coolreviewsrule.com/search/label/Marvel
216.239.34.21301 Moved Permanently 227 B URL HTTP/1.1 coolreviewsrule.com/search/label/Marvel
IP 216.239.34.21:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash c2f24406222f65682c71e7bcc563e132
53e60042dfecc5fd1b4b9c1b0ab0283a0db4a8fd
de9f3f4807af7702b72deefc62ee7eba28759bfd3fcb028f72353fe1aa06dce5
GET /search/label/Marvel HTTP/1.1
Host: coolreviewsrule.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: http://www.coolreviewsrule.com
Date: Sat, 21 Jan 2023 02:27:38 GMT
Content-Type: text/html; charset=UTF-8
Server: ghs
Content-Length: 227
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 20d267853e48ef7d476459ed67da5d97
06d1bd08efd69c0e93486d3c423fa2640f372d29
24323cd45ca2ed01c63f908233d9b2ad5bb6f63394884c45bf6abb0221d0edd6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "24323CD45CA2ED01C63F908233D9B2AD5BB6F63394884C45BF6ABB0221D0EDD6"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13630
Expires: Sat, 21 Jan 2023 06:14:48 GMT
Date: Sat, 21 Jan 2023 02:27:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b36ef73c20dffb6bc10194bbd2d0dcfa
a67a4023dc8b4944debaeb92f3ba0f1402c079a6
05a7a4d832cf9e593ca44efea309edcbd80734583bada15fda3e740612eff991
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "05A7A4D832CF9E593CA44EFEA309EDCBD80734583BADA15FDA3E740612EFF991"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4918
Expires: Sat, 21 Jan 2023 03:49:36 GMT
Date: Sat, 21 Jan 2023 02:27:38 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 21 Jan 2023 01:49:35 GMT
content-type: application/json
age: 2283
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7afaa97fbfa9baa1485c892eac8e114d
8c17c707c218e28ac14197ce8e5eef873207a732
59db16baacb452453dbf44fc2a24f25ab09c4dbaec3a9271fda84230d8f11925
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "59DB16BAACB452453DBF44FC2A24F25AB09C4DBAEC3A9271FDA84230D8F11925"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8424
Expires: Sat, 21 Jan 2023 04:48:02 GMT
Date: Sat, 21 Jan 2023 02:27:38 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: wT/9U3RnwW0NOSGra2a/F81r6ZkSimndwdITZFmxLiizC2yFLud9HrDcFl2HmQ2kkxDS+ThcvQw=
x-amz-request-id: H56J61PWQKRVSZFD
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 21 Jan 2023 02:17:50 GMT
age: 588
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 21 Jan 2023 02:27:38 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Pragma, Content-Length, Alert, Expires, ETag, Last-Modified, Backoff, Content-Type, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 21 Jan 2023 02:17:28 GMT
age: 610
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.coolreviewsrule.com/
142.250.74.147200 OK 34 kB IP 142.250.74.147:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (15690)
Hash e1adfbd1fe22ea30c3cca20c91eb4e26
5aa0fcdeb030213ea67c7fd6cc1b99c96efa10bc
bbdab752f70dae609855a4fe1443b40cf15df0c7b206d436f7250efe01d903a1
GET / HTTP/1.1
Host: www.coolreviewsrule.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
Expires: Sat, 21 Jan 2023 02:27:38 GMT
Date: Sat, 21 Jan 2023 02:27:38 GMT
Cache-Control: private, max-age=0
Last-Modified: Sun, 08 Jan 2023 19:40:54 GMT
ETag: W/"d59108327763d37bdb2d19bc9ff160dc6d1c810c0ae3440e859f4a9926dbd7fb"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 34355
Server: GSE
fonts.googleapis.com/css?family=Fjalla+One
142.250.74.74200 OK 339 B URL HTTP/1.1 fonts.googleapis.com/css?family=Fjalla+One
IP 142.250.74.74:0
Hash 4e619e8a653843b5e8960b90cda2ef0c
192224b09de6b88e3e0df502553d5a740204f872
755f5b02b84f5b3693f685d72f078ce84bff1c51d41bc12470fdbe8558bba1a9
GET /css?family=Fjalla+One HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.coolreviewsrule.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 21 Jan 2023 02:27:39 GMT
