eio.io/l6j30ZY
172.67.222.198301 Moved Permanently 0 B IP 172.67.222.198:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /l6j30ZY HTTP/1.1
Host: eio.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 04 Sep 2022 20:10:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sun, 04 Sep 2022 21:10:48 GMT
Location: https://eio.io/l6j30ZY
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qiUPNS9dsFmY%2FjP19l%2BJVBTGXjKOvV%2B2tkCH41jzPZ%2FTDXXeBl4YWz2QjWeWFQqJZbYNpGD1M1XE9sTkVHmxULP9cuoedXH6NT46COSWXseJIFyAmK8OWcU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74595ee49cc2b4f3-OSL
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 04 Sep 2022 19:44:19 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: JYwkNZYW3HvtD6SuThl4VaqEMF54xBDoNwveEBpcq6i5FRlZkKrm1g==
Age: 1589
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 04 Sep 2022 01:15:18 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: lCQPPmSHOp6cOTwE3c9Ur051EVgn3FXXsv_QD1NZbhegyHA3xlbXww==
age: 68131
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d931e0142ef5ffe9cdb4c4c6bfcb9bc9
d9c4caf525e8926b042a14f38d374cc4033ed768
f610984fb0a75b3a31424faa860cbc8172c7f21804df1dc14fbb685b7c456f29
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F610984FB0A75B3A31424FAA860CBC8172C7F21804DF1DC14FBB685B7C456F29"
Last-Modified: Sat, 03 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13468
Expires: Sun, 04 Sep 2022 23:55:16 GMT
Date: Sun, 04 Sep 2022 20:10:48 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 20:10:48 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash a73c40e0fed317f31e35a24d5b5e2d0d
fb19e9d403e37956762ebb527260576860161872
4a38f2cc8997dada402e2cce06bbd8776cbad2075b00696d00efa59ad5388644
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 20:10:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash cc6ea3e01d1d6b8c4b28ff64d3b795a7
017457c6f5a63157102485a956c667aad36d33ef
e6fe903f67363d3e92b929e274f0de7c2f6a15b6df1806198199440ed0fe221e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 20:10:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4dd8f825ae7db323eb0a5e472a18fef2
eb56e252ce6eb5179268ed4aa6852e36a4195200
0ee7dda3bce986bf045de114d6d19768958292b5ce9c24e4b0726c368ea930ae
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0EE7DDA3BCE986BF045DE114D6D19768958292B5CE9C24E4B0726C368EA930AE"
Last-Modified: Sat, 03 Sep 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7782
Expires: Sun, 04 Sep 2022 22:20:30 GMT
Date: Sun, 04 Sep 2022 20:10:48 GMT
Connection: keep-alive
www.googletagmanager.com/gtag/js?id=UA-135952122-1
142.250.74.72200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-135952122-1
IP 142.250.74.72:0
File type ASCII text, with very long lines (1615)
Hash 7736a348488347766935d5a70d430147
ce80d24950c42c48df84a62eb83fb5728de6a76c
975e7adec626d3cb0fc01f63264ebd806e2c1ddab6bfc1dea820ecbd88508df7
GET /gtag/js?id=UA-135952122-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eio.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 04 Sep 2022 20:10:48 GMT
expires: Sun, 04 Sep 2022 20:10:48 GMT
cache-control: private, max-age=900
last-modified: Sun, 04 Sep 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 41909
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9439a7cde73fea464c1463febdda0556
6a0030d4f26b2e9658700708c82e7ce6120ce93c
c3a5a489f4ef8c8cce54dbd819c5cf573740317ea3718ccd6804a03374739199
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 20:10:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
nh.eugeniecor.com/1clkn/29529
23.109.82.10200 OK 26 B URL HTTP/1.1 nh.eugeniecor.com/1clkn/29529
IP 23.109.82.10:0
File type ASCII text, with no line terminators
Hash 414a242a6fee8464282857e475d3ef61
f669890350347f53aa9bd19c1a355692e8d17d2f
d4914e81dd0b4c1d8ee8e789f6b369d107b93ac886f862930e1a98580e79aafa
GET /1clkn/29529 HTTP/1.1
Host: nh.eugeniecor.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eio.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Sep 2022 20:10:48 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Set-Cookie: GL_UI4=eJw9jUtOwzAYhPMOVUnESDkAR2gi0rRLNqy4Q%2BTYf4Jp4r9y3Ae3xyDBbh6fZoIgiKoS4TWLEV9Ei%2BejGru9pJrkoW6a%2BuXQyLEdRDfWqunqdoeNXnsnhplcgseJDFkte8mKCjz56i85Gb6ZBOlghVEF0sUTc4F8sHxbyVYxEiMWQv6mLY1894T4ZIvouPdSGy%2FDHSJeq7jcIH3X5nIvt1lQFlmA7XkWbmS79Fp5m05WKEL4igcpHE1sv5ArWk%2BOzwDPqv%2Fnfz%2FT%2BWcNmaKrlt6y%2ByD7DTb9Sx8%3D; expires=Mon, 05-Sep-2022 20:10:48 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJxNjMFqg0AURXXSTCOK5UI%2FID9Qk7R2kW3TZdGFHzBY8xIGzDxxJm0mX181ULK5HA6cGwSBeE4hdIdku8m26yx%2FzTbvOWZHYoiiRNLw2bjeK1OfCLLg%2Frf2kD0dNRuI9RviG6uG94R5Ub7cuSmKS9vycjf%2BeDw0etxRIRr51j0O3eRm2nZIP1p9WVbcnt3wYhEZcsp2RHtEu%2Fq7pdVn9YX0304fMsRCW9X1fPEDPzl9oisbUnw4WHJSIPyR4g8Mt0dW; expires=Mon, 05-Sep-2022 20:10:48 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 194d72d26ddeaa8a8a266839eb707300
86427a0db92a3b4bd2690ad361109559c7212992
ab77f42ccfa0c649217777139f0d14a6742039596ee37a045c5fe96e7ca32338
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 20:10:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 3958546039b436bd448017432b45c949
45aadab2339c0718b57200a1b2849073c04f08f5
903f9b9e0ccec46513fb56991790db64f79dd2548f6240c4905cf9f19bdaa783
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 20:10:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 98125354dbaa891018a9429a7aae3ea1
a692cc9a073c9666971db41444342fc9d7dab2e2
771b96e4fb485d1ef041ee20fc060bb5b4b521043ec7a51ceaccefcbe837bd4f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 20:10:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
d192r5l88wrng7.cloudfront.net/?rwlrd=822524
54.230.245.4200 OK 116 kB URL HTTP/2 d192r5l88wrng7.cloudfront.net/?rwlrd=822524
IP 54.230.245.4:0
File type ASCII text, with very long lines (589)
Size 116 kB (116092 bytes)
Hash 957734f7c4687c9ae66c8fd83359c801
15a4ceb2efac561cf083b18988d15a70019252e9
9d77f00f10fee221394ec40883452d75113c01ee52bb863391cb4e6b5175226e
GET /?rwlrd=822524 HTTP/1.1
Host: d192r5l88wrng7.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eio.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 116092
date: Sun, 04 Sep 2022 20:10:48 GMT
access-control-allow-origin: *
cache-control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform
content-encoding: gzip
pragma: no-cache
x-cache: Miss from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 8Zz_DECMPTy8ayMqTZzZNnSN8EofwVpg5sr_eePiQqbjU5MDlNgVOA==
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.163200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://eio.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 18:53:20 GMT
