lifetips365.com/
301 Moved Permanently 162 B IP
ASN #24940 Hetzner Online GmbH
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: lifetips365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 28 Sep 2022 17:48:18 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://www.lifetips365.com/
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 490c003436e215e91596f285fcba92f5
0c4c9a5802e7cdb699f4918c252dbdf8431c25ec
9fe6beb1cb3851018168765a243b6de69ec71d30770f8c2dcc57cae7d9978cc1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9FE6BEB1CB3851018168765A243B6DE69EC71D30770F8C2DCC57CAE7D9978CC1"
Last-Modified: Wed, 28 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8960
Expires: Wed, 28 Sep 2022 20:17:38 GMT
Date: Wed, 28 Sep 2022 17:48:18 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 28 Sep 2022 17:15:39 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: lWO4gY2kEMOMDuVP1m4tFS3XetiaBwXKz108QoFGHl_Za-1NBkK7Tg==
Age: 1959
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 28 Sep 2022 09:24:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: uy_YS8WgEz4uCtd8Lsl2TYQS3Iw5lVp4lTdqV04rVBcn7pQZunk3DQ==
age: 44392
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 17:48:18 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
lifetips365.com/wp-content/plugins/ct-ultimate-gdpr/assets/css/cookie-popup.min.css?ver=6.0.2
200 OK 0 B URL HTTP/2 lifetips365.com/wp-content/plugins/ct-ultimate-gdpr/assets/css/cookie-popup.min.css?ver=6.0.2
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/plugins/ct-ultimate-gdpr/assets/css/cookie-popup.min.css?ver=6.0.2 HTTP/1.1
Host: lifetips365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 17:48:18 GMT
content-type: text/css
content-length: 0
last-modified: Tue, 06 Sep 2022 18:20:20 GMT
etag: "63178f64-0"
strict-transport-security: max-age=31536000; includeSubdomains
accept-ranges: bytes
X-Firefox-Spdy: h2
lifetips365.com/wp-content/plugins/wpcf7-redirect/build/css/wpcf7-redirect-frontend.min.css?ver=6.0.2
200 OK 316 B URL HTTP/2 lifetips365.com/wp-content/plugins/wpcf7-redirect/build/css/wpcf7-redirect-frontend.min.css?ver=6.0.2
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with CRLF, CR line terminators
Hash 9730086eefb28d971b315173f579b3b0
a9845ea261aef600305f310c15d83232ee33460d
9c0647c53dde19cd56b2dfd0626db41f3db20c92984e1e6a4d469c19e4823adf
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wpcf7-redirect/build/css/wpcf7-redirect-frontend.min.css?ver=6.0.2 HTTP/1.1
Host: lifetips365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
content-type: text/css
content-length: 316
last-modified: Tue, 16 Aug 2022 06:44:32 GMT
etag: "62fb3cd0-13c"
strict-transport-security: max-age=31536000; includeSubdomains
accept-ranges: bytes
X-Firefox-Spdy: h2
lifetips365.com/wp-content/plugins/ct-ultimate-gdpr/assets/css/images/block-all.svg
200 OK 868 B URL HTTP/2 lifetips365.com/wp-content/plugins/ct-ultimate-gdpr/assets/css/images/block-all.svg
IP
ASN #24940 Hetzner Online GmbH
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (386)
Hash 3e765c98e8c05851f0636e674c87a3db
11336758f461690853e83807b7c7d67cee6a1776
d7af8a2c0d7cdca61e96c2dd2a7e47ec4228e2268a2b2691e2bf373c4cda01a4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ct-ultimate-gdpr/assets/css/images/block-all.svg HTTP/1.1
Host: lifetips365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
content-type: image/svg+xml
content-length: 868
last-modified: Tue, 06 Sep 2022 18:20:20 GMT
etag: "63178f64-364"
strict-transport-security: max-age=31536000; includeSubdomains
accept-ranges: bytes
X-Firefox-Spdy: h2
lifetips365.com/wp-content/plugins/ct-ultimate-gdpr/assets/css/images/essential.svg
200 OK 825 B URL HTTP/2 lifetips365.com/wp-content/plugins/ct-ultimate-gdpr/assets/css/images/essential.svg
IP
ASN #24940 Hetzner Online GmbH
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (610)
Hash cc394bf216d01030b5f4822158519cd1
fc7608e37468dd55c79cdca486f1c8973da2b15e
206c31d4e597123390a555dcc2416de32d22b8bce126e589cc7cfc1391f92050
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ct-ultimate-gdpr/assets/css/images/essential.svg HTTP/1.1
Host: lifetips365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
content-type: image/svg+xml
content-length: 825
last-modified: Tue, 06 Sep 2022 18:20:20 GMT
etag: "63178f64-339"
strict-transport-security: max-age=31536000; includeSubdomains
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 278 B IP
Hash cb600c4fe611e7a9f6e1df50d934375d
afac81b549aade8b7a1ba18e63432036343fdadf
4ac0f690be6e1e0c0f070e8600e05e7c235ba70b4baf3f4e5a35d207b1db168c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2086
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 17:48:19 GMT
Last-Modified: Wed, 28 Sep 2022 17:13:33 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
200 OK 278 B IP
Hash cb600c4fe611e7a9f6e1df50d934375d
afac81b549aade8b7a1ba18e63432036343fdadf
4ac0f690be6e1e0c0f070e8600e05e7c235ba70b4baf3f4e5a35d207b1db168c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2086
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 17:48:19 GMT
Last-Modified: Wed, 28 Sep 2022 17:13:33 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 278
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash e2875a9e06f892f0d4fa46c0f98a1c49
9c0e332f55a592367b602494642ee2127699b543
74692ca89ddc427d0c55f56aedb738b107a9761c44ed5201f932f54950a6f406
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 17:48:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 279 B IP
Hash 5f4b013b5656bef604b0022eb233d049
5b5ac71b8dbb5b488d7267d0d70292c2f7651c5b
238fd305a8853df61050a601a24c483728ab6695658f993bc179a075a5616cd9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 343
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 17:48:19 GMT
Last-Modified: Wed, 28 Sep 2022 17:42:36 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 279
cdnjs.cloudflare.com/ajax/libs/jquery-validate/1.19.2/jquery.validate.min.js
200 OK 7.0 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery-validate/1.19.2/jquery.validate.min.js
IP
File type Unicode text, UTF-8 text, with very long lines (24304)
Hash 4dff16256caf65b9530a221f15ed1661
e253fdfafb73d51e9d8c1632a521bf562c3d0975
1e51fbddb76b932b540fcd5e6ec3bfdf3196f0bb5e1f441a05d7d62208606e73
GET /ajax/libs/jquery-validate/1.19.2/jquery.validate.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 17:48:19 GMT
content-type: application/javascript; charset=utf-8
content-length: 6970
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5ed13e63-5f7b"
last-modified: Fri, 29 May 2020 16:54:59 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 3024593
expires: Mon, 18 Sep 2023 17:48:19 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6DVzzFwP%2Bt%2F19IGjdDUbtWi78mLbRHOwCHm%2FZlMzCXOn8HkIgvfZeMrEmMBQR3AT984VELgKNdnVhzFNu46ZSceM4dBPb6AlKFSA5X9Wi7mKLcbw3jhF8DRJloXguoDonBojkat9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 751e4f2b5fb51c06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/animate.css/4.1.1/animate.min.css?ver=6.0.2
200 OK 4.2 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/animate.css/4.1.1/animate.min.css?ver=6.0.2
IP
File type ASCII text, with very long lines (65348)
Hash eefc9abe5bc10d658a2393a70d052566
dd49deafcd3ebe1306cda0b843f2da265f8a90e1
6011c33e447455e96e1d4926b0e15ca399eb993163a8e5ee0c523947396d66c3
GET /ajax/libs/animate.css/4.1.1/animate.min.css?ver=6.0.2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 17:48:19 GMT
content-type: text/css; charset=utf-8
content-length: 4216
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5f5628a2-11846"
last-modified: Mon, 07 Sep 2020 12:33:38 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 3019510
expires: Mon, 18 Sep 2023 17:48:19 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rZSmjVa1kRA6VLH2tvPjNbED4PXC1IKE9B42M3FqP1ZCk3fuYfdQz1XAwSm74HJwXQfpRb63zR13TEvXm8ChiA0XI3FOllgsbLvr6hbZ%2FUHi6VYQr9QtMI1sfl9N5XCiduu%2FHoN%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 751e4f2b4fb21c06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 278 B IP
Hash cb600c4fe611e7a9f6e1df50d934375d
afac81b549aade8b7a1ba18e63432036343fdadf
4ac0f690be6e1e0c0f070e8600e05e7c235ba70b4baf3f4e5a35d207b1db168c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2086
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 17:48:19 GMT
Last-Modified: Wed, 28 Sep 2022 17:13:33 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
200 OK 279 B IP
Hash 5f4b013b5656bef604b0022eb233d049
5b5ac71b8dbb5b488d7267d0d70292c2f7651c5b
238fd305a8853df61050a601a24c483728ab6695658f993bc179a075a5616cd9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5456
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 17:48:19 GMT
Last-Modified: Wed, 28 Sep 2022 16:17:23 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash e2875a9e06f892f0d4fa46c0f98a1c49
9c0e332f55a592367b602494642ee2127699b543
74692ca89ddc427d0c55f56aedb738b107a9761c44ed5201f932f54950a6f406
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 17:48:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 2f76d47ed4f3c90f557522303bb760bc
f34542cabea7a4517debf64c298b59fc009ea56c
5ce5c216b7cb6a4425f12453e447ad364bcc1cd7d23a9d2468a8a40adfc2cb10
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 17:48:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lifetips365.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
200 OK 3.2 kB URL HTTP/2 lifetips365.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
IP
ASN #24940 Hetzner Online GmbH
Hash 83b2fcf72144626d5f60da9af447c30a
cadc64a773986cdda1673ee36765ee24339b191d
8d46fa031f877cbccda2ca68db4f3cd58102fb8d17ac487fc131857c41f1f0c3
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3 HTTP/1.1
Host: lifetips365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
content-type: application/javascript
last-modified: Thu, 08 Sep 2022 09:25:12 GMT
vary: Accept-Encoding
etag: W/"6319b4f8-25d0"
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-P5KZQH7
200 OK 65 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-P5KZQH7
IP
File type ASCII text, with very long lines (15060)
Hash 38690427a511250f04039476f32070b6
9942be3c3c9904ff163c9ad2cea1a1e3f5ab373f
49b079c44fdfc92ca0c6f3a7cde12265fb1be465b43c1d29537d63157d49707f
GET /gtm.js?id=GTM-P5KZQH7 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 28 Sep 2022 17:48:19 GMT
expires: Wed, 28 Sep 2022 17:48:19 GMT
cache-control: private, max-age=900
last-modified: Wed, 28 Sep 2022 16:39:46 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 65351
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lifetips365.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
200 OK 4.4 kB URL HTTP/2 lifetips365.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
IP
ASN #24940 Hetzner Online GmbH
Hash d3c441b99062654e78341de5e1bdfcdf
207b8f2dc3c10bb0c4ef4b624d56614c59cb724d
83d730b090cacfb33da1ccd640be816a8335d61ba7863121adc9e01144323008
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 HTTP/1.1
Host: lifetips365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
content-type: application/javascript
last-modified: Thu, 08 Sep 2022 09:25:12 GMT
vary: Accept-Encoding
etag: W/"6319b4f8-2fb3"
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2
lifetips365.com/wp-content/plugins/ct-ultimate-gdpr/assets/css/jquery-ui.min.css?ver=6.0.2
200 OK 8.3 kB URL HTTP/2 lifetips365.com/wp-content/plugins/ct-ultimate-gdpr/assets/css/jquery-ui.min.css?ver=6.0.2
IP
ASN #24940 Hetzner Online GmbH
Hash 0214b96f60c11c3dd9f2d56cfb3cdd27
fb62441a6565db6e7bd03d9c0baa17ccc043eb12
33e912970cc4c51f484dd9fda72bb5f9c97a6cc05a41bbbb152d6f04818426c1
GET /wp-content/plugins/ct-ultimate-gdpr/assets/css/jquery-ui.min.css?ver=6.0.2 HTTP/1.1