Date: Sat, 21 Jan 2023 02:27:39 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
ajax.googleapis.com/ajax/libs/jquery/1/jquery.min.js
142.250.74.106200 OK 33 kB URL HTTP/1.1 ajax.googleapis.com/ajax/libs/jquery/1/jquery.min.js
IP 142.250.74.106:0
File type ASCII text, with very long lines (32086)
Hash 430e927c980ad4079de727fa59dd93f2
891aaada9a55a91292999f6d50fd300439905982
e8728df8617340bd8c10bc8d27d3a725a48871a269c850e8598689938ec6e2ed
GET /ajax/libs/jquery/1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.coolreviewsrule.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 33434
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sun, 15 Jan 2023 12:22:49 GMT
Expires: Mon, 15 Jan 2024 12:22:49 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
Age: 482690
netdna.bootstrapcdn.com/font-awesome/4.0.3/css/font-awesome.css
104.18.10.207200 OK 4.7 kB URL HTTP/1.1 netdna.bootstrapcdn.com/font-awesome/4.0.3/css/font-awesome.css
IP 104.18.10.207:0
File type troff or preprocessor input, ASCII text, with very long lines (305)
Hash 09f17df615d193a0409fda81f54f582a
abd1f7828d7c6dc772e81d10847e06e69bfe790e
c27d9ba94138c2aa687443778b5729cc2fc446b368feccd9ac512ceaabc7e4d7
GET /font-awesome/4.0.3/css/font-awesome.css HTTP/1.1
Host: netdna.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.coolreviewsrule.com/
HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 02:27:39 GMT
Content-Type: text/css; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
CDN-PullZone: 252412
CDN-Uid: b1941f61-b576-4f40-80de-5677acb38f74
CDN-RequestCountryCode: DE
CDN-EdgeStorageId: 601, 617, 617
Last-Modified: Mon, 25 Jan 2021 22:04:53 GMT
CDN-CachedAt: 2021-08-03 04:14:00
CDN-RequestPullSuccess: True
CDN-RequestPullCode: 200
Cache-Control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
CDN-RequestId: 6358afe6e12aefed963ad27f3935d6d1
Content-Encoding: gzip
CDN-Status: 200
CDN-Cache: HIT
CF-Cache-Status: HIT
Age: 19714745
Server: cloudflare
CF-RAY: 78cc9ca9f9d7b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.coolreviewsrule.com/js/cookienotice.js
142.250.74.147200 OK 2.0 kB URL HTTP/1.1 www.coolreviewsrule.com/js/cookienotice.js
IP 142.250.74.147:0
Hash c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2
GET /js/cookienotice.js HTTP/1.1
Host: www.coolreviewsrule.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.coolreviewsrule.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/javascript
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy-Report-Only: same-origin; report-to="blogger-tech"
Report-To: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
Content-Length: 2026
Date: Sat, 21 Jan 2023 02:27:39 GMT
Expires: Sat, 28 Jan 2023 02:27:39 GMT
Cache-Control: public, max-age=604800
Last-Modified: Fri, 20 Jan 2023 22:54:18 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
ajax.googleapis.com/ajax/libs/jquery/1.7.2/jquery.min.js
142.250.74.106200 OK 95 kB URL HTTP/1.1 ajax.googleapis.com/ajax/libs/jquery/1.7.2/jquery.min.js
IP 142.250.74.106:0
File type HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32769)
Hash b8d64d0bc142b3f670cc0611b0aebcae
abcd2ba13348f178b17141b445bc99f1917d47af
47b68dce8cb6805ad5b3ea4d27af92a241f4e29a5c12a274c852e4346a0500b4
GET /ajax/libs/jquery/1.7.2/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.coolreviewsrule.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 94840
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 19 Jan 2023 06:19:05 GMT
Expires: Fri, 19 Jan 2024 06:19:05 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
Age: 158914
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 1610eb0b6af27af4a254a97ff989154a
6fca7c5954f7cb473fa14d4eb841ce1dae2ceaf2
121a3e370e2956b58d39a077d30873166c556a227c51868cd9226b7e9cf116a1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 02:27:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