expires: Tue, 29 Aug 2023 18:53:20 GMT
cache-control: public, max-age=31536000
age: 523048
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sun, 04 Sep 2022 19:38:16 GMT
Expires: Sun, 04 Sep 2022 20:06:12 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: D4GGBMwdnoy847Fh4spZJgaQ77PFk4kzC-r69MT_mUs6N-7hJIOrEQ==
Age: 1953
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 42 kB IP 142.250.74.3:0
Hash dc50c417fa1dadb6e0002675389dea17
afb3860ea8c964fc78d679285e30097cac1d3fa2
c2e23056ffecddf1c5a73ae1327de29aca293fcda25c699c6936ec867763b7ca
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 20:10:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 77d035f38a45e8a1ec30d5fe9611880b
01cf34de95257da64dac90edf5a86203f1160271
7dc687d6bb1679ba5567e58b4f8c1e78766e7ee36273ba7f62068c595d57f7f3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 271
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 20:10:49 GMT
Last-Modified: Sun, 04 Sep 2022 20:06:19 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
comefukme.autos/OUQyYkFYJlEPflh5UEQ0SygPR3N/YQAkJQh9ABB0VXwKFTNXIwVMIlUrRwYnSytcFm9XIUZHc38vVjobexACUhZ+FwoSIl4BVCgZc3VgUhMJImoOFXEAewUIThJ+LisNMng3eE4hSgErfz5nWxFtcBdQA2M+QVEEbDBKAxJ8EXUhG0AlSiMYcCp4WhRBJ14uGXsGZyYUHHZ0KykMCH42KlIGYzsqcj1/KgR+JwQuBF4mfggUUgNgDSZYKgoYEAt9F1AHWAFWJSBtIAowB3c9djUpcRZbUixwM3MtG3F1CyYUDHd3KjV7EQErD1gBViUMQyhdMCtdcFc1D38cAE8TACJgKxVwLWMLFHwVegQZCAFgDAccdnAEFGsQUVF5SwxzMypyF3ssFAoJeAYEdx1RNSoNF3cBZ1M3XQwxBCtDABEAdQY4F1gwQBIKcQ
54.230.111.93200 OK 1.2 kB URL HTTP/2 comefukme.autos/OUQyYkFYJlEPflh5UEQ0SygPR3N/YQAkJQh9ABB0VXwKFTNXIwVMIlUrRwYnSytcFm9XIUZHc38vVjobexACUhZ+FwoSIl4BVCgZc3VgUhMJImoOFXEAewUIThJ+LisNMng3eE4hSgErfz5nWxFtcBdQA2M+QVEEbDBKAxJ8EXUhG0AlSiMYcCp4WhRBJ14uGXsGZyYUHHZ0KykMCH42KlIGYzsqcj1/KgR+JwQuBF4mfggUUgNgDSZYKgoYEAt9F1AHWAFWJSBtIAowB3c9djUpcRZbUixwM3MtG3F1CyYUDHd3KjV7EQErD1gBViUMQyhdMCtdcFc1D38cAE8TACJgKxVwLWMLFHwVegQZCAFgDAccdnAEFGsQUVF5SwxzMypyF3ssFAoJeAYEdx1RNSoNF3cBZ1M3XQwxBCtDABEAdQY4F1gwQBIKcQ
IP 54.230.111.93:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3025), with no line terminators
Hash 25d7a9b5374139f121dd6a4d99320b9d
f2bab39db66ff525ee006e661a8cb2e871835eef
e59c0cb0a2f80e20426419b46b4637e23a58c6b925c72e326398bac4641f73c5
GET /OUQyYkFYJlEPflh5UEQ0SygPR3N/YQAkJQh9ABB0VXwKFTNXIwVMIlUrRwYnSytcFm9XIUZHc38vVjobexACUhZ+FwoSIl4BVCgZc3VgUhMJImoOFXEAewUIThJ+LisNMng3eE4hSgErfz5nWxFtcBdQA2M+QVEEbDBKAxJ8EXUhG0AlSiMYcCp4WhRBJ14uGXsGZyYUHHZ0KykMCH42KlIGYzsqcj1/KgR+JwQuBF4mfggUUgNgDSZYKgoYEAt9F1AHWAFWJSBtIAowB3c9djUpcRZbUixwM3MtG3F1CyYUDHd3KjV7EQErD1gBViUMQyhdMCtdcFc1D38cAE8TACJgKxVwLWMLFHwVegQZCAFgDAccdnAEFGsQUVF5SwxzMypyF3ssFAoJeAYEdx1RNSoNF3cBZ1M3XQwxBCtDABEAdQY4F1gwQBIKcQ HTTP/1.1
Host: comefukme.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eio.io/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1182
date: Sun, 04 Sep 2022 20:10:49 GMT
server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
content-encoding: gzip
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
x-cache: Miss from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: t1OKFOlP-VDk_ES69v4qQsL45TYdpusfXfPeoAsl8yIjSUgtyUE4qA==
X-Firefox-Spdy: h2
comefukme.autos/QTNhVUogUQI4dSAOA3M/M19ccHgHFlMTLnAKUyd/LQtZIjgvVFZ7KS1cFDEsM1wPIWQvVhVweAd8NwMudWYkDHgOcThnLxJ2RGcICXRQcHgDUTZgByBrKy8aEEBEZwwKcDckDhBlUTcOMlwrLx8odDA9OhhwJCECBgJTNjAyaTE8DC5QM2Vvc3ErAiIsawsQIw8BERguK3oNGggPRyo8B2QBIxYJAFksASEKfQwULQ9YNGwBEgtEZwgHdxY7KQZmRGcIG2QJOSkqQwY3I3BeMg0ccHVSHwEYcA5tBRADDgx4JV0gEiI2cAwTByVrNA0pKkMGGwkPSjItDGQBJwx5LXoEAgQvaRl4cnB5NWF+GWQoFBBzVysMAhtYO2UmcFcmADIEYCg/BztUIDESEGcDPn9kASMxJAxaMwIPZ1kSOiQxDhQAeHhfMSI5Nn0RbA
54.230.111.93200 OK 1.2 kB URL HTTP/2 comefukme.autos/QTNhVUogUQI4dSAOA3M/M19ccHgHFlMTLnAKUyd/LQtZIjgvVFZ7KS1cFDEsM1wPIWQvVhVweAd8NwMudWYkDHgOcThnLxJ2RGcICXRQcHgDUTZgByBrKy8aEEBEZwwKcDckDhBlUTcOMlwrLx8odDA9OhhwJCECBgJTNjAyaTE8DC5QM2Vvc3ErAiIsawsQIw8BERguK3oNGggPRyo8B2QBIxYJAFksASEKfQwULQ9YNGwBEgtEZwgHdxY7KQZmRGcIG2QJOSkqQwY3I3BeMg0ccHVSHwEYcA5tBRADDgx4JV0gEiI2cAwTByVrNA0pKkMGGwkPSjItDGQBJwx5LXoEAgQvaRl4cnB5NWF+GWQoFBBzVysMAhtYO2UmcFcmADIEYCg/BztUIDESEGcDPn9kASMxJAxaMwIPZ1kSOiQxDhQAeHhfMSI5Nn0RbA
IP 54.230.111.93:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3018), with no line terminators
Hash e702669a457abdcee663da1fb426de4d
c45502efdaa5817624467b2739e6e580e2bfa0ab
d646424e21774a9b24367d96c3fe9e76e286d1fa9d330019b9269cc3b669ff22
GET /QTNhVUogUQI4dSAOA3M/M19ccHgHFlMTLnAKUyd/LQtZIjgvVFZ7KS1cFDEsM1wPIWQvVhVweAd8NwMudWYkDHgOcThnLxJ2RGcICXRQcHgDUTZgByBrKy8aEEBEZwwKcDckDhBlUTcOMlwrLx8odDA9OhhwJCECBgJTNjAyaTE8DC5QM2Vvc3ErAiIsawsQIw8BERguK3oNGggPRyo8B2QBIxYJAFksASEKfQwULQ9YNGwBEgtEZwgHdxY7KQZmRGcIG2QJOSkqQwY3I3BeMg0ccHVSHwEYcA5tBRADDgx4JV0gEiI2cAwTByVrNA0pKkMGGwkPSjItDGQBJwx5LXoEAgQvaRl4cnB5NWF+GWQoFBBzVysMAhtYO2UmcFcmADIEYCg/BztUIDESEGcDPn9kASMxJAxaMwIPZ1kSOiQxDhQAeHhfMSI5Nn0RbA HTTP/1.1
Host: comefukme.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eio.io/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1173
date: Sun, 04 Sep 2022 20:10:49 GMT
server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
content-encoding: gzip
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
x-cache: Miss from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: K3WOVWZ97-lzJhycX0MxrGiRpbK3h6KAC3NmnSFcBL_-3xp8dXME5Q==
X-Firefox-Spdy: h2
ofghaidarium.xyz/V0lRT3d4djI8ShoOH38tAHETGSIRGwYeIQUdBwEVFh8XDC8BcXc7HjN0aX1FYntlaQc+LWx+USQ9MDsCJHRgaR45Lz5yUSF0YGFEY2djd1lmbyRyRnE9IS4Qanh3PwMjJWx+QWF7Yn1FZX1kfEFk
172.67.157.158204 No Content 0 B URL HTTP/2 ofghaidarium.xyz/V0lRT3d4djI8ShoOH38tAHETGSIRGwYeIQUdBwEVFh8XDC8BcXc7HjN0aX1FYntlaQc+LWx+USQ9MDsCJHRgaR45Lz5yUSF0YGFEY2djd1lmbyRyRnE9IS4Qanh3PwMjJWx+QWF7Yn1FZX1kfEFk
IP 172.67.157.158:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /V0lRT3d4djI8ShoOH38tAHETGSIRGwYeIQUdBwEVFh8XDC8BcXc7HjN0aX1FYntlaQc+LWx+USQ9MDsCJHRgaR45Lz5yUSF0YGFEY2djd1lmbyRyRnE9IS4Qanh3PwMjJWx+QWF7Yn1FZX1kfEFk HTTP/1.1
Host: ofghaidarium.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eio.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sun, 04 Sep 2022 20:10:49 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UnfV75sp8oxIwmgW2kMikyC17AzADMdb%2B9eQOqWkyChSpSzoXYrCk9XZtBxb1F9o%2BFSfqc%2B9%2FFZX1UOPRhJ77ZTQRiBl7nKDdazd%2FYfGLI52TkYzDi1h%2Fal25mk1ISEqKU4s"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74595ee90df51c16-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ofghaidarium.xyz/ZFkxc1BLZlIAbT1rZzgEVzFnJmNRYGIlNDw/AkIdMjVrVmIiPAEUdhAwVU5oXGAFSmRCKVgXbVV/QgcxECxCTmFCMF8VP1l/R05hSmoFXWJcdwBVJVloFwcgBT4MQnYULUUfbVVvB0FjVmsDR2VXYQg
