Overview

URL lifetips365.com/
IP65.109.33.97
ASNHetzner Online GmbH
Location Germany
Report completed2022-09-28 17:48:30 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-28 2 lifetips365.com/ Phishing
2022-09-28 2 lifetips365.com/wp-content/plugins/wpcf7-redirect/build/css/wpcf7-redirect- (...) Phishing
2022-09-28 2 lifetips365.com/wp-content/plugins/ct-ultimate-gdpr/assets/css/images/block (...) Phishing
2022-09-28 2 lifetips365.com/wp-content/plugins/ct-ultimate-gdpr/assets/css/images/essen (...) Phishing
2022-09-28 2 lifetips365.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 Phishing
2022-09-28 2 lifetips365.com/wp-content/plugins/ct-ultimate-gdpr/assets/js/shortcode-blo (...) Phishing
2022-09-28 2 lifetips365.com/wp-content/plugins/ct-ultimate-gdpr/assets/css/images/essen (...) Phishing
2022-09-28 2 lifetips365.com/wp-content/plugins/ct-ultimate-gdpr/assets/css/images/funct (...) Phishing
2022-09-28 2 track.lifetips365.com/hp Phishing
2022-09-28 2 lifetips365.com/wp-content/plugins/ct-ultimate-gdpr/assets/css/images/funct (...) Phishing
2022-09-28 2 lifetips365.com/wp-content/plugins/ct-ultimate-gdpr/assets/css/fonts/fonts. (...) Phishing
2022-09-28 2 lifetips365.com/wp-includes/css/dashicons.min.css?ver=6.0.2 Phishing
2022-09-28 2 lifetips365.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 Phishing
2022-09-28 2 lifetips365.com/wp-content/plugins/ct-ultimate-gdpr/assets/js/cookie-list.j (...) Phishing
2022-09-28 2 lifetips365.com/wp-content/plugins/ct-ultimate-gdpr/assets/js/jquery.base64 (...) Phishing
2022-09-28 2 lifetips365.com/wp-content/plugins/contact-form-7/includes/css/styles.css?v (...) Phishing
2022-09-28 2 lifetips365.com/wp-content/plugins/ct-ultimate-gdpr/assets/css/images/targe (...) Phishing
2022-09-28 2 www.lifetips365.com/ Phishing
2022-09-28 2 lifetips365.com/wp-content/plugins/ct-ultimate-gdpr/assets/css/style.min.cs (...) Phishing
2022-09-28 2 lifetips365.com/wp-content/plugins/ct-ultimate-gdpr/assets/css/fonts/font-a (...) Phishing
2022-09-28 2 lifetips365.com/wp-content/plugins/oxygen/component-framework/oxygen.css?ve (...) Phishing
2022-09-28 2 lifetips365.com/wp-content/plugins/oxygen/component-framework/vendor/aos/ao (...) Phishing
2022-09-28 2 lifetips365.com/wp-content/plugins/ct-ultimate-gdpr/assets/css/images/stati (...) Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

URL www.repstatic.it/content/nazionale/img/2022/09/28/173516517-50ae04c3-aa61-4 (...)
IP  54.230.111.110
Magic gzip compressed data, max compression\012- data
Size 20495
MD5 ad35c29e6a7b6989ea8f95b37b065fc0
SHA1 61007ae72847547d34efa4ba3a7c5846b6f202c6
SHA256 d3afcdcabbe8d17ef54f2b4dcf1791622e8f633c4412fd4493b802cf7bc20b27
Analyzer Analysed Verdict Comment
VirusTotal 0/0


Passive DNS (38)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS cdnjs.cloudflare.com (2) 235 2020-10-20 10:17:36 UTC 2022-09-28 05:34:56 UTC 104.17.25.14
mnemonic passive DNS fonts.googleapis.com (1) 8877 2013-06-10 20:14:26 UTC 2022-09-28 11:46:46 UTC 142.250.74.10
mnemonic passive DNS amplify.outbrain.com (1) 2255 2017-04-12 07:58:35 UTC 2022-09-28 08:45:03 UTC 95.101.174.159
mnemonic passive DNS www.google.no (2) 25607 2016-04-05 19:50:59 UTC 2022-09-28 10:46:18 UTC 142.250.74.3
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-28 08:06:38 UTC 34.120.237.76
mnemonic passive DNS firefox.settings.services.mozilla.com (1) 867 2020-05-28 17:26:30 UTC 2022-09-28 11:00:28 UTC 143.204.55.35
mnemonic passive DNS www.powr.io (3) 13233 2015-04-27 10:27:01 UTC 2022-09-28 17:48:19 UTC 104.22.51.245
mnemonic passive DNS in.hotjar.com (1) 1746 2018-10-22 17:15:59 UTC 2022-09-28 04:43:52 UTC 54.229.35.143
mnemonic passive DNS www.lifetips365.com (2) 0 2020-03-30 13:20:25 UTC 2022-09-28 17:48:18 UTC 65.109.33.97 Unknown ranking
mnemonic passive DNS ocsp.pki.goog (14) 175 2017-06-14 07:23:31 UTC 2022-09-28 04:36:20 UTC 142.250.74.3
mnemonic passive DNS ocsp.globalsign.com (1) 2075 2012-05-25 06:20:55 UTC 2022-09-28 04:39:17 UTC 104.18.21.226
mnemonic passive DNS powr-outlet-v2.herokuapp.com (2) 139762 2020-08-25 09:54:12 UTC 2022-09-28 17:48:20 UTC 3.219.96.23
mnemonic passive DNS trc-events.taboola.com (2) 1779 2020-06-09 13:52:57 UTC 2022-09-28 12:21:39 UTC 141.226.228.48
mnemonic passive DNS track.lifetips365.com (1) 0 2021-10-05 11:10:47 UTC 2022-09-28 17:48:19 UTC 18.193.209.105 Unknown ranking
mnemonic passive DNS ka-p.fontawesome.com (3) 4489 2019-12-16 20:35:53 UTC 2022-09-28 05:48:08 UTC 104.18.23.52
mnemonic passive DNS static.hotjar.com (1) 641 2014-11-01 05:14:27 UTC 2022-09-28 04:35:57 UTC 54.230.111.39
mnemonic passive DNS www.google-analytics.com (2) 40 2012-10-03 01:04:21 UTC 2022-09-28 14:54:21 UTC 142.250.74.174
mnemonic passive DNS www.googletagmanager.com (1) 75 2012-12-25 14:52:06 UTC 2022-09-28 04:42:17 UTC 142.250.74.72
mnemonic passive DNS maxcdn.bootstrapcdn.com (1) 724 2014-06-18 00:37:31 UTC 2022-09-28 15:07:43 UTC 104.18.10.207
mnemonic passive DNS googleads.g.doubleclick.net (2) 42 2021-02-20 15:43:32 UTC 2022-09-28 11:30:09 UTC 216.58.211.2
mnemonic passive DNS vars.hotjar.com (1) 1014 2020-11-05 10:13:14 UTC 2022-09-28 13:35:17 UTC 143.204.55.105
mnemonic passive DNS status.thawte.com (2) 5123 2017-11-27 12:33:51 UTC 2022-09-28 04:48:02 UTC 93.184.220.29
mnemonic passive DNS www.facebook.com (1) 99 2017-01-30 05:00:00 UTC 2022-09-28 04:43:36 UTC 157.240.200.35
mnemonic passive DNS powr-counter.herokuapp.com (2) 46204 2017-02-01 11:41:28 UTC 2022-09-28 17:48:21 UTC 34.201.81.34
mnemonic passive DNS lifetips365.com (29) 0 2016-04-29 23:47:41 UTC 2022-09-28 04:00:45 UTC 65.109.33.97 Unknown ranking
mnemonic passive DNS www.repstatic.it (5) 106100 2021-04-13 02:22:40 UTC 2022-09-28 17:48:21 UTC 54.230.111.110
mnemonic passive DNS ocsp.digicert.com (13) 86 2012-05-21 07:02:23 UTC 2022-09-28 16:15:39 UTC 93.184.220.29
mnemonic passive DNS script.hotjar.com (1) 887 2020-11-05 16:23:46 UTC 2022-09-28 15:27:04 UTC 143.204.55.68
mnemonic passive DNS kit.fontawesome.com (1) 1868 2019-03-29 02:12:52 UTC 2022-09-28 05:17:22 UTC 104.18.23.52
mnemonic passive DNS bam.nr-data.net (1) 630 2015-02-10 00:06:27 UTC 2022-09-28 04:39:55 UTC 162.247.241.14
mnemonic passive DNS ocsp.sca1b.amazontrust.com (4) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 54.230.245.100
mnemonic passive DNS r3.o.lencr.org (5) 344 2020-12-02 08:52:13 UTC 2022-09-28 04:36:09 UTC 23.36.77.32
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-28 04:36:06 UTC 34.117.237.239
mnemonic passive DNS tr.outbrain.com (2) 2017 2017-04-12 07:58:35 UTC 2022-09-28 12:35:58 UTC 70.42.32.63
mnemonic passive DNS public.powrcdn.com (5) 33857 2021-05-11 13:04:39 UTC 2022-09-28 07:50:16 UTC 172.67.186.248
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-28 05:13:47 UTC 143.204.55.25
mnemonic passive DNS trc.taboola.com (1) 602 2013-07-11 10:17:31 UTC 2022-09-28 12:21:36 UTC 151.101.85.44
mnemonic passive DNS fonts.gstatic.com (5) 0 2014-08-29 13:43:22 UTC 2022-09-28 04:36:33 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540


Recent reports on same IP/ASN/Domain/Screenshot

Last 1 reports on IP: 65.109.33.97

Date UQ / IDS / BL URL IP
2022-09-28 17:48:30 +0000
0 - 0 - 23 lifetips365.com/ 65.109.33.97

Last 5 reports on ASN: Hetzner Online GmbH

Date UQ / IDS / BL URL IP
2022-12-05 11:45:03 +0000
0 - 0 - 2 affclick.mobi/of/8435 46.4.172.148
2022-12-05 11:34:15 +0000
0 - 0 - 2 95.217.31.208/456036707882.zip 95.217.31.208
2022-12-05 11:30:34 +0000
0 - 0 - 2 135.181.241.53/510620338428.zip 135.181.241.53
2022-12-05 11:16:30 +0000
0 - 0 - 2 affclick.mobi/of/8313 46.4.172.148
2022-12-05 11:14:30 +0000
0 - 0 - 36 fivebestproduct.com/assss 138.201.192.100

Last 1 reports on domain: lifetips365.com

Date UQ / IDS / BL URL IP
2022-09-28 17:48:30 +0000
0 - 0 - 23 lifetips365.com/ 65.109.33.97

No other reports with similar screenshot



JavaScript

Executed Scripts (61)


Executed Evals (4)

#1 JavaScript::Eval (size: 152, repeated: 1) - SHA256: b88035337b91f59298740c2ea0ec289e7b4f4e4d27d4fc8c33f5b7e1a0bde3b9

                                        (function() {
    for (var b = document.getElementsByTagName("iframe"), a = 0; a < b.length; a++)
        if (/^https?:\/\/player.vimeo.com/.test(b[a].src)) return !0;
    return !1
})();
                                    

#2 JavaScript::Eval (size: 922, repeated: 1) - SHA256: e4be2a058fce67c52d4a61ea2d6e40bc2d66a6f778e11eb3d5ef3c24b0a38071

                                        (function() {
    return function(c) {
        try {
            var h = [{
                    name: "EMAIL",
                    regex: /[^\/]{4}(@|%40)(?!news24zoom\.com)[^\/]{4}/gi,
                    group: ""
                }, {
                    name: "TEL",
                    regex: /((tel=)|(telephone=)|(phone=)|(mobile=)|(mob=))[\d\+\s][^&\/\?]+/gi,
                    group: "$1"
                }, {
                    name: "NAME",
                    regex: /((firstname=)|(lastname=)|(surname=)|(your-name=))[^&\/\?]+/gi,
                    group: "$1"
                }, {
                    name: "PASSWORD",
                    regex: /((password=)|(passwd=)|(pass=))[^&\/\?]+/gi,
                    group: "$1"
                }, {
                    name: "IP",
                    regex: /(user_ip=)[^&\/\?]+/gi,
                    group: "$1"
                }],
                k = c.get("sendHitTask"),
                e, b;
            c.set("sendHitTask", function(d) {
                e =
                    c.get("hitPayload");
                b = e.replace(/(^\?)/, "").split("\x26").map(function(a) {
                    return a = a.split("\x3d"), this[a[0]] = a[1], this
                }.bind({}))[0];
                for (var f in b) h.forEach(function(a) {
                    var g = decodeURIComponent(b[f]);
                    g.match(a.regex) && (b[f] = encodeURIComponent(g.replace(a.regex, a.group + "[REDACTED " + a.name + "]")))
                });
                d.set("hitPayload", Object.keys(b).map(function(a) {
                    return a + "\x3d" + b[a]
                }).join("\x26"), !0);
                k(d)
            })
        } catch (d) {}
    }
})();
                                    

#3 JavaScript::Eval (size: 56, repeated: 1) - SHA256: 7bc091b4b5ce1c5116b709efd60243c0f0c1ea67db878931ca909faf70b7698f

                                        (function() {
    return localStorage.getItem("internal")
})();
                                    

#4 JavaScript::Eval (size: 14710, repeated: 1) - SHA256: c359e07640ed2c3d4b3fd68bae46777501cd94e3bdac65d3e6b3064424433cfd