Host: lifetips365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
content-type: text/css
last-modified: Tue, 06 Sep 2022 18:20:20 GMT
vary: Accept-Encoding
etag: W/"63178f64-ac08"
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.lifetips365.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 24 Sep 2022 18:01:25 GMT
expires: Sun, 24 Sep 2023 18:01:25 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
age: 344814
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lifetips365.com/wp-content/plugins/ct-ultimate-gdpr/assets/js/shortcode-block-cookie.js?ver=3.7
200 OK 1.5 kB URL HTTP/2 lifetips365.com/wp-content/plugins/ct-ultimate-gdpr/assets/js/shortcode-block-cookie.js?ver=3.7
IP
ASN #24940 Hetzner Online GmbH
Hash 6c02779c58b2140f0ee4410e6ad4230d
a05f2665edb6ddc6f8bd95a0bff6397e61b09d89
d519b8127a1acef31d2d861f02d48aa51632718368be94b950fa143e134d1a6f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ct-ultimate-gdpr/assets/js/shortcode-block-cookie.js?ver=3.7 HTTP/1.1
Host: lifetips365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
content-type: application/javascript
last-modified: Tue, 06 Sep 2022 18:20:20 GMT
vary: Accept-Encoding
etag: W/"63178f64-693"
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash fc82211401f793132f7d43c2fd253af5
605d8371709b5d2a41967fd390c34fa649f89ea3
b23fd36ec037710672ac1aa6fea284e3869c4bae7941d9b53c771cff8743478e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 17:48:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lifetips365.com/wp-content/plugins/ct-ultimate-gdpr/assets/css/images/essential.svg
200 OK 825 B URL HTTP/2 lifetips365.com/wp-content/plugins/ct-ultimate-gdpr/assets/css/images/essential.svg
IP
ASN #24940 Hetzner Online GmbH
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (610)
Hash cc394bf216d01030b5f4822158519cd1
fc7608e37468dd55c79cdca486f1c8973da2b15e
206c31d4e597123390a555dcc2416de32d22b8bce126e589cc7cfc1391f92050
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ct-ultimate-gdpr/assets/css/images/essential.svg HTTP/1.1
Host: lifetips365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/xml, text/xml, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.lifetips365.com
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
content-type: image/svg+xml
content-length: 825
last-modified: Tue, 06 Sep 2022 18:20:20 GMT
etag: "63178f64-339"
strict-transport-security: max-age=31536000; includeSubdomains
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 3526d5ce1381ba26cbc553db057e1915
fe01c920696448e8bf12e6fff877bce8281d34a2
09604aed7cbca7971bfcb5afcb53591600b944f28eff21aa65dc601e78cdda53
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6483
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 17:48:19 GMT
Last-Modified: Wed, 28 Sep 2022 16:00:17 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
fonts.googleapis.com/css?display=swap&family=Open+Sans:100,200,300,400,500,600,700,800,900|Source+Sans+Pro:100,200,300,400,500,600,700,800,900|Roboto:100,200,300,400,500,600,700,800,900|Montserrat:100,200,300,400,500,600,700,800,900
200 OK 7.4 kB URL HTTP/2 fonts.googleapis.com/css?display=swap&family=Open+Sans:100,200,300,400,500,600,700,800,900|Source+Sans+Pro:100,200,300,400,500,600,700,800,900|Roboto:100,200,300,400,500,600,700,800,900|Montserrat:100,200,300,400,500,600,700,800,900
IP
Hash 85216970261c91ebff3f4e7ec32c704b
d956d5a99ed22f6156f4d32a6faf69e9338970ed
0d186766a58b48e8f15a13dc1d080fe2130a21e1e077e7decb221488fd62c26c
GET /css?display=swap&family=Open+Sans:100,200,300,400,500,600,700,800,900|Source+Sans+Pro:100,200,300,400,500,600,700,800,900|Roboto:100,200,300,400,500,600,700,800,900|Montserrat:100,200,300,400,500,600,700,800,900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 28 Sep 2022 17:48:19 GMT
date: Wed, 28 Sep 2022 17:48:19 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lifetips365.com/wp-content/uploads/2021/11/cropped-Logo-32x32.jpg
200 OK 1.0 kB URL HTTP/2 lifetips365.com/wp-content/uploads/2021/11/cropped-Logo-32x32.jpg
IP
ASN #24940 Hetzner Online GmbH
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 32x32, components 3\012- data
Hash e4645b28047266bd9853a4769e3190ad
511f80868a30859752024d905369d9d091a54b2b
2efbc29d5679f0e74aea80e64430f71a5afc96744c9b3a36afbeb0272c606e91
GET /wp-content/uploads/2021/11/cropped-Logo-32x32.jpg HTTP/1.1
Host: lifetips365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Cookie: _gcl_au=1.1.1040168863.1664387297
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
content-type: image/jpeg
content-length: 1037
last-modified: Fri, 05 Nov 2021 16:23:56 GMT
etag: "61855a9c-40d"
strict-transport-security: max-age=31536000; includeSubdomains
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 366fbb58b56c6469840359066ae0ef4b
519ec2d019a3df15e1555ee7e9f784207f3ee604
4c03f3b3b06d0359ff6c3e72e91c39cb8f6e6406ed7b8ba9e09708da8e2d38f4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2786
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 17:48:19 GMT
Last-Modified: Wed, 28 Sep 2022 17:01:53 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
amplify.outbrain.com/cp/obtp.js
200 OK 3.2 kB URL HTTP/1.1 amplify.outbrain.com/cp/obtp.js
IP
File type ASCII text, with very long lines (8072), with no line terminators
Hash 9b19340ef7db3cbb26aa923adb8dbe6e
082e699bca6e80ca6c72a43f2894f4a32e785e26
c042b8b199b2c08fa66f90753998544860e3f64c3a1f47754a66970b3b8c5b2a
GET /cp/obtp.js HTTP/1.1
Host: amplify.outbrain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "51de2e10510f823326f9b30ea6068a2a:1655820557.452892"
Last-Modified: Tue, 21 Jun 2022 14:06:31 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1200
Expires: Wed, 28 Sep 2022 18:08:19 GMT
Date: Wed, 28 Sep 2022 17:48:19 GMT
Content-Length: 3249
Connection: keep-alive
lifetips365.com/wp-content/plugins/ct-ultimate-gdpr/assets/css/images/functionality.svg
200 OK 22 kB URL HTTP/2 lifetips365.com/wp-content/plugins/ct-ultimate-gdpr/assets/css/images/functionality.svg
IP
ASN #24940 Hetzner Online GmbH
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (4079)
Hash 2ce759fd3933108357884c7fea41d63d
fe92980bb5583dd94413012fc004a0776660adf2
a05b901a5843b75b450e0ee1059731997c225f42d5248739e54b76729a7a922d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ct-ultimate-gdpr/assets/css/images/functionality.svg HTTP/1.1
Host: lifetips365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/xml, text/xml, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.lifetips365.com
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
content-type: image/svg+xml
last-modified: Tue, 06 Sep 2022 18:20:20 GMT
vary: Accept-Encoding
etag: W/"63178f64-10c6"
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5e01e4cfb215a3f052b4c716bc77c1a6
6e63b3e883051319571310c44b87591f0312d83f
aebb544e0762c6c3eb289d85c20299baa3f742dc46cfa5bcc33ac6df411285ae
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 17:48:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
track.lifetips365.com/hp
200 OK 60 kB IP
Hash f9352b2da043de327ede7d559544eede
3058008a246ff5a393f0d4b453a5b23b18c1eebb
8bb1680e5f2bfa3b378c494e01815cb00af39d76f6cd62a3da71dca809ff3a2c
Analyzer Verdict Alert fortinet Phishing
GET /hp HTTP/1.1
Host: track.lifetips365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Cookie: _gcl_au=1.1.1040168863.1664387297
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
cache-control: no-store, no-cache, pre-check=0, post-check=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
pragma: no-cache
X-Firefox-Spdy: h2
lifetips365.com/wp-content/plugins/ct-ultimate-gdpr/assets/css/images/functionality.svg
200 OK 84 kB URL HTTP/2 lifetips365.com/wp-content/plugins/ct-ultimate-gdpr/assets/css/images/functionality.svg
IP
ASN #24940 Hetzner Online GmbH
Hash 5245e5a0d72973234e7a0ce3dbc57945
d33df06ebf32ac74fd06f62af98a3acce7b329b2
ded8a37be9ecff697df1436a85bb006f1d1e6e47a93734733764bcf1a62e360e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ct-ultimate-gdpr/assets/css/images/functionality.svg HTTP/1.1
Host: lifetips365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
content-type: image/svg+xml
last-modified: Tue, 06 Sep 2022 18:20:20 GMT
vary: Accept-Encoding
etag: W/"63178f64-10c6"
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2
www.google-analytics.com/collect?v=1&_v=j97&aip=1&a=1180550755&t=event&ni=0&_s=1&dl=https%3A%2F%2Fwww.lifetips365.com%2F&ul=en-us&de=UTF-8&dt=Lifetips365.com%20-%20Homepage%20-%20Lifetips365.com&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&ec=contact&ea=form%20submission&el=Germany&_u=YEDAAEABAAAAAC~&jid=&gjid=&cid=1179980672.1664387297&tid=UA-188880361-4&_gid=1878218635.1664387297>m=2wg9q0P5KZQH7&z=168152468
200 OK 35 B URL HTTP/2 www.google-analytics.com/collect?v=1&_v=j97&aip=1&a=1180550755&t=event&ni=0&_s=1&dl=https%3A%2F%2Fwww.lifetips365.com%2F&ul=en-us&de=UTF-8&dt=Lifetips365.com%20-%20Homepage%20-%20Lifetips365.com&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&ec=contact&ea=form%20submission&el=Germany&_u=YEDAAEABAAAAAC~&jid=&gjid=&cid=1179980672.1664387297&tid=UA-188880361-4&_gid=1878218635.1664387297>m=2wg9q0P5KZQH7&z=168152468
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /collect?v=1&_v=j97&aip=1&a=1180550755&t=event&ni=0&_s=1&dl=https%3A%2F%2Fwww.lifetips365.com%2F&ul=en-us&de=UTF-8&dt=Lifetips365.com%20-%20Homepage%20-%20Lifetips365.com&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&ec=contact&ea=form%20submission&el=Germany&_u=YEDAAEABAAAAAC~&jid=&gjid=&cid=1179980672.1664387297&tid=UA-188880361-4&_gid=1878218635.1664387297>m=2wg9q0P5KZQH7&z=168152468 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
pragma: no-cache
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
date: Tue, 27 Sep 2022 23:08:31 GMT
expires: Mon, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
age: 67188
last-modified: Sun, 17 May 1998 03:00:00 GMT
content-type: image/gif
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lifetips365.com/wp-content/plugins/ct-ultimate-gdpr/assets/css/fonts/fonts.css?ver=6.0.2
200 OK 770 B URL HTTP/2 lifetips365.com/wp-content/plugins/ct-ultimate-gdpr/assets/css/fonts/fonts.css?ver=6.0.2
IP
ASN #24940 Hetzner Online GmbH
Hash ac57a8d00fc8a1957d44b1e549ba8228
926f8f912f79e46589d619f03b340bd4dc70c91b
13f95a799624f2d7d60c4e03978c0bdad8670efb1d5a54e965fccf119a537ef7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ct-ultimate-gdpr/assets/css/fonts/fonts.css?ver=6.0.2 HTTP/1.1
Host: lifetips365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
content-type: text/css
last-modified: Tue, 06 Sep 2022 18:20:20 GMT
vary: Accept-Encoding
etag: W/"63178f64-796"
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j97&aip=1&a=1180550755&t=pageview&_s=1&dl=https%3A%2F%2Fwww.lifetips365.com%2F&ul=en-us&de=UTF-8&dt=Lifetips365.com%20-%20Homepage%20-%20Lifetips365.com&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAEABAAAAAC~&jid=1259448821&gjid=1541233672&cid=1179980672.1664387297&tid=UA-188880361-4&_gid=1878218635.1664387297&_r=1>m=2wg9q0P5KZQH7&z=1335836238
200 OK 1 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j97&aip=1&a=1180550755&t=pageview&_s=1&dl=https%3A%2F%2Fwww.lifetips365.com%2F&ul=en-us&de=UTF-8&dt=Lifetips365.com%20-%20Homepage%20-%20Lifetips365.com&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAEABAAAAAC~&jid=1259448821&gjid=1541233672&cid=1179980672.1664387297&tid=UA-188880361-4&_gid=1878218635.1664387297&_r=1>m=2wg9q0P5KZQH7&z=1335836238
IP