resources.infolinks.com/js/infolinks_main.js
172.66.41.9200 OK 2.2 kB URL HTTP/1.1 resources.infolinks.com/js/infolinks_main.js
IP 172.66.41.9:0
File type ASCII text, with very long lines (3617)
Hash f8955886dabd6534c31f5b27ed60e31f
8cc8a0f1a2a1793b2e5b081d313c455d355fe9d8
09038c96a47cc540a500c12345ac01e455c99a3b07183800666f1e4b04790c97
GET /js/infolinks_main.js HTTP/1.1
Host: resources.infolinks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.coolreviewsrule.com/
HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 02:27:39 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 20 Jan 2023 15:54:43 GMT
ETag: W/"e22-5f2b4116adb58"
Cache-Control: max-age=3600
Expires: Sat, 21 Jan 2023 00:58:22 GMT
Via: 1.1 google
CF-Cache-Status: HIT
Age: 8957
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78cc9caa3968b4ee-OSL
Content-Encoding: gzip
z-na.amazon-adsystem.com/widgets/q?ServiceVersion=20070822&Operation=GetScript&ID=OneJS&WS=1&MarketPlace=US&source=ac
54.230.83.7301 Moved Permanently 167 B URL HTTP/1.1 z-na.amazon-adsystem.com/widgets/q?ServiceVersion=20070822&Operation=GetScript&ID=OneJS&WS=1&MarketPlace=US&source=ac
IP 54.230.83.7:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /widgets/q?ServiceVersion=20070822&Operation=GetScript&ID=OneJS&WS=1&MarketPlace=US&source=ac HTTP/1.1
Host: z-na.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.coolreviewsrule.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Sat, 21 Jan 2023 02:27:39 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://z-na.amazon-adsystem.com/widgets/q?ServiceVersion=20070822&Operation=GetScript&ID=OneJS&WS=1&MarketPlace=US&source=ac
X-Cache: Redirect from cloudfront
Via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: eN6gagZc5L1kYYXokQBF9DQy-LFYbvFSdyYh1fvHtcoJVKGPZ_BP3Q==
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bdb8a13dfce39d6e151a9ef185a772a1
037a680510f9dbce3c7cc3c0f9115fd587dbcd1d
98c8b7f269b9aad73b73fd946788ebfd7a4d7afbdd5347b56c67f73b947f5ff6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4374
Cache-Control: max-age=114730
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 02:27:39 GMT
Etag: "63ca59af-1d7"
Expires: Sun, 22 Jan 2023 10:19:49 GMT
Last-Modified: Fri, 20 Jan 2023 09:06:55 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
cdn.popcash.net/pop.js
151.139.128.10200 OK 38 kB IP 151.139.128.10:0
File type ASCII text, with very long lines (65390)
Hash 98cfe0446b61a1f2a2df62468da0202c
156362703ec16548fe52ef46832fdad94d493463
903349d17d20a9010f59b6feed6519fda179cf5606bbde8abcd58db81525b527
Analyzer Verdict Alert fortinet Malware
GET /pop.js HTTP/1.1
Host: cdn.popcash.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.coolreviewsrule.com/
HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 02:27:39 GMT
Content-Encoding: gzip
Content-Type: application/javascript
Last-Modified: Wed, 02 Nov 2022 15:55:59 GMT
Accept-Ranges: bytes
ETag: W/"6362930f-1f3e1"
Cache-Control: max-age=2592000, public
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=p3GV0C8mJYYsFZ5jILTOFPivV4YZ61dG05K5L69VVBSlod34hnCbvBXbsxrNwdGVNv6TChhVOEHNzNV0%2BNmvasKO9crjfF%2BnNavpkBq1VUFjDd2YK5z5p%2BTVmFEf"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 76814901bb4ab517-OSL
Vary: Accept-Encoding
x-sp-metadata: HS256.CKu3rZ4GEksKJDA0ZmIwMGY5LTI2MDUtNDM4Ny1iZGE5LWM1ZmUxYTU4OWJjYhDoqMnAgMj8AhoGCJubrZ4GIgw5MS45MC40Mi4xNTQokakDMAIaLAgBEiRmZjUxZjM0NC00YWNmLTQwOGMtYjM3Mi1iYmE1Yjc0OTQ5MTcYkasCIhgIAhIUY2RzMjE2LnNrMS5od2Nkbi5uZXQ=.rozOJ1Jh3NHAGZtViKdVjsINo1VpL2oUXfZXzUNLseA=
X-HW: 1674268059.cds256.sk1.h2,1674268059.cds216.sk1.c
Access-Control-Allow-Origin: *
Connection: keep-alive
Content-Length: 38289
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 1610eb0b6af27af4a254a97ff989154a