                                        var CryptoJS = CryptoJS || function(t, n) {
    var i = {},
        r = i.lib = {},
        e = function() {},
        s = r.Base = {
            extend: function(t) {
                e.prototype = this;
                var n = new e;
                return t && n.mixIn(t), n.hasOwnProperty("init") || (n.init = function() {
                    n.$super.init.apply(this, arguments)
                }), n.init.prototype = n, n.$super = this, n
            },
            create: function() {
                var t = this.extend();
                return t.init.apply(t, arguments), t
            },
            init: function() {},
            mixIn: function(t) {
                for (var n in t) t.hasOwnProperty(n) && (this[n] = t[n]);
                t.hasOwnProperty("toString") && (this.toString = t.toString)
            },
            clone: function() {
                return this.init.prototype.extend(this)
            }
        },
        o = r.WordArray = s.extend({
            init: function(t, i) {
                t = this.words = t || [], this.sigBytes = i != n ? i : 4 * t.length
            },
            toString: function(t) {
                return (t || c).stringify(this)
            },
            concat: function(t) {
                var n = this.words,
                    i = t.words,
                    r = this.sigBytes;
                if (t = t.sigBytes, this.clamp(), r % 4)
                    for (var e = 0; t > e; e++) n[r + e >>> 2] |= (i[e >>> 2] >>> 24 - 8 * (e % 4) & 255) << 24 - 8 * ((r + e) % 4);
                else if (65535 < i.length)
                    for (e = 0; t > e; e += 4) n[r + e >>> 2] = i[e >>> 2];
                else n.push.apply(n, i);
                return this.sigBytes += t, this
            },
            clamp: function() {
                var n = this.words,
                    i = this.sigBytes;
                n[i >>> 2] &= 4294967295 << 32 - 8 * (i % 4), n.length = t.ceil(i / 4)
            },
            clone: function() {
                var t = s.clone.call(this);
                return t.words = this.words.slice(0), t
            },
            random: function(n) {
                for (var i = [], r = 0; n > r; r += 4) i.push(4294967296 * t.random() | 0);
                return new o.init(i, n)
            }
        }),
        a = i.enc = {},
        c = a.Hex = {
            stringify: function(t) {
                var n = t.words;
                t = t.sigBytes;
                for (var i = [], r = 0; t > r; r++) {
                    var e = n[r >>> 2] >>> 24 - 8 * (r % 4) & 255;
                    i.push((e >>> 4).toString(16)), i.push((15 & e).toString(16))
                }
                return i.join("")
            },
            parse: function(t) {
                for (var n = t.length, i = [], r = 0; n > r; r += 2) i[r >>> 3] |= parseInt(t.substr(r, 2), 16) << 24 - 4 * (r % 8);
                return new o.init(i, n / 2)
            }
        },
        h = a.Latin1 = {
            stringify: function(t) {
                var n = t.words;
                t = t.sigBytes;
                for (var i = [], r = 0; t > r; r++) i.push(String.fromCharCode(n[r >>> 2] >>> 24 - 8 * (r % 4) & 255));
                return i.join("")
            },
            parse: function(t) {
                for (var n = t.length, i = [], r = 0; n > r; r++) i[r >>> 2] |= (255 & t.charCodeAt(r)) << 24 - 8 * (r % 4);
                return new o.init(i, n)
            }
        },
        u = a.Utf8 = {
            stringify: function(t) {
                try {
                    return decodeURIComponent(escape(h.stringify(t)))
                } catch (n) {
                    throw Error("Malformed UTF-8 data")
                }
            },
            parse: function(t) {
                return h.parse(unescape(encodeURIComponent(t)))
            }
        },
        f = r.BufferedBlockAlgorithm = s.extend({
            reset: function() {
                this._data = new o.init, this._nDataBytes = 0
            },
            _append: function(t) {
                "string" == typeof t && (t = u.parse(t)), this._data.concat(t), this._nDataBytes += t.sigBytes
            },
            _process: function(n) {
                var i = this._data,
                    r = i.words,
                    e = i.sigBytes,
                    s = this.blockSize,
                    a = e / (4 * s),
                    a = n ? t.ceil(a) : t.max((0 | a) - this._minBufferSize, 0);
                if (n = a * s, e = t.min(4 * n, e), n) {
                    for (var c = 0; n > c; c += s) this._doProcessBlock(r, c);
                    c = r.splice(0, n), i.sigBytes -= e
                }
                return new o.init(c, e)
            },
            clone: function() {
                var t = s.clone.call(this);
                return t._data = this._data.clone(), t
            },
            _minBufferSize: 0
        });
    r.Hasher = f.extend({
        cfg: s.extend(),
        init: function(t) {
            this.cfg = this.cfg.extend(t), this.reset()
        },
        reset: function() {
            f.reset.call(this), this._doReset()
        },
        update: function(t) {
            return this._append(t), this._process(), this
        },
        finalize: function(t) {
            return t && this._append(t), this._doFinalize()
        },
        blockSize: 16,
        _createHelper: function(t) {
            return function(n, i) {
                return new t.init(i).finalize(n)
            }
        },
        _createHmacHelper: function(t) {
            return function(n, i) {
                return new l.HMAC.init(t, i).finalize(n)
            }
        }
    });
    var l = i.algo = {};
    return i
}(Math);
! function() {
    var t = CryptoJS,
        n = t.lib,
        i = n.WordArray,
        r = n.Hasher,
        e = [],
        n = t.algo.SHA1 = r.extend({
            _doReset: function() {
                this._hash = new i.init([1732584193, 4023233417, 2562383102, 271733878, 3285377520])
            },
            _doProcessBlock: function(t, n) {
                for (var i = this._hash.words, r = i[0], s = i[1], o = i[2], a = i[3], c = i[4], h = 0; 80 > h; h++) {
                    if (16 > h) e[h] = 0 | t[n + h];
                    else {
                        var u = e[h - 3] ^ e[h - 8] ^ e[h - 14] ^ e[h - 16];
                        e[h] = u << 1 | u >>> 31
                    }
                    u = (r << 5 | r >>> 27) + c + e[h], u = 20 > h ? u + ((s & o | ~s & a) + 1518500249) : 40 > h ? u + ((s ^ o ^ a) + 1859775393) : 60 > h ? u + ((s & o | s & a | o & a) - 1894007588) : u + ((s ^ o ^ a) - 899497514), c = a, a = o, o = s << 30 | s >>> 2, s = r, r = u
                }
                i[0] = i[0] + r | 0, i[1] = i[1] + s | 0, i[2] = i[2] + o | 0, i[3] = i[3] + a | 0, i[4] = i[4] + c | 0
            },
            _doFinalize: function() {
                var t = this._data,
                    n = t.words,
                    i = 8 * this._nDataBytes,
                    r = 8 * t.sigBytes;
                return n[r >>> 5] |= 128 << 24 - r % 32, n[(r + 64 >>> 9 << 4) + 14] = Math.floor(i / 4294967296), n[(r + 64 >>> 9 << 4) + 15] = i, t.sigBytes = 4 * n.length, this._process(), this._hash
            },
            clone: function() {
                var t = r.clone.call(this);
                return t._hash = this._hash.clone(), t
            }
        });
    t.SHA1 = r._createHelper(n), t.HmacSHA1 = r._createHmacHelper(n)
}();
var CryptoJS = CryptoJS || function(t, n) {
    var i = {},
        r = i.lib = {},
        e = function() {},
        s = r.Base = {
            extend: function(t) {
                e.prototype = this;
                var n = new e;
                return t && n.mixIn(t), n.hasOwnProperty("init") || (n.init = function() {
                    n.$super.init.apply(this, arguments)
                }), n.init.prototype = n, n.$super = this, n
            },
            create: function() {
                var t = this.extend();
                return t.init.apply(t, arguments), t
            },
            init: function() {},
            mixIn: function(t) {
                for (var n in t) t.hasOwnProperty(n) && (this[n] = t[n]);
                t.hasOwnProperty("toString") && (this.toString = t.toString)
            },
            clone: function() {
                return this.init.prototype.extend(this)
            }
        },
        o = r.WordArray = s.extend({
            init: function(t, i) {
                t = this.words = t || [], this.sigBytes = i != n ? i : 4 * t.length
            },
            toString: function(t) {
                return (t || c).stringify(this)
            },
            concat: function(t) {
                var n = this.words,
                    i = t.words,
                    r = this.sigBytes;
                if (t = t.sigBytes, this.clamp(), r % 4)
                    for (var e = 0; t > e; e++) n[r + e >>> 2] |= (i[e >>> 2] >>> 24 - 8 * (e % 4) & 255) << 24 - 8 * ((r + e) % 4);
                else if (65535 < i.length)
                    for (e = 0; t > e; e += 4) n[r + e >>> 2] = i[e >>> 2];
                else n.push.apply(n, i);
                return this.sigBytes += t, this
            },
            clamp: function() {
                var n = this.words,
                    i = this.sigBytes;
                n[i >>> 2] &= 4294967295 << 32 - 8 * (i % 4), n.length = t.ceil(i / 4)
            },
            clone: function() {
                var t = s.clone.call(this);
                return t.words = this.words.slice(0), t
            },
            random: function(n) {
                for (var i = [], r = 0; n > r; r += 4) i.push(4294967296 * t.random() | 0);
                return new o.init(i, n)
            }
        }),
        a = i.enc = {},
        c = a.Hex = {
            stringify: function(t) {
                var n = t.words;
                t = t.sigBytes;
                for (var i = [], r = 0; t > r; r++) {
                    var e = n[r >>> 2] >>> 24 - 8 * (r % 4) & 255;
                    i.push((e >>> 4).toString(16)), i.push((15 & e).toString(16))
                }
                return i.join("")
            },
            parse: function(t) {
                for (var n = t.length, i = [], r = 0; n > r; r += 2) i[r >>> 3] |= parseInt(t.substr(r, 2), 16) << 24 - 4 * (r % 8);
                return new o.init(i, n / 2)
            }
        },
        h = a.Latin1 = {
            stringify: function(t) {
                var n = t.words;
                t = t.sigBytes;
                for (var i = [], r = 0; t > r; r++) i.push(String.fromCharCode(n[r >>> 2] >>> 24 - 8 * (r % 4) & 255));
                return i.join("")
            },
            parse: function(t) {
                for (var n = t.length, i = [], r = 0; n > r; r++) i[r >>> 2] |= (255 & t.charCodeAt(r)) << 24 - 8 * (r % 4);
                return new o.init(i, n)
            }
        },
        u = a.Utf8 = {
            stringify: function(t) {
                try {
                    return decodeURIComponent(escape(h.stringify(t)))
                } catch (n) {
                    throw Error("Malformed UTF-8 data")
                }
            },
            parse: function(t) {
                return h.parse(unescape(encodeURIComponent(t)))
            }
        },
        f = r.BufferedBlockAlgorithm = s.extend({
            reset: function() {
                this._data = new o.init, this._nDataBytes = 0
            },
            _append: function(t) {
                "string" == typeof t && (t = u.parse(t)), this._data.concat(t), this._nDataBytes += t.sigBytes
            },
            _process: function(n) {
                var i = this._data,
                    r = i.words,
                    e = i.sigBytes,
                    s = this.blockSize,
                    a = e / (4 * s),
                    a = n ? t.ceil(a) : t.max((0 | a) - this._minBufferSize, 0);
                if (n = a * s, e = t.min(4 * n, e), n) {
                    for (var c = 0; n > c; c += s) this._doProcessBlock(r, c);
                    c = r.splice(0, n), i.sigBytes -= e
                }
                return new o.init(c, e)
            },
            clone: function() {
                var t = s.clone.call(this);
                return t._data = this._data.clone(), t
            },
            _minBufferSize: 0
        });
    r.Hasher = f.extend({
        cfg: s.extend(),
        init: function(t) {
            this.cfg = this.cfg.extend(t), this.reset()
        },
        reset: function() {
            f.reset.call(this), this._doReset()
        },
        update: function(t) {
            return this._append(t), this._process(), this
        },
        finalize: function(t) {
            return t && this._append(t), this._doFinalize()
        },
        blockSize: 16,
        _createHelper: function(t) {
            return function(n, i) {
                return new t.init(i).finalize(n)
            }
        },
        _createHmacHelper: function(t) {
            return function(n, i) {
                return new l.HMAC.init(t, i).finalize(n)
            }
        }
    });
    var l = i.algo = {};
    return i
}(Math);
! function(t) {
    for (var n = CryptoJS, i = n.lib, r = i.WordArray, e = i.Hasher, i = n.algo, s = [], o = [], a = function(t) {
            return 4294967296 * (t - (0 | t)) | 0
        }, c = 2, h = 0; 64 > h;) {
        var u;
        t: {
            u = c;
            for (var f = t.sqrt(u), l = 2; f >= l; l++)
                if (!(u % l)) {
                    u = !1;
                    break t
                }
            u = !0
        }
        u && (8 > h && (s[h] = a(t.pow(c, .5))), o[h] = a(t.pow(c, 1 / 3)), h++), c++
    }
    var p = [],
        i = i.SHA256 = e.extend({
            _doReset: function() {
                this._hash = new r.init(s.slice(0))
            },
            _doProcessBlock: function(t, n) {
                for (var i = this._hash.words, r = i[0], e = i[1], s = i[2], a = i[3], c = i[4], h = i[5], u = i[6], f = i[7], l = 0; 64 > l; l++) {
                    if (16 > l) p[l] = 0 | t[n + l];
                    else {
                        var d = p[l - 15],
                            g = p[l - 2];
                        p[l] = ((d << 25 | d >>> 7) ^ (d << 14 | d >>> 18) ^ d >>> 3) + p[l - 7] + ((g << 15 | g >>> 17) ^ (g << 13 | g >>> 19) ^ g >>> 10) + p[l - 16]
                    }
                    d = f + ((c << 26 | c >>> 6) ^ (c << 21 | c >>> 11) ^ (c << 7 | c >>> 25)) + (c & h ^ ~c & u) + o[l] + p[l], g = ((r << 30 | r >>> 2) ^ (r << 19 | r >>> 13) ^ (r << 10 | r >>> 22)) + (r & e ^ r & s ^ e & s), f = u, u = h, h = c, c = a + d | 0, a = s, s = e, e = r, r = d + g | 0
                }
                i[0] = i[0] + r | 0, i[1] = i[1] + e | 0, i[2] = i[2] + s | 0, i[3] = i[3] + a | 0, i[4] = i[4] + c | 0, i[5] = i[5] + h | 0, i[6] = i[6] + u | 0, i[7] = i[7] + f | 0
            },
            _doFinalize: function() {
                var n = this._data,
                    i = n.words,
                    r = 8 * this._nDataBytes,
                    e = 8 * n.sigBytes;
                return i[e >>> 5] |= 128 << 24 - e % 32, i[(e + 64 >>> 9 << 4) + 14] = t.floor(r / 4294967296), i[(e + 64 >>> 9 << 4) + 15] = r, n.sigBytes = 4 * i.length, this._process(), this._hash
            },
            clone: function() {
                var t = e.clone.call(this);
                return t._hash = this._hash.clone(), t
            }
        });
    n.SHA256 = e._createHelper(i), n.HmacSHA256 = e._createHmacHelper(i)
}(Math);
var CryptoJS = CryptoJS || function(t, n) {
    var i = {},
        r = i.lib = {},
        e = function() {},
        s = r.Base = {
            extend: function(t) {
                e.prototype = this;
                var n = new e;
                return t && n.mixIn(t), n.hasOwnProperty("init") || (n.init = function() {
                    n.$super.init.apply(this, arguments)
                }), n.init.prototype = n, n.$super = this, n
            },
            create: function() {
                var t = this.extend();
                return t.init.apply(t, arguments), t
            },
            init: function() {},
            mixIn: function(t) {
                for (var n in t) t.hasOwnProperty(n) && (this[n] = t[n]);
                t.hasOwnProperty("toString") && (this.toString = t.toString)
            },
            clone: function() {
                return this.init.prototype.extend(this)
            }
        },
        o = r.WordArray = s.extend({
            init: function(t, i) {
                t = this.words = t || [], this.sigBytes = i != n ? i : 4 * t.length
            },
            toString: function(t) {
                return (t || c).stringify(this)
            },
            concat: function(t) {
                var n = this.words,
                    i = t.words,
                    r = this.sigBytes;
                if (t = t.sigBytes, this.clamp(), r % 4)
                    for (var e = 0; t > e; e++) n[r + e >>> 2] |= (i[e >>> 2] >>> 24 - 8 * (e % 4) & 255) << 24 - 8 * ((r + e) % 4);
                else if (65535 < i.length)
                    for (e = 0; t > e; e += 4) n[r + e >>> 2] = i[e >>> 2];
                else n.push.apply(n, i);
                return this.sigBytes += t, this
            },
            clamp: function() {
                var n = this.words,
                    i = this.sigBytes;
                n[i >>> 2] &= 4294967295 << 32 - 8 * (i % 4), n.length = t.ceil(i / 4)
            },
            clone: function() {
                var t = s.clone.call(this);
                return t.words = this.words.slice(0), t
            },
            random: function(n) {
                for (var i = [], r = 0; n > r; r += 4) i.push(4294967296 * t.random() | 0);
                return new o.init(i, n)
            }
        }),
        a = i.enc = {},
        c = a.Hex = {
            stringify: function(t) {
                var n = t.words;
                t = t.sigBytes;
                for (var i = [], r = 0; t > r; r++) {
                    var e = n[r >>> 2] >>> 24 - 8 * (r % 4) & 255;
                    i.push((e >>> 4).toString(16)), i.push((15 & e).toString(16))
                }
                return i.join("")
            },
            parse: function(t) {
                for (var n = t.length, i = [], r = 0; n > r; r += 2) i[r >>> 3] |= parseInt(t.substr(r, 2), 16) << 24 - 4 * (r % 8);
                return new o.init(i, n / 2)
            }
        },
        h = a.Latin1 = {
            stringify: function(t) {
                var n = t.words;
                t = t.sigBytes;
                for (var i = [], r = 0; t > r; r++) i.push(String.fromCharCode(n[r >>> 2] >>> 24 - 8 * (r % 4) & 255));
                return i.join("")
            },
            parse: function(t) {
                for (var n = t.length, i = [], r = 0; n > r; r++) i[r >>> 2] |= (255 & t.charCodeAt(r)) << 24 - 8 * (r % 4);
                return new o.init(i, n)
            }
        },
        u = a.Utf8 = {
            stringify: function(t) {
                try {
                    return decodeURIComponent(escape(h.stringify(t)))
                } catch (n) {
                    throw Error("Malformed UTF-8 data")
                }
            },
            parse: function(t) {
                return h.parse(unescape(encodeURIComponent(t)))
            }
        },
        f = r.BufferedBlockAlgorithm = s.extend({
            reset: function() {
                this._data = new o.init, this._nDataBytes = 0
            },
            _append: function(t) {
                "string" == typeof t && (t = u.parse(t)), this._data.concat(t), this._nDataBytes += t.sigBytes
            },
            _process: function(n) {
                var i = this._data,
                    r = i.words,
                    e = i.sigBytes,
                    s = this.blockSize,
                    a = e / (4 * s),
                    a = n ? t.ceil(a) : t.max((0 | a) - this._minBufferSize, 0);
                if (n = a * s, e = t.min(4 * n, e), n) {
                    for (var c = 0; n > c; c += s) this._doProcessBlock(r, c);
                    c = r.splice(0, n), i.sigBytes -= e
                }
                return new o.init(c, e)
            },
            clone: function() {
                var t = s.clone.call(this);
                return t._data = this._data.clone(), t
            },
            _minBufferSize: 0
        });
    r.Hasher = f.extend({
        cfg: s.extend(),
        init: function(t) {
            this.cfg = this.cfg.extend(t), this.reset()
        },
        reset: function() {
            f.reset.call(this), this._doReset()
        },
        update: function(t) {
            return this._append(t), this._process(), this
        },
        finalize: function(t) {
            return t && this._append(t), this._doFinalize()
        },
        blockSize: 16,
        _createHelper: function(t) {
            return function(n, i) {
                return new t.init(i).finalize(n)
            }
        },
        _createHmacHelper: function(t) {
            return function(n, i) {
                return new l.HMAC.init(t, i).finalize(n)
            }
        }
    });
    var l = i.algo = {};
    return i
}(Math);
! function(t) {
    function n(t, n, i, r, e, s, o) {
        return t = t + (n & i | ~n & r) + e + o, (t << s | t >>> 32 - s) + n
    }