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?v=1&_v=j97&aip=1&a=1180550755&t=pageview&_s=1&dl=https%3A%2F%2Fwww.lifetips365.com%2F&ul=en-us&de=UTF-8&dt=Lifetips365.com%20-%20Homepage%20-%20Lifetips365.com&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAEABAAAAAC~&jid=1259448821&gjid=1541233672&cid=1179980672.1664387297&tid=UA-188880361-4&_gid=1878218635.1664387297&_r=1>m=2wg9q0P5KZQH7&z=1335836238 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.lifetips365.com
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.lifetips365.com
date: Wed, 28 Sep 2022 17:48:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
script.hotjar.com/modules.cf44a0a6b448df1b035e.js
200 OK 66 kB URL HTTP/2 script.hotjar.com/modules.cf44a0a6b448df1b035e.js
IP
File type Unicode text, UTF-8 text, with very long lines (48714)
Hash 5f131c93ccff63ccc86d0067d0eebf99
a599898399783be0db5f757c043b828a0726deec
91980f4223c639c3849139a6e692ccf10310f0b57d74b403198af020fc7398a2
GET /modules.cf44a0a6b448df1b035e.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 66148
date: Wed, 28 Sep 2022 11:37:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "5f131c93ccff63ccc86d0067d0eebf99"
last-modified: Wed, 28 Sep 2022 11:36:53 GMT
strict-transport-security: max-age=604800; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: nrrHUxnAGLQk7WJCA-uTRjKlOkLdFlBNCVJj_FFd4rSQ9TEB7Y7Epw==
age: 22273
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash be52dbe2d47697a7f007d69c486b77b4
fe445ea87749e97423e7865bc559ad78f672a62d
65d16df2b3095c658d2bdf39b06d57486967bba7b43c43108e5025d7af5b7ab6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 17:48:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash afa078b70d80b6b5afcd913b9a626159
ccce4ced1c0e2aacb3c9de29c995e69084fdd851
b39fd4ba1a0a96216d68eaddf1ce8dd67c4cceae45f90c29e4b3093300873d08
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 17:48:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
200 OK 7.0 kB URL HTTP/2 maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
IP
File type ASCII text, with very long lines (30837)
Hash 7703aa0e0fbc590eb852d837a024d54b
df2ebf32216fa91d5055803b60e90618be9499e5
8af8bc3ecb14814ee0160adb3560780961fd0f9e41d0d65378eb50d24059d7df
GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 17:48:19 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: SE
cdn-edgestorageid: 722, 617
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 2021-03-10 20:26:20
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 121d365db7a9aba3915641185d93b963
cdn-cache: HIT
cf-cache-status: HIT
age: 13698106
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 751e4f2b5d27b4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 6ab8b69fade235ccf1a15d2cac6dd95e
37c426c0e6940920c4478855c6bb610731edd316
025fc814f74bed6fcfc2a4c25b670c1d538d06c5ce07af13d3f9f8354ca34604
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 17:48:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 279 B IP
Hash 908e760cbf5e1fc8544af204ed7a796d
dcae2149ac8898c74b0de05e354e0756ff3b20ed
5a3802c69fe4c02c96e8b569fc32560be3418d58d01a0daa4e726c67876570c0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6232
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 17:48:19 GMT
Last-Modified: Wed, 28 Sep 2022 16:04:27 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
200 OK 279 B IP
Hash 908e760cbf5e1fc8544af204ed7a796d
dcae2149ac8898c74b0de05e354e0756ff3b20ed
5a3802c69fe4c02c96e8b569fc32560be3418d58d01a0daa4e726c67876570c0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3972
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 17:48:19 GMT
Last-Modified: Wed, 28 Sep 2022 16:42:09 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
200 OK 279 B IP
Hash 908e760cbf5e1fc8544af204ed7a796d
dcae2149ac8898c74b0de05e354e0756ff3b20ed
5a3802c69fe4c02c96e8b569fc32560be3418d58d01a0daa4e726c67876570c0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3245
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 17:48:19 GMT
Last-Modified: Wed, 28 Sep 2022 16:54:14 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
200 OK 279 B IP
Hash 908e760cbf5e1fc8544af204ed7a796d
dcae2149ac8898c74b0de05e354e0756ff3b20ed
5a3802c69fe4c02c96e8b569fc32560be3418d58d01a0daa4e726c67876570c0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3972
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 17:48:19 GMT
Last-Modified: Wed, 28 Sep 2022 16:42:09 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 279
googleads.g.doubleclick.net/pagead/viewthroughconversion/10788536508/?random=1664387297227&cv=9&fst=1664387297227&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9q0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fwww.lifetips365.com%2F&tiba=Lifetips365.com%20-%20Homepage%20-%20Lifetips365.com&auid=1040168863.1664387297&hn=www.google.com&async=1&rfmt=3&fmt=4
200 OK 1.0 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/10788536508/?random=1664387297227&cv=9&fst=1664387297227&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9q0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fwww.lifetips365.com%2F&tiba=Lifetips365.com%20-%20Homepage%20-%20Lifetips365.com&auid=1040168863.1664387297&hn=www.google.com&async=1&rfmt=3&fmt=4
IP
File type ASCII text, with very long lines (2250), with no line terminators
Hash f0b1063cf599abf2b89145683abeada0
6604f3e6b2c0b0e0de81e34892516b34fc0a75ec
b4074d67ee3d0b4b671a77dd50fae6b5df08128f21b55358c177b21da4d636cc
GET /pagead/viewthroughconversion/10788536508/?random=1664387297227&cv=9&fst=1664387297227&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9q0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fwww.lifetips365.com%2F&tiba=Lifetips365.com%20-%20Homepage%20-%20Lifetips365.com&auid=1040168863.1664387297&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 28 Sep 2022 17:48:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1019
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 28-Sep-2022 18:03:19 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/374286076/?random=1664387297222&cv=9&fst=1664387297222&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9q0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fwww.lifetips365.com%2F&tiba=Lifetips365.com%20-%20Homepage%20-%20Lifetips365.com&auid=1040168863.1664387297&hn=www.google.com&async=1&rfmt=3&fmt=4
200 OK 1.0 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/374286076/?random=1664387297222&cv=9&fst=1664387297222&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9q0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fwww.lifetips365.com%2F&tiba=Lifetips365.com%20-%20Homepage%20-%20Lifetips365.com&auid=1040168863.1664387297&hn=www.google.com&async=1&rfmt=3&fmt=4
IP
File type ASCII text, with very long lines (2246), with no line terminators
Hash 75be885ed5b932a58b2395cdd90e0c5c
b1b49e7661ddeae83eac6a5ab7967268bdf9380b
decbd197dec2a71f4ef53da198c2399bb6805d0a46409af5b383cb4443250714
GET /pagead/viewthroughconversion/374286076/?random=1664387297222&cv=9&fst=1664387297222&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9q0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fwww.lifetips365.com%2F&tiba=Lifetips365.com%20-%20Homepage%20-%20Lifetips365.com&auid=1040168863.1664387297&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 28 Sep 2022 17:48:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1016
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 28-Sep-2022 18:03:19 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lifetips365.com/wp-content/plugins/ct-ultimate-gdpr/assets/js/cookie-popup.js?ver=3.7
200 OK 56 kB URL HTTP/2 lifetips365.com/wp-content/plugins/ct-ultimate-gdpr/assets/js/cookie-popup.js?ver=3.7
IP
ASN #24940 Hetzner Online GmbH
Hash 06944746f18491fcf647ed42a9612ab3
5d5b73ba067edbb58177b24ef41fedb421ecad4a
b3b171378f0d482f520367b917ad05445c5dd1dce9153889e8fdbc1f937b1f68
GET /wp-content/plugins/ct-ultimate-gdpr/assets/js/cookie-popup.js?ver=3.7 HTTP/1.1
Host: lifetips365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
content-type: application/javascript
last-modified: Tue, 06 Sep 2022 18:20:20 GMT
vary: Accept-Encoding
etag: W/"63178f64-7099"
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash e6aa0dae0da1de777e0f51c4ad00f7d5
c0fe73ba56743d20e024b7e8081cdcde6fc012e9
ca0436bc1b1f32be07b6921997877923911632dc31fc5ae2887e9149e5455528
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6072
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 17:48:19 GMT
Last-Modified: Wed, 28 Sep 2022 16:07:07 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
vars.hotjar.com/box-69edcc3187336f9b0a3fbb4c73be9fe6.html
200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-69edcc3187336f9b0a3fbb4c73be9fe6.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2431), with no line terminators
Hash f6a9ca04b0687ea3c0d98e8430c8c77b
35503b2deb23091a9a9c6c68d4020dbdf879588e
8e4328ecb6b395499567369e3c227231dbdaf361f43ce315934d7a2a3abbed41
GET /box-69edcc3187336f9b0a3fbb4c73be9fe6.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1044
date: Wed, 07 Sep 2022 09:17:07 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "f6a9ca04b0687ea3c0d98e8430c8c77b"
last-modified: Wed, 07 Sep 2022 09:16:57 GMT
strict-transport-security: max-age=604800; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: znPtrU8I5sAQPeAO-ZJ2ZrhnZg0r0D6X86lrP2k5ffn4djUlqZZaig==
age: 1845072
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 908e760cbf5e1fc8544af204ed7a796d
dcae2149ac8898c74b0de05e354e0756ff3b20ed
5a3802c69fe4c02c96e8b569fc32560be3418d58d01a0daa4e726c67876570c0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3972
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 17:48:19 GMT
Last-Modified: Wed, 28 Sep 2022 16:42:09 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 279
status.thawte.com/
200 OK 471 B IP
Hash 74da23feb51541d5a4eb7eff61088b65
5b70a903aa00d079dc55487c7f7edd3bf0fd6bf6
23bbfc9938e7f0fe3a0cfb6f364bc149782ec836e4d6f5f31640a7ddacee7014
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1376
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 17:48:19 GMT
Last-Modified: Wed, 28 Sep 2022 17:25:23 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
lifetips365.com/wp-includes/css/dashicons.min.css?ver=6.0.2
200 OK 69 kB URL HTTP/2 lifetips365.com/wp-includes/css/dashicons.min.css?ver=6.0.2
IP
ASN #24940 Hetzner Online GmbH
File type ASCII text, with very long lines (59064)
Hash b2930c4435486541063bdbddd8874014
2b1b9c095bcf625bdf1ef76c80a6470fc08af28b
01ebd9f2fb61da1a6cbdafea4db6096696fb18cf71aadb6756b91b96665d598e
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dashicons.min.css?ver=6.0.2 HTTP/1.1
Host: lifetips365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 17:48:18 GMT
content-type: text/css
last-modified: Thu, 25 Mar 2021 20:02:19 GMT
vary: Accept-Encoding
etag: W/"605cec4b-e688"
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2
status.thawte.com/
200 OK 471 B IP
Hash 74da23feb51541d5a4eb7eff61088b65
5b70a903aa00d079dc55487c7f7edd3bf0fd6bf6
23bbfc9938e7f0fe3a0cfb6f364bc149782ec836e4d6f5f31640a7ddacee7014
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2887
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 17:48:20 GMT
Last-Modified: Wed, 28 Sep 2022 17:00:13 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 6ab8b69fade235ccf1a15d2cac6dd95e
37c426c0e6940920c4478855c6bb610731edd316
025fc814f74bed6fcfc2a4c25b670c1d538d06c5ce07af13d3f9f8354ca34604
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 17:48:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash b7ed37e03b72b8da3fb7f6c476ae9a1f
c335157b42102c71f5431bc295b2b2542af781d4
66ad71fe8fc69a39c7852c1b8e1fe1308e8ccaf2a147ed1c3a6866d3b248f9a3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 17:48:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP
Hash 61ca33747b07cd4ba340a502daaf636a
b5a13b18eda4cc513036a1d535bb57d44dc8d826