6fca7c5954f7cb473fa14d4eb841ce1dae2ceaf2
121a3e370e2956b58d39a077d30873166c556a227c51868cd9226b7e9cf116a1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 02:27:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 1610eb0b6af27af4a254a97ff989154a
6fca7c5954f7cb473fa14d4eb841ce1dae2ceaf2
121a3e370e2956b58d39a077d30873166c556a227c51868cd9226b7e9cf116a1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 02:27:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
216.58.207.233200 OK 7.8 kB URL HTTP/2 www.blogger.com/static/v1/widgets/2975350028-css_bundle_v2.css
IP 216.58.207.233:0
File type ASCII text, with very long lines (35959)
Hash 5aa2d3297bdc86bc81322aedecbb5e79
1c0a3c007e41726e167e79b70ddea76198650884
feae1fac625d0f30b5f10fa00b62df1a5600cd2178062c427e55f289b29cc630
GET /static/v1/widgets/2975350028-css_bundle_v2.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.coolreviewsrule.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 7776
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 17 Jan 2023 09:41:14 GMT
expires: Wed, 17 Jan 2024 09:41:14 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Jan 2023 21:52:27 GMT
content-type: text/css
age: 319585
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
go.mobtrks.com/notice.php?p=967510&interstitial=1
139.45.197.236404 Not Found 7 B URL HTTP/1.1 go.mobtrks.com/notice.php?p=967510&interstitial=1
IP 139.45.197.236:0
File type ASCII text, with no line terminators
Hash 3b66fb7a307f3ca29bd59b2f354055bd
d6ae6ccb37eb272d94d4a5191fa50372f4d06bba
de68e8f959bc131328db7581860711517d6ae1eb03aa047043dc7f826906e5a4
GET /notice.php?p=967510&interstitial=1 HTTP/1.1
Host: go.mobtrks.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.coolreviewsrule.com/
HTTP/1.1 404 Not Found
Server: nginx
Date: Sat, 21 Jan 2023 02:27:39 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 7
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin:
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
X-Trace-Id: 896dd60726776f697a772d20ffd65b4c
Access-Control-Expose-Headers: X-Sc
X-Sc: 4KdnrdofxFOHMlcU
Set-Cookie: scm=1; expires=Sun, 21 Jan 2024 02:27:39 GMT; secure; SameSite=None
www.blogger.com/static/v1/widgets/1535467126-widget_css_2_bundle.css
216.58.207.233200 OK 7.5 kB URL HTTP/2 www.blogger.com/static/v1/widgets/1535467126-widget_css_2_bundle.css
IP 216.58.207.233:0
File type ASCII text, with very long lines (35063), with no line terminators
Hash f3167132833424a781f5270b052f9952
39916f5321955446feb471b2c6e5167cf65c8cac
78e311131a88573cc85996e817039c6d361730a065cd3332bed576e00657a482
GET /static/v1/widgets/1535467126-widget_css_2_bundle.css HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.coolreviewsrule.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 7452
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 15 Jan 2023 18:54:03 GMT
expires: Mon, 15 Jan 2024 18:54:03 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 25 Nov 2014 14:03:24 GMT
content-type: text/css
age: 459216
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
z-na.amazon-adsystem.com/widgets/q?ServiceVersion=20070822&Operation=GetScript&ID=OneJS&WS=1&MarketPlace=US&source=ac
54.230.83.7200 OK 8.0 kB URL HTTP/2 z-na.amazon-adsystem.com/widgets/q?ServiceVersion=20070822&Operation=GetScript&ID=OneJS&WS=1&MarketPlace=US&source=ac
IP 54.230.83.7:0
File type ASCII text, with very long lines (24803), with no line terminators
Hash ba741e8c32933db553988df2110f5229
f34b558d88f16866ce35439970b0ca6f99e69c3a
c22104444937088bd66e2297995727cab532c1c0b3fed8c6e23a3f3bb6a6aab6
GET /widgets/q?ServiceVersion=20070822&Operation=GetScript&ID=OneJS&WS=1&MarketPlace=US&source=ac HTTP/1.1
Host: z-na.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.coolreviewsrule.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