    function i(t, n, i, r, e, s, o) {
        return t = t + (n & r | i & ~r) + e + o, (t << s | t >>> 32 - s) + n
    }

    function r(t, n, i, r, e, s, o) {
        return t = t + (n ^ i ^ r) + e + o, (t << s | t >>> 32 - s) + n
    }

    function e(t, n, i, r, e, s, o) {
        return t = t + (i ^ (n | ~r)) + e + o, (t << s | t >>> 32 - s) + n
    }
    for (var s = CryptoJS, o = s.lib, a = o.WordArray, c = o.Hasher, o = s.algo, h = [], u = 0; 64 > u; u++) h[u] = 4294967296 * t.abs(t.sin(u + 1)) | 0;
    o = o.MD5 = c.extend({
        _doReset: function() {
            this._hash = new a.init([1732584193, 4023233417, 2562383102, 271733878])
        },
        _doProcessBlock: function(t, s) {
            for (var o = 0; 16 > o; o++) {
                var a = s + o,
                    c = t[a];
                t[a] = 16711935 & (c << 8 | c >>> 24) | 4278255360 & (c << 24 | c >>> 8)
            }
            var o = this._hash.words,
                a = t[s + 0],
                c = t[s + 1],
                u = t[s + 2],
                f = t[s + 3],
                l = t[s + 4],
                p = t[s + 5],
                d = t[s + 6],
                g = t[s + 7],
                y = t[s + 8],
                _ = t[s + 9],
                v = t[s + 10],
                w = t[s + 11],
                B = t[s + 12],
                m = t[s + 13],
                S = t[s + 14],
                x = t[s + 15],
                H = o[0],
                z = o[1],
                C = o[2],
                A = o[3],
                H = n(H, z, C, A, a, 7, h[0]),
                A = n(A, H, z, C, c, 12, h[1]),
                C = n(C, A, H, z, u, 17, h[2]),
                z = n(z, C, A, H, f, 22, h[3]),
                H = n(H, z, C, A, l, 7, h[4]),
                A = n(A, H, z, C, p, 12, h[5]),
                C = n(C, A, H, z, d, 17, h[6]),
                z = n(z, C, A, H, g, 22, h[7]),
                H = n(H, z, C, A, y, 7, h[8]),
                A = n(A, H, z, C, _, 12, h[9]),
                C = n(C, A, H, z, v, 17, h[10]),
                z = n(z, C, A, H, w, 22, h[11]),
                H = n(H, z, C, A, B, 7, h[12]),
                A = n(A, H, z, C, m, 12, h[13]),
                C = n(C, A, H, z, S, 17, h[14]),
                z = n(z, C, A, H, x, 22, h[15]),
                H = i(H, z, C, A, c, 5, h[16]),
                A = i(A, H, z, C, d, 9, h[17]),
                C = i(C, A, H, z, w, 14, h[18]),
                z = i(z, C, A, H, a, 20, h[19]),
                H = i(H, z, C, A, p, 5, h[20]),
                A = i(A, H, z, C, v, 9, h[21]),
                C = i(C, A, H, z, x, 14, h[22]),
                z = i(z, C, A, H, l, 20, h[23]),
                H = i(H, z, C, A, _, 5, h[24]),
                A = i(A, H, z, C, S, 9, h[25]),
                C = i(C, A, H, z, f, 14, h[26]),
                z = i(z, C, A, H, y, 20, h[27]),
                H = i(H, z, C, A, m, 5, h[28]),
                A = i(A, H, z, C, u, 9, h[29]),
                C = i(C, A, H, z, g, 14, h[30]),
                z = i(z, C, A, H, B, 20, h[31]),
                H = r(H, z, C, A, p, 4, h[32]),
                A = r(A, H, z, C, y, 11, h[33]),
                C = r(C, A, H, z, w, 16, h[34]),
                z = r(z, C, A, H, S, 23, h[35]),
                H = r(H, z, C, A, c, 4, h[36]),
                A = r(A, H, z, C, l, 11, h[37]),
                C = r(C, A, H, z, g, 16, h[38]),
                z = r(z, C, A, H, v, 23, h[39]),
                H = r(H, z, C, A, m, 4, h[40]),
                A = r(A, H, z, C, a, 11, h[41]),
                C = r(C, A, H, z, f, 16, h[42]),
                z = r(z, C, A, H, d, 23, h[43]),
                H = r(H, z, C, A, _, 4, h[44]),
                A = r(A, H, z, C, B, 11, h[45]),
                C = r(C, A, H, z, x, 16, h[46]),
                z = r(z, C, A, H, u, 23, h[47]),
                H = e(H, z, C, A, a, 6, h[48]),
                A = e(A, H, z, C, g, 10, h[49]),
                C = e(C, A, H, z, S, 15, h[50]),
                z = e(z, C, A, H, p, 21, h[51]),
                H = e(H, z, C, A, B, 6, h[52]),
                A = e(A, H, z, C, f, 10, h[53]),
                C = e(C, A, H, z, v, 15, h[54]),
                z = e(z, C, A, H, c, 21, h[55]),
                H = e(H, z, C, A, y, 6, h[56]),
                A = e(A, H, z, C, x, 10, h[57]),
                C = e(C, A, H, z, d, 15, h[58]),
                z = e(z, C, A, H, m, 21, h[59]),
                H = e(H, z, C, A, l, 6, h[60]),
                A = e(A, H, z, C, w, 10, h[61]),
                C = e(C, A, H, z, u, 15, h[62]),
                z = e(z, C, A, H, _, 21, h[63]);
            o[0] = o[0] + H | 0, o[1] = o[1] + z | 0, o[2] = o[2] + C | 0, o[3] = o[3] + A | 0
        },
        _doFinalize: function() {
            var n = this._data,
                i = n.words,
                r = 8 * this._nDataBytes,
                e = 8 * n.sigBytes;
            i[e >>> 5] |= 128 << 24 - e % 32;
            var s = t.floor(r / 4294967296);
            for (i[(e + 64 >>> 9 << 4) + 15] = 16711935 & (s << 8 | s >>> 24) | 4278255360 & (s << 24 | s >>> 8), i[(e + 64 >>> 9 << 4) + 14] = 16711935 & (r << 8 | r >>> 24) | 4278255360 & (r << 24 | r >>> 8), n.sigBytes = 4 * (i.length + 1), this._process(), n = this._hash, i = n.words, r = 0; 4 > r; r++) e = i[r], i[r] = 16711935 & (e << 8 | e >>> 24) | 4278255360 & (e << 24 | e >>> 8);
            return n
        },
        clone: function() {
            var t = c.clone.call(this);
            return t._hash = this._hash.clone(), t
        }
    }), s.MD5 = c._createHelper(o), s.HmacMD5 = c._createHmacHelper(o)
}(Math);
                                    

Executed Writes (0)



HTTP Transactions (129)


Request Response
                                        
                                            GET / HTTP/1.1 
Host: lifetips365.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         65.109.33.97
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Server: nginx
Date: Wed, 28 Sep 2022 17:48:18 GMT
Content-Length: 162
Connection: keep-alive
Location: https://www.lifetips365.com/


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   162
Md5:    4f8e702cc244ec5d4de32740c0ecbd97
Sha1:   3adb1f02d5b6054de0046e367c1d687b6cdf7aff
Sha256: 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "9FE6BEB1CB3851018168765A243B6DE69EC71D30770F8C2DCC57CAE7D9978CC1"
Last-Modified: Wed, 28 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8960
Expires: Wed, 28 Sep 2022 20:17:38 GMT
Date: Wed, 28 Sep 2022 17:48:18 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 28 Sep 2022 17:15:39 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: lWO4gY2kEMOMDuVP1m4tFS3XetiaBwXKz108QoFGHl_Za-1NBkK7Tg==
Age: 1959


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    2d12f67fe57a87e7366b662d153a5582
Sha1:   d7b02d81cc74f24a251d9363e0f4b0a149264ec1
Sha256: 73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.25
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 28 Sep 2022 09:24:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: uy_YS8WgEz4uCtd8Lsl2TYQS3Iw5lVp4lTdqV04rVBcn7pQZunk3DQ==
age: 44392
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Wed, 28 Sep 2022 17:48:18 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /wp-content/plugins/ct-ultimate-gdpr/assets/css/cookie-popup.min.css?ver=6.0.2 HTTP/1.1 
Host: lifetips365.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         65.109.33.97
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Wed, 28 Sep 2022 17:48:18 GMT
content-length: 0
last-modified: Tue, 06 Sep 2022 18:20:20 GMT
etag: "63178f64-0"
strict-transport-security: max-age=31536000; includeSubdomains
accept-ranges: bytes
X-Firefox-Spdy: h2