0d142f613ed56fb212579ef86034876ab0e80770b5fd8f8d0f404ee64c9e437e
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 17:48:20 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "14486D25253DAEAA2D22E7BA3B0FEB2CA32C11BD"
Expires: Thu, 29 Sep 2022 05:00:00 GMT
Last-Modified: Wed, 28 Sep 2022 17:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 247
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 751e4f314b38fab8-OSL
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash b7ed37e03b72b8da3fb7f6c476ae9a1f
c335157b42102c71f5431bc295b2b2542af781d4
66ad71fe8fc69a39c7852c1b8e1fe1308e8ccaf2a147ed1c3a6866d3b248f9a3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 17:48:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-user-list/374286076/?random=1664387297222&cv=9&fst=1664384400000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9q0&sendb=1&frm=0&url=https%3A%2F%2Fwww.lifetips365.com%2F&tiba=Lifetips365.com%20-%20Homepage%20-%20Lifetips365.com&async=1&fmt=3&is_vtc=1&random=1574182491&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
200 OK 17 kB URL HTTP/2 www.google.no/pagead/1p-user-list/374286076/?random=1664387297222&cv=9&fst=1664384400000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9q0&sendb=1&frm=0&url=https%3A%2F%2Fwww.lifetips365.com%2F&tiba=Lifetips365.com%20-%20Homepage%20-%20Lifetips365.com&async=1&fmt=3&is_vtc=1&random=1574182491&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP
Hash 2ab7da7f4aa9c6db3c368013c2955d35
9f1aed15d5288c1fd782928fa418d8bae95297c0
e4ae0a792075b705a162f54627003bf2c4dc77e2aa5c190eeb33313a56bb42c1
GET /pagead/1p-user-list/374286076/?random=1664387297222&cv=9&fst=1664384400000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9q0&sendb=1&frm=0&url=https%3A%2F%2Fwww.lifetips365.com%2F&tiba=Lifetips365.com%20-%20Homepage%20-%20Lifetips365.com&async=1&fmt=3&is_vtc=1&random=1574182491&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 28 Sep 2022 17:48:20 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/10788536508/?random=1664387297227&cv=9&fst=1664384400000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9q0&sendb=1&frm=0&url=https%3A%2F%2Fwww.lifetips365.com%2F&tiba=Lifetips365.com%20-%20Homepage%20-%20Lifetips365.com&async=1&fmt=3&is_vtc=1&random=3008931709&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/10788536508/?random=1664387297227&cv=9&fst=1664384400000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9q0&sendb=1&frm=0&url=https%3A%2F%2Fwww.lifetips365.com%2F&tiba=Lifetips365.com%20-%20Homepage%20-%20Lifetips365.com&async=1&fmt=3&is_vtc=1&random=3008931709&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/10788536508/?random=1664387297227&cv=9&fst=1664384400000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9q0&sendb=1&frm=0&url=https%3A%2F%2Fwww.lifetips365.com%2F&tiba=Lifetips365.com%20-%20Homepage%20-%20Lifetips365.com&async=1&fmt=3&is_vtc=1&random=3008931709&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 28 Sep 2022 17:48:20 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1136344380625813&ev=PageView&dl=https%3A%2F%2Fwww.lifetips365.com%2F&rl=&if=false&ts=1664387297471&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=30&fbp=fb.1.1664387297470.900660136&it=1664387297234&coo=false&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1136344380625813&ev=PageView&dl=https%3A%2F%2Fwww.lifetips365.com%2F&rl=&if=false&ts=1664387297471&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=30&fbp=fb.1.1664387297470.900660136&it=1664387297234&coo=false&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1136344380625813&ev=PageView&dl=https%3A%2F%2Fwww.lifetips365.com%2F&rl=&if=false&ts=1664387297471&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=30&fbp=fb.1.1664387297470.900660136&it=1664387297234&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Wed, 28 Sep 2022 17:48:20 GMT
X-Firefox-Spdy: h2
ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-font-face.min.css?token=14579ba48d
200 OK 2.6 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-font-face.min.css?token=14579ba48d
IP
File type ASCII text, with very long lines (27832)
Hash eaaabd3f60063923cd5333eb1d7a20a1
0da69706105e28896a1f6eeaa91d5bec1b82f7f1
f863309ec0ac675409167610ff9776fa9c7620d6ee3592cc0c19d0b883ff2f70
GET /releases/v5.15.4/css/pro-v4-font-face.min.css?token=14579ba48d HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.powr.io/
Origin: https://www.powr.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 17:48:20 GMT
content-type: text/css
content-length: 2603
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-a2b"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 2123374
accept-ranges: bytes
server: cloudflare
cf-ray: 751e4f31bdac0af6-OSL
X-Firefox-Spdy: h2
ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-shims.min.css?token=14579ba48d
200 OK 4.2 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-shims.min.css?token=14579ba48d
IP
File type ASCII text, with very long lines (26366)
Hash 7fd743485fa194e25e2a207bff6c258a
97c999d752b95ee1ed6271a29aa58109dc17281e
dd939d69a23f003d49287291f0bcb59df58119d60bc5f14a81cbfd957894f6dc
GET /releases/v5.15.4/css/pro-v4-shims.min.css?token=14579ba48d HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.powr.io/
Origin: https://www.powr.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 17:48:20 GMT
content-type: text/css
content-length: 4194
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-1062"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 9833986
accept-ranges: bytes
server: cloudflare
cf-ray: 751e4f31bdb40af6-OSL
X-Firefox-Spdy: h2
ka-p.fontawesome.com/releases/v5.15.4/css/pro.min.css?token=14579ba48d
200 OK 54 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/css/pro.min.css?token=14579ba48d
IP
File type ASCII text, with very long lines (65397)
Hash dc9270247a97f75913a5d8934c24de03
ed9b0fa01b552571f99d529ed355b2ba91cfc48d
847cc3ab1ea736cbbaac34833596335471fc7a888089b501b3c83a323566f0b8
GET /releases/v5.15.4/css/pro.min.css?token=14579ba48d HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.powr.io/
Origin: https://www.powr.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 17:48:20 GMT
content-type: text/css
content-length: 54194
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-d3b2"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 9831380
accept-ranges: bytes
server: cloudflare
cf-ray: 751e4f31bdab0af6-OSL
X-Firefox-Spdy: h2
tr.outbrain.com/cachedClickId?marketerId=00e3bfba232446a29e79d5a017ce05e435,00cccafacb61a9ec8a571ed26ed2e5d92f,0097c20bcbe19b620790a02f065382cdf1
200 OK 56 B URL HTTP/1.1 tr.outbrain.com/cachedClickId?marketerId=00e3bfba232446a29e79d5a017ce05e435,00cccafacb61a9ec8a571ed26ed2e5d92f,0097c20bcbe19b620790a02f065382cdf1
IP
File type ASCII text, with no line terminators
Hash 77fbe8ab311fa20557d95906363035ed
5806df80f09a37e070d5f37c49f19797c2763fd0
4fa9f4ca5bfa56b9f8467324e3654f4a717dcd40b70c05b538092d8a101b0599
GET /cachedClickId?marketerId=00e3bfba232446a29e79d5a017ce05e435,00cccafacb61a9ec8a571ed26ed2e5d92f,0097c20bcbe19b620790a02f065382cdf1 HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 17:48:20 GMT
Content-Type: application/javascript
Content-Length: 56
X-TraceId: 5058bb107149de185eef3cc2e43820da
content-encoding: gzip
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash b7ed37e03b72b8da3fb7f6c476ae9a1f
c335157b42102c71f5431bc295b2b2542af781d4
66ad71fe8fc69a39c7852c1b8e1fe1308e8ccaf2a147ed1c3a6866d3b248f9a3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 17:48:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tr.outbrain.com/unifiedPixel?marketerId=00e3bfba232446a29e79d5a017ce05e435,00cccafacb61a9ec8a571ed26ed2e5d92f,0097c20bcbe19b620790a02f065382cdf1&obApiVersion=1.1&obtpVersion=1.8.2&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.lifetips365.com%2F&optOut=false&bust=04976988054285796&referrer=
200 OK 60 B URL HTTP/1.1 tr.outbrain.com/unifiedPixel?marketerId=00e3bfba232446a29e79d5a017ce05e435,00cccafacb61a9ec8a571ed26ed2e5d92f,0097c20bcbe19b620790a02f065382cdf1&obApiVersion=1.1&obtpVersion=1.8.2&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.lifetips365.com%2F&optOut=false&bust=04976988054285796&referrer=
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash fb0fc5c090282e372b8bf8ff13ae3ee2
2de3834253ece606ce4d2a6f10a59654b6fa378b
90a8ffa59ad6227daafa10083d4cff2e9b295c9c82135b5f5cedd65b2e7c8ceb
GET /unifiedPixel?marketerId=00e3bfba232446a29e79d5a017ce05e435,00cccafacb61a9ec8a571ed26ed2e5d92f,0097c20bcbe19b620790a02f065382cdf1&obApiVersion=1.1&obtpVersion=1.8.2&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.lifetips365.com%2F&optOut=false&bust=04976988054285796&referrer= HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 17:48:20 GMT
Content-Type: image/gif;
Content-Length: 60
Cache-Control: no-cache
X-TraceId: a208d456b6f86de2c0112abfe9cbf692
content-encoding: gzip
trc.taboola.com/1162762/trc/3/json?tim=1664387297389&data=%7B%22id%22%3A498%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1664387297383%2C%22cv%22%3A%2220220922-16-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Flifetips365.com%2F%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dleedia-willbemine-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1664387297388%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.lifetips365.com%2F%22%2C%22tos%22%3A3%2C%22ssd%22%3A1%2C%22scd%22%3A91%2C%22supv%22%3Atrue%7D%7D&pubit=i
200 OK 6.8 kB URL HTTP/2 trc.taboola.com/1162762/trc/3/json?tim=1664387297389&data=%7B%22id%22%3A498%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1664387297383%2C%22cv%22%3A%2220220922-16-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Flifetips365.com%2F%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dleedia-willbemine-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1664387297388%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.lifetips365.com%2F%22%2C%22tos%22%3A3%2C%22ssd%22%3A1%2C%22scd%22%3A91%2C%22supv%22%3Atrue%7D%7D&pubit=i
IP
File type ASCII text, with very long lines (2552)
Hash 48cf11b5858662e391d231479c108cc8
701e5e25ff3414e067d986664c29e4a14483940c
fff39d6f96183cb0078017672809b5b62a474c84557839f6bd0b83a000e4bf83
GET /1162762/trc/3/json?tim=1664387297389&data=%7B%22id%22%3A498%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1664387297383%2C%22cv%22%3A%2220220922-16-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Flifetips365.com%2F%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dleedia-willbemine-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1664387297388%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.lifetips365.com%2F%22%2C%22tos%22%3A3%2C%22ssd%22%3A1%2C%22scd%22%3A91%2C%22supv%22%3Atrue%7D%7D&pubit=i HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Wed, 28 Sep 2022 17:48:20 GMT
via: 1.1 varnish
x-served-by: cache-bma1632-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1664387300.993222,VS0,VE95
vary: Accept-Encoding
x-vcl-time-ms: 95
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 11b1f146fa6fa4a88b1efc65b548fb73
f3f12e14f8f66a2e7c43015c394af199e4a94e06
74441efb7e39672af50ce0b6190b20d20bc3ae744b415a17f8b96a0f89aa0491
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 17:48:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 11b1f146fa6fa4a88b1efc65b548fb73
f3f12e14f8f66a2e7c43015c394af199e4a94e06
74441efb7e39672af50ce0b6190b20d20bc3ae744b415a17f8b96a0f89aa0491
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 17:48:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
public.powrcdn.com/latest/assets/packs/style_packs/views-2c08199c84c61a412eae.css