172.67.157.158204 No Content 0 B URL HTTP/2 ofghaidarium.xyz/ZFkxc1BLZlIAbT1rZzgEVzFnJmNRYGIlNDw/AkIdMjVrVmIiPAEUdhAwVU5oXGAFSmRCKVgXbVV/QgcxECxCTmFCMF8VP1l/R05hSmoFXWJcdwBVJVloFwcgBT4MQnYULUUfbVVvB0FjVmsDR2VXYQg
IP 172.67.157.158:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ZFkxc1BLZlIAbT1rZzgEVzFnJmNRYGIlNDw/AkIdMjVrVmIiPAEUdhAwVU5oXGAFSmRCKVgXbVV/QgcxECxCTmFCMF8VP1l/R05hSmoFXWJcdwBVJVloFwcgBT4MQnYULUUfbVVvB0FjVmsDR2VXYQg HTTP/1.1
Host: ofghaidarium.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eio.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 04 Sep 2022 20:10:49 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2B1JDXP9174FDxazX2JKW%2BJQUun8KKdBRkwIO2F5ltWNwLLc6djQURv%2BhtPK2c1eEtmZ7jpP%2BqVp68mP0ghY2D3Y%2BirZBTKTwcP4powjCZd9P4jvDcKhF3Np1Y9RR0wnQKhL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74595ee90df71c16-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/fuckadblock/3.2.1/fuckadblock.min.js
104.17.24.14200 OK 1.3 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/fuckadblock/3.2.1/fuckadblock.min.js
IP 104.17.24.14:0
File type ASCII text, with very long lines (4741), with no line terminators
Hash 66105838a23d33ffeaff1b46e91493da
5ca20cb4e7995221de8b651b358ec60d0a657adb
06cf1ec54b9a6bf5bddc7baba5a4ed8d2306f40872681a0234b57526eab1643f
GET /ajax/libs/fuckadblock/3.2.1/fuckadblock.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eio.io
Connection: keep-alive
Referer: https://eio.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Sep 2022 20:10:49 GMT
content-type: application/javascript; charset=utf-8
content-length: 1309
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e6b-1285"
last-modified: Mon, 04 May 2020 16:10:19 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 2766685
expires: Fri, 25 Aug 2023 20:10:49 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jDYo%2FD1y2GCMhPTzQBz9PjVp3PgXA5GK8FA4Pq1zHfBrBcn9vUcjwVV4%2BAOvNFN1CAZ%2FxAyoQdNj2WYQo%2FO%2B5ZECmulGl5RjwIK3urCOob4yVdDvf1X2VuEeekbvolU33lTdhl5M"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74595ee9cf16b515-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
comefukme.autos/VVViVDY0NwE5CTRoAHJDJzlfcQQTcFASUmRsUCYDOW1aI0Q7MlV6VTk6FzBQJzoMIBg7MBZxBBMwABxgIDEkDWYSMiMHVwcyARddOSA1EWw2BA8wfR0tUjZ5Fy0rBHIQZDIVfw8fGgVmHGUFFXoUPSsMWhxjJgZFHwY6FXwSIlMebGU6NxdeDyc1Ens3EzUndBI9MzB5MhQ3BwYMBDUCQjAANQZVDQc4EmxlOSUYcBM+OhZdHRILGWMAExoRejkHJhljHzwxAW8mADUGVRctCgZsBmQvA3AlODACdDYHJhF8EzI3NlVkYRgMcwc7OhFgMwclMHwHZE9gZQUtVgV1FyYXB2M2OjYDdBYHNzN0NGRSclwmOgwkCwcQAQRBIgYgN2A
54.230.111.93200 OK 1.2 kB URL HTTP/2 comefukme.autos/VVViVDY0NwE5CTRoAHJDJzlfcQQTcFASUmRsUCYDOW1aI0Q7MlV6VTk6FzBQJzoMIBg7MBZxBBMwABxgIDEkDWYSMiMHVwcyARddOSA1EWw2BA8wfR0tUjZ5Fy0rBHIQZDIVfw8fGgVmHGUFFXoUPSsMWhxjJgZFHwY6FXwSIlMebGU6NxdeDyc1Ens3EzUndBI9MzB5MhQ3BwYMBDUCQjAANQZVDQc4EmxlOSUYcBM+OhZdHRILGWMAExoRejkHJhljHzwxAW8mADUGVRctCgZsBmQvA3AlODACdDYHJhF8EzI3NlVkYRgMcwc7OhFgMwclMHwHZE9gZQUtVgV1FyYXB2M2OjYDdBYHNzN0NGRSclwmOgwkCwcQAQRBIgYgN2A
IP 54.230.111.93:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2992), with no line terminators
Hash 74f184e1a4f15f752f6a521072253ada
0001518a741a1fd91e3111addb28bbd26a3d1e79
d31e1e58e882aaab55c4f7f4e68b7207285b074693b69f8c8d8d4e2555d068d9
GET /VVViVDY0NwE5CTRoAHJDJzlfcQQTcFASUmRsUCYDOW1aI0Q7MlV6VTk6FzBQJzoMIBg7MBZxBBMwABxgIDEkDWYSMiMHVwcyARddOSA1EWw2BA8wfR0tUjZ5Fy0rBHIQZDIVfw8fGgVmHGUFFXoUPSsMWhxjJgZFHwY6FXwSIlMebGU6NxdeDyc1Ens3EzUndBI9MzB5MhQ3BwYMBDUCQjAANQZVDQc4EmxlOSUYcBM+OhZdHRILGWMAExoRejkHJhljHzwxAW8mADUGVRctCgZsBmQvA3AlODACdDYHJhF8EzI3NlVkYRgMcwc7OhFgMwclMHwHZE9gZQUtVgV1FyYXB2M2OjYDdBYHNzN0NGRSclwmOgwkCwcQAQRBIgYgN2A HTTP/1.1
Host: comefukme.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eio.io/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
content-length: 1150
date: Sun, 04 Sep 2022 20:10:49 GMT
server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
content-encoding: gzip
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
x-cache: Miss from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GV1NhewH3830aO2qpzu2NBp6PxY170K10CL9iYOt5ApTFZ2qen_QsA==
X-Firefox-Spdy: h2
ofghaidarium.xyz/RnpVcWRpRTYCWQk/PTw3Ez8cFDx/QjEWVXAcHQkcAiIXSAEeEXMFDSJHbUVXdExkVxQvHmhAXGAJIRAQMwloQEIvFDMeWWAMaEBKdlRkX1dgD2hAQjIKNBZZd1wlBRAqR2RHUnRJZ0NWck9mSF0
172.67.157.158204 No Content 0 B URL HTTP/2 ofghaidarium.xyz/RnpVcWRpRTYCWQk/PTw3Ez8cFDx/QjEWVXAcHQkcAiIXSAEeEXMFDSJHbUVXdExkVxQvHmhAXGAJIRAQMwloQEIvFDMeWWAMaEBKdlRkX1dgD2hAQjIKNBZZd1wlBRAqR2RHUnRJZ0NWck9mSF0
IP 172.67.157.158:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /RnpVcWRpRTYCWQk/PTw3Ez8cFDx/QjEWVXAcHQkcAiIXSAEeEXMFDSJHbUVXdExkVxQvHmhAXGAJIRAQMwloQEIvFDMeWWAMaEBKdlRkX1dgD2hAQjIKNBZZd1wlBRAqR2RHUnRJZ0NWck9mSF0 HTTP/1.1
Host: ofghaidarium.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eio.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 04 Sep 2022 20:10:49 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2tFTHfK4Uw37SWeqD0lEQNtsvVuU2ux5HCh31l4o6mUdD%2F5q9UYt4V4LgQ234NUjuiqWIB%2FE453RG5oZSsWIeMSkGVqGQxWI0awK5qb9jrWCVgI7ZixwF5R1BgbV1Gy7Gg18"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74595ee93e3a1c16-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 98ca8e3a617a05953c4251a2a21627f0
3272928648b60d4f1848de31c25501b2a9fd0dbe
e6cf23ea291185fb1b2109fe2ee4dc4e2b6879be2e223a201719ad1a6281dc28
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E6CF23EA291185FB1B2109FE2EE4DC4E2B6879BE2E223A201719AD1A6281DC28"
Last-Modified: Fri, 02 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6423
Expires: Sun, 04 Sep 2022 21:57:52 GMT
Date: Sun, 04 Sep 2022 20:10:49 GMT
Connection: keep-alive
ofghaidarium.xyz/dWp4bDVaVRsfCCc8Kh1XRTBANWMZMxsCYxIyLllPET0ADWItJ14YXBFXQF4HQFhMSkUcDkVdEwYeGRhABldLSlwbDBdRVhkDGwcTA1dJQgZBREpUG0RMDVEEUx4IDVJIW14cQQEGRV0DQ1hLXgdHXk1YA0w
172.67.157.158204 No Content 0 B URL HTTP/2 ofghaidarium.xyz/dWp4bDVaVRsfCCc8Kh1XRTBANWMZMxsCYxIyLllPET0ADWItJ14YXBFXQF4HQFhMSkUcDkVdEwYeGRhABldLSlwbDBdRVhkDGwcTA1dJQgZBREpUG0RMDVEEUx4IDVJIW14cQQEGRV0DQ1hLXgdHXk1YA0w
IP 172.67.157.158:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dWp4bDVaVRsfCCc8Kh1XRTBANWMZMxsCYxIyLllPET0ADWItJ14YXBFXQF4HQFhMSkUcDkVdEwYeGRhABldLSlwbDBdRVhkDGwcTA1dJQgZBREpUG0RMDVEEUx4IDVJIW14cQQEGRV0DQ1hLXgdHXk1YA0w HTTP/1.1
Host: ofghaidarium.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eio.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 04 Sep 2022 20:10:49 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8o%2BMuqSOypRx6ueZjlc6svC0M%2BCbdQrqdLr4hKri89JK%2FCBNGiE5sX9BPSm8AyZIjMrAxp8Hp45dKzTeDz01LIGYztGmvSfVIuhe8%2F%2BW0Qz3t8I2INGDDpivcHvg8fChCWsU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74595ee9aeb71c16-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.208.31.97101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.208.31.97:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: /W7XNgUABctTuS0e1uCi6g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: V1Kfupp4eHJARMv/JgRLb7QGo9A=