                                        
                                            GET /wp-content/plugins/wpcf7-redirect/build/css/wpcf7-redirect-frontend.min.css?ver=6.0.2 HTTP/1.1 
Host: lifetips365.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         65.109.33.97
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
content-length: 316
last-modified: Tue, 16 Aug 2022 06:44:32 GMT
etag: "62fb3cd0-13c"
strict-transport-security: max-age=31536000; includeSubdomains
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF, CR line terminators
Size:   316
Md5:    9730086eefb28d971b315173f579b3b0
Sha1:   a9845ea261aef600305f310c15d83232ee33460d
Sha256: 9c0647c53dde19cd56b2dfd0626db41f3db20c92984e1e6a4d469c19e4823adf

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/ct-ultimate-gdpr/assets/css/images/block-all.svg HTTP/1.1 
Host: lifetips365.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         65.109.33.97
HTTP/2 200 OK
content-type: image/svg+xml
                                        
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
content-length: 868
last-modified: Tue, 06 Sep 2022 18:20:20 GMT
etag: "63178f64-364"
strict-transport-security: max-age=31536000; includeSubdomains
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (386)
Size:   868
Md5:    3e765c98e8c05851f0636e674c87a3db
Sha1:   11336758f461690853e83807b7c7d67cee6a1776
Sha256: d7af8a2c0d7cdca61e96c2dd2a7e47ec4228e2268a2b2691e2bf373c4cda01a4

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/ct-ultimate-gdpr/assets/css/images/essential.svg HTTP/1.1 
Host: lifetips365.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         65.109.33.97
HTTP/2 200 OK
content-type: image/svg+xml
                                        
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
content-length: 825
last-modified: Tue, 06 Sep 2022 18:20:20 GMT
etag: "63178f64-339"
strict-transport-security: max-age=31536000; includeSubdomains
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (610)
Size:   825
Md5:    cc394bf216d01030b5f4822158519cd1
Sha1:   fc7608e37468dd55c79cdca486f1c8973da2b15e
Sha256: 206c31d4e597123390a555dcc2416de32d22b8bce126e589cc7cfc1391f92050

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2086
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 17:48:19 GMT
Last-Modified: Wed, 28 Sep 2022 17:13:33 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 278

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2086
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 17:48:19 GMT
Last-Modified: Wed, 28 Sep 2022 17:13:33 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 278

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 17:48:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 343
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 17:48:19 GMT
Last-Modified: Wed, 28 Sep 2022 17:42:36 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /ajax/libs/jquery-validate/1.19.2/jquery.validate.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.25.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Wed, 28 Sep 2022 17:48:19 GMT
content-length: 6970
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5ed13e63-5f7b"
last-modified: Fri, 29 May 2020 16:54:59 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 3024593
expires: Mon, 18 Sep 2023 17:48:19 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6DVzzFwP%2Bt%2F19IGjdDUbtWi78mLbRHOwCHm%2FZlMzCXOn8HkIgvfZeMrEmMBQR3AT984VELgKNdnVhzFNu46ZSceM4dBPb6AlKFSA5X9Wi7mKLcbw3jhF8DRJloXguoDonBojkat9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 751e4f2b5fb51c06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (24304)
Size:   6970
Md5:    4dff16256caf65b9530a221f15ed1661
Sha1:   e253fdfafb73d51e9d8c1632a521bf562c3d0975
Sha256: 1e51fbddb76b932b540fcd5e6ec3bfdf3196f0bb5e1f441a05d7d62208606e73
                                        
                                            GET /ajax/libs/animate.css/4.1.1/animate.min.css?ver=6.0.2 HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.25.14
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
date: Wed, 28 Sep 2022 17:48:19 GMT
content-length: 4216
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5f5628a2-11846"
last-modified: Mon, 07 Sep 2020 12:33:38 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 3019510
expires: Mon, 18 Sep 2023 17:48:19 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rZSmjVa1kRA6VLH2tvPjNbED4PXC1IKE9B42M3FqP1ZCk3fuYfdQz1XAwSm74HJwXQfpRb63zR13TEvXm8ChiA0XI3FOllgsbLvr6hbZ%2FUHi6VYQr9QtMI1sfl9N5XCiduu%2FHoN%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 751e4f2b4fb21c06-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65348)
Size:   4216
Md5:    eefc9abe5bc10d658a2393a70d052566
Sha1:   dd49deafcd3ebe1306cda0b843f2da265f8a90e1
Sha256: 6011c33e447455e96e1d4926b0e15ca399eb993163a8e5ee0c523947396d66c3
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2086
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 17:48:19 GMT
Last-Modified: Wed, 28 Sep 2022 17:13:33 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 278

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5456
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 17:48:19 GMT
Last-Modified: Wed, 28 Sep 2022 16:17:23 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 279

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 17:48:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 17:48:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3 HTTP/1.1 
Host: lifetips365.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         65.109.33.97
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
last-modified: Thu, 08 Sep 2022 09:25:12 GMT
vary: Accept-Encoding
etag: W/"6319b4f8-25d0"
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   3219
Md5:    83b2fcf72144626d5f60da9af447c30a
Sha1:   cadc64a773986cdda1673ee36765ee24339b191d
Sha256: 8d46fa031f877cbccda2ca68db4f3cd58102fb8d17ac487fc131857c41f1f0c3
                                        
                                            GET /gtm.js?id=GTM-P5KZQH7 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 28 Sep 2022 17:48:19 GMT
expires: Wed, 28 Sep 2022 17:48:19 GMT
cache-control: private, max-age=900
last-modified: Wed, 28 Sep 2022 16:39:46 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 65351
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (15060)
Size:   65351
Md5:    38690427a511250f04039476f32070b6
Sha1:   9942be3c3c9904ff163c9ad2cea1a1e3f5ab373f
Sha256: 49b079c44fdfc92ca0c6f3a7cde12265fb1be465b43c1d29537d63157d49707f
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 HTTP/1.1 
Host: lifetips365.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         65.109.33.97
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
last-modified: Thu, 08 Sep 2022 09:25:12 GMT
vary: Accept-Encoding
etag: W/"6319b4f8-2fb3"
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   4402
Md5:    d3c441b99062654e78341de5e1bdfcdf
Sha1:   207b8f2dc3c10bb0c4ef4b624d56614c59cb724d
Sha256: 83d730b090cacfb33da1ccd640be816a8335d61ba7863121adc9e01144323008

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/ct-ultimate-gdpr/assets/css/jquery-ui.min.css?ver=6.0.2 HTTP/1.1 
Host: lifetips365.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         65.109.33.97
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
last-modified: Tue, 06 Sep 2022 18:20:20 GMT
vary: Accept-Encoding
etag: W/"63178f64-ac08"
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   8275
Md5:    0214b96f60c11c3dd9f2d56cfb3cdd27
Sha1:   fb62441a6565db6e7bd03d9c0baa17ccc043eb12
Sha256: 33e912970cc4c51f484dd9fda72bb5f9c97a6cc05a41bbbb152d6f04818426c1
                                        
                                            GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.lifetips365.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 24 Sep 2022 18:01:25 GMT
expires: Sun, 24 Sep 2023 18:01:25 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
age: 344814
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size:   44856
Md5:    565ce506190ad3af920b40baf1794cec
Sha1:   ad3cba5d06100e09449a864d3b5e58403b478b3d
Sha256: 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
                                        
                                            GET /wp-content/plugins/ct-ultimate-gdpr/assets/js/shortcode-block-cookie.js?ver=3.7 HTTP/1.1 
Host: lifetips365.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         65.109.33.97
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
last-modified: Tue, 06 Sep 2022 18:20:20 GMT
vary: Accept-Encoding
etag: W/"63178f64-693"
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   1451
Md5:    6c02779c58b2140f0ee4410e6ad4230d
Sha1:   a05f2665edb6ddc6f8bd95a0bff6397e61b09d89
Sha256: d519b8127a1acef31d2d861f02d48aa51632718368be94b950fa143e134d1a6f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 17:48:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/plugins/ct-ultimate-gdpr/assets/css/images/essential.svg HTTP/1.1 
Host: lifetips365.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/xml, text/xml, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.lifetips365.com
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         65.109.33.97
HTTP/2 200 OK
content-type: image/svg+xml
                                        
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
content-length: 825
last-modified: Tue, 06 Sep 2022 18:20:20 GMT
etag: "63178f64-339"
strict-transport-security: max-age=31536000; includeSubdomains
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (610)
Size:   825
Md5:    cc394bf216d01030b5f4822158519cd1
Sha1:   fc7608e37468dd55c79cdca486f1c8973da2b15e
Sha256: 206c31d4e597123390a555dcc2416de32d22b8bce126e589cc7cfc1391f92050

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6483
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 17:48:19 GMT
Last-Modified: Wed, 28 Sep 2022 16:00:17 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /css?display=swap&family=Open+Sans:100,200,300,400,500,600,700,800,900|Source+Sans+Pro:100,200,300,400,500,600,700,800,900|Roboto:100,200,300,400,500,600,700,800,900|Montserrat:100,200,300,400,500,600,700,800,900 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 28 Sep 2022 17:48:19 GMT
date: Wed, 28 Sep 2022 17:48:19 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   7400
Md5:    85216970261c91ebff3f4e7ec32c704b
Sha1:   d956d5a99ed22f6156f4d32a6faf69e9338970ed
Sha256: 0d186766a58b48e8f15a13dc1d080fe2130a21e1e077e7decb221488fd62c26c
                                        
                                            GET /wp-content/uploads/2021/11/cropped-Logo-32x32.jpg HTTP/1.1 
Host: lifetips365.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Cookie: _gcl_au=1.1.1040168863.1664387297
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         65.109.33.97
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
content-length: 1037
last-modified: Fri, 05 Nov 2021 16:23:56 GMT
etag: "61855a9c-40d"
strict-transport-security: max-age=31536000; includeSubdomains
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 32x32, components 3\012- data
Size:   1037
Md5:    e4645b28047266bd9853a4769e3190ad
Sha1:   511f80868a30859752024d905369d9d091a54b2b
Sha256: 2efbc29d5679f0e74aea80e64430f71a5afc96744c9b3a36afbeb0272c606e91
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2786
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 17:48:19 GMT
Last-Modified: Wed, 28 Sep 2022 17:01:53 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /cp/obtp.js HTTP/1.1 
Host: amplify.outbrain.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         95.101.174.159
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Accept-Ranges: bytes
ETag: "51de2e10510f823326f9b30ea6068a2a:1655820557.452892"
Last-Modified: Tue, 21 Jun 2022 14:06:31 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1200
Expires: Wed, 28 Sep 2022 18:08:19 GMT
Date: Wed, 28 Sep 2022 17:48:19 GMT
Content-Length: 3249
Connection: keep-alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (8072), with no line terminators
Size:   3249
Md5:    9b19340ef7db3cbb26aa923adb8dbe6e
Sha1:   082e699bca6e80ca6c72a43f2894f4a32e785e26
Sha256: c042b8b199b2c08fa66f90753998544860e3f64c3a1f47754a66970b3b8c5b2a
                                        
                                            GET /wp-content/plugins/ct-ultimate-gdpr/assets/css/images/functionality.svg HTTP/1.1 
Host: lifetips365.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/xml, text/xml, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.lifetips365.com
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         65.109.33.97
HTTP/2 200 OK
content-type: image/svg+xml
                                        
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
last-modified: Tue, 06 Sep 2022 18:20:20 GMT
vary: Accept-Encoding
etag: W/"63178f64-10c6"
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (4079)
Size:   21497
Md5:    2ce759fd3933108357884c7fea41d63d
Sha1:   fe92980bb5583dd94413012fc004a0776660adf2
Sha256: a05b901a5843b75b450e0ee1059731997c225f42d5248739e54b76729a7a922d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 17:48:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /hp HTTP/1.1 
Host: track.lifetips365.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Cookie: _gcl_au=1.1.1040168863.1664387297
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         18.193.209.105
HTTP/2 200 OK
                                        
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
cache-control: no-store, no-cache, pre-check=0, post-check=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
pragma: no-cache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   59990
Md5:    f9352b2da043de327ede7d559544eede
Sha1:   3058008a246ff5a393f0d4b453a5b23b18c1eebb
Sha256: 8bb1680e5f2bfa3b378c494e01815cb00af39d76f6cd62a3da71dca809ff3a2c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/ct-ultimate-gdpr/assets/css/images/functionality.svg HTTP/1.1 
Host: lifetips365.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         65.109.33.97
HTTP/2 200 OK
content-type: image/svg+xml
                                        
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
last-modified: Tue, 06 Sep 2022 18:20:20 GMT
vary: Accept-Encoding
etag: W/"63178f64-10c6"
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   84364
Md5:    5245e5a0d72973234e7a0ce3dbc57945
Sha1:   d33df06ebf32ac74fd06f62af98a3acce7b329b2
Sha256: ded8a37be9ecff697df1436a85bb006f1d1e6e47a93734733764bcf1a62e360e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /collect?v=1&_v=j97&aip=1&a=1180550755&t=event&ni=0&_s=1&dl=https%3A%2F%2Fwww.lifetips365.com%2F&ul=en-us&de=UTF-8&dt=Lifetips365.com%20-%20Homepage%20-%20Lifetips365.com&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&ec=contact&ea=form%20submission&el=Germany&_u=YEDAAEABAAAAAC~&jid=&gjid=&cid=1179980672.1664387297&tid=UA-188880361-4&_gid=1878218635.1664387297&gtm=2wg9q0P5KZQH7&z=168152468 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: image/gif
                                        
access-control-allow-origin: *
pragma: no-cache
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
date: Tue, 27 Sep 2022 23:08:31 GMT
expires: Mon, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
age: 67188
last-modified: Sun, 17 May 1998 03:00:00 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   35
Md5:    28d6814f309ea289f847c69cf91194c6
Sha1:   0f4e929dd5bb2564f7ab9c76338e04e292a42ace
Sha256: 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
                                        