200 OK 48 kB URL HTTP/2 public.powrcdn.com/latest/assets/packs/style_packs/views-2c08199c84c61a412eae.css
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 6a9723dbeddcae699433f011c9a097e6
7f8dc568df15f0da159f6e41bc3d114d94c47abe
3611c1454bbafa821f2567ba33b96aecee689a2b3943502a03ccfa391d4f8b4c
GET /latest/assets/packs/style_packs/views-2c08199c84c61a412eae.css HTTP/1.1
Host: public.powrcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 17:48:19 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=460092
etag: W/"2cbef8bacb84cdf787933b228259ff66"
last-modified: Tue, 20 Sep 2022 11:49:05 GMT
x-amz-id-2: /ZY+6uBX6i6+QAsT5zcXFbDh+Ur3l069dzE2fqfPmJY8BgUVmz300YEZOH0hB7lALK0qSgVxcDk=
x-amz-request-id: 780B14A62MKG8GSN
x-amz-version-id: PGWDa7hBdOSSOTEfH8YvQKS1NRxNt9Fq
cache-control: max-age=2073600
cf-cache-status: HIT
age: 2895
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3vfXe2skKB7cy2kc4sCtRje5WLRzEhm2CVr9BvrKMCZ6bcs2jmHJMIJVD94BeSNPgo%2BQVpEkJ8nyA4Bn2vBvYIcA%2F05Dx9rbdamSfj5RsLBDm7kDofROIwnVGNBlKSSfqmQ182M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 751e4f3079e8b506-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
kit.fontawesome.com/14579ba48d.js
200 OK 4.5 kB URL HTTP/2 kit.fontawesome.com/14579ba48d.js
IP
Hash c80ae8e7c2c4885698ebf791e6ddc744
652ff6809d535900c0b6fa1474e0aead59696da2
f076bf9fbdd0d43e0f1503943fcf125b2c5517d56b9b9468f2d3c75575626688
GET /14579ba48d.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 17:48:19 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, must-revalidate
strict-transport-security: max-age=31536000; preload
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: Fuu_NKRKzsFcWtfaTAAi
cf-cache-status: HIT
age: 7
server: cloudflare
cf-ray: 751e4f30c84eb4fd-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.powr.io/rss-feed/u/09230ac1_1631029054
200 OK 16 kB URL HTTP/2 www.powr.io/rss-feed/u/09230ac1_1631029054
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (22595)
Hash c2a4628d9abb3626a8d12b971367aeec
0960cd4b43a4b99a7be880eabc877d1fe33f236f
89dc56391b5c3dd91de508a6dae90795fcfda9b0f3d43654f29f641f3ea32b4d
GET /rss-feed/u/09230ac1_1631029054 HTTP/1.1
Host: www.powr.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 17:48:19 GMT
content-type: text/html; charset=utf-8
link: <https://public.powrcdn.com/latest/assets/packs/style_packs/views-2c08199c84c61a412eae.css>; rel=preload; as=style; nopush,<https://public.powrcdn.com/latest/assets/packs/apps/views/socialFeed-36d463b8ed0aa5bef160.css>; rel=preload; as=style; nopush,<https://public.powrcdn.com/latest/assets/packs/style_packs/ie9-overrides-1711fd60ab8e8461cd46.css>; rel=preload; as=style; nopush,<https://public.powrcdn.com/latest/assets/packs/apps-view-ee75d437b5ed512d294f.js>; rel=preload; as=script; nopush,<https://public.powrcdn.com/latest/assets/packs/apps/socialFeed-7044d878a258ac722426.js>; rel=preload; as=script; nopush
cache-control: max-age=1800, public
vary: Accept-Encoding
x-request-id: 348c2b7a-d7f6-4fc8-b28e-96aa85f8a94e
x-runtime: 0.049946
x-origin-instance: heroku
via: 1.1 vegur
cf-cache-status: MISS
set-cookie: __cflb=02DiuGiFRig1r4jzSUmjGwtG131enGU5JRAXPZX6YVnXM; SameSite=None; Secure; path=/; expires=Wed, 05-Oct-22 17:48:19 GMT; HttpOnly
server: cloudflare
cf-ray: 751e4f2bfd0ab523-OSL
content-encoding: br
X-Firefox-Spdy: h2
bam.nr-data.net/1/4474f5c124?a=77339425&sa=1&v=1184.ab39b52&t=Unnamed%20Transaction&rst=1435&ck=1&ref=https://www.powr.io/rss-feed/u/09230ac1_1631029054&be=931&fe=1275&dc=1268&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1664387296596,%22n%22:0,%22f%22:1,%22dn%22:7,%22dne%22:27,%22c%22:27,%22s%22:33,%22ce%22:42,%22rq%22:43,%22rp%22:566,%22rpe%22:567,%22dl%22:670,%22di%22:1237,%22ds%22:1246,%22de%22:1269,%22dc%22:1275,%22l%22:1275,%22le%22:1277%7D,%22navigation%22:%7B%7D%7D&jsonp=NREUM.setToken
200 OK 73 B URL HTTP/1.1 bam.nr-data.net/1/4474f5c124?a=77339425&sa=1&v=1184.ab39b52&t=Unnamed%20Transaction&rst=1435&ck=1&ref=https://www.powr.io/rss-feed/u/09230ac1_1631029054&be=931&fe=1275&dc=1268&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1664387296596,%22n%22:0,%22f%22:1,%22dn%22:7,%22dne%22:27,%22c%22:27,%22s%22:33,%22ce%22:42,%22rq%22:43,%22rp%22:566,%22rpe%22:567,%22dl%22:670,%22di%22:1237,%22ds%22:1246,%22de%22:1269,%22dc%22:1275,%22l%22:1275,%22le%22:1277%7D,%22navigation%22:%7B%7D%7D&jsonp=NREUM.setToken
IP
File type ASCII text, with no line terminators
Hash 516a128bb6000ca8154792678f4333fb
41d0257bea96afd36c6f3e40fcfdc9ca247f8e01
9fa62b52f24b87a40410fe842cb9be494abed114a2eac2eb406c8b4a4d372d10
GET /1/4474f5c124?a=77339425&sa=1&v=1184.ab39b52&t=Unnamed%20Transaction&rst=1435&ck=1&ref=https://www.powr.io/rss-feed/u/09230ac1_1631029054&be=931&fe=1275&dc=1268&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1664387296596,%22n%22:0,%22f%22:1,%22dn%22:7,%22dne%22:27,%22c%22:27,%22s%22:33,%22ce%22:42,%22rq%22:43,%22rp%22:566,%22rpe%22:567,%22dl%22:670,%22di%22:1237,%22ds%22:1246,%22de%22:1269,%22dc%22:1275,%22l%22:1275,%22le%22:1277%7D,%22navigation%22:%7B%7D%7D&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 17:48:20 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 751e4f357adcb511-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=fb608c58b65cfedf; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip
in.hotjar.com/api/v2/client/sites/3066796/visit-data?sv=6
200 OK 564 B URL HTTP/2 in.hotjar.com/api/v2/client/sites/3066796/visit-data?sv=6
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 94b979ee51bbd468ec1430282bf398f0
586ddf8d190ccae5113d982d11a11ff4648a2ad4
e92936e4abed021407ecbb76c4a68178ec1aa9650ec527acf915a6b3cb484d7b
POST /api/v2/client/sites/3066796/visit-data?sv=6 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 130
Origin: https://www.lifetips365.com
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 17:48:20 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 4364fa358f76c1635458dab5d598f857
d15fc7359711b1651235fa1be66accc03fe26c1c
6449bf062dbb79683071f367ca142c175ef304485cb4d3711feb4763146e4fa7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7284
Expires: Wed, 28 Sep 2022 19:49:45 GMT
Date: Wed, 28 Sep 2022 17:48:21 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 4364fa358f76c1635458dab5d598f857
d15fc7359711b1651235fa1be66accc03fe26c1c
6449bf062dbb79683071f367ca142c175ef304485cb4d3711feb4763146e4fa7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7284
Expires: Wed, 28 Sep 2022 19:49:45 GMT
Date: Wed, 28 Sep 2022 17:48:21 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 4364fa358f76c1635458dab5d598f857
d15fc7359711b1651235fa1be66accc03fe26c1c
6449bf062dbb79683071f367ca142c175ef304485cb4d3711feb4763146e4fa7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7284
Expires: Wed, 28 Sep 2022 19:49:45 GMT
Date: Wed, 28 Sep 2022 17:48:21 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 62e68c3cd08dd94d910507512a67e85f
3d4fa8701f17e8818c25584ef5f04bfbee8440cd
058d798963f83f5fb88ab728185f755c5353fa981d93e1b6ff869089f501586b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13213
x-amzn-requestid: fe9ec409-2757-4910-8443-5b4d3be7efd3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlATEp8oAMFd9Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321b9b-3230e97a4fe34413285eb578;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:37:31 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rV80hKsopWPf_A8hKw0kwTOjVN4Bq-5f8oXDP2wluyGwof5yXFe2Bw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:42:47 GMT
age: 72334
etag: "3d4fa8701f17e8818c25584ef5f04bfbee8440cd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4b794c6812cb546de0295e087ebe66a7
a54803cca7d3c509c195f65961e1110c8ec56f55
6a207f75eb3951f3dea5252bc8d185cd604d3d657f15b838774e8087e91f37f5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12016
x-amzn-requestid: ec1b3715-5d0f-4045-aa5b-b70a55c81d72
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e3EtyIAMFdZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5e-201dd1ef1426a09965c68dab;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: y3DefdcXJyoDHpJXwz460gfWcv2JUboOFExNQmTFgy30B4mn54Xvuw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:44:30 GMT
age: 72231
etag: "a54803cca7d3c509c195f65961e1110c8ec56f55"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9a3b058-92c9-490e-9cbb-736f7e46510d.jpeg
200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9a3b058-92c9-490e-9cbb-736f7e46510d.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ea3890e460356d6ecc3ba4e405ac2e9e
b383135e2ebc23fe80eb0d594b198cb8c89327a5
8fcff053ce6e5750136bf876bad5b2916935f13ea039912d977928b086f0a48b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9a3b058-92c9-490e-9cbb-736f7e46510d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7455
x-amzn-requestid: e99c9f33-b72a-4070-80cf-06fb4a87d1df
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZG4S6EcAoAMFX1A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6332a0df-04122b4a345dbc3f3918af98;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 07:06:07 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Di1kDUlYEc1rv31fHM-OquU_W_LggEzDCTVME5iFJ5KffZcQyN6i2A==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 07:31:39 GMT
age: 37002
etag: "b383135e2ebc23fe80eb0d594b198cb8c89327a5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 4364fa358f76c1635458dab5d598f857
d15fc7359711b1651235fa1be66accc03fe26c1c
6449bf062dbb79683071f367ca142c175ef304485cb4d3711feb4763146e4fa7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7284
Expires: Wed, 28 Sep 2022 19:49:45 GMT
Date: Wed, 28 Sep 2022 17:48:21 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F693de74c-173e-4d9b-8317-35601f30ffd7.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F693de74c-173e-4d9b-8317-35601f30ffd7.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ad84ed0c5b2090df7996007514cf1984
651600f2ef18cecc2e38370069bbb5e1d86f68e0
a3d0729e1d43afeadd2dd8273c858b8839d9e476f773c8ec9d96b5969a9e0b4a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F693de74c-173e-4d9b-8317-35601f30ffd7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13299
x-amzn-requestid: 926df8b6-beec-470d-b0b3-33be326cd379
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3UPF8YIAMF3Nw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c1a-343e91e735af43d01fc83ddd;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: KmVkKXoPqZmnwFtpKhuox1kJNDoSxMEmYE39_zVPyaeoU4sPqq-_wA==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:44:23 GMT
age: 72238
etag: "651600f2ef18cecc2e38370069bbb5e1d86f68e0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg
200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6139c878a7d2bd32c61fc8287996eb5b
9c4692ea64832895fbd107d91f879728b6a440c7
3839df92f0a10c1433d5b576df50c9f7953912ae4f425012262f08ee8a59ce2e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8500
x-amzn-requestid: af82c8d6-950c-4933-87e3-7bbb15cb1ac8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e3HOaoAMFoPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5e-77e0ecc522de575e40f429b3;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: rD5LsVDLQkaomG1nCGZGihbdlWKMCjUYNC2kRyAjJesJEOEBSj8Q3A==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:47:03 GMT
age: 72078
etag: "9c4692ea64832895fbd107d91f879728b6a440c7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.gstatic.com/s/pathwaygothicone/v14/MwQrbgD32-KAvjkYGNUUxAtW7pEBwx-tS1Zf.woff2
200 OK 7.7 kB URL HTTP/2 fonts.gstatic.com/s/pathwaygothicone/v14/MwQrbgD32-KAvjkYGNUUxAtW7pEBwx-tS1Zf.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 7664, version 1.0\012- data
Hash ddb86a7e867f626554dab8539dcc5a3f
063a49f80334a98eed3aa66c60700f83feae7e4f
96bf4d70d0fcf69ce33ed735e720a716dab9a1232995a24882ec242323db467b