ocsp.digicert.com/
93.184.220.29200 OK 2.0 kB IP 93.184.220.29:0
Hash 63372d64bf55be5112c743fd5e6c031d
031fb25139ada52efd9ccaf99e2023214fd977c0
eaadefaa619bcddf1cfef336884ead7ab6f85d171b62c57e03801df13bb9b902
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4344
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 20:10:49 GMT
Last-Modified: Sun, 04 Sep 2022 18:58:25 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
d192r5l88wrng7.cloudfront.net/OVVd4UEY2OBY2eSE+HG1+bW5MaXJzPQs/KCVqDQV0bDsoJzUiGQhpYCEtHG12czsZPiFocR0+JWhmXjEiN2pMdjIlOBNtKiM+CCAjMTkKNmAgNkU9KS8+FDwncGU+ZWhlckpgbi1mSXV1F3JKYCo8OQ0oY2dnAGhwCmFMdXUXckpgNCNySxF/Y3lIeWNnZx-81JT44XWIAZ2dJYHZkZ0l1dGUxESIjMzgAdXQTbk5+dnMiRWE
54.230.245.4200 OK 627 B URL HTTP/2 d192r5l88wrng7.cloudfront.net/OVVd4UEY2OBY2eSE+HG1+bW5MaXJzPQs/KCVqDQV0bDsoJzUiGQhpYCEtHG12czsZPiFocR0+JWhmXjEiN2pMdjIlOBNtKiM+CCAjMTkKNmAgNkU9KS8+FDwncGU+ZWhlckpgbi1mSXV1F3JKYCo8OQ0oY2dnAGhwCmFMdXUXckpgNCNySxF/Y3lIeWNnZx-81JT44XWIAZ2dJYHZkZ0l1dGUxESIjMzgAdXQTbk5+dnMiRWE
IP 54.230.245.4:0
File type ASCII text, with very long lines (876), with no line terminators
Hash c5d80fcaaaf6916ddebeadea68faba28
cbc03c2e0fc3c48efa17a1d75b96d9ce5e0390f6
56cd62ce11bee4bbe25fe78fc0c2c7d80d7cbc18b63ed4a42220bbac4d07d531
GET /OVVd4UEY2OBY2eSE+HG1+bW5MaXJzPQs/KCVqDQV0bDsoJzUiGQhpYCEtHG12czsZPiFocR0+JWhmXjEiN2pMdjIlOBNtKiM+CCAjMTkKNmAgNkU9KS8+FDwncGU+ZWhlckpgbi1mSXV1F3JKYCo8OQ0oY2dnAGhwCmFMdXUXckpgNCNySxF/Y3lIeWNnZx-81JT44XWIAZ2dJYHZkZ0l1dGUxESIjMzgAdXQTbk5+dnMiRWE HTTP/1.1
Host: d192r5l88wrng7.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://comefukme.autos/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 627
date: Sun, 04 Sep 2022 20:10:49 GMT
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: i8lHkJ5M1EsfKOXxMG-UqLDNdZMqmhbTLyEk1Ngx8gndC7RuOrTgmw==
X-Firefox-Spdy: h2
d192r5l88wrng7.cloudfront.net/ebHVudFYPGgASaRgcCkluWEZcQmdKHx0bOBxIPDE1PAIZJxQPI0gALAhIXlI6DRsJSXAJGw1JZ0oUChZrWFMbFWsBGhQdOgAUS0YQWVteUWRcXRZFZ0lGLFFkXBkHGiMUUFxELlRDMUJiSUYsUWRcBxhRZS1MWFpmRVBcRDEJFgUbc14zXERnXEVfRGdJR1-4SPx4QCBsuSUcoTWBCRUgBa10
54.230.245.4200 OK 187 B URL HTTP/2 d192r5l88wrng7.cloudfront.net/ebHVudFYPGgASaRgcCkluWEZcQmdKHx0bOBxIPDE1PAIZJxQPI0gALAhIXlI6DRsJSXAJGw1JZ0oUChZrWFMbFWsBGhQdOgAUS0YQWVteUWRcXRZFZ0lGLFFkXBkHGiMUUFxELlRDMUJiSUYsUWRcBxhRZS1MWFpmRVBcRDEJFgUbc14zXERnXEVfRGdJR1-4SPx4QCBsuSUcoTWBCRUgBa10
IP 54.230.245.4:0
File type ASCII text, with no line terminators
Hash df37eb59cec1d08472725e18f3a4809e
f089eab7bae4173ec96fa2c7fe6348bd05c77654
ea4733762b7dfc242059cf3c4f971fcae6789a93a1e01545fa5c6fc6316d35e9
GET /ebHVudFYPGgASaRgcCkluWEZcQmdKHx0bOBxIPDE1PAIZJxQPI0gALAhIXlI6DRsJSXAJGw1JZ0oUChZrWFMbFWsBGhQdOgAUS0YQWVteUWRcXRZFZ0lGLFFkXBkHGiMUUFxELlRDMUJiSUYsUWRcBxhRZS1MWFpmRVBcRDEJFgUbc14zXERnXEVfRGdJR1-4SPx4QCBsuSUcoTWBCRUgBa10 HTTP/1.1
Host: d192r5l88wrng7.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://comefukme.autos/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 187
date: Sun, 04 Sep 2022 20:10:49 GMT
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: SqC8mVxazrxPNM9oviO-VymbUYgzhvxoiZpFB4W2nZ1mfleOQxo65A==
X-Firefox-Spdy: h2
d192r5l88wrng7.cloudfront.net/kdXZBT00WGS8pcgEfJXJ1R0R0fXlTHDIgIwVLLj4vJU9wexcjFzU9PT4+Zzs3EUtxaSEUGCZyaxAYInJ8UxclLXBBUDU/Ih5LLTkkBQYkKyMHEGc6LEgbLjUkGRogan8zQ29/aEdGaTd8RFNyDWhHRi0mIwAOZH19DU53EHtBU3INaEdGMzloRjd4eWNFX2-R9fRITIiQiUEQHfX1ERnF+fURTc38rHAQkKSINU3MJdENYcWk4SEc
54.230.245.4200 OK 505 B URL HTTP/2 d192r5l88wrng7.cloudfront.net/kdXZBT00WGS8pcgEfJXJ1R0R0fXlTHDIgIwVLLj4vJU9wexcjFzU9PT4+Zzs3EUtxaSEUGCZyaxAYInJ8UxclLXBBUDU/Ih5LLTkkBQYkKyMHEGc6LEgbLjUkGRogan8zQ29/aEdGaTd8RFNyDWhHRi0mIwAOZH19DU53EHtBU3INaEdGMzloRjd4eWNFX2-R9fRITIiQiUEQHfX1ERnF+fURTc38rHAQkKSINU3MJdENYcWk4SEc
IP 54.230.245.4:0
File type ASCII text, with very long lines (699), with no line terminators
Hash 754f3657f5e1a14d684aae6aa2114e3f
4ec97daabfdc356b64887f4b0727821cafa3bd69
c4d1e2eb989d0ee652910b483daa8c5f653e9c2b67681649959d3705bb350212
GET /kdXZBT00WGS8pcgEfJXJ1R0R0fXlTHDIgIwVLLj4vJU9wexcjFzU9PT4+Zzs3EUtxaSEUGCZyaxAYInJ8UxclLXBBUDU/Ih5LLTkkBQYkKyMHEGc6LEgbLjUkGRogan8zQ29/aEdGaTd8RFNyDWhHRi0mIwAOZH19DU53EHtBU3INaEdGMzloRjd4eWNFX2-R9fRITIiQiUEQHfX1ERnF+fURTc38rHAQkKSINU3MJdENYcWk4SEc HTTP/1.1
Host: d192r5l88wrng7.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://comefukme.autos/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 505
date: Sun, 04 Sep 2022 20:10:49 GMT
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lwpRVw7TGmcsS1r_U8Shq5g4vAzV7FB5cjv3ohsW2qigeHM7jYy_aw==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e62f2399f9d20bf0924a04214ef012c6
08d5022f493f6b4ce9ae700e21c1339fffd830a1
1005dbc0f5b119a04df922a23953aea57d5e2713092704d57fc910b7a5d88e26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 20:10:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e62f2399f9d20bf0924a04214ef012c6
08d5022f493f6b4ce9ae700e21c1339fffd830a1
1005dbc0f5b119a04df922a23953aea57d5e2713092704d57fc910b7a5d88e26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 20:10:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a06cb209fdc15ecf8329895a6c0fc705
cb50f7e79c5db17b1b6bdaa5078d6a2bcb16b978
456a815459be52bda7348e51591a765c94a46e7ed36b70a69142c4163b3f62dc
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "456A815459BE52BDA7348E51591A765C94A46E7ED36B70A69142C4163B3F62DC"
Last-Modified: Sun, 04 Sep 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18087
Expires: Mon, 05 Sep 2022 01:12:16 GMT
Date: Sun, 04 Sep 2022 20:10:49 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a06cb209fdc15ecf8329895a6c0fc705
cb50f7e79c5db17b1b6bdaa5078d6a2bcb16b978
456a815459be52bda7348e51591a765c94a46e7ed36b70a69142c4163b3f62dc
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "456A815459BE52BDA7348E51591A765C94A46E7ED36B70A69142C4163B3F62DC"
Last-Modified: Sun, 04 Sep 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18087
Expires: Mon, 05 Sep 2022 01:12:16 GMT
Date: Sun, 04 Sep 2022 20:10:49 GMT
Connection: keep-alive
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eio.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Sun, 04 Sep 2022 18:41:12 GMT
expires: Sun, 04 Sep 2022 20:41:12 GMT
cache-control: public, max-age=7200
age: 5377
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a06cb209fdc15ecf8329895a6c0fc705
cb50f7e79c5db17b1b6bdaa5078d6a2bcb16b978