                                            GET /wp-content/plugins/ct-ultimate-gdpr/assets/css/fonts/fonts.css?ver=6.0.2 HTTP/1.1 
Host: lifetips365.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         65.109.33.97
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
last-modified: Tue, 06 Sep 2022 18:20:20 GMT
vary: Accept-Encoding
etag: W/"63178f64-796"
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   770
Md5:    ac57a8d00fc8a1957d44b1e549ba8228
Sha1:   926f8f912f79e46589d619f03b340bd4dc70c91b
Sha256: 13f95a799624f2d7d60c4e03978c0bdad8670efb1d5a54e965fccf119a537ef7

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /j/collect?v=1&_v=j97&aip=1&a=1180550755&t=pageview&_s=1&dl=https%3A%2F%2Fwww.lifetips365.com%2F&ul=en-us&de=UTF-8&dt=Lifetips365.com%20-%20Homepage%20-%20Lifetips365.com&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAEABAAAAAC~&jid=1259448821&gjid=1541233672&cid=1179980672.1664387297&tid=UA-188880361-4&_gid=1878218635.1664387297&_r=1&gtm=2wg9q0P5KZQH7&z=1335836238 HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.lifetips365.com
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: https://www.lifetips365.com
date: Wed, 28 Sep 2022 17:48:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  very short file (no magic)
Size:   1
Md5:    c4ca4238a0b923820dcc509a6f75849b
Sha1:   356a192b7913b04c54574d18c28d46e6395428ab
Sha256: 6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
                                        
                                            GET /modules.cf44a0a6b448df1b035e.js HTTP/1.1 
Host: script.hotjar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.68
HTTP/2 200 OK
content-type: application/javascript
                                        
content-length: 66148
date: Wed, 28 Sep 2022 11:37:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "5f131c93ccff63ccc86d0067d0eebf99"
last-modified: Wed, 28 Sep 2022 11:36:53 GMT
strict-transport-security: max-age=604800; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: nrrHUxnAGLQk7WJCA-uTRjKlOkLdFlBNCVJj_FFd4rSQ9TEB7Y7Epw==
age: 22273
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (48714)
Size:   66148
Md5:    5f131c93ccff63ccc86d0067d0eebf99
Sha1:   a599898399783be0db5f757c043b828a0726deec
Sha256: 91980f4223c639c3849139a6e692ccf10310f0b57d74b403198af020fc7398a2
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 17:48:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 17:48:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1 
Host: maxcdn.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.10.207
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
date: Wed, 28 Sep 2022 17:48:19 GMT
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: SE
cdn-edgestorageid: 722, 617
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 2021-03-10 20:26:20
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 121d365db7a9aba3915641185d93b963
cdn-cache: HIT
cf-cache-status: HIT
age: 13698106
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 751e4f2b5d27b4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (30837)
Size:   6977
Md5:    7703aa0e0fbc590eb852d837a024d54b
Sha1:   df2ebf32216fa91d5055803b60e90618be9499e5
Sha256: 8af8bc3ecb14814ee0160adb3560780961fd0f9e41d0d65378eb50d24059d7df
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 17:48:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6232
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 17:48:19 GMT
Last-Modified: Wed, 28 Sep 2022 16:04:27 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 279

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3972
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 17:48:19 GMT
Last-Modified: Wed, 28 Sep 2022 16:42:09 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 279

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3245
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 17:48:19 GMT
Last-Modified: Wed, 28 Sep 2022 16:54:14 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 279

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3972
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 17:48:19 GMT
Last-Modified: Wed, 28 Sep 2022 16:42:09 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 279

                                        
                                            GET /pagead/viewthroughconversion/10788536508/?random=1664387297227&cv=9&fst=1664387297227&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2wg9q0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fwww.lifetips365.com%2F&tiba=Lifetips365.com%20-%20Homepage%20-%20Lifetips365.com&auid=1040168863.1664387297&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.211.2
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 28 Sep 2022 17:48:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1019
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 28-Sep-2022 18:03:19 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2250), with no line terminators
Size:   1019
Md5:    f0b1063cf599abf2b89145683abeada0
Sha1:   6604f3e6b2c0b0e0de81e34892516b34fc0a75ec
Sha256: b4074d67ee3d0b4b671a77dd50fae6b5df08128f21b55358c177b21da4d636cc
                                        
                                            GET /pagead/viewthroughconversion/374286076/?random=1664387297222&cv=9&fst=1664387297222&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2wg9q0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fwww.lifetips365.com%2F&tiba=Lifetips365.com%20-%20Homepage%20-%20Lifetips365.com&auid=1040168863.1664387297&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.211.2
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 28 Sep 2022 17:48:19 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1016
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 28-Sep-2022 18:03:19 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2246), with no line terminators
Size:   1016
Md5:    75be885ed5b932a58b2395cdd90e0c5c
Sha1:   b1b49e7661ddeae83eac6a5ab7967268bdf9380b
Sha256: decbd197dec2a71f4ef53da198c2399bb6805d0a46409af5b383cb4443250714
                                        
                                            GET /wp-content/plugins/ct-ultimate-gdpr/assets/js/cookie-popup.js?ver=3.7 HTTP/1.1 
Host: lifetips365.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         65.109.33.97
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
last-modified: Tue, 06 Sep 2022 18:20:20 GMT
vary: Accept-Encoding
etag: W/"63178f64-7099"
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   56105
Md5:    06944746f18491fcf647ed42a9612ab3
Sha1:   5d5b73ba067edbb58177b24ef41fedb421ecad4a
Sha256: b3b171378f0d482f520367b917ad05445c5dd1dce9153889e8fdbc1f937b1f68
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6072
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 17:48:19 GMT
Last-Modified: Wed, 28 Sep 2022 16:07:07 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /box-69edcc3187336f9b0a3fbb4c73be9fe6.html HTTP/1.1 
Host: vars.hotjar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.105
HTTP/2 200 OK
content-type: text/html
                                        
content-length: 1044
date: Wed, 07 Sep 2022 09:17:07 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "f6a9ca04b0687ea3c0d98e8430c8c77b"
last-modified: Wed, 07 Sep 2022 09:16:57 GMT
strict-transport-security: max-age=604800; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: znPtrU8I5sAQPeAO-ZJ2ZrhnZg0r0D6X86lrP2k5ffn4djUlqZZaig==
age: 1845072
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2431), with no line terminators
Size:   1044
Md5:    f6a9ca04b0687ea3c0d98e8430c8c77b
Sha1:   35503b2deb23091a9a9c6c68d4020dbdf879588e
Sha256: 8e4328ecb6b395499567369e3c227231dbdaf361f43ce315934d7a2a3abbed41
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3972
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 17:48:19 GMT
Last-Modified: Wed, 28 Sep 2022 16:42:09 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 279

                                        
                                            POST / HTTP/1.1 
Host: status.thawte.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1376
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 17:48:19 GMT
Last-Modified: Wed, 28 Sep 2022 17:25:23 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /wp-includes/css/dashicons.min.css?ver=6.0.2 HTTP/1.1 
Host: lifetips365.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         65.109.33.97
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Wed, 28 Sep 2022 17:48:18 GMT
last-modified: Thu, 25 Mar 2021 20:02:19 GMT
vary: Accept-Encoding
etag: W/"605cec4b-e688"
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (59064)
Size:   69032
Md5:    b2930c4435486541063bdbddd8874014
Sha1:   2b1b9c095bcf625bdf1ef76c80a6470fc08af28b
Sha256: 01ebd9f2fb61da1a6cbdafea4db6096696fb18cf71aadb6756b91b96665d598e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: status.thawte.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2887
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 17:48:20 GMT
Last-Modified: Wed, 28 Sep 2022 17:00:13 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 17:48:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 17:48:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1 
Host: ocsp.globalsign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 17:48:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "14486D25253DAEAA2D22E7BA3B0FEB2CA32C11BD"
Expires: Thu, 29 Sep 2022 05:00:00 GMT
Last-Modified: Wed, 28 Sep 2022 17:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 247
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 751e4f314b38fab8-OSL


--- Additional Info ---
Magic:  data
Size:   1462
Md5:    61ca33747b07cd4ba340a502daaf636a
Sha1:   b5a13b18eda4cc513036a1d535bb57d44dc8d826
Sha256: 0d142f613ed56fb212579ef86034876ab0e80770b5fd8f8d0f404ee64c9e437e
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 17:48:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /pagead/1p-user-list/374286076/?random=1664387297222&cv=9&fst=1664384400000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2wg9q0&sendb=1&frm=0&url=https%3A%2F%2Fwww.lifetips365.com%2F&tiba=Lifetips365.com%20-%20Homepage%20-%20Lifetips365.com&async=1&fmt=3&is_vtc=1&random=1574182491&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.3
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 28 Sep 2022 17:48:20 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   16675
Md5:    2ab7da7f4aa9c6db3c368013c2955d35
Sha1:   9f1aed15d5288c1fd782928fa418d8bae95297c0
Sha256: e4ae0a792075b705a162f54627003bf2c4dc77e2aa5c190eeb33313a56bb42c1
                                        
                                            GET /pagead/1p-user-list/10788536508/?random=1664387297227&cv=9&fst=1664384400000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2wg9q0&sendb=1&frm=0&url=https%3A%2F%2Fwww.lifetips365.com%2F&tiba=Lifetips365.com%20-%20Homepage%20-%20Lifetips365.com&async=1&fmt=3&is_vtc=1&random=3008931709&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.3
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 28 Sep 2022 17:48:20 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /tr/?id=1136344380625813&ev=PageView&dl=https%3A%2F%2Fwww.lifetips365.com%2F&rl=&if=false&ts=1664387297471&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=30&fbp=fb.1.1664387297470.900660136&it=1664387297234&coo=false&rqm=GET HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         157.240.200.35
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Wed, 28 Sep 2022 17:48:20 GMT
X-Firefox-Spdy: h2

                                        
                                            GET /releases/v5.15.4/css/pro-v4-font-face.min.css?token=14579ba48d HTTP/1.1 
Host: ka-p.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.powr.io/
Origin: https://www.powr.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.23.52
HTTP/2 200 OK
content-type: text/css
                                        
date: Wed, 28 Sep 2022 17:48:20 GMT
content-length: 2603
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-a2b"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 2123374
accept-ranges: bytes
server: cloudflare
cf-ray: 751e4f31bdac0af6-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (27832)
Size:   2603
Md5:    eaaabd3f60063923cd5333eb1d7a20a1
Sha1:   0da69706105e28896a1f6eeaa91d5bec1b82f7f1
Sha256: f863309ec0ac675409167610ff9776fa9c7620d6ee3592cc0c19d0b883ff2f70
                                        
                                            GET /releases/v5.15.4/css/pro-v4-shims.min.css?token=14579ba48d HTTP/1.1 
Host: ka-p.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.powr.io/
Origin: https://www.powr.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.23.52
HTTP/2 200 OK
content-type: text/css
                                        
date: Wed, 28 Sep 2022 17:48:20 GMT
content-length: 4194
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-1062"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 9833986
accept-ranges: bytes
server: cloudflare
cf-ray: 751e4f31bdb40af6-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (26366)
Size:   4194
Md5:    7fd743485fa194e25e2a207bff6c258a
Sha1:   97c999d752b95ee1ed6271a29aa58109dc17281e
Sha256: dd939d69a23f003d49287291f0bcb59df58119d60bc5f14a81cbfd957894f6dc
                                        
                                            GET /releases/v5.15.4/css/pro.min.css?token=14579ba48d HTTP/1.1 
Host: ka-p.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.powr.io/
Origin: https://www.powr.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.23.52
HTTP/2 200 OK
content-type: text/css
                                        
date: Wed, 28 Sep 2022 17:48:20 GMT
content-length: 54194
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-d3b2"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 9831380
accept-ranges: bytes
server: cloudflare
cf-ray: 751e4f31bdab0af6-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65397)
Size:   54194
Md5:    dc9270247a97f75913a5d8934c24de03
Sha1:   ed9b0fa01b552571f99d529ed355b2ba91cfc48d
Sha256: 847cc3ab1ea736cbbaac34833596335471fc7a888089b501b3c83a323566f0b8
                                        
                                            GET /cachedClickId?marketerId=00e3bfba232446a29e79d5a017ce05e435,00cccafacb61a9ec8a571ed26ed2e5d92f,0097c20bcbe19b620790a02f065382cdf1 HTTP/1.1 
Host: tr.outbrain.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         70.42.32.63
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Wed, 28 Sep 2022 17:48:20 GMT
Content-Length: 56
X-TraceId: 5058bb107149de185eef3cc2e43820da
content-encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   56
Md5:    77fbe8ab311fa20557d95906363035ed
Sha1:   5806df80f09a37e070d5f37c49f19797c2763fd0
Sha256: 4fa9f4ca5bfa56b9f8467324e3654f4a717dcd40b70c05b538092d8a101b0599
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 17:48:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /unifiedPixel?marketerId=00e3bfba232446a29e79d5a017ce05e435,00cccafacb61a9ec8a571ed26ed2e5d92f,0097c20bcbe19b620790a02f065382cdf1&obApiVersion=1.1&obtpVersion=1.8.2&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.lifetips365.com%2F&optOut=false&bust=04976988054285796&referrer= HTTP/1.1 
Host: tr.outbrain.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         70.42.32.63
HTTP/1.1 200 OK
Content-Type: image/gif;
                                        
Date: Wed, 28 Sep 2022 17:48:20 GMT
Content-Length: 60
Cache-Control: no-cache
X-TraceId: a208d456b6f86de2c0112abfe9cbf692
content-encoding: gzip


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   60
Md5:    fb0fc5c090282e372b8bf8ff13ae3ee2
Sha1:   2de3834253ece606ce4d2a6f10a59654b6fa378b
Sha256: 90a8ffa59ad6227daafa10083d4cff2e9b295c9c82135b5f5cedd65b2e7c8ceb
                                        