GET /s/pathwaygothicone/v14/MwQrbgD32-KAvjkYGNUUxAtW7pEBwx-tS1Zf.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7664
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 26 Sep 2022 22:49:40 GMT
expires: Tue, 26 Sep 2023 22:49:40 GMT
cache-control: public, max-age=31536000
age: 154721
last-modified: Mon, 09 May 2022 18:44:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
200 OK 52 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2
IP
Hash affd185461c7f67fc44c1b0f11985d6d
c2804b801ac331bfb4b26d804978536b2ee02583
6cd8c37e9f9e8129e2ad313df708220c5d5753ef9bb52e1bc953c94fbca5827c
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 26 Sep 2022 18:53:39 GMT
expires: Tue, 26 Sep 2023 18:53:39 GMT
cache-control: public, max-age=31536000
age: 168882
last-modified: Mon, 15 Aug 2022 18:14:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v20/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2
200 OK 11 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v20/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 11016, version 1.0\012- data
Hash 15fa3062f8929bd3b05fdca5259db412
6ff06a34f68ad0324ddec1bbe4d453c959178b36
5d1bc9b443f3f81fa4b4ad4634c1bb9702194c1898e3a9de0ab5e2cdc0e9f479
GET /s/roboto/v20/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://public.powrcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11016
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 16:44:01 GMT
expires: Fri, 22 Sep 2023 16:44:01 GMT
cache-control: public, max-age=31536000
age: 522260
last-modified: Wed, 24 Jul 2019 01:18:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
Hash 003521c1170472cbca126785978e8252
5583be2473996ab3b1cae91094d1fbde17df5b1b
af8a63ac0166b2803ba76f5fa5cc33b9be2d10ce8c36bb5d1c6055f9bcd6a0c7
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:08 GMT
expires: Thu, 21 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 598453
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 6f9c52602bbf3f3bdd8b1cb5bd784ed1
54faca3b9c05d0e5e0fd8a7743938448650f9a74
cacb4d200fadab214ba860846a8dccce12e6af66a378dd6f18032fd3eaec7061
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 17:48:21 GMT
Last-Modified: Wed, 28 Sep 2022 17:43:15 GMT
Server: ECS (bsa/EB14)
X-Cache: Miss from cloudfront
Via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 8crMKnKtUschnZZeiknZxxoY2KJAR6jIGeMjmKBDrW3rgmZIwRnbuw==
Age: 307
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0369629e-f44d-439f-a279-b5ae6ecc0cf1.png
200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0369629e-f44d-439f-a279-b5ae6ecc0cf1.png
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aa5cad224dbddd71881bd07255beb4da
bc214d60be395d4cf753216ff8f9691c33d25e75
82935e52aa59929a448d17a5a2d58fda86bb5c25bf6628a05bd904f82517dada
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0369629e-f44d-439f-a279-b5ae6ecc0cf1.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14464
x-amzn-requestid: 6627e07e-034b-432e-ab9e-afe035fa0b9a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e9HgIoAMFxUA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5f-7f34c3f6454379724a7ac413;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: J27vcANRhkMUuGwTZjXkO0EF0-UjN-MODVQRKgsc7hJI2S-UPF8Ctw==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:40:53 GMT
age: 72448
etag: "bc214d60be395d4cf753216ff8f9691c33d25e75"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 6f9c52602bbf3f3bdd8b1cb5bd784ed1
54faca3b9c05d0e5e0fd8a7743938448650f9a74
cacb4d200fadab214ba860846a8dccce12e6af66a378dd6f18032fd3eaec7061
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 17:48:21 GMT
Last-Modified: Wed, 28 Sep 2022 15:58:58 GMT
Server: ECS (bsa/EB1F)
X-Cache: Miss from cloudfront
Via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: rkKYs0qYgzO0zuzKv8EC03cfKotsv_mmTnOS8aRrk8oEZPDZqIBftw==
Age: 6563
powr-outlet-v2.herokuapp.com/social-feed?data%5B0%5D%5Btype%5D=rss&data%5B0%5D%5Bfollowing%5D=http%3A%2F%2Fwww.repubblica.it%2Frss%2Fhomepage%2Frss2.0.xml%3Fref%3DRHFT&data%5B0%5D%5BfacebookFeedType%5D=&data%5B0%5D%5BfacebookPageId%5D=&data%5B0%5D%5BinstagramUsername%5D=&data%5B0%5D%5BusernameOrHashtag%5D=%40&data%5B0%5D%5BpageName%5D=http%3A%2F%2Fwww.repubblica.it%2Frss%2Fhomepage%2Frss2.0.xml%3Fref%3DRHFT&data%5B0%5D%5BmaxPosts%5D=6&premium=free&app_id=29946920&refreshRate=86400
204 No Content 0 B URL HTTP/1.1 powr-outlet-v2.herokuapp.com/social-feed?data%5B0%5D%5Btype%5D=rss&data%5B0%5D%5Bfollowing%5D=http%3A%2F%2Fwww.repubblica.it%2Frss%2Fhomepage%2Frss2.0.xml%3Fref%3DRHFT&data%5B0%5D%5BfacebookFeedType%5D=&data%5B0%5D%5BfacebookPageId%5D=&data%5B0%5D%5BinstagramUsername%5D=&data%5B0%5D%5BusernameOrHashtag%5D=%40&data%5B0%5D%5BpageName%5D=http%3A%2F%2Fwww.repubblica.it%2Frss%2Fhomepage%2Frss2.0.xml%3Fref%3DRHFT&data%5B0%5D%5BmaxPosts%5D=6&premium=free&app_id=29946920&refreshRate=86400
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /social-feed?data%5B0%5D%5Btype%5D=rss&data%5B0%5D%5Bfollowing%5D=http%3A%2F%2Fwww.repubblica.it%2Frss%2Fhomepage%2Frss2.0.xml%3Fref%3DRHFT&data%5B0%5D%5BfacebookFeedType%5D=&data%5B0%5D%5BfacebookPageId%5D=&data%5B0%5D%5BinstagramUsername%5D=&data%5B0%5D%5BusernameOrHashtag%5D=%40&data%5B0%5D%5BpageName%5D=http%3A%2F%2Fwww.repubblica.it%2Frss%2Fhomepage%2Frss2.0.xml%3Fref%3DRHFT&data%5B0%5D%5BmaxPosts%5D=6&premium=free&app_id=29946920&refreshRate=86400 HTTP/1.1
Host: powr-outlet-v2.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-csrf-token
Referer: https://www.powr.io/
Origin: https://www.powr.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: Cowboy
Content-Length: 0
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: https://www.powr.io
Vary: Origin, Access-Control-Request-Headers
Access-Control-Allow-Methods: GET,HEAD,PUT,PATCH,POST,DELETE
Access-Control-Allow-Headers: x-csrf-token
Date: Wed, 28 Sep 2022 17:48:21 GMT
Via: 1.1 vegur
trc-events.taboola.com/1162762/log/3/unip?en=pre_d_eng_tb&tos=1593&scd=91&ssd=1&est=1664387297385&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1664387298979&vi=1664387297383&ri=c7e2edec741509ab6cc16dae63cde615&ref=null&cv=20220922-16-RELEASE&item-url=https%3A%2F%2Fwww.lifetips365.com%2F
204 No Content 0 B URL HTTP/2 trc-events.taboola.com/1162762/log/3/unip?en=pre_d_eng_tb&tos=1593&scd=91&ssd=1&est=1664387297385&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1664387298979&vi=1664387297383&ri=c7e2edec741509ab6cc16dae63cde615&ref=null&cv=20220922-16-RELEASE&item-url=https%3A%2F%2Fwww.lifetips365.com%2F
IP
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1162762/log/3/unip?en=pre_d_eng_tb&tos=1593&scd=91&ssd=1&est=1664387297385&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1664387298979&vi=1664387297383&ri=c7e2edec741509ab6cc16dae63cde615&ref=null&cv=20220922-16-RELEASE&item-url=https%3A%2F%2Fwww.lifetips365.com%2F HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.lifetips365.com
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Wed, 28 Sep 2022 17:48:21 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://www.lifetips365.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 80f2fd29e56b6526082c90b170f3e25f
d500159b129c640f765b2ce90364096616e2cbaf
60a0022c87f0779a659001988aa06f8cf19f0d106931619feb1030b754333e34
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 17:48:21 GMT
Last-Modified: Wed, 28 Sep 2022 17:32:23 GMT
Server: ECS (nyb/1D2C)
X-Cache: Miss from cloudfront
Via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: JdwCQt1JOuU5ELRDfF1kTL5SSlx18lrc-6UA_KOJkBz8uuZnpVQaDA==
Age: 958
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 80f2fd29e56b6526082c90b170f3e25f
d500159b129c640f765b2ce90364096616e2cbaf
60a0022c87f0779a659001988aa06f8cf19f0d106931619feb1030b754333e34
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 17:48:21 GMT
Last-Modified: Wed, 28 Sep 2022 16:24:03 GMT
Server: ECS (bsa/EB23)
X-Cache: Miss from cloudfront
Via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: wXjDb5kd-gi6nDTGBtFBgRimmuf5uA1hHNFJHv-X27Op58nzoH0CSQ==
Age: 5059
powr-outlet-v2.herokuapp.com/social-feed?data%5B0%5D%5Btype%5D=rss&data%5B0%5D%5Bfollowing%5D=http%3A%2F%2Fwww.repubblica.it%2Frss%2Fhomepage%2Frss2.0.xml%3Fref%3DRHFT&data%5B0%5D%5BfacebookFeedType%5D=&data%5B0%5D%5BfacebookPageId%5D=&data%5B0%5D%5BinstagramUsername%5D=&data%5B0%5D%5BusernameOrHashtag%5D=%40&data%5B0%5D%5BpageName%5D=http%3A%2F%2Fwww.repubblica.it%2Frss%2Fhomepage%2Frss2.0.xml%3Fref%3DRHFT&data%5B0%5D%5BmaxPosts%5D=6&premium=free&app_id=29946920&refreshRate=86400
200 OK 191 kB URL HTTP/1.1 powr-outlet-v2.herokuapp.com/social-feed?data%5B0%5D%5Btype%5D=rss&data%5B0%5D%5Bfollowing%5D=http%3A%2F%2Fwww.repubblica.it%2Frss%2Fhomepage%2Frss2.0.xml%3Fref%3DRHFT&data%5B0%5D%5BfacebookFeedType%5D=&data%5B0%5D%5BfacebookPageId%5D=&data%5B0%5D%5BinstagramUsername%5D=&data%5B0%5D%5BusernameOrHashtag%5D=%40&data%5B0%5D%5BpageName%5D=http%3A%2F%2Fwww.repubblica.it%2Frss%2Fhomepage%2Frss2.0.xml%3Fref%3DRHFT&data%5B0%5D%5BmaxPosts%5D=6&premium=free&app_id=29946920&refreshRate=86400
IP
File type JSON data\012- HTML document, Unicode text, UTF-8 text, with very long lines (65393), with no line terminators
Size 191 kB (191361 bytes)
Hash 7cf442525ae1856b5942a4866ffa3086
be2c87257fc05c5c25c3515e96e221b6b8347f39
bd4e3f4442f1e5b5ad1f3589d495f6b7ee5a1ea2a59491693765cec56d867947
GET /social-feed?data%5B0%5D%5Btype%5D=rss&data%5B0%5D%5Bfollowing%5D=http%3A%2F%2Fwww.repubblica.it%2Frss%2Fhomepage%2Frss2.0.xml%3Fref%3DRHFT&data%5B0%5D%5BfacebookFeedType%5D=&data%5B0%5D%5BfacebookPageId%5D=&data%5B0%5D%5BinstagramUsername%5D=&data%5B0%5D%5BusernameOrHashtag%5D=%40&data%5B0%5D%5BpageName%5D=http%3A%2F%2Fwww.repubblica.it%2Frss%2Fhomepage%2Frss2.0.xml%3Fref%3DRHFT&data%5B0%5D%5BmaxPosts%5D=6&premium=free&app_id=29946920&refreshRate=86400 HTTP/1.1
Host: powr-outlet-v2.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: PcbVMC5D2VqyBOv3-HQvORuwH2PowMRY5s_uUqR85jEgT-YtFfNa8eUE7QUofoEmunytsbZSo0CvO4Hgz1gxKw
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Cowboy
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: https://www.powr.io
Vary: Origin
Content-Type: application/json; charset=utf-8
Cache-Control: public, max-age=3600
Date: Wed, 28 Sep 2022 17:48:21 GMT
Content-Length: 191361
Via: 1.1 vegur
powr-counter.herokuapp.com/29946920
200 OK 0 B URL HTTP/1.1 powr-counter.herokuapp.com/29946920
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /29946920 HTTP/1.1
Host: powr-counter.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.powr.io/
Origin: https://www.powr.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Cowboy
Date: Wed, 28 Sep 2022 17:48:21 GMT
Connection: keep-alive
Content-Type: text/plain
Access-Control-Allow-Origin: https://www.powr.io
Access-Control-Allow-Methods: GET, POST, PUT, PATCH, DELETE, OPTIONS, HEAD
Access-Control-Expose-Headers:
Access-Control-Max-Age: 1728000
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: content-type
Transfer-Encoding: chunked
Via: 1.1 vegur
www.repstatic.it/content/nazionale/img/2022/09/28/142928247-efb7536a-7755-458d-a4fe-82e079bb3600.jpg
200 OK 13 kB URL HTTP/2 www.repstatic.it/content/nazionale/img/2022/09/28/142928247-efb7536a-7755-458d-a4fe-82e079bb3600.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", progressive, precision 8, 387x217, components 3\012- data
Hash d2231165846cb4110616145e32ce3ab2
96ad766b1f9b57eecd5c4a5c80a9c9c268d3f5f2
8ac876a1ccd3b4e96435c3501c54e064b56c537cc97dd612e417410664fd5767
GET /content/nazionale/img/2022/09/28/142928247-efb7536a-7755-458d-a4fe-82e079bb3600.jpg HTTP/1.1
Host: www.repstatic.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 13379
date: Wed, 28 Sep 2022 14:05:18 GMT
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: *