content-length: 7999
date: Fri, 20 Jan 2023 08:54:41 GMT
server: Server
content-encoding: gzip
charset: UTF-8
access-control-allow-origin: *
cache-control: public,max-age=86400,s-maxage=86400,no-transform
expires: Sat, 21 Jan 2023 08:54:41 GMT
pragma: Public
x-cache: Hit from cloudfront
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: j-M8xY82DYq_Oac2OBfEduct3k1a37cxximJPPXGxsqVHF-u-1nrlg==
age: 63178
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/4196832948-widgets.js
216.58.207.233200 OK 56 kB URL HTTP/2 www.blogger.com/static/v1/widgets/4196832948-widgets.js
IP 216.58.207.233:0
File type ASCII text, with very long lines (2221)
Hash 24f533b2cc89b4264c224d433a37718a
fc4848c3b411e8fdc97831e20c7ebcbf735e636a
aa805bed551a6ac1fa4886b1ee634633bdec1de952fbf94cd81a805ef702a395
GET /static/v1/widgets/4196832948-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.coolreviewsrule.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56454
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 18 Jan 2023 02:15:20 GMT
expires: Thu, 18 Jan 2024 02:15:20 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 17 Jan 2023 17:54:44 GMT
content-type: text/javascript
age: 259939
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
4.bp.blogspot.com/-HzxM-epScr0/UVCqBaw_ClI/AAAAAAAAAKk/bckosIHCllE/s72-c/Selene+walking-Underworld+awaikening.jpg
142.250.74.161200 OK 3.6 kB URL HTTP/1.1 4.bp.blogspot.com/-HzxM-epScr0/UVCqBaw_ClI/AAAAAAAAAKk/bckosIHCllE/s72-c/Selene+walking-Underworld+awaikening.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google, copyright=\302\251 2011 Screen Gems, Inc. All Rights Reserved.**ALL IMAGES ARE PROPERTY OF SONY PICTURES ENTERTAINMENT INC. FOR PROMOTIONAL US], baseline, precision 8, 72x72, components 3\012- data
Hash 9667aa50d57534de6cfd557f99c5bd96
6f0647a69bb4d7ffe09629e4fbdfb90b481fa02a
e3a62ce5cd1b84244ac349f463f4508e0fe63367b950326bf32fcf3ed27b2ab2
GET /-HzxM-epScr0/UVCqBaw_ClI/AAAAAAAAAKk/bckosIHCllE/s72-c/Selene+walking-Underworld+awaikening.jpg HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.coolreviewsrule.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "vaa"
Expires: Sun, 22 Jan 2023 02:27:39 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Selene walking-Underworld awaikening.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 21 Jan 2023 02:27:39 GMT
Server: fife
Content-Length: 3596
X-XSS-Protection: 0
3.bp.blogspot.com/-ltyYh4ysBHI/U04MKlHc6pI/AAAAAAAADQo/PFxXaGZu9PQ/w200-h150-c/no-image.png
142.250.74.161200 OK 4.5 kB URL HTTP/1.1 3.bp.blogspot.com/-ltyYh4ysBHI/U04MKlHc6pI/AAAAAAAADQo/PFxXaGZu9PQ/w200-h150-c/no-image.png
IP 142.250.74.161:0
File type PNG image data, 200 x 150, 8-bit/color RGB, non-interlaced\012- data
Hash 0117521fc029ba1f2ab9dfb5e33fbcfa
84b08b504293c1d1830fe52e62d4489ac03a24ba
95e7f92a3929888e8dfb074b5424765d52ced4765cb44858182f6c8485ac5e39
GET /-ltyYh4ysBHI/U04MKlHc6pI/AAAAAAAADQo/PFxXaGZu9PQ/w200-h150-c/no-image.png HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.coolreviewsrule.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="no-image.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 4511
X-XSS-Protection: 0
Date: Sat, 21 Jan 2023 00:45:54 GMT
Expires: Sat, 14 Jan 2023 23:32:14 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 6105
ETag: "vd0b"
Content-Type: image/png
3.bp.blogspot.com/-mbte2AbcMg4/Ucszsh2xLwI/AAAAAAAAAUU/oSplTFYW1rs/s72-c/Deanerys+Targaryen+with+a+white+stalion.jpg
142.250.74.161200 OK 2.8 kB URL HTTP/1.1 3.bp.blogspot.com/-mbte2AbcMg4/Ucszsh2xLwI/AAAAAAAAAUU/oSplTFYW1rs/s72-c/Deanerys+Targaryen+with+a+white+stalion.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash bd04df3cd04fcadbcefcdf9680e6ea12
32d42117b9573d6bb7ce5046cc193d7bac3a4369