                                            GET /1162762/trc/3/json?tim=1664387297389&data=%7B%22id%22%3A498%2C%22ii%22%3A%22%2F%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1664387297383%2C%22cv%22%3A%2220220922-16-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Flifetips365.com%2F%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dleedia-willbemine-sc%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1664387297388%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.lifetips365.com%2F%22%2C%22tos%22%3A3%2C%22ssd%22%3A1%2C%22scd%22%3A91%2C%22supv%22%3Atrue%7D%7D&pubit=i HTTP/1.1 
Host: trc.taboola.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.85.44
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
server: nginx
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Wed, 28 Sep 2022 17:48:20 GMT
via: 1.1 varnish
x-served-by: cache-bma1632-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1664387300.993222,VS0,VE95
vary: Accept-Encoding
x-vcl-time-ms: 95
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2552)
Size:   6825
Md5:    48cf11b5858662e391d231479c108cc8
Sha1:   701e5e25ff3414e067d986664c29e4a14483940c
Sha256: fff39d6f96183cb0078017672809b5b62a474c84557839f6bd0b83a000e4bf83
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 17:48:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Wed, 28 Sep 2022 17:48:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /latest/assets/packs/style_packs/views-2c08199c84c61a412eae.css HTTP/1.1 
Host: public.powrcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.67.186.248
HTTP/2 200 OK
content-type: text/css
                                        
date: Wed, 28 Sep 2022 17:48:19 GMT
cf-bgj: minify
cf-polished: origSize=460092
etag: W/"2cbef8bacb84cdf787933b228259ff66"
last-modified: Tue, 20 Sep 2022 11:49:05 GMT
x-amz-id-2: /ZY+6uBX6i6+QAsT5zcXFbDh+Ur3l069dzE2fqfPmJY8BgUVmz300YEZOH0hB7lALK0qSgVxcDk=
x-amz-request-id: 780B14A62MKG8GSN
x-amz-version-id: PGWDa7hBdOSSOTEfH8YvQKS1NRxNt9Fq
cache-control: max-age=2073600
cf-cache-status: HIT
age: 2895
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3vfXe2skKB7cy2kc4sCtRje5WLRzEhm2CVr9BvrKMCZ6bcs2jmHJMIJVD94BeSNPgo%2BQVpEkJ8nyA4Bn2vBvYIcA%2F05Dx9rbdamSfj5RsLBDm7kDofROIwnVGNBlKSSfqmQ182M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 751e4f3079e8b506-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   48397
Md5:    6a9723dbeddcae699433f011c9a097e6
Sha1:   7f8dc568df15f0da159f6e41bc3d114d94c47abe
Sha256: 3611c1454bbafa821f2567ba33b96aecee689a2b3943502a03ccfa391d4f8b4c
                                        
                                            GET /14579ba48d.js HTTP/1.1 
Host: kit.fontawesome.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.23.52
HTTP/2 200 OK
content-type: text/javascript
                                        
date: Wed, 28 Sep 2022 17:48:19 GMT
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, must-revalidate
strict-transport-security: max-age=31536000; preload
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: Fuu_NKRKzsFcWtfaTAAi
cf-cache-status: HIT
age: 7
server: cloudflare
cf-ray: 751e4f30c84eb4fd-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   4483
Md5:    c80ae8e7c2c4885698ebf791e6ddc744
Sha1:   652ff6809d535900c0b6fa1474e0aead59696da2
Sha256: f076bf9fbdd0d43e0f1503943fcf125b2c5517d56b9b9468f2d3c75575626688
                                        
                                            GET /rss-feed/u/09230ac1_1631029054 HTTP/1.1 
Host: www.powr.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         104.22.51.245
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
date: Wed, 28 Sep 2022 17:48:19 GMT
link: <https://public.powrcdn.com/latest/assets/packs/style_packs/views-2c08199c84c61a412eae.css>; rel=preload; as=style; nopush,<https://public.powrcdn.com/latest/assets/packs/apps/views/socialFeed-36d463b8ed0aa5bef160.css>; rel=preload; as=style; nopush,<https://public.powrcdn.com/latest/assets/packs/style_packs/ie9-overrides-1711fd60ab8e8461cd46.css>; rel=preload; as=style; nopush,<https://public.powrcdn.com/latest/assets/packs/apps-view-ee75d437b5ed512d294f.js>; rel=preload; as=script; nopush,<https://public.powrcdn.com/latest/assets/packs/apps/socialFeed-7044d878a258ac722426.js>; rel=preload; as=script; nopush
cache-control: max-age=1800, public
vary: Accept-Encoding
x-request-id: 348c2b7a-d7f6-4fc8-b28e-96aa85f8a94e
x-runtime: 0.049946
x-origin-instance: heroku
via: 1.1 vegur
cf-cache-status: MISS
set-cookie: __cflb=02DiuGiFRig1r4jzSUmjGwtG131enGU5JRAXPZX6YVnXM; SameSite=None; Secure; path=/; expires=Wed, 05-Oct-22 17:48:19 GMT; HttpOnly
server: cloudflare
cf-ray: 751e4f2bfd0ab523-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (22595)
Size:   16412
Md5:    c2a4628d9abb3626a8d12b971367aeec
Sha1:   0960cd4b43a4b99a7be880eabc877d1fe33f236f
Sha256: 89dc56391b5c3dd91de508a6dae90795fcfda9b0f3d43654f29f641f3ea32b4d
                                        
                                            GET /1/4474f5c124?a=77339425&sa=1&v=1184.ab39b52&t=Unnamed%20Transaction&rst=1435&ck=1&ref=https://www.powr.io/rss-feed/u/09230ac1_1631029054&be=931&fe=1275&dc=1268&af=err,xhr,stn,ins&perf=%7B%22timing%22:%7B%22of%22:1664387296596,%22n%22:0,%22f%22:1,%22dn%22:7,%22dne%22:27,%22c%22:27,%22s%22:33,%22ce%22:42,%22rq%22:43,%22rp%22:566,%22rpe%22:567,%22dl%22:670,%22di%22:1237,%22ds%22:1246,%22de%22:1269,%22dc%22:1275,%22l%22:1275,%22le%22:1277%7D,%22navigation%22:%7B%7D%7D&jsonp=NREUM.setToken HTTP/1.1 
Host: bam.nr-data.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         162.247.241.14
HTTP/1.1 200 OK
Content-Type: text/javascript
                                        
Date: Wed, 28 Sep 2022 17:48:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 751e4f357adcb511-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=fb608c58b65cfedf; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   73
Md5:    516a128bb6000ca8154792678f4333fb
Sha1:   41d0257bea96afd36c6f3e40fcfdc9ca247f8e01
Sha256: 9fa62b52f24b87a40410fe842cb9be494abed114a2eac2eb406c8b4a4d372d10
                                        
                                            POST /api/v2/client/sites/3066796/visit-data?sv=6 HTTP/1.1 
Host: in.hotjar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 130
Origin: https://www.lifetips365.com
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.229.35.143
HTTP/2 200 OK
content-type: application/json
                                        
date: Wed, 28 Sep 2022 17:48:20 GMT
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   564
Md5:    94b979ee51bbd468ec1430282bf398f0
Sha1:   586ddf8d190ccae5113d982d11a11ff4648a2ad4
Sha256: e92936e4abed021407ecbb76c4a68178ec1aa9650ec527acf915a6b3cb484d7b
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7284
Expires: Wed, 28 Sep 2022 19:49:45 GMT
Date: Wed, 28 Sep 2022 17:48:21 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7284
Expires: Wed, 28 Sep 2022 19:49:45 GMT
Date: Wed, 28 Sep 2022 17:48:21 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7284
Expires: Wed, 28 Sep 2022 19:49:45 GMT
Date: Wed, 28 Sep 2022 17:48:21 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 13213
x-amzn-requestid: fe9ec409-2757-4910-8443-5b4d3be7efd3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlATEp8oAMFd9Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321b9b-3230e97a4fe34413285eb578;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:37:31 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rV80hKsopWPf_A8hKw0kwTOjVN4Bq-5f8oXDP2wluyGwof5yXFe2Bw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:42:47 GMT
age: 72334
etag: "3d4fa8701f17e8818c25584ef5f04bfbee8440cd"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13213
Md5:    62e68c3cd08dd94d910507512a67e85f
Sha1:   3d4fa8701f17e8818c25584ef5f04bfbee8440cd
Sha256: 058d798963f83f5fb88ab728185f755c5353fa981d93e1b6ff869089f501586b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12016
x-amzn-requestid: ec1b3715-5d0f-4045-aa5b-b70a55c81d72
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e3EtyIAMFdZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5e-201dd1ef1426a09965c68dab;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: y3DefdcXJyoDHpJXwz460gfWcv2JUboOFExNQmTFgy30B4mn54Xvuw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:44:30 GMT
age: 72231
etag: "a54803cca7d3c509c195f65961e1110c8ec56f55"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12016
Md5:    4b794c6812cb546de0295e087ebe66a7
Sha1:   a54803cca7d3c509c195f65961e1110c8ec56f55
Sha256: 6a207f75eb3951f3dea5252bc8d185cd604d3d657f15b838774e8087e91f37f5
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9a3b058-92c9-490e-9cbb-736f7e46510d.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7455
x-amzn-requestid: e99c9f33-b72a-4070-80cf-06fb4a87d1df
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZG4S6EcAoAMFX1A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6332a0df-04122b4a345dbc3f3918af98;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 07:06:07 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Di1kDUlYEc1rv31fHM-OquU_W_LggEzDCTVME5iFJ5KffZcQyN6i2A==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 07:31:39 GMT
age: 37002
etag: "b383135e2ebc23fe80eb0d594b198cb8c89327a5"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7455
Md5:    ea3890e460356d6ecc3ba4e405ac2e9e
Sha1:   b383135e2ebc23fe80eb0d594b198cb8c89327a5
Sha256: 8fcff053ce6e5750136bf876bad5b2916935f13ea039912d977928b086f0a48b
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7284
Expires: Wed, 28 Sep 2022 19:49:45 GMT
Date: Wed, 28 Sep 2022 17:48:21 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F693de74c-173e-4d9b-8317-35601f30ffd7.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 13299
x-amzn-requestid: 926df8b6-beec-470d-b0b3-33be326cd379
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3UPF8YIAMF3Nw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c1a-343e91e735af43d01fc83ddd;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: KmVkKXoPqZmnwFtpKhuox1kJNDoSxMEmYE39_zVPyaeoU4sPqq-_wA==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:44:23 GMT
age: 72238
etag: "651600f2ef18cecc2e38370069bbb5e1d86f68e0"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13299
Md5:    ad84ed0c5b2090df7996007514cf1984
Sha1:   651600f2ef18cecc2e38370069bbb5e1d86f68e0
Sha256: a3d0729e1d43afeadd2dd8273c858b8839d9e476f773c8ec9d96b5969a9e0b4a
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8500
x-amzn-requestid: af82c8d6-950c-4933-87e3-7bbb15cb1ac8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e3HOaoAMFoPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5e-77e0ecc522de575e40f429b3;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: rD5LsVDLQkaomG1nCGZGihbdlWKMCjUYNC2kRyAjJesJEOEBSj8Q3A==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:47:03 GMT
age: 72078
etag: "9c4692ea64832895fbd107d91f879728b6a440c7"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8500
Md5:    6139c878a7d2bd32c61fc8287996eb5b
Sha1:   9c4692ea64832895fbd107d91f879728b6a440c7
Sha256: 3839df92f0a10c1433d5b576df50c9f7953912ae4f425012262f08ee8a59ce2e
                                        
                                            GET /s/pathwaygothicone/v14/MwQrbgD32-KAvjkYGNUUxAtW7pEBwx-tS1Zf.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7664
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 26 Sep 2022 22:49:40 GMT
expires: Tue, 26 Sep 2023 22:49:40 GMT
cache-control: public, max-age=31536000
age: 154721
last-modified: Mon, 09 May 2022 18:44:31 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 7664, version 1.0\012- data
Size:   7664
Md5:    ddb86a7e867f626554dab8539dcc5a3f
Sha1:   063a49f80334a98eed3aa66c60700f83feae7e4f
Sha256: 96bf4d70d0fcf69ce33ed735e720a716dab9a1232995a24882ec242323db467b
                                        
                                            GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 26 Sep 2022 18:53:39 GMT
expires: Tue, 26 Sep 2023 18:53:39 GMT
cache-control: public, max-age=31536000
age: 168882
last-modified: Mon, 15 Aug 2022 18:14:44 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   52120
Md5:    affd185461c7f67fc44c1b0f11985d6d
Sha1:   c2804b801ac331bfb4b26d804978536b2ee02583
Sha256: 6cd8c37e9f9e8129e2ad313df708220c5d5753ef9bb52e1bc953c94fbca5827c
                                        
                                            GET /s/roboto/v20/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://public.powrcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11016
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 16:44:01 GMT
expires: Fri, 22 Sep 2023 16:44:01 GMT
cache-control: public, max-age=31536000
age: 522260
last-modified: Wed, 24 Jul 2019 01:18:50 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 11016, version 1.0\012- data
Size:   11016
Md5:    15fa3062f8929bd3b05fdca5259db412
Sha1:   6ff06a34f68ad0324ddec1bbe4d453c959178b36
Sha256: 5d1bc9b443f3f81fa4b4ad4634c1bb9702194c1898e3a9de0ab5e2cdc0e9f479
                                        
                                            GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:08 GMT
expires: Thu, 21 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 598453
last-modified: Wed, 11 May 2022 19:24:48 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   17995
Md5:    003521c1170472cbca126785978e8252
Sha1:   5583be2473996ab3b1cae91094d1fbde17df5b1b
Sha256: af8a63ac0166b2803ba76f5fa5cc33b9be2d10ce8c36bb5d1c6055f9bcd6a0c7
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         54.230.245.100
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 17:48:21 GMT
Last-Modified: Wed, 28 Sep 2022 17:43:15 GMT
Server: ECS (bsa/EB14)
X-Cache: Miss from cloudfront
Via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 8crMKnKtUschnZZeiknZxxoY2KJAR6jIGeMjmKBDrW3rgmZIwRnbuw==
Age: 307