access-control-allow-origin: *
access-control-max-age: 600
cache-control: max-age=5184000
content-security-policy-report-only: default-src https: wss: data: blob: 'unsafe-inline' 'unsafe-eval'; report-uri https://logger.kataweb.it/csp/
expires: Sun, 27 Nov 2022 14:05:18 GMT
referrer-policy: unsafe-url
strict-transport-security: max-age=7200
x-cacheable: YES
x-kw-cache-control: max-age=5184000
x-kw-date: Wed, 28 Sep 2022 14:05:19 GMT
x-kw-expires: Sun, 27 Nov 2022 14:05:18 GMT
x-robots-tag: noarchive, max-image-preview:large
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZDFUnnB9e5-NHK-AULpDm2jkt7t2lGGLv8BZUSQiCYmJFnLznVUHmg==
age: 13383
X-Firefox-Spdy: h2
www.repstatic.it/content/nazionale/img/2022/09/28/163229507-3a43dd14-b638-4156-9c9a-eecec0036bf0.jpg
200 OK 87 kB URL HTTP/2 www.repstatic.it/content/nazionale/img/2022/09/28/163229507-3a43dd14-b638-4156-9c9a-eecec0036bf0.jpg
IP
Hash 73d8748044cb7604683e3ccd9bce4d8c
2c36014b06a6fe128cac4ec64f010efa0b75399e
d003ef828e667b7235bbb254bf947d1aa6791c3a1d2f80e703836781d19edef3
GET /content/nazionale/img/2022/09/28/163229507-3a43dd14-b638-4156-9c9a-eecec0036bf0.jpg HTTP/1.1
Host: www.repstatic.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 16303
date: Wed, 28 Sep 2022 14:32:32 GMT
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: *
access-control-allow-origin: *
access-control-max-age: 600
cache-control: max-age=5184000
content-security-policy-report-only: default-src https: wss: data: blob: 'unsafe-inline' 'unsafe-eval'; report-uri https://logger.kataweb.it/csp/
expires: Sun, 27 Nov 2022 14:32:32 GMT
referrer-policy: unsafe-url
strict-transport-security: max-age=7200
x-cacheable: YES
x-kw-cache-control: max-age=5184000
x-kw-date: Wed, 28 Sep 2022 14:32:33 GMT
x-kw-expires: Sun, 27 Nov 2022 14:32:32 GMT
x-robots-tag: noarchive, max-image-preview:large
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6Mu9xT84RHxQPomVnulUQq0gGBvRWnr_0eBJzCHn4ZfAUTTrqu6A0A==
age: 11749
X-Firefox-Spdy: h2
www.repstatic.it/content/nazionale/img/2022/09/28/173516517-50ae04c3-aa61-4030-bafe-adaa7a5be3ce.jpg
200 OK 20 kB URL HTTP/2 www.repstatic.it/content/nazionale/img/2022/09/28/173516517-50ae04c3-aa61-4030-bafe-adaa7a5be3ce.jpg
IP
File type gzip compressed data, max compression\012- data
Hash ad35c29e6a7b6989ea8f95b37b065fc0
61007ae72847547d34efa4ba3a7c5846b6f202c6
d3afcdcabbe8d17ef54f2b4dcf1791622e8f633c4412fd4493b802cf7bc20b27
GET /content/nazionale/img/2022/09/28/173516517-50ae04c3-aa61-4030-bafe-adaa7a5be3ce.jpg HTTP/1.1
Host: www.repstatic.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 19710
date: Wed, 28 Sep 2022 15:35:19 GMT
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: *
access-control-allow-origin: *
access-control-max-age: 600
cache-control: max-age=5184000
content-security-policy-report-only: default-src https: wss: data: blob: 'unsafe-inline' 'unsafe-eval'; report-uri https://logger.kataweb.it/csp/
expires: Sun, 27 Nov 2022 15:35:19 GMT
referrer-policy: unsafe-url
strict-transport-security: max-age=7200
x-cacheable: YES
x-kw-cache-control: max-age=5184000
x-kw-date: Wed, 28 Sep 2022 15:35:20 GMT
x-kw-expires: Sun, 27 Nov 2022 15:35:19 GMT
x-robots-tag: noarchive, max-image-preview:large
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: AF8-Upr9NhOw33mpa_g49p7CdGIPZcsiAa1yw1gjjQoY1lhvi3szUw==
age: 7982
X-Firefox-Spdy: h2
www.repstatic.it/content/nazionale/img/2022/09/28/174838188-79a69253-157e-4053-92d4-d45497e876e9.jpg
200 OK 16 kB URL HTTP/2 www.repstatic.it/content/nazionale/img/2022/09/28/174838188-79a69253-157e-4053-92d4-d45497e876e9.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 390x220, components 3\012- data
Hash 47c942c630c9ab45b225d1c41e39f061
857f407663bff26544525d51f82e1815826b0bf4
f0e1d7e08bd402ff9cd9280a1e12a3934de815959e8303efd76b71b74985bd64
GET /content/nazionale/img/2022/09/28/174838188-79a69253-157e-4053-92d4-d45497e876e9.jpg HTTP/1.1
Host: www.repstatic.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 16537
date: Wed, 28 Sep 2022 15:48:41 GMT
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: *
access-control-allow-origin: *
access-control-max-age: 600
cache-control: max-age=5184000
content-security-policy-report-only: default-src https: wss: data: blob: 'unsafe-inline' 'unsafe-eval'; report-uri https://logger.kataweb.it/csp/
expires: Sun, 27 Nov 2022 15:48:41 GMT
referrer-policy: unsafe-url
strict-transport-security: max-age=7200
x-cacheable: YES
x-kw-cache-control: max-age=5184000
x-kw-date: Wed, 28 Sep 2022 15:48:42 GMT
x-kw-expires: Sun, 27 Nov 2022 15:48:41 GMT
x-robots-tag: noarchive, max-image-preview:large
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9NyGrdOkoWUqhDE2p33scDI7oP4-JH2UU9jUj6FTfucfFyq46p0aFg==
age: 7180
X-Firefox-Spdy: h2
www.repstatic.it/content/nazionale/img/2022/09/28/164146225-7222f115-536d-4d61-bb1d-70251c8bcd1c.jpg
200 OK 35 kB URL HTTP/2 www.repstatic.it/content/nazionale/img/2022/09/28/164146225-7222f115-536d-4d61-bb1d-70251c8bcd1c.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 593x333, components 3\012- data
Hash 86a2c3f7c1e308492084f50591ca8a35
eb2350dc5f1942e5e7e89a516cba83a1d16f231b
b752a19810d65b122eb117acf9755e21d785ca59ad12acfc700acc5ca82e45e8
GET /content/nazionale/img/2022/09/28/164146225-7222f115-536d-4d61-bb1d-70251c8bcd1c.jpg HTTP/1.1
Host: www.repstatic.it
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 34933
date: Wed, 28 Sep 2022 14:41:49 GMT
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: *
access-control-allow-origin: *
access-control-max-age: 600
cache-control: max-age=5184000
content-security-policy-report-only: default-src https: wss: data: blob: 'unsafe-inline' 'unsafe-eval'; report-uri https://logger.kataweb.it/csp/
expires: Sun, 27 Nov 2022 14:41:49 GMT
referrer-policy: unsafe-url
strict-transport-security: max-age=7200
x-cacheable: YES
x-kw-cache-control: max-age=5184000
x-kw-date: Wed, 28 Sep 2022 14:41:50 GMT
x-kw-expires: Sun, 27 Nov 2022 14:41:49 GMT
x-robots-tag: noarchive, max-image-preview:large
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ae1S25mhWgLyHUy0f5uoRaxhuyudoVu03i2skkQGDK5YZBWHyeyZTw==
age: 11192
X-Firefox-Spdy: h2
powr-counter.herokuapp.com/29946920
200 OK 1.8 kB URL HTTP/1.1 powr-counter.herokuapp.com/29946920
IP
Hash 2a37d0de33abfeb55cb134d1efce69ea
8bd99ac3ea063a9a804d9d5344fa590ccb66bcca
3e16a30b986154fe2c8603b28c9f09b422e1a47906610a6d02ccb97f121a071a
POST /29946920 HTTP/1.1
Host: powr-counter.herokuapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=utf-8
Content-Length: 343
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Cowboy
Date: Wed, 28 Sep 2022 17:48:21 GMT
Connection: keep-alive
Content-Type: text/plain; charset=utf-8
Etag: W/"36a9e7f1c95b82ffb99743e0c5c4ce95"
Cache-Control: max-age=0, private, must-revalidate
X-Request-Id: 60fe3365-797f-416b-9451-a714e168ac02
X-Runtime: 0.025639
Access-Control-Allow-Origin: https://www.powr.io
Access-Control-Allow-Methods: GET, POST, PUT, PATCH, DELETE, OPTIONS, HEAD
Access-Control-Expose-Headers:
Access-Control-Max-Age: 1728000
Access-Control-Allow-Credentials: true
Vary: Origin
Transfer-Encoding: chunked
Via: 1.1 vegur
trc-events.taboola.com/1162762/log/3/unip?en=pre_d_eng_tb&tos=4595&scd=91&ssd=1&est=1664387297385&ver=35&isls=true&src=i&invt=3000&rv=1&tim=1664387301981&vi=1664387297383&ri=c7e2edec741509ab6cc16dae63cde615&ref=null&cv=20220922-16-RELEASE&item-url=https%3A%2F%2Fwww.lifetips365.com%2F
204 No Content 0 B URL HTTP/2 trc-events.taboola.com/1162762/log/3/unip?en=pre_d_eng_tb&tos=4595&scd=91&ssd=1&est=1664387297385&ver=35&isls=true&src=i&invt=3000&rv=1&tim=1664387301981&vi=1664387297383&ri=c7e2edec741509ab6cc16dae63cde615&ref=null&cv=20220922-16-RELEASE&item-url=https%3A%2F%2Fwww.lifetips365.com%2F
IP
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1162762/log/3/unip?en=pre_d_eng_tb&tos=4595&scd=91&ssd=1&est=1664387297385&ver=35&isls=true&src=i&invt=3000&rv=1&tim=1664387301981&vi=1664387297383&ri=c7e2edec741509ab6cc16dae63cde615&ref=null&cv=20220922-16-RELEASE&item-url=https%3A%2F%2Fwww.lifetips365.com%2F HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.lifetips365.com
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Wed, 28 Sep 2022 17:48:24 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://www.lifetips365.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
public.powrcdn.com/latest/assets/packs/apps/views/socialFeed-36d463b8ed0aa5bef160.css
200 OK 0 B URL HTTP/2 public.powrcdn.com/latest/assets/packs/apps/views/socialFeed-36d463b8ed0aa5bef160.css
IP
GET /latest/assets/packs/apps/views/socialFeed-36d463b8ed0aa5bef160.css HTTP/1.1
Host: public.powrcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 17:48:19 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=286497
etag: W/"adf889ed0314b585cb0181bf734134ba"
last-modified: Tue, 20 Sep 2022 11:48:59 GMT
x-amz-id-2: n2Eb/kc3ohOyRnvLdz5QLg6SfcnBHNfihFrOWN2HwlbwB4Go10H2rLqJi7zT/AxfVkF7kj8IbAg=
x-amz-request-id: 8YSEYXVXMGK7WVGA
x-amz-version-id: Zj0z7clirHUxYznsaAp2WQ_mTHfI7Lkd
cache-control: max-age=2073600
cf-cache-status: HIT
age: 5426
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=t4gXQYSv3rxrFUVVpbAajq6Al%2BX3pniHB95SsLua7asvjimB%2BX8Y5zG9uzvriMDMJh1IwUasjSJ2pWKIrdewCObU4iW6XhbnAcSArG6a6NMkggPTkLporRbkiK8OiR8ogSoVPGY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 751e4f309a0eb506-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
lifetips365.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
200 OK 0 B URL HTTP/2 lifetips365.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: lifetips365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
content-type: application/javascript
last-modified: Tue, 20 Jul 2021 23:56:19 GMT
vary: Accept-Encoding
etag: W/"60f762a3-15db1"
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2
lifetips365.com/wp-content/plugins/ct-ultimate-gdpr/assets/js/cookie-list.js?ver=3.7
200 OK 0 B URL HTTP/2 lifetips365.com/wp-content/plugins/ct-ultimate-gdpr/assets/js/cookie-list.js?ver=3.7
IP
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ct-ultimate-gdpr/assets/js/cookie-list.js?ver=3.7 HTTP/1.1
Host: lifetips365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
content-type: application/javascript
last-modified: Tue, 06 Sep 2022 18:20:20 GMT
vary: Accept-Encoding
etag: W/"63178f64-553"
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2
public.powrcdn.com/latest/assets/packs/apps/socialFeed-7044d878a258ac722426.js
200 OK 0 B URL HTTP/2 public.powrcdn.com/latest/assets/packs/apps/socialFeed-7044d878a258ac722426.js
IP
GET /latest/assets/packs/apps/socialFeed-7044d878a258ac722426.js HTTP/1.1
Host: public.powrcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 17:48:19 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=2755444
etag: W/"d62853389e94452300cf7e34b06c8575"
last-modified: Mon, 26 Sep 2022 08:50:00 GMT
x-amz-id-2: kkhFJhHMHvEuajOQMFxnK9uXyJ/9wGN8mMludbYZxU59w+TZfzz2PuhM6V5tcnev2gMqlFiJlfw=
x-amz-request-id: SY7Y89QXXZ6KWMS5
x-amz-version-id: XL5kEDkoHAhHgE5gzsuxsLbP1gJuAcnz
cache-control: max-age=2073600
cf-cache-status: HIT
age: 1673
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fczP5Yra1DCqCK2YLlLZEK7Tnl0vHEN%2F72u3%2BJ%2B1aFuuJkUevFRNsi9YiFpNTb79ohmodfq6D5mBBpArHh1SAOF8JCtKQMTb6%2B%2B9a%2BF5zeidLyUzH6eVtZcHe5GMe0jd3ovjZ58%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 751e4f30ba3bb506-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.powr.io/cached/29946920.json
200 OK 0 B URL HTTP/2 www.powr.io/cached/29946920.json
IP
GET /cached/29946920.json HTTP/1.1
Host: www.powr.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: PcbVMC5D2VqyBOv3-HQvORuwH2PowMRY5s_uUqR85jEgT-YtFfNa8eUE7QUofoEmunytsbZSo0CvO4Hgz1gxKw