456a815459be52bda7348e51591a765c94a46e7ed36b70a69142c4163b3f62dc
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "456A815459BE52BDA7348E51591A765C94A46E7ED36B70A69142C4163B3F62DC"
Last-Modified: Sun, 04 Sep 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18087
Expires: Mon, 05 Sep 2022 01:12:16 GMT
Date: Sun, 04 Sep 2022 20:10:49 GMT
Connection: keep-alive
comefukme.autos/utx?cb=i2XskzjxQ8yD&top=eio.io&tid=822524
54.230.111.93204 No Content 0 B URL HTTP/2 comefukme.autos/utx?cb=i2XskzjxQ8yD&top=eio.io&tid=822524
IP 54.230.111.93:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /utx?cb=i2XskzjxQ8yD&top=eio.io&tid=822524 HTTP/1.1
Host: comefukme.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eio.io
Connection: keep-alive
Referer: https://eio.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 04 Sep 2022 20:10:49 GMT
server: openresty/1.17.8.2
access-control-allow-credentials: true
access-control-allow-origin: https://eio.io
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
set-cookie: ut=x; Expires=Sun, 04 Sep 2022 20:11:49 GMT; Max-Age=60
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
x-cache: Miss from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: mKW32jt-hpczx3ErgXipspbwXzafk8QTcDUTrMlJhgFlVbMUzLp2eA==
X-Firefox-Spdy: h2
comefukme.autos/utx?cb=h1jCzWZ1GyjV&top=eio.io&tid=889494
54.230.111.93204 No Content 0 B URL HTTP/2 comefukme.autos/utx?cb=h1jCzWZ1GyjV&top=eio.io&tid=889494
IP 54.230.111.93:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /utx?cb=h1jCzWZ1GyjV&top=eio.io&tid=889494 HTTP/1.1
Host: comefukme.autos
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eio.io
Connection: keep-alive
Referer: https://eio.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sun, 04 Sep 2022 20:10:49 GMT
server: openresty/1.17.8.2
access-control-allow-credentials: true
access-control-allow-origin: https://eio.io
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
set-cookie: ut=x; Expires=Sun, 04 Sep 2022 20:11:49 GMT; Max-Age=60
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
x-cache: Miss from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NEi6fkVbFq8xJOrvmJ_AVHKPFz0an64gBzaJrdSkJB8mSFU_jXXoeg==
X-Firefox-Spdy: h2
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
216.58.207.237302 Found 394 B URL HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
IP 216.58.207.237:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (379)
Hash 7a508466bc4f2a374318d2a455bf1474
337584cd4520e9a36a19c593db3c6f9dae2781bd
e225c591ac85721ea45111ac21c82a1e7212bac57737fb9067d5028bf660222c
GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eio.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 04 Sep 2022 20:10:49 GMT
location: https://accounts.google.com/v3/signin/identifier?dsh=S973727434%3A1662322249540185&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=AQN2RmW1sF4yrgH6b5Z6Ws70vAGdoj1DO_BPypRauooDUUnJKO0qgYK_f5plYUeZ8tCea9jrbDqFog
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-BSZ_rSJWalFtKmJW8MH7RQ' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport, require-trusted-types-for 'script';report-uri /cspreport
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 394
server: GSE
set-cookie: __Host-GAPS=1:ABouie72V75QPybC4WaAFQhTTmjrlA:jt4AzJgdVZIDhFfO;Path=/;Expires=Tue, 03-Sep-2024 20:10:49 GMT;Secure;HttpOnly;Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 344 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a06cb209fdc15ecf8329895a6c0fc705
cb50f7e79c5db17b1b6bdaa5078d6a2bcb16b978
456a815459be52bda7348e51591a765c94a46e7ed36b70a69142c4163b3f62dc
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "456A815459BE52BDA7348E51591A765C94A46E7ED36B70A69142C4163B3F62DC"
Last-Modified: Sun, 04 Sep 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18087
Expires: Mon, 05 Sep 2022 01:12:16 GMT
Date: Sun, 04 Sep 2022 20:10:49 GMT
Connection: keep-alive
www.google-analytics.com/j/collect?v=1&_v=j96&a=214454304&t=pageview&_s=1&dl=https%3A%2F%2Feio.io%2Fl6j30ZY&ul=en-us&de=UTF-8&dt=exe.io&sd=24-bit&sr=1280x1024&vp=1280x898&je=0&_u=YEBAAUABAAAAAC~&jid=1929916848&gjid=1452148795&cid=800306140.1662322246&tid=UA-135952122-1&_gid=878104445.1662322246&_r=1>m=2ou8v0&z=1238758697
142.250.74.174200 OK 1 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j96&a=214454304&t=pageview&_s=1&dl=https%3A%2F%2Feio.io%2Fl6j30ZY&ul=en-us&de=UTF-8&dt=exe.io&sd=24-bit&sr=1280x1024&vp=1280x898&je=0&_u=YEBAAUABAAAAAC~&jid=1929916848&gjid=1452148795&cid=800306140.1662322246&tid=UA-135952122-1&_gid=878104445.1662322246&_r=1>m=2ou8v0&z=1238758697
IP 142.250.74.174:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?v=1&_v=j96&a=214454304&t=pageview&_s=1&dl=https%3A%2F%2Feio.io%2Fl6j30ZY&ul=en-us&de=UTF-8&dt=exe.io&sd=24-bit&sr=1280x1024&vp=1280x898&je=0&_u=YEBAAUABAAAAAC~&jid=1929916848&gjid=1452148795&cid=800306140.1662322246&tid=UA-135952122-1&_gid=878104445.1662322246&_r=1>m=2ou8v0&z=1238758697 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://eio.io
Connection: keep-alive
Referer: https://eio.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://eio.io
date: Sun, 04 Sep 2022 20:10:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
in-page-push.com/400/3230648
139.45.197.15200 OK 32 kB URL HTTP/2 in-page-push.com/400/3230648
IP 139.45.197.15:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 8d3a799a86ca5f54b2f746f332583394
a89fc2ffb2ac2a9eb763aea4c37406c2b8bd022d
8ee31a96097d8e54953b01b9cb81f5e48ba1154e530d7dae21b6134107510cbd
Analyzer Verdict Alert quad9 Sinkholed
GET /400/3230648 HTTP/1.1
Host: in-page-push.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eio.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 20:10:49 GMT
content-type: application/javascript
x-trace-id: 8fcd148fa69dc69266121bd9ef39686b
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=26b0facc20a74b7f86845111cb9d6a82; expires=Mon, 04 Sep 2023 20:10:49 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
d192r5l88wrng7.cloudfront.net/?rwlrd=822524
54.230.245.4200 OK 116 kB URL HTTP/2 d192r5l88wrng7.cloudfront.net/?rwlrd=822524
IP 54.230.245.4:0
File type ASCII text, with very long lines (589)
Size 116 kB (116093 bytes)
Hash 47131259f8d450aff1f9da123009164d
26e92b40b58cd57effdfd4cc60d39c98b87f4ed9
25b2288575b55ba2c0d2482ea2855125bc45024e410d2b44df45a0c33a6aeaa7
GET /?rwlrd=822524 HTTP/1.1
Host: d192r5l88wrng7.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eio.io/
Origin: https://eio.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 116093
date: Sun, 04 Sep 2022 20:10:49 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://eio.io
