ItaNIjOX5qkj9_2JzakCB0KoM.XMtZzVji2Hv4opT4s-1668176965-0-AcUQALLStQT4Dikid6a2efdFIIsgZQkqEVCYxXZ7XKj1nYcI0PaQP3XNqXv1JIimPbZoz/el1mGKheUOmk05byM=; path=/; expires=Fri, 11-Nov-22 14:59:25 GMT; domain=.buffer.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
strict-transport-security: max-age=15552000
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7687b851aa95b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.stumbleupon.com/hostedbadge.php?s=1&r=http://www.regionic.info/jmb/?p=54247
76.76.21.98404 Not Found 0 B URL HTTP/2 www.stumbleupon.com/hostedbadge.php?s=1&r=http://www.regionic.info/jmb/?p=54247
IP 76.76.21.98:0
GET /hostedbadge.php?s=1&r=http://www.regionic.info/jmb/?p=54247 HTTP/1.1
Host: www.stumbleupon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.regionic.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
access-control-allow-origin: *
age: 1205101
cache-control: public, max-age=0, must-revalidate
content-disposition: inline; filename="404"
content-encoding: br
content-type: text/html; charset=utf-8
date: Fri, 11 Nov 2022 14:29:27 GMT
etag: W/"1a30bd62d0e7d6b9c85d90d076391f09"
server: Vercel
strict-transport-security: max-age=63072000
x-matched-path: /404
x-vercel-cache: HIT
x-vercel-id: arn1:arn1::hkb86-1668176967002-d267bd24e1f0
X-Firefox-Spdy: h2
hyvesgames.nl/forwarded
172.67.215.15301 Moved Permanently 0 B IP 172.67.215.15:0
GET /forwarded HTTP/1.1
Host: hyvesgames.nl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.regionic.info/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Fri, 11 Nov 2022 14:29:27 GMT
content-type: text/html; charset=iso-8859-1
location: https://hyvesgames.nl/forwarded/
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=0
via: 1.1 google
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s8q1EXB9bGGvSpWwwX2U0g%2FJlt1grxctQBFFiNnoR3otpVbhDHvGO3wCXjQxUUTJkFXRtFUWpEQUo2lIrZic5gk32S5HxhQaIn45REo9INo1xP8QaBlFzjKBgCFvcD0T"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7687b85e1c3ab518-OSL
X-Firefox-Spdy: h2
accounts.google.com/o/oauth2/postmessageRelay?parent=http%3A%2F%2Fwww.regionic.info&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.P0B2vZm_jJk.O%2Fd%3D1%2Frs%3DAHpOoo_nmCaDbrwZCe_WiNZEgKVKQ-FnSA%2Fm%3D__features__
216.58.207.237200 OK 0 B URL HTTP/2 accounts.google.com/o/oauth2/postmessageRelay?parent=http%3A%2F%2Fwww.regionic.info&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.P0B2vZm_jJk.O%2Fd%3D1%2Frs%3DAHpOoo_nmCaDbrwZCe_WiNZEgKVKQ-FnSA%2Fm%3D__features__
IP 216.58.207.237:0
GET /o/oauth2/postmessageRelay?parent=http%3A%2F%2Fwww.regionic.info&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.P0B2vZm_jJk.O%2Fd%3D1%2Frs%3DAHpOoo_nmCaDbrwZCe_WiNZEgKVKQ-FnSA%2Fm%3D__features__ HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.regionic.info/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 11 Nov 2022 14:29:27 GMT
content-security-policy: require-trusted-types-for 'script';report-uri /o/cspreport, script-src 'nonce-hwld7Jbdb7tvqep5nzKlaw' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /o/cspreport
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2