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.powr.io/rss-feed/u/09230ac1_1631029054
Cookie: __cflb=02DiuGiFRig1r4jzSUmjGwtG131enGU5JRAXPZX6YVnXM
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 28 Sep 2022 17:48:20 GMT
content-type: application/json; charset=utf-8
cache-control: max-age=300, public
vary: Accept-Encoding
etag: W/"25c16492f809f6524f79cde78e331438"
x-request-id: 3e775c2c-d684-4c70-b1de-1abc1b736c0e
x-runtime: 0.030024
x-origin-instance: heroku
via: 1.1 vegur
cf-cache-status: MISS
server: cloudflare
cf-ray: 751e4f33affeb523-OSL
content-encoding: br
X-Firefox-Spdy: h2
public.powrcdn.com/latest/assets/packs/apps-view-ee75d437b5ed512d294f.js
200 OK 0 B URL HTTP/2 public.powrcdn.com/latest/assets/packs/apps-view-ee75d437b5ed512d294f.js
IP
GET /latest/assets/packs/apps-view-ee75d437b5ed512d294f.js HTTP/1.1
Host: public.powrcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 17:48:19 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1443653
etag: W/"b9a115fcf26efc8ea384184cdc03b657"
last-modified: Wed, 28 Sep 2022 06:17:34 GMT
x-amz-id-2: aNLRgwYj3IYpajbEgRYlfdRX33fuY0LbiYugBI715gBRdguovTdDjQDTIfI2KQPATzxF7Xk9I+A=
x-amz-request-id: BN2N0M9A8N1HHPD1
x-amz-version-id: wfAAFHwxA1oCt1qGRMdXEWQ98Zo3NDT5
cache-control: max-age=2073600
cf-cache-status: HIT
age: 1231
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3dLjPYw1C37h2cg%2BjzSoAnN3NlHdrPLOwkitkfI9sJOIYe9PgqlIm4B1BXoMd038%2FVKkuLgyRGJ3bUwdOuvO7Cll%2BPxxE8rEXbpnTN3y4Kytiofn59NZyowYpv6L5H1Q6Va7k1o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 751e4f309a13b506-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
lifetips365.com/wp-content/plugins/ct-ultimate-gdpr/assets/js/jquery.base64.min.js?ver=3.7
200 OK 0 B URL HTTP/2 lifetips365.com/wp-content/plugins/ct-ultimate-gdpr/assets/js/jquery.base64.min.js?ver=3.7
IP
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ct-ultimate-gdpr/assets/js/jquery.base64.min.js?ver=3.7 HTTP/1.1
Host: lifetips365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
content-type: application/javascript
last-modified: Tue, 06 Sep 2022 18:20:20 GMT
vary: Accept-Encoding
etag: W/"63178f64-6f6"
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2
lifetips365.com/wp-content/plugins/Enqueue%20Waypoints%20&%20Animate%20CSS/assets/js/jquery.waypoints.min.js?ver=6.0.2
200 OK 0 B URL HTTP/2 lifetips365.com/wp-content/plugins/Enqueue%20Waypoints%20&%20Animate%20CSS/assets/js/jquery.waypoints.min.js?ver=6.0.2
IP
ASN #24940 Hetzner Online GmbH
GET /wp-content/plugins/Enqueue%20Waypoints%20&%20Animate%20CSS/assets/js/jquery.waypoints.min.js?ver=6.0.2 HTTP/1.1
Host: lifetips365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
content-type: application/javascript
last-modified: Tue, 07 Dec 2021 13:50:18 GMT
vary: Accept-Encoding
etag: W/"61af669a-2344"
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2
lifetips365.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
200 OK 0 B URL HTTP/2 lifetips365.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
IP
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3 HTTP/1.1
Host: lifetips365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
content-type: text/css
last-modified: Thu, 08 Sep 2022 09:25:12 GMT
vary: Accept-Encoding
etag: W/"6319b4f8-aab"
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-3066796.js?sv=6
200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-3066796.js?sv=6
IP
GET /c/hotjar-3066796.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Wed, 28 Sep 2022 17:48:19 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=604800; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
etag: W/276e5588f6d8e26520de3266e87eff94
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: FLH--Uxf_oaqOYQlbjpD1PRUukrS814hJAxN88cD8HlwsrxWPzT21Q==
X-Firefox-Spdy: h2
lifetips365.com/wp-content/plugins/ct-ultimate-gdpr/assets/css/images/targeting.svg
200 OK 0 B URL HTTP/2 lifetips365.com/wp-content/plugins/ct-ultimate-gdpr/assets/css/images/targeting.svg
IP
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ct-ultimate-gdpr/assets/css/images/targeting.svg HTTP/1.1
Host: lifetips365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
content-type: image/svg+xml
last-modified: Tue, 06 Sep 2022 18:20:20 GMT
vary: Accept-Encoding
etag: W/"63178f64-103d"
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2
www.powr.io/public-assets/crypto.min.js
200 OK 0 B URL HTTP/2 www.powr.io/public-assets/crypto.min.js
IP
GET /public-assets/crypto.min.js HTTP/1.1
Host: www.powr.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: PcbVMC5D2VqyBOv3-HQvORuwH2PowMRY5s_uUqR85jEgT-YtFfNa8eUE7QUofoEmunytsbZSo0CvO4Hgz1gxKw
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.powr.io/rss-feed/u/09230ac1_1631029054
Cookie: __cflb=02DiuGiFRig1r4jzSUmjGwtG131enGU5JRAXPZX6YVnXM; ahoy_visit=30a5e366-694e-49dd-b6e5-b64569c80aa8; ahoy_visitor=a76409aa-9ae8-440b-ad88-1987c4bc3bd8; ahoy_unique_29946920=true; _ga=GA1.2.678791377.1664387299; _gid=GA1.2.292424440.1664387299
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 28 Sep 2022 17:48:22 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 28 Sep 2022 16:56:36 GMT
cache-control: max-age=604800, public
expires: Thu, 28 Sep 2023 16:59:25 GMT
x-origin-instance: heroku
via: 1.1 vegur
cf-cache-status: HIT
age: 2714
server: cloudflare
cf-ray: 751e4f42be13b523-OSL
content-encoding: br
X-Firefox-Spdy: h2
lifetips365.com/wp-content/plugins/wpcf7-redirect/build/js/wpcf7r-fe.js?ver=1.1
200 OK 0 B URL HTTP/2 lifetips365.com/wp-content/plugins/wpcf7-redirect/build/js/wpcf7r-fe.js?ver=1.1
IP
ASN #24940 Hetzner Online GmbH
GET /wp-content/plugins/wpcf7-redirect/build/js/wpcf7r-fe.js?ver=1.1 HTTP/1.1
Host: lifetips365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
content-type: application/javascript
last-modified: Tue, 16 Aug 2022 06:44:32 GMT
vary: Accept-Encoding
etag: W/"62fb3cd0-1f8a"
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2
www.lifetips365.com/
200 OK 0 B IP
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.lifetips365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 17:48:18 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.30
link: <https://lifetips365.com/wp-json/>; rel="https://api.w.org/", <https://lifetips365.com/wp-json/wp/v2/pages/2666>; rel="alternate"; type="application/json", <https://lifetips365.com/>; rel=shortlink
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2
lifetips365.com/wp-content/plugins/ct-ultimate-gdpr/assets/css/style.min.css?ver=3.7
200 OK 0 B URL HTTP/2 lifetips365.com/wp-content/plugins/ct-ultimate-gdpr/assets/css/style.min.css?ver=3.7
IP
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ct-ultimate-gdpr/assets/css/style.min.css?ver=3.7 HTTP/1.1
Host: lifetips365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
content-type: text/css
last-modified: Tue, 06 Sep 2022 18:20:20 GMT
vary: Accept-Encoding
etag: W/"63178f64-3b8cd"
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2
lifetips365.com/wp-content/plugins/ct-ultimate-gdpr/assets/css/fonts/font-awesome/css/font-awesome.min.css?ver=6.0.2
200 OK 0 B URL HTTP/2 lifetips365.com/wp-content/plugins/ct-ultimate-gdpr/assets/css/fonts/font-awesome/css/font-awesome.min.css?ver=6.0.2
IP
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ct-ultimate-gdpr/assets/css/fonts/font-awesome/css/font-awesome.min.css?ver=6.0.2 HTTP/1.1
Host: lifetips365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
content-type: text/css
last-modified: Tue, 06 Sep 2022 18:20:20 GMT
vary: Accept-Encoding
etag: W/"63178f64-7918"
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2
lifetips365.com/wp-content/plugins/oxygen/component-framework/vendor/aos/aos.css?ver=6.0.2
200 OK 0 B URL HTTP/2 lifetips365.com/wp-content/plugins/oxygen/component-framework/vendor/aos/aos.css?ver=6.0.2
IP
ASN #24940 Hetzner Online GmbH
GET /wp-content/plugins/oxygen/component-framework/vendor/aos/aos.css?ver=6.0.2 HTTP/1.1
Host: lifetips365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
content-type: text/css
last-modified: Wed, 28 Sep 2022 06:09:58 GMT
vary: Accept-Encoding
etag: W/"6333e536-65c5"
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2
lifetips365.com/wp-content/plugins/oxygen/component-framework/oxygen.css?ver=4.0.4
200 OK 0 B URL HTTP/2 lifetips365.com/wp-content/plugins/oxygen/component-framework/oxygen.css?ver=4.0.4
IP
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/oxygen/component-framework/oxygen.css?ver=4.0.4 HTTP/1.1
Host: lifetips365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
content-type: text/css
last-modified: Wed, 28 Sep 2022 06:09:58 GMT
vary: Accept-Encoding
etag: W/"6333e536-4f90"
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2
lifetips365.com/wp-content/plugins/oxygen/component-framework/vendor/aos/aos.js?ver=1
200 OK 0 B URL HTTP/2 lifetips365.com/wp-content/plugins/oxygen/component-framework/vendor/aos/aos.js?ver=1
IP
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/oxygen/component-framework/vendor/aos/aos.js?ver=1 HTTP/1.1
Host: lifetips365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
content-type: application/javascript
last-modified: Wed, 28 Sep 2022 06:09:58 GMT
vary: Accept-Encoding
etag: W/"6333e536-37a3"
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2
lifetips365.com/wp-content/plugins/ct-ultimate-gdpr/assets/css/images/statistics.svg
200 OK 0 B URL HTTP/2 lifetips365.com/wp-content/plugins/ct-ultimate-gdpr/assets/css/images/statistics.svg
IP
ASN #24940 Hetzner Online GmbH
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ct-ultimate-gdpr/assets/css/images/statistics.svg HTTP/1.1
Host: lifetips365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
content-type: image/svg+xml
last-modified: Tue, 06 Sep 2022 18:20:20 GMT
vary: Accept-Encoding
etag: W/"63178f64-1359"
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2
www.lifetips365.com/?xlink=css&ver=6.0.2
200 OK 0 B URL HTTP/2 www.lifetips365.com/?xlink=css&ver=6.0.2
IP
ASN #24940 Hetzner Online GmbH
GET /?xlink=css&ver=6.0.2 HTTP/1.1
Host: www.lifetips365.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
content-type: text/css;charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.30
link: <https://lifetips365.com/wp-json/>; rel="https://api.w.org/", <https://lifetips365.com/wp-json/wp/v2/pages/2666>; rel="alternate"; type="application/json", <https://lifetips365.com/>; rel=shortlink
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2
public.powrcdn.com/latest/assets/packs/style_packs/ie9-overrides-1711fd60ab8e8461cd46.css
200 OK 0 B URL HTTP/2 public.powrcdn.com/latest/assets/packs/style_packs/ie9-overrides-1711fd60ab8e8461cd46.css
IP
GET /latest/assets/packs/style_packs/ie9-overrides-1711fd60ab8e8461cd46.css HTTP/1.1
Host: public.powrcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 28 Sep 2022 17:48:19 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=97779
etag: W/"8569d08b93b65be6f73bca7e48e87a62"
last-modified: Tue, 20 Sep 2022 11:49:05 GMT
x-amz-id-2: fk0JpHqJvic4fVoaTRQNiYX1AgU3lKGEFMajFbuAssyOoO7z9348TYuB8bQNE2p7iDvY5DOOOCU=
x-amz-request-id: 780A69FXN4PF4Q6F
x-amz-version-id: XJVESgnjA4zn0VuXSdWhf5HzZvgBa9s4
cache-control: max-age=2073600
cf-cache-status: HIT
age: 2955
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DwG%2FsBimglngX21Hq3WwhSqaqRCM7jowQ%2Bwk1t6%2BvP2VB3BZrGuuV3WPL%2FDaz5yIhwURFpPpdG0GPAmNBrHdMP7QvyZmkK%2B6znnq%2B1hKs8jBeGcn1lXSGYvndlfjWim5aD8%2BPOY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 751e4f3079e0b506-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
65.109.33.97
143.204.55.25
104.18.21.226
54.229.35.143
141.226.228.48
23.36.77.32
93.184.220.29
95.101.174.159
157.240.200.35