cache-control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform
content-encoding: gzip
pragma: no-cache
x-cache: Miss from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: x1vGURld20gbGNPHSUYXxJQ8HzV8CnHZbVaFk8PIjF4VCI5aRw9cxg==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 51df98c169fb7de773301d014bcea4b8
9bdf9bdb9b5eee378e9ac4ec68ca07c665ae4819
c8336f3a2e16c9390b610c612ce9be7c19286f04a6328a29200cbf65db5801c8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 20:10:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6429b930abfde63299f0904d2799142e
7a33a6893301f185e5de5e038574da5e56a3fb6d
2e66f86cab83f1b68b77449fea4c92103f1d850f3da21af5295c3ec75889520a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4344
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 20:10:49 GMT
Last-Modified: Sun, 04 Sep 2022 18:58:25 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 41ea586f0e66dcd46f50ab3938543b12
d7a3d6a40066652fc85cdaab9e613246b6af4aab
60b133ec87e89ec28689b760f6ce265eee0e935dca93f42543885a05f8b19a79
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 04 Sep 2022 20:10:49 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 01 Sep 2022 18:25:21 GMT
Expires: Thu, 08 Sep 2022 18:25:20 GMT
Etag: "d7a3d6a40066652fc85cdaab9e613246b6af4aab"
Cache-Control: max-age=338670,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74595eed28a60b3d-OSL
my.rtmark.net/gid.js
139.45.195.8200 OK 65 B IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash c8cdd63215d41f60ae3995a1b9af4735
d58487d319431befef5dac451623378ddb04f5eb
f078ec4827e34eab45d5c646e06bdc92e468336976d1f291a0dac9f9a9080fff
GET /gid.js HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eio.io
Connection: keep-alive
Referer: https://eio.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 20:10:49 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://eio.io
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=b5a066052cd1496b8f0ec1dd378adc93; expires=Mon, 04 Sep 2023 20:10:49 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
in-page-push.com/500/3230648?excludes=&oaid=b5a066052cd1496b8f0ec1dd378adc93&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=898&wfc=1&pl=https%3A%2F%2Feio.io%2Fl6j30ZY&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
139.45.197.15200 OK 0 B URL HTTP/2 in-page-push.com/500/3230648?excludes=&oaid=b5a066052cd1496b8f0ec1dd378adc93&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=898&wfc=1&pl=https%3A%2F%2Feio.io%2Fl6j30ZY&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP 139.45.197.15:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
OPTIONS /500/3230648?excludes=&oaid=b5a066052cd1496b8f0ec1dd378adc93&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=898&wfc=1&pl=https%3A%2F%2Feio.io%2Fl6j30ZY&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: in-page-push.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://eio.io/
Origin: https://eio.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 20:10:50 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://eio.io
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-allow-credentials: true
access-control-max-age: 600
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2
in-page-push.com/500/3230648?excludes=&oaid=b5a066052cd1496b8f0ec1dd378adc93&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=898&wfc=1&pl=https%3A%2F%2Feio.io%2Fl6j30ZY&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
139.45.197.15200 OK 51 kB URL HTTP/2 in-page-push.com/500/3230648?excludes=&oaid=b5a066052cd1496b8f0ec1dd378adc93&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=898&wfc=1&pl=https%3A%2F%2Feio.io%2Fl6j30ZY&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP 139.45.197.15:0
Hash b000b8a0c33bd5d72c1972c798046d4f
c4dc88e5355e1dc0988d727c4cfe528b9a0bfe39
52a0cafdbccf3871e90d7547f9162a8d7099aad6640edcb4a67610d74d3e638d
Analyzer Verdict Alert quad9 Sinkholed
GET /500/3230648?excludes=&oaid=b5a066052cd1496b8f0ec1dd378adc93&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=898&wfc=1&pl=https%3A%2F%2Feio.io%2Fl6j30ZY&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: in-page-push.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://eio.io
Connection: keep-alive
Referer: https://eio.io/
Cookie: OAID=26b0facc20a74b7f86845111cb9d6a82
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 20:10:50 GMT
content-type: application/javascript
x-trace-id: 0f1d9219008906fa297ab2996b0de2df
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: https://eio.io
access-control-expose-headers: Link
access-control-allow-credentials: true
set-cookie: OAID=b5a066052cd1496b8f0ec1dd378adc93; expires=Mon, 04 Sep 2023 20:10:50 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
in-page-push.com/impression/Ci1DQdHgJDN8-EWL0sKLLwrm7QIdZCQmUDDOzK1kuX8rSbL58eTdvI85yOLEUTfs9efs4ZQen_6l2xQG-ifDy6zcyT0wdS75Tgai5yF58svh2jS0ut_uCgV3dbkWQTTEf9aygOw7UWBybxwJxqDrpD4mgTVSmK5O980FFIaPgMkbilWE0klLvVzUCCfStyy9X_MG9inJpY76W45i33xt6PxsSI0XzR04hVM41VRKedM_OJNfxxBOgsXpC-oSV7OIyKxr7xMtOAg9fg7EPfiXMXaaj4S1OWfyiE7oXNFG-4L9IE_DyL5h9m7Da70hMmjUdsRFKenPRl4_5XkYAYYreJnsvqk9XAa38QWogT5DK3EiTisPvXfpf0SnYVURDNj91EeRZ9y4BoZFywxdXInms4ZPySfChseKT26F7d19aFYnWMPKrApTBLO6qbTvacuC9rHmmYa4kNZC30axsPS4KUDp-4v6yXEipeIQoi6FGINj1Wyc3L39lmIO_s6zBS_HLm30Zh0xkC7y0bxqJfI5YIF6IiI=?_z=3230648&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=898&wfc=1&pl=https%3A%2F%2Feio.io%2Fl6j30ZY&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
139.45.197.15200 OK 43 B URL HTTP/2 in-page-push.com/impression/Ci1DQdHgJDN8-EWL0sKLLwrm7QIdZCQmUDDOzK1kuX8rSbL58eTdvI85yOLEUTfs9efs4ZQen_6l2xQG-ifDy6zcyT0wdS75Tgai5yF58svh2jS0ut_uCgV3dbkWQTTEf9aygOw7UWBybxwJxqDrpD4mgTVSmK5O980FFIaPgMkbilWE0klLvVzUCCfStyy9X_MG9inJpY76W45i33xt6PxsSI0XzR04hVM41VRKedM_OJNfxxBOgsXpC-oSV7OIyKxr7xMtOAg9fg7EPfiXMXaaj4S1OWfyiE7oXNFG-4L9IE_DyL5h9m7Da70hMmjUdsRFKenPRl4_5XkYAYYreJnsvqk9XAa38QWogT5DK3EiTisPvXfpf0SnYVURDNj91EeRZ9y4BoZFywxdXInms4ZPySfChseKT26F7d19aFYnWMPKrApTBLO6qbTvacuC9rHmmYa4kNZC30axsPS4KUDp-4v6yXEipeIQoi6FGINj1Wyc3L39lmIO_s6zBS_HLm30Zh0xkC7y0bxqJfI5YIF6IiI=?_z=3230648&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=898&wfc=1&pl=https%3A%2F%2Feio.io%2Fl6j30ZY&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false
IP 139.45.197.15:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
Analyzer Verdict Alert quad9 Sinkholed