19ea4f7574a4874ad8e7f85768fdeafa26455987919397420932beef1d360c19
GET /-mbte2AbcMg4/Ucszsh2xLwI/AAAAAAAAAUU/oSplTFYW1rs/s72-c/Deanerys+Targaryen+with+a+white+stalion.jpg HTTP/1.1
Host: 3.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.coolreviewsrule.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
ETag: "v146"
Expires: Sun, 22 Jan 2023 02:27:39 GMT
Cache-Control: public, max-age=86400, no-transform
Content-Disposition: inline;filename="Deanerys Targaryen with a white stalion.jpg"
Content-Type: image/jpeg
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Date: Sat, 21 Jan 2023 02:27:39 GMT
Server: fife
Content-Length: 2816
X-XSS-Protection: 0
1.bp.blogspot.com/-SEAqOfNFPFo/VB2UGTmnzUI/AAAAAAAAGEU/CrC89XzKqTg/s72-c/house%2Bstark%2Bsigil.jpg
142.250.74.161200 OK 2.9 kB URL HTTP/1.1 1.bp.blogspot.com/-SEAqOfNFPFo/VB2UGTmnzUI/AAAAAAAAGEU/CrC89XzKqTg/s72-c/house%2Bstark%2Bsigil.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 72x72, components 3\012- data
Hash d52199c1ab21112b8a6071ef8638a6ff
2dce3a433a4e63f656489652c774398ba585ec18
1e19eb4581cd2b993b57245bde8f8962d89581ce6a8283a908e3d6eef5aeafa5
GET /-SEAqOfNFPFo/VB2UGTmnzUI/AAAAAAAAGEU/CrC89XzKqTg/s72-c/house%2Bstark%2Bsigil.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.coolreviewsrule.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="house stark sigil.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 2863
X-XSS-Protection: 0
Date: Sat, 21 Jan 2023 02:27:39 GMT
Expires: Thu, 19 Jan 2023 07:56:27 GMT
Cache-Control: public, max-age=86400, no-transform
ETag: "v1846"
Content-Type: image/jpeg
Age: 0
upload.wikimedia.org/wikipedia/commons/thumb/6/6c/Star_Wars_Logo.svg/350px-Star_Wars_Logo.svg.png
91.198.174.208301 TLS Redirect 0 B URL HTTP/1.1 upload.wikimedia.org/wikipedia/commons/thumb/6/6c/Star_Wars_Logo.svg/350px-Star_Wars_Logo.svg.png
IP 91.198.174.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wikipedia/commons/thumb/6/6c/Star_Wars_Logo.svg/350px-Star_Wars_Logo.svg.png HTTP/1.1
Host: upload.wikimedia.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.coolreviewsrule.com/
HTTP/1.1 301 TLS Redirect
Date: Sat, 21 Jan 2023 02:27:39 GMT
Server: Varnish
X-Varnish: 492577194
X-Cache: cp3057 int
X-Cache-Status: int-front
Server-Timing: cache;desc="int-front", host;desc="cp3057"
Permissions-Policy: interest-cohort=()
X-Client-IP: 91.90.42.154
Location: https://upload.wikimedia.org/wikipedia/commons/thumb/6/6c/Star_Wars_Logo.svg/350px-Star_Wars_Logo.svg.png
Content-Length: 0
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ce79c93b65e0a573d9392ab97191c430
dc3eed67d60ee0e2d82c4f257ae21fee5c0d2133
d50917be4e2ba3a373d6245824d806d6fd77c8ea5787a10dac53955667da3a50
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3610
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 02:27:39 GMT
Last-Modified: Sat, 21 Jan 2023 01:27:31 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 1610eb0b6af27af4a254a97ff989154a
6fca7c5954f7cb473fa14d4eb841ce1dae2ceaf2
121a3e370e2956b58d39a077d30873166c556a227c51868cd9226b7e9cf116a1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 02:27:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
1.bp.blogspot.com/-VwqGmTI9eaE/U6WXaSyO7EI/AAAAAAAAAlQ/MxL2pg4C8jY/s1600/13.jpg
142.250.74.161200 OK 43 kB URL HTTP/1.1 1.bp.blogspot.com/-VwqGmTI9eaE/U6WXaSyO7EI/AAAAAAAAAlQ/MxL2pg4C8jY/s1600/13.jpg
IP 142.250.74.161:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 1600x1200, components 3\012- data
Hash 73448e2cecab7a6596ed598c7c45eb83
63a2cfb7cc349422853ec388dafa32fe3bbd339a
dac71745fa85fbdbd83cff2c1e4b543fb62a90b79979ab1c6eaac1dc76854bd0
GET /-VwqGmTI9eaE/U6WXaSyO7EI/AAAAAAAAAlQ/MxL2pg4C8jY/s1600/13.jpg HTTP/1.1