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0369629e-f44d-439f-a279-b5ae6ecc0cf1.png HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 14464
x-amzn-requestid: 6627e07e-034b-432e-ab9e-afe035fa0b9a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e9HgIoAMFxUA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5f-7f34c3f6454379724a7ac413;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: J27vcANRhkMUuGwTZjXkO0EF0-UjN-MODVQRKgsc7hJI2S-UPF8Ctw==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:40:53 GMT
age: 72448
etag: "bc214d60be395d4cf753216ff8f9691c33d25e75"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   14464
Md5:    aa5cad224dbddd71881bd07255beb4da
Sha1:   bc214d60be395d4cf753216ff8f9691c33d25e75
Sha256: 82935e52aa59929a448d17a5a2d58fda86bb5c25bf6628a05bd904f82517dada
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         54.230.245.100
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 17:48:21 GMT
Last-Modified: Wed, 28 Sep 2022 15:58:58 GMT
Server: ECS (bsa/EB1F)
X-Cache: Miss from cloudfront
Via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: rkKYs0qYgzO0zuzKv8EC03cfKotsv_mmTnOS8aRrk8oEZPDZqIBftw==
Age: 6563

                                        
                                            OPTIONS /social-feed?data%5B0%5D%5Btype%5D=rss&data%5B0%5D%5Bfollowing%5D=http%3A%2F%2Fwww.repubblica.it%2Frss%2Fhomepage%2Frss2.0.xml%3Fref%3DRHFT&data%5B0%5D%5BfacebookFeedType%5D=&data%5B0%5D%5BfacebookPageId%5D=&data%5B0%5D%5BinstagramUsername%5D=&data%5B0%5D%5BusernameOrHashtag%5D=%40&data%5B0%5D%5BpageName%5D=http%3A%2F%2Fwww.repubblica.it%2Frss%2Fhomepage%2Frss2.0.xml%3Fref%3DRHFT&data%5B0%5D%5BmaxPosts%5D=6&premium=free&app_id=29946920&refreshRate=86400 HTTP/1.1 
Host: powr-outlet-v2.herokuapp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-csrf-token
Referer: https://www.powr.io/
Origin: https://www.powr.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         3.219.96.23
HTTP/1.1 204 No Content
                                        
Server: Cowboy
Content-Length: 0
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: https://www.powr.io
Vary: Origin, Access-Control-Request-Headers
Access-Control-Allow-Methods: GET,HEAD,PUT,PATCH,POST,DELETE
Access-Control-Allow-Headers: x-csrf-token
Date: Wed, 28 Sep 2022 17:48:21 GMT
Via: 1.1 vegur

                                        
                                            GET /1162762/log/3/unip?en=pre_d_eng_tb&tos=1593&scd=91&ssd=1&est=1664387297385&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1664387298979&vi=1664387297383&ri=c7e2edec741509ab6cc16dae63cde615&ref=null&cv=20220922-16-RELEASE&item-url=https%3A%2F%2Fwww.lifetips365.com%2F HTTP/1.1 
Host: trc-events.taboola.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.lifetips365.com
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         141.226.228.48
HTTP/2 204 No Content
                                        
server: nginx
date: Wed, 28 Sep 2022 17:48:21 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://www.lifetips365.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         54.230.245.100
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 17:48:21 GMT
Last-Modified: Wed, 28 Sep 2022 17:32:23 GMT
Server: ECS (nyb/1D2C)
X-Cache: Miss from cloudfront
Via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: JdwCQt1JOuU5ELRDfF1kTL5SSlx18lrc-6UA_KOJkBz8uuZnpVQaDA==
Age: 958

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         54.230.245.100
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Wed, 28 Sep 2022 17:48:21 GMT
Last-Modified: Wed, 28 Sep 2022 16:24:03 GMT
Server: ECS (bsa/EB23)
X-Cache: Miss from cloudfront
Via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: wXjDb5kd-gi6nDTGBtFBgRimmuf5uA1hHNFJHv-X27Op58nzoH0CSQ==
Age: 5059

                                        
                                            GET /social-feed?data%5B0%5D%5Btype%5D=rss&data%5B0%5D%5Bfollowing%5D=http%3A%2F%2Fwww.repubblica.it%2Frss%2Fhomepage%2Frss2.0.xml%3Fref%3DRHFT&data%5B0%5D%5BfacebookFeedType%5D=&data%5B0%5D%5BfacebookPageId%5D=&data%5B0%5D%5BinstagramUsername%5D=&data%5B0%5D%5BusernameOrHashtag%5D=%40&data%5B0%5D%5BpageName%5D=http%3A%2F%2Fwww.repubblica.it%2Frss%2Fhomepage%2Frss2.0.xml%3Fref%3DRHFT&data%5B0%5D%5BmaxPosts%5D=6&premium=free&app_id=29946920&refreshRate=86400 HTTP/1.1 
Host: powr-outlet-v2.herokuapp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: PcbVMC5D2VqyBOv3-HQvORuwH2PowMRY5s_uUqR85jEgT-YtFfNa8eUE7QUofoEmunytsbZSo0CvO4Hgz1gxKw
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         3.219.96.23
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
                                        
Server: Cowboy
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: https://www.powr.io
Vary: Origin
Cache-Control: public, max-age=3600
Date: Wed, 28 Sep 2022 17:48:21 GMT
Content-Length: 191361
Via: 1.1 vegur


--- Additional Info ---
Magic:  JSON data\012- HTML document, Unicode text, UTF-8 text, with very long lines (65393), with no line terminators
Size:   191361
Md5:    7cf442525ae1856b5942a4866ffa3086
Sha1:   be2c87257fc05c5c25c3515e96e221b6b8347f39
Sha256: bd4e3f4442f1e5b5ad1f3589d495f6b7ee5a1ea2a59491693765cec56d867947
                                        
                                            OPTIONS /29946920 HTTP/1.1 
Host: powr-counter.herokuapp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.powr.io/
Origin: https://www.powr.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.201.81.34
HTTP/1.1 200 OK
Content-Type: text/plain
                                        
Server: Cowboy
Date: Wed, 28 Sep 2022 17:48:21 GMT
Connection: keep-alive
Access-Control-Allow-Origin: https://www.powr.io
Access-Control-Allow-Methods: GET, POST, PUT, PATCH, DELETE, OPTIONS, HEAD
Access-Control-Expose-Headers:
Access-Control-Max-Age: 1728000
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: content-type
Transfer-Encoding: chunked
Via: 1.1 vegur

                                        
                                            GET /content/nazionale/img/2022/09/28/142928247-efb7536a-7755-458d-a4fe-82e079bb3600.jpg HTTP/1.1 
Host: www.repstatic.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.110
HTTP/2 200 OK
content-type: image/jpeg
                                        
content-length: 13379
date: Wed, 28 Sep 2022 14:05:18 GMT
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: *
access-control-allow-origin: *
access-control-max-age: 600
cache-control: max-age=5184000
content-security-policy-report-only: default-src https: wss: data: blob: 'unsafe-inline' 'unsafe-eval'; report-uri https://logger.kataweb.it/csp/
expires: Sun, 27 Nov 2022 14:05:18 GMT
referrer-policy: unsafe-url
strict-transport-security: max-age=7200
x-cacheable: YES
x-kw-cache-control: max-age=5184000
x-kw-date: Wed, 28 Sep 2022 14:05:19 GMT
x-kw-expires: Sun, 27 Nov 2022 14:05:18 GMT
x-robots-tag: noarchive, max-image-preview:large
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZDFUnnB9e5-NHK-AULpDm2jkt7t2lGGLv8BZUSQiCYmJFnLznVUHmg==
age: 13383
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", progressive, precision 8, 387x217, components 3\012- data
Size:   13379
Md5:    d2231165846cb4110616145e32ce3ab2
Sha1:   96ad766b1f9b57eecd5c4a5c80a9c9c268d3f5f2
Sha256: 8ac876a1ccd3b4e96435c3501c54e064b56c537cc97dd612e417410664fd5767
                                        
                                            GET /content/nazionale/img/2022/09/28/163229507-3a43dd14-b638-4156-9c9a-eecec0036bf0.jpg HTTP/1.1 
Host: www.repstatic.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.111.110
HTTP/2 200 OK
content-type: image/jpeg
                                        
content-length: 16303
date: Wed, 28 Sep 2022 14:32:32 GMT
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: *
access-control-allow-origin: *
access-control-max-age: 600
cache-control: max-age=5184000
content-security-policy-report-only: default-src https: wss: data: blob: 'unsafe-inline' 'unsafe-eval'; report-uri https://logger.kataweb.it/csp/
expires: Sun, 27 Nov 2022 14:32:32 GMT
referrer-policy: unsafe-url
strict-transport-security: max-age=7200
x-cacheable: YES
x-kw-cache-control: max-age=5184000
x-kw-date: Wed, 28 Sep 2022 14:32:33 GMT
x-kw-expires: Sun, 27 Nov 2022 14:32:32 GMT
x-robots-tag: noarchive, max-image-preview:large
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6Mu9xT84RHxQPomVnulUQq0gGBvRWnr_0eBJzCHn4ZfAUTTrqu6A0A==
age: 11749
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   87307
Md5:    73d8748044cb7604683e3ccd9bce4d8c
Sha1:   2c36014b06a6fe128cac4ec64f010efa0b75399e
Sha256: d003ef828e667b7235bbb254bf947d1aa6791c3a1d2f80e703836781d19edef3
                                        
                                            GET /content/nazionale/img/2022/09/28/173516517-50ae04c3-aa61-4030-bafe-adaa7a5be3ce.jpg HTTP/1.1 
Host: www.repstatic.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.110
HTTP/2 200 OK
content-type: image/jpeg
                                        
content-length: 19710
date: Wed, 28 Sep 2022 15:35:19 GMT
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: *
access-control-allow-origin: *
access-control-max-age: 600
cache-control: max-age=5184000
content-security-policy-report-only: default-src https: wss: data: blob: 'unsafe-inline' 'unsafe-eval'; report-uri https://logger.kataweb.it/csp/
expires: Sun, 27 Nov 2022 15:35:19 GMT
referrer-policy: unsafe-url
strict-transport-security: max-age=7200
x-cacheable: YES
x-kw-cache-control: max-age=5184000
x-kw-date: Wed, 28 Sep 2022 15:35:20 GMT
x-kw-expires: Sun, 27 Nov 2022 15:35:19 GMT
x-robots-tag: noarchive, max-image-preview:large
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: AF8-Upr9NhOw33mpa_g49p7CdGIPZcsiAa1yw1gjjQoY1lhvi3szUw==
age: 7982
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  gzip compressed data, max compression\012- data
Size:   20495
Md5:    ad35c29e6a7b6989ea8f95b37b065fc0
Sha1:   61007ae72847547d34efa4ba3a7c5846b6f202c6
Sha256: d3afcdcabbe8d17ef54f2b4dcf1791622e8f633c4412fd4493b802cf7bc20b27

Alerts:
  File Analyzers:
    - virustotal: 0/0
                                        
                                            GET /content/nazionale/img/2022/09/28/174838188-79a69253-157e-4053-92d4-d45497e876e9.jpg HTTP/1.1 
Host: www.repstatic.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.110
HTTP/2 200 OK
content-type: image/jpeg
                                        
content-length: 16537
date: Wed, 28 Sep 2022 15:48:41 GMT
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: *
access-control-allow-origin: *
access-control-max-age: 600
cache-control: max-age=5184000
content-security-policy-report-only: default-src https: wss: data: blob: 'unsafe-inline' 'unsafe-eval'; report-uri https://logger.kataweb.it/csp/
expires: Sun, 27 Nov 2022 15:48:41 GMT
referrer-policy: unsafe-url
strict-transport-security: max-age=7200
x-cacheable: YES
x-kw-cache-control: max-age=5184000
x-kw-date: Wed, 28 Sep 2022 15:48:42 GMT
x-kw-expires: Sun, 27 Nov 2022 15:48:41 GMT
x-robots-tag: noarchive, max-image-preview:large
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9NyGrdOkoWUqhDE2p33scDI7oP4-JH2UU9jUj6FTfucfFyq46p0aFg==
age: 7180
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 390x220, components 3\012- data
Size:   16537
Md5:    47c942c630c9ab45b225d1c41e39f061
Sha1:   857f407663bff26544525d51f82e1815826b0bf4
Sha256: f0e1d7e08bd402ff9cd9280a1e12a3934de815959e8303efd76b71b74985bd64
                                        
                                            GET /content/nazionale/img/2022/09/28/164146225-7222f115-536d-4d61-bb1d-70251c8bcd1c.jpg HTTP/1.1 
Host: www.repstatic.it
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.110
HTTP/2 200 OK
content-type: image/jpeg
                                        
content-length: 34933
date: Wed, 28 Sep 2022 14:41:49 GMT
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-headers: content-type
access-control-allow-methods: *
access-control-allow-origin: *
access-control-max-age: 600
cache-control: max-age=5184000
content-security-policy-report-only: default-src https: wss: data: blob: 'unsafe-inline' 'unsafe-eval'; report-uri https://logger.kataweb.it/csp/
expires: Sun, 27 Nov 2022 14:41:49 GMT
referrer-policy: unsafe-url
strict-transport-security: max-age=7200
x-cacheable: YES
x-kw-cache-control: max-age=5184000
x-kw-date: Wed, 28 Sep 2022 14:41:50 GMT
x-kw-expires: Sun, 27 Nov 2022 14:41:49 GMT
x-robots-tag: noarchive, max-image-preview:large
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ae1S25mhWgLyHUy0f5uoRaxhuyudoVu03i2skkQGDK5YZBWHyeyZTw==
age: 11192
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 593x333, components 3\012- data
Size:   34933
Md5:    86a2c3f7c1e308492084f50591ca8a35
Sha1:   eb2350dc5f1942e5e7e89a516cba83a1d16f231b
Sha256: b752a19810d65b122eb117acf9755e21d785ca59ad12acfc700acc5ca82e45e8
                                        
                                            POST /29946920 HTTP/1.1 
Host: powr-counter.herokuapp.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=utf-8
Content-Length: 343
Origin: https://www.powr.io
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.201.81.34
HTTP/1.1 200 OK
Content-Type: text/plain; charset=utf-8
                                        