GET /impression/Ci1DQdHgJDN8-EWL0sKLLwrm7QIdZCQmUDDOzK1kuX8rSbL58eTdvI85yOLEUTfs9efs4ZQen_6l2xQG-ifDy6zcyT0wdS75Tgai5yF58svh2jS0ut_uCgV3dbkWQTTEf9aygOw7UWBybxwJxqDrpD4mgTVSmK5O980FFIaPgMkbilWE0klLvVzUCCfStyy9X_MG9inJpY76W45i33xt6PxsSI0XzR04hVM41VRKedM_OJNfxxBOgsXpC-oSV7OIyKxr7xMtOAg9fg7EPfiXMXaaj4S1OWfyiE7oXNFG-4L9IE_DyL5h9m7Da70hMmjUdsRFKenPRl4_5XkYAYYreJnsvqk9XAa38QWogT5DK3EiTisPvXfpf0SnYVURDNj91EeRZ9y4BoZFywxdXInms4ZPySfChseKT26F7d19aFYnWMPKrApTBLO6qbTvacuC9rHmmYa4kNZC30axsPS4KUDp-4v6yXEipeIQoi6FGINj1Wyc3L39lmIO_s6zBS_HLm30Zh0xkC7y0bxqJfI5YIF6IiI=?_z=3230648&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=898&wfc=1&pl=https%3A%2F%2Feio.io%2Fl6j30ZY&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false HTTP/1.1
Host: in-page-push.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eio.io/
Cookie: OAID=b5a066052cd1496b8f0ec1dd378adc93
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 20:10:50 GMT
content-type: image/gif
content-length: 43
x-trace-id: 5d703ba0c4afc8d5560a07be29d33f2c
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3748
Expires: Sun, 04 Sep 2022 21:13:18 GMT
Date: Sun, 04 Sep 2022 20:10:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3748
Expires: Sun, 04 Sep 2022 21:13:18 GMT
Date: Sun, 04 Sep 2022 20:10:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3748
Expires: Sun, 04 Sep 2022 21:13:18 GMT
Date: Sun, 04 Sep 2022 20:10:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3748
Expires: Sun, 04 Sep 2022 21:13:18 GMT
Date: Sun, 04 Sep 2022 20:10:50 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09148d75-a4a3-47e6-8d91-01e8dfad4bc7.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09148d75-a4a3-47e6-8d91-01e8dfad4bc7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0eecb70391b63b662d13355e32d95ea1
5d5c724e26af57967b9a132a77d3986ba8d6ed9c
2c7f2aa1c725a5d39daf44ee746bb24b5c15aab41c67cf160814f7f87d1aacdf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09148d75-a4a3-47e6-8d91-01e8dfad4bc7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8931
x-amzn-requestid: cfc0940f-ad6a-4535-91b7-70b200af68d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5wwGEVEoAMFriw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313c800-5b6e6e5e3401eba533fb63df;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:32:48 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: aa71ssSsXM8Z0Q2V4AitycF3hefEZXNqIYsr0vsJyhpE9cDpNEwh6Q==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 22:14:56 GMT
age: 78954
etag: "5d5c724e26af57967b9a132a77d3986ba8d6ed9c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F514b7fbd-ae99-4219-bd03-50e907f92b7b.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F514b7fbd-ae99-4219-bd03-50e907f92b7b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ca50f9c56ff869b0b63ca71b1a9f8170
13b16ca74113dfd52ccf23e6bb39307fc713f984
76b85dd7e018ab4b3d4b2610f90dbca61d0f05d38a3b905fee789af131ae7538
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F514b7fbd-ae99-4219-bd03-50e907f92b7b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14855
x-amzn-requestid: 65cf850b-227a-4318-a00e-d7cd4ef81489
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5wjuGtpoAMFvvA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313c7b1-54bc36741984491b0509d173;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:31:29 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: M9Y8U9vqVs1ATiPP9jLPybTJ-xwC--5oiRUpj9-imTWfh6_rmtL5Kw==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 21:54:46 GMT
age: 80164
etag: "13b16ca74113dfd52ccf23e6bb39307fc713f984"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa54e2726-407f-4a8a-8d19-21de249844f5.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa54e2726-407f-4a8a-8d19-21de249844f5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fc4ceb10dd9fcaab21ae58dcf10c401f
6ce530af682094dc5413db9de02565691fab4da7
84ad58e126cce2ab6b1568ffe89a116bc1de0310bb72d4530eead2fb8191572c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa54e2726-407f-4a8a-8d19-21de249844f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11380
x-amzn-requestid: 61f37e21-33a8-49e6-b384-4ca1fcfbffa5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xz8TLFA3oAMFQjg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63117414-42de5c4128eb9e011d848356;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 03:10:12 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: s0voKdiDdj0mq8-VRFSWcYcQXaWti7929bpdKSQMWDoVCmOAPepuDg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Sep 2022 03:48:57 GMT
age: 58913
etag: "6ce530af682094dc5413db9de02565691fab4da7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd43481e-3c33-4c05-9216-2cc734e840b4.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd43481e-3c33-4c05-9216-2cc734e840b4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1bdfdf7e36f78f2f0e4d7ede9fdb76a8
babb88202741bbf2d4fd25e0731a4a7a6fcc28f8
949ea108642789e1014150909060f11d99608f082760d0e868a90282f2768d43
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcd43481e-3c33-4c05-9216-2cc734e840b4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9690
x-amzn-requestid: 614c99f8-116a-4603-bcde-3fbd5bfa14d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5wx1HInIAMFiYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313c80b-25c09c3227d72395408782f0;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:32:59 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5_jCLvdAC-XR-ax3RUbbx9275KPwACOPtAMxSbmv-aP-Lra4sC5zvw==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 21:51:41 GMT
age: 80349
etag: "babb88202741bbf2d4fd25e0731a4a7a6fcc28f8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48ddd9c9-1923-443a-8dbf-f936630b1f9b.jpeg
34.120.237.76200 OK 4.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48ddd9c9-1923-443a-8dbf-f936630b1f9b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7602d55b1969744668194d6433ad2490
c9e50dd6d25825a3fff305261dc8f85a7113150a
9ab721edb038aad74dabe751f7790fe21915884893ea9f471e407ae526495701
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48ddd9c9-1923-443a-8dbf-f936630b1f9b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4615
x-amzn-requestid: a28cc354-9caf-45e8-805e-a9d076f4c55d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5wxXFsZIAMFbVQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313c808-118caff17f74408d6ba251b9;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:32:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: WHCYmwxGwIVneoRpk4rVJ_GVWnEhyayaW_Uj9ejqyTsOFab8oJ9RGA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 21:47:53 GMT
etag: "c9e50dd6d25825a3fff305261dc8f85a7113150a"
content-type: image/jpeg
age: 80577
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc410b0d8-b008-47cc-bbf7-a762c06e0fcd.png
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc410b0d8-b008-47cc-bbf7-a762c06e0fcd.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6bb4b1d74f1443bc3328301ab3ae6464