Host: 1.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.coolreviewsrule.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="13.jpg"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 43301
X-XSS-Protection: 0
Date: Fri, 20 Jan 2023 22:39:42 GMT
Expires: Wed, 18 Jan 2023 12:46:25 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 13677
ETag: "v2f23"
Content-Type: image/jpeg
4.bp.blogspot.com/-R8OKVUsis3s/UgZEksy0V1I/AAAAAAAAAT4/QtN9sBHMZis/s1600/icon-search.png
142.250.74.161200 OK 953 B URL HTTP/1.1 4.bp.blogspot.com/-R8OKVUsis3s/UgZEksy0V1I/AAAAAAAAAT4/QtN9sBHMZis/s1600/icon-search.png
IP 142.250.74.161:0
File type PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash 0eea26f07712e739f05d4af4ff7f679f
31c2536de1ca08a5c538ce8369cc70a895e2b7c4
8ba06da9e3b2565103c9ba09aa56fe85809aa49d218de985fbae4381b3c75d5e
GET /-R8OKVUsis3s/UgZEksy0V1I/AAAAAAAAAT4/QtN9sBHMZis/s1600/icon-search.png HTTP/1.1
Host: 4.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.coolreviewsrule.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="icon-search.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 953
X-XSS-Protection: 0
Date: Sat, 21 Jan 2023 00:35:02 GMT
Expires: Tue, 17 Jan 2023 18:24:01 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 6757
ETag: "v13f"
Content-Type: image/png
www.paypalobjects.com/en_US/i/scr/pixel.gif
151.101.66.133200 OK 42 B URL HTTP/2 www.paypalobjects.com/en_US/i/scr/pixel.gif
IP 151.101.66.133:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash edea81b5233a30f7357cb50884370e4a
51a5c1a9d7328dd1651e0b9c98771c16f8c9d833
0c1ce4dd3afaa97d8627ecebc2e255fe5c1b3c2038f6961a86d10f0381056cc7
GET /en_US/i/scr/pixel.gif HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.coolreviewsrule.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public,max-age=3600
content-type: image/gif
dc: ccg11-origin-www-1.paypal.com
etag: "dNSbNMYiK1Q98dwxkre+GOK5+qX2pefyT9A/BaBsoeM"
fastly-io-info: ifsz=43 idim=1x1 ifmt=gif ofsz=42 odim=1x1 ofmt=gif
fastly-stats: io=1
paypal-debug-id: 3b332fe3ea371
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 21 Jan 2023 02:27:39 GMT
x-served-by: cache-sjc10082-SJC, cache-bma1631-BMA
x-cache: HIT, HIT
x-cache-hits: 14, 21268
x-timer: S1674268059.394020,VS0,VE0
x-content-type-options: nosniff
strict-transport-security: max-age=31557600
content-length: 42
X-Firefox-Spdy: h2
2.bp.blogspot.com/-YxxeRcqP6UI/U6V7A_pfmnI/AAAAAAAAAik/NyzEC4z7POQ/s1600/menu-bg2.png
142.250.74.161200 OK 212 B URL HTTP/1.1 2.bp.blogspot.com/-YxxeRcqP6UI/U6V7A_pfmnI/AAAAAAAAAik/NyzEC4z7POQ/s1600/menu-bg2.png
IP 142.250.74.161:0
File type PNG image data, 1 x 46, 8-bit/color RGBA, non-interlaced\012- data
Hash 75b563e0718238e764d51f4922475a0d
21005e983570e1488cf7ec3f2a294dbe7976ac34
3a4467c23bf5f1f8813610c8a19261f0cb9b17bdb37da40f7e5a2465735cd54d
GET /-YxxeRcqP6UI/U6V7A_pfmnI/AAAAAAAAAik/NyzEC4z7POQ/s1600/menu-bg2.png HTTP/1.1
Host: 2.bp.blogspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.coolreviewsrule.com/
HTTP/1.1 200 OK
Access-Control-Expose-Headers: Content-Length
Content-Disposition: inline;filename="menu-bg2.png"
Vary: Origin
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Server: fife
Content-Length: 212
X-XSS-Protection: 0
Date: Fri, 20 Jan 2023 22:39:42 GMT
Expires: Tue, 17 Jan 2023 18:58:13 GMT
Cache-Control: public, max-age=86400, no-transform
Age: 13677
ETag: "v22a"
Content-Type: image/png
fonts.gstatic.com/s/fjallaone/v13/Yq6R-LCAWCX3-6Ky7FAFrOF6kg.woff2
216.58.207.227200 OK 17 kB URL HTTP/1.1 fonts.gstatic.com/s/fjallaone/v13/Yq6R-LCAWCX3-6Ky7FAFrOF6kg.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 16588, version 1.0\012- data
Hash 6a93e73463e9f1b7c7b41c52c93843c5
48d5ed2bcc9c9c5c4182ae8957e5cef207cdfcbc
54eb546ba2203d87ad9a38ffdb92fdfed9733e08239dbea692a1ca059a287480