Server: Cowboy
Date: Wed, 28 Sep 2022 17:48:21 GMT
Connection: keep-alive
Etag: W/"36a9e7f1c95b82ffb99743e0c5c4ce95"
Cache-Control: max-age=0, private, must-revalidate
X-Request-Id: 60fe3365-797f-416b-9451-a714e168ac02
X-Runtime: 0.025639
Access-Control-Allow-Origin: https://www.powr.io
Access-Control-Allow-Methods: GET, POST, PUT, PATCH, DELETE, OPTIONS, HEAD
Access-Control-Expose-Headers:
Access-Control-Max-Age: 1728000
Access-Control-Allow-Credentials: true
Vary: Origin
Transfer-Encoding: chunked
Via: 1.1 vegur


--- Additional Info ---
Magic:  data
Size:   1755
Md5:    2a37d0de33abfeb55cb134d1efce69ea
Sha1:   8bd99ac3ea063a9a804d9d5344fa590ccb66bcca
Sha256: 3e16a30b986154fe2c8603b28c9f09b422e1a47906610a6d02ccb97f121a071a
                                        
                                            GET /1162762/log/3/unip?en=pre_d_eng_tb&tos=4595&scd=91&ssd=1&est=1664387297385&ver=35&isls=true&src=i&invt=3000&rv=1&tim=1664387301981&vi=1664387297383&ri=c7e2edec741509ab6cc16dae63cde615&ref=null&cv=20220922-16-RELEASE&item-url=https%3A%2F%2Fwww.lifetips365.com%2F HTTP/1.1 
Host: trc-events.taboola.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.lifetips365.com
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         141.226.228.48
HTTP/2 204 No Content
                                        
server: nginx
date: Wed, 28 Sep 2022 17:48:24 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://www.lifetips365.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2

                                        
                                            GET /latest/assets/packs/apps/views/socialFeed-36d463b8ed0aa5bef160.css HTTP/1.1 
Host: public.powrcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.67.186.248
HTTP/2 200 OK
content-type: text/css
                                        
date: Wed, 28 Sep 2022 17:48:19 GMT
cf-bgj: minify
cf-polished: origSize=286497
etag: W/"adf889ed0314b585cb0181bf734134ba"
last-modified: Tue, 20 Sep 2022 11:48:59 GMT
x-amz-id-2: n2Eb/kc3ohOyRnvLdz5QLg6SfcnBHNfihFrOWN2HwlbwB4Go10H2rLqJi7zT/AxfVkF7kj8IbAg=
x-amz-request-id: 8YSEYXVXMGK7WVGA
x-amz-version-id: Zj0z7clirHUxYznsaAp2WQ_mTHfI7Lkd
cache-control: max-age=2073600
cf-cache-status: HIT
age: 5426
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=t4gXQYSv3rxrFUVVpbAajq6Al%2BX3pniHB95SsLua7asvjimB%2BX8Y5zG9uzvriMDMJh1IwUasjSJ2pWKIrdewCObU4iW6XhbnAcSArG6a6NMkggPTkLporRbkiK8OiR8ogSoVPGY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 751e4f309a0eb506-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1 
Host: lifetips365.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         65.109.33.97
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
last-modified: Tue, 20 Jul 2021 23:56:19 GMT
vary: Accept-Encoding
etag: W/"60f762a3-15db1"
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/ct-ultimate-gdpr/assets/js/cookie-list.js?ver=3.7 HTTP/1.1 
Host: lifetips365.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         65.109.33.97
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
last-modified: Tue, 06 Sep 2022 18:20:20 GMT
vary: Accept-Encoding
etag: W/"63178f64-553"
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /latest/assets/packs/apps/socialFeed-7044d878a258ac722426.js HTTP/1.1 
Host: public.powrcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.67.186.248
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 28 Sep 2022 17:48:19 GMT
cf-bgj: minify
cf-polished: origSize=2755444
etag: W/"d62853389e94452300cf7e34b06c8575"
last-modified: Mon, 26 Sep 2022 08:50:00 GMT
x-amz-id-2: kkhFJhHMHvEuajOQMFxnK9uXyJ/9wGN8mMludbYZxU59w+TZfzz2PuhM6V5tcnev2gMqlFiJlfw=
x-amz-request-id: SY7Y89QXXZ6KWMS5
x-amz-version-id: XL5kEDkoHAhHgE5gzsuxsLbP1gJuAcnz
cache-control: max-age=2073600
cf-cache-status: HIT
age: 1673
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fczP5Yra1DCqCK2YLlLZEK7Tnl0vHEN%2F72u3%2BJ%2B1aFuuJkUevFRNsi9YiFpNTb79ohmodfq6D5mBBpArHh1SAOF8JCtKQMTb6%2B%2B9a%2BF5zeidLyUzH6eVtZcHe5GMe0jd3ovjZ58%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 751e4f30ba3bb506-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /cached/29946920.json HTTP/1.1 
Host: www.powr.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: PcbVMC5D2VqyBOv3-HQvORuwH2PowMRY5s_uUqR85jEgT-YtFfNa8eUE7QUofoEmunytsbZSo0CvO4Hgz1gxKw
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.powr.io/rss-feed/u/09230ac1_1631029054
Cookie: __cflb=02DiuGiFRig1r4jzSUmjGwtG131enGU5JRAXPZX6YVnXM
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.22.51.245
HTTP/2 200 OK
content-type: application/json; charset=utf-8
                                        
date: Wed, 28 Sep 2022 17:48:20 GMT
cache-control: max-age=300, public
vary: Accept-Encoding
etag: W/"25c16492f809f6524f79cde78e331438"
x-request-id: 3e775c2c-d684-4c70-b1de-1abc1b736c0e
x-runtime: 0.030024
x-origin-instance: heroku
via: 1.1 vegur
cf-cache-status: MISS
server: cloudflare
cf-ray: 751e4f33affeb523-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /latest/assets/packs/apps-view-ee75d437b5ed512d294f.js HTTP/1.1 
Host: public.powrcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.67.186.248
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 28 Sep 2022 17:48:19 GMT
cf-bgj: minify
cf-polished: origSize=1443653
etag: W/"b9a115fcf26efc8ea384184cdc03b657"
last-modified: Wed, 28 Sep 2022 06:17:34 GMT
x-amz-id-2: aNLRgwYj3IYpajbEgRYlfdRX33fuY0LbiYugBI715gBRdguovTdDjQDTIfI2KQPATzxF7Xk9I+A=
x-amz-request-id: BN2N0M9A8N1HHPD1
x-amz-version-id: wfAAFHwxA1oCt1qGRMdXEWQ98Zo3NDT5
cache-control: max-age=2073600
cf-cache-status: HIT
age: 1231
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3dLjPYw1C37h2cg%2BjzSoAnN3NlHdrPLOwkitkfI9sJOIYe9PgqlIm4B1BXoMd038%2FVKkuLgyRGJ3bUwdOuvO7Cll%2BPxxE8rEXbpnTN3y4Kytiofn59NZyowYpv6L5H1Q6Va7k1o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 751e4f309a13b506-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/plugins/ct-ultimate-gdpr/assets/js/jquery.base64.min.js?ver=3.7 HTTP/1.1 
Host: lifetips365.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         65.109.33.97
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
last-modified: Tue, 06 Sep 2022 18:20:20 GMT
vary: Accept-Encoding
etag: W/"63178f64-6f6"
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/Enqueue%20Waypoints%20&%20Animate%20CSS/assets/js/jquery.waypoints.min.js?ver=6.0.2 HTTP/1.1 
Host: lifetips365.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         65.109.33.97
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
last-modified: Tue, 07 Dec 2021 13:50:18 GMT
vary: Accept-Encoding
etag: W/"61af669a-2344"
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3 HTTP/1.1 
Host: lifetips365.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         65.109.33.97
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
last-modified: Thu, 08 Sep 2022 09:25:12 GMT
vary: Accept-Encoding
etag: W/"6319b4f8-aab"
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /c/hotjar-3066796.js?sv=6 HTTP/1.1 
Host: static.hotjar.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.39
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
date: Wed, 28 Sep 2022 17:48:19 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=604800; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
etag: W/276e5588f6d8e26520de3266e87eff94
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: FLH--Uxf_oaqOYQlbjpD1PRUukrS814hJAxN88cD8HlwsrxWPzT21Q==
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/plugins/ct-ultimate-gdpr/assets/css/images/targeting.svg HTTP/1.1 
Host: lifetips365.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         65.109.33.97
HTTP/2 200 OK
content-type: image/svg+xml
                                        
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
last-modified: Tue, 06 Sep 2022 18:20:20 GMT
vary: Accept-Encoding
etag: W/"63178f64-103d"
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /public-assets/crypto.min.js HTTP/1.1 
Host: www.powr.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-CSRF-Token: PcbVMC5D2VqyBOv3-HQvORuwH2PowMRY5s_uUqR85jEgT-YtFfNa8eUE7QUofoEmunytsbZSo0CvO4Hgz1gxKw
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.powr.io/rss-feed/u/09230ac1_1631029054
Cookie: __cflb=02DiuGiFRig1r4jzSUmjGwtG131enGU5JRAXPZX6YVnXM; ahoy_visit=30a5e366-694e-49dd-b6e5-b64569c80aa8; ahoy_visitor=a76409aa-9ae8-440b-ad88-1987c4bc3bd8; ahoy_unique_29946920=true; _ga=GA1.2.678791377.1664387299; _gid=GA1.2.292424440.1664387299
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.22.51.245
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Wed, 28 Sep 2022 17:48:22 GMT
vary: Accept-Encoding
last-modified: Wed, 28 Sep 2022 16:56:36 GMT
cache-control: max-age=604800, public
expires: Thu, 28 Sep 2023 16:59:25 GMT
x-origin-instance: heroku
via: 1.1 vegur
cf-cache-status: HIT
age: 2714
server: cloudflare
cf-ray: 751e4f42be13b523-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/plugins/wpcf7-redirect/build/js/wpcf7r-fe.js?ver=1.1 HTTP/1.1 
Host: lifetips365.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         65.109.33.97
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
last-modified: Tue, 16 Aug 2022 06:44:32 GMT
vary: Accept-Encoding
etag: W/"62fb3cd0-1f8a"
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET / HTTP/1.1 
Host: www.lifetips365.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         65.109.33.97
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
server: nginx
date: Wed, 28 Sep 2022 17:48:18 GMT
vary: Accept-Encoding
x-powered-by: PHP/7.4.30
link: <https://lifetips365.com/wp-json/>; rel="https://api.w.org/", <https://lifetips365.com/wp-json/wp/v2/pages/2666>; rel="alternate"; type="application/json", <https://lifetips365.com/>; rel=shortlink
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/ct-ultimate-gdpr/assets/css/style.min.css?ver=3.7 HTTP/1.1 
Host: lifetips365.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         65.109.33.97
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
last-modified: Tue, 06 Sep 2022 18:20:20 GMT
vary: Accept-Encoding
etag: W/"63178f64-3b8cd"
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/ct-ultimate-gdpr/assets/css/fonts/font-awesome/css/font-awesome.min.css?ver=6.0.2 HTTP/1.1 
Host: lifetips365.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         65.109.33.97
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
last-modified: Tue, 06 Sep 2022 18:20:20 GMT
vary: Accept-Encoding
etag: W/"63178f64-7918"
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/oxygen/component-framework/vendor/aos/aos.css?ver=6.0.2 HTTP/1.1 
Host: lifetips365.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         65.109.33.97
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
last-modified: Wed, 28 Sep 2022 06:09:58 GMT
vary: Accept-Encoding
etag: W/"6333e536-65c5"
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/plugins/oxygen/component-framework/oxygen.css?ver=4.0.4 HTTP/1.1 
Host: lifetips365.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         65.109.33.97
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
last-modified: Wed, 28 Sep 2022 06:09:58 GMT
vary: Accept-Encoding
etag: W/"6333e536-4f90"
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/oxygen/component-framework/vendor/aos/aos.js?ver=1 HTTP/1.1 
Host: lifetips365.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         65.109.33.97
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
last-modified: Wed, 28 Sep 2022 06:09:58 GMT
vary: Accept-Encoding
etag: W/"6333e536-37a3"
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/plugins/ct-ultimate-gdpr/assets/css/images/statistics.svg HTTP/1.1 
Host: lifetips365.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         65.109.33.97
HTTP/2 200 OK
content-type: image/svg+xml
                                        
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
last-modified: Tue, 06 Sep 2022 18:20:20 GMT
vary: Accept-Encoding
etag: W/"63178f64-1359"
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /?xlink=css&ver=6.0.2 HTTP/1.1 
Host: www.lifetips365.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.lifetips365.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         65.109.33.97
HTTP/2 200 OK
content-type: text/css;charset=UTF-8
                                        
server: nginx
date: Wed, 28 Sep 2022 17:48:19 GMT
vary: Accept-Encoding
x-powered-by: PHP/7.4.30
link: <https://lifetips365.com/wp-json/>; rel="https://api.w.org/", <https://lifetips365.com/wp-json/wp/v2/pages/2666>; rel="alternate"; type="application/json", <https://lifetips365.com/>; rel=shortlink
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /latest/assets/packs/style_packs/ie9-overrides-1711fd60ab8e8461cd46.css HTTP/1.1 
Host: public.powrcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.powr.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.67.186.248
HTTP/2 200 OK
content-type: text/css
                                        
date: Wed, 28 Sep 2022 17:48:19 GMT
cf-bgj: minify
cf-polished: origSize=97779
etag: W/"8569d08b93b65be6f73bca7e48e87a62"
last-modified: Tue, 20 Sep 2022 11:49:05 GMT
x-amz-id-2: fk0JpHqJvic4fVoaTRQNiYX1AgU3lKGEFMajFbuAssyOoO7z9348TYuB8bQNE2p7iDvY5DOOOCU=
x-amz-request-id: 780A69FXN4PF4Q6F
x-amz-version-id: XJVESgnjA4zn0VuXSdWhf5HzZvgBa9s4
cache-control: max-age=2073600
cf-cache-status: HIT
age: 2955
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DwG%2FsBimglngX21Hq3WwhSqaqRCM7jowQ%2Bwk1t6%2BvP2VB3BZrGuuV3WPL%2FDaz5yIhwURFpPpdG0GPAmNBrHdMP7QvyZmkK%2B6znnq%2B1hKs8jBeGcn1lXSGYvndlfjWim5aD8%2BPOY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 751e4f3079e0b506-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---