2768253dacaaad6cb498c6b2eb7694208b0ce0a6
07dcc95dab7757402998a5a61b540c965ce95c8bd51a814a09438981693b563a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc410b0d8-b008-47cc-bbf7-a762c06e0fcd.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8688
x-amzn-requestid: 1c5fbc89-8ce8-4792-b713-f2c0ceeab737
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5wifFJYoAMFi0g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313c7a9-214311e155c661ff77d89906;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:31:21 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: wd9SF3txQNTVUaSPcKQ_nQfPt1pBjFbuHzSZiQjfbGBSb-i7J8Rgjg==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 21:44:29 GMT
age: 80781
etag: "2768253dacaaad6cb498c6b2eb7694208b0ce0a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
eio.io/l6j30ZY
104.21.86.173200 OK 0 B IP 104.21.86.173:0
GET /l6j30ZY HTTP/1.1
Host: eio.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sun, 04 Sep 2022 20:10:48 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-frame-options: SAMEORIGIN, SAMEORIGIN
x-robots-tag: noindex, nofollow
vary: Accept-Encoding,User-Agent
set-cookie: AppSession=90f3e96a6f2c532e4e646c23bf387a8d; path=/; HttpOnly
csrfToken=baa08eff29dc48b985077f94590031d2a5e0902cb2779c6d0e113fa503810b8f827e27135be0abe2098c9298774e81a2c10e35fe314961aead3c53ffef539785; path=/; HttpOnly
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=55lkqHdkxK%2FT%2Bh2%2FhDrxxyaPl5fX%2FeW9SyJNjLIOcuULXdpt7c%2BwRktqhAwbc%2F9dH9CkThnzjbUc5%2BYrDRhc%2B8af95CCQKfwN%2B4MQHQ3ypej8POYuHhbJCE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74595ee59bc2b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:300,400,400italic,600,700
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:300,400,400italic,600,700
IP 142.250.74.10:0
GET /css?family=Open+Sans:300,400,400italic,600,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eio.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 04 Sep 2022 20:10:48 GMT
date: Sun, 04 Sep 2022 20:10:48 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pogothere.xyz/
188.114.96.1200 OK 0 B IP 188.114.96.1:0
GET / HTTP/1.1
Host: pogothere.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eio.io/
Origin: https://eio.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Sep 2022 20:10:49 GMT
content-type: text/plain
set-cookie: csu=598388750281958@1@1662322249; Max-Age=31104000; Secure; SameSite=None
access-control-allow-origin: https://eio.io
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x6qPzfQhKmSrdiqFy1GToxsTQUPrmjaENGQ8zqCwTmL8GsNAYgsyzj9Oq89HhtFTxHL0Phs2y%2Fz5j5jbIguCGGJv2bOO2rQtM0OTwEzxQDGBqeMmsAEe6RCCpNPJx1Ci"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74595eeb98b0b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
pogothere.xyz/asd100.bin
188.114.96.1200 OK 0 B IP 188.114.96.1:0
GET /asd100.bin HTTP/1.1
Host: pogothere.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eio.io/
Origin: https://eio.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 04 Sep 2022 20:10:49 GMT
content-type: binary/octet-stream
access-control-allow-origin: https://eio.io
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cache-control: max-age=14400
cf-cache-status: HIT
age: 3308
last-modified: Sun, 04 Sep 2022 19:15:41 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UwmSEQIhDUP0c4ZVn1iQ0ngYw7WR0P%2B%2BUx1WMUg%2B%2BsoMdzJdnlLQ%2Bl%2FxIh9R%2FDQnc%2ByqWMmdBBYuhGSpUrd8HJR8BfytWTjPFYHpLdNHYx088QoXGa9Hbphkux0W43Yg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74595eeb7882b4ff-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
pogothere.xyz/asd100.bin
188.114.96.1200 OK 0 B IP 188.114.96.1:0
GET /asd100.bin HTTP/1.1
Host: pogothere.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eio.io/
Origin: https://eio.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 04 Sep 2022 20:10:49 GMT
content-type: binary/octet-stream
access-control-allow-origin: https://eio.io
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cache-control: max-age=14400
cf-cache-status: HIT
age: 3308
last-modified: Sun, 04 Sep 2022 19:15:41 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jhEGyiXUhW%2F3TyG6%2BMK5on%2Fp%2BLvv6ZiKINwgtyisbxSIpP7ron1SgL74snZ9sA%2B8YXxsR0njNJrW6AFyJBAq%2FSHn0KVx8nEch%2F%2BC5VDSgm%2BftYLYRpDeUM0WIdc0P%2FJZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74595eeb8888b4ff-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
accounts.google.com/v3/signin/identifier?dsh=S973727434%3A1662322249540185&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=AQN2RmW1sF4yrgH6b5Z6Ws70vAGdoj1DO_BPypRauooDUUnJKO0qgYK_f5plYUeZ8tCea9jrbDqFog
216.58.207.237403 Forbidden 0 B URL HTTP/2 accounts.google.com/v3/signin/identifier?dsh=S973727434%3A1662322249540185&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=AQN2RmW1sF4yrgH6b5Z6Ws70vAGdoj1DO_BPypRauooDUUnJKO0qgYK_f5plYUeZ8tCea9jrbDqFog
IP 216.58.207.237:0
GET /v3/signin/identifier?dsh=S973727434%3A1662322249540185&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=AQN2RmW1sF4yrgH6b5Z6Ws70vAGdoj1DO_BPypRauooDUUnJKO0qgYK_f5plYUeZ8tCea9jrbDqFog HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eio.io/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 04 Sep 2022 20:10:49 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport, script-src 'nonce-NITqZwqeuopqUGqWe-rM_g' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
cross-origin-opener-policy-report-only: same-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
set-cookie: NID=511=YPCh1H6BvoNpIdJ0w3HvbWjT8npFhDwq7YTHqszkJ_NL80zl1t337GeeP8J9HOeWg-YdS0VzWNixpuMVIfY3wcz0G804mFPR15r414vz5QAIaUug5yG-SoRp5Mc5zdTKPyQ5Aq1iHDr4aNMeTXHBxkgsFpNEBOXh-_TKVF6FDDQ; expires=Mon, 06-Mar-2023 20:10:49 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.facebook.com/login.php?next=https%3A%2F%2Fwww.facebook.com%2Ffavicon.ico%3F_rdr%3Dp
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/login.php?next=https%3A%2F%2Fwww.facebook.com%2Ffavicon.ico%3F_rdr%3Dp
IP 31.13.72.36:0
GET /login.php?next=https%3A%2F%2Fwww.facebook.com%2Ffavicon.ico%3F_rdr%3Dp HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eio.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 0
cross-origin-opener-policy: same-origin-allow-popups
vary: Sec-Fetch-Site, Sec-Fetch-Mode, Accept-Encoding
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: rBwhi6Zi1+hmN/VXOZKop0trwxDggBod701NPWQwWSBoFUMFQVwYfCSza+rrtYr852FrgNLa6tpV0R/yWkm21g==
date: Sun, 04 Sep 2022 20:10:49 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2