GET /s/fjallaone/v13/Yq6R-LCAWCX3-6Ky7FAFrOF6kg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.coolreviewsrule.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 16588
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 16 Jan 2023 18:26:10 GMT
Expires: Tue, 16 Jan 2024 18:26:10 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Thu, 21 Apr 2022 16:38:59 GMT
Content-Type: font/woff2
Age: 374489
netdna.bootstrapcdn.com/font-awesome/4.0.3/fonts/fontawesome-webfont.woff?v=4.0.3
104.18.10.207200 OK 44 kB URL HTTP/1.1 netdna.bootstrapcdn.com/font-awesome/4.0.3/fonts/fontawesome-webfont.woff?v=4.0.3
IP 104.18.10.207:0
File type Web Open Font Format, TrueType, length 44432, version 1.0\012- data
Hash 3293616ec0c605c7c2db25829a0a509e
04c3bf56d87a0828935bd6b4aee859995f321693
0fd28fece9ebd606b8b071460ebd3fc2ed7bc7a66ef91c8834f11dfacab4a849
GET /font-awesome/4.0.3/fonts/fontawesome-webfont.woff?v=4.0.3 HTTP/1.1
Host: netdna.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.coolreviewsrule.com
Connection: keep-alive
Referer: http://netdna.bootstrapcdn.com/
HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 02:27:39 GMT
Content-Type: font/woff
Content-Length: 44432
Connection: keep-alive
CDN-PullZone: 252412
CDN-Uid: b1941f61-b576-4f40-80de-5677acb38f74
CDN-RequestCountryCode: DE
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=31919000
ETag: "3293616ec0c605c7c2db25829a0a509e"
Last-Modified: Mon, 25 Jan 2021 22:04:53 GMT
CDN-CachedAt: 01/04/2023 08:53:03
CDN-ProxyVer: 1.03
CDN-RequestPullCode: 200
CDN-RequestPullSuccess: True
CDN-EdgeStorageId: 1076
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
X-Content-Type-Options: nosniff
CDN-Status: 200
CDN-RequestId: b5f263cbdd83131730dbf3fac80b6652
CDN-Cache: HIT
CF-Cache-Status: HIT
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78cc9cab4e1fb518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9b062fb1460b046fa44eef6d4d8234f2
b60c1c2ce6607922f9eb82c1b618ba9c5230ed38
df40ecc004af87ad06a92232c5ff502dbbf5b022735ff58b4b9254a30a1a9302
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "DF40ECC004AF87AD06A92232C5FF502DBBF5B022735FF58B4B9254A30A1A9302"
Last-Modified: Fri, 20 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 21 Jan 2023 08:27:39 GMT
Date: Sat, 21 Jan 2023 02:27:39 GMT
Connection: keep-alive
reportage.wp-theme.pro/wp-content/themes/reportage/images/social/googleplus.png
91.195.241.232301 Moved Permanently 166 B URL HTTP/1.1 reportage.wp-theme.pro/wp-content/themes/reportage/images/social/googleplus.png
IP 91.195.241.232:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3ea1c8d079b38532a6e01a96216ba5e2
598d3ff91d3e252f1e13df8cf0348b270ff2da3f
87a9323ac85ce28867d5d7ce590c8f29b8d1a999961fca71bb33adef48683691
GET /wp-content/themes/reportage/images/social/googleplus.png HTTP/1.1
Host: reportage.wp-theme.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.coolreviewsrule.com/
HTTP/1.1 301 Moved Permanently
content-length: 166
content-type: text/html
date: Sat, 21 Jan 2023 02:27:39 GMT
location: https://sedo.com/search/details/?domain=reportage.wp-theme.pro&campaignId=329145&origin=sales_lander_15
x-sedo-request-id: 8d67276bf5dd4b83ef36b46c7052fdb6
reportage.wp-theme.pro/wp-content/themes/reportage/images/social/facebook.png
91.195.241.232301 Moved Permanently 166 B URL HTTP/1.1 reportage.wp-theme.pro/wp-content/themes/reportage/images/social/facebook.png
IP 91.195.241.232:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3ea1c8d079b38532a6e01a96216ba5e2
598d3ff91d3e252f1e13df8cf0348b270ff2da3f
87a9323ac85ce28867d5d7ce590c8f29b8d1a999961fca71bb33adef48683691
GET /wp-content/themes/reportage/images/social/facebook.png HTTP/1.1
Host: reportage.wp-theme.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.coolreviewsrule.com/
HTTP/1.1 301 Moved Permanently
content-length: 166
content-type: text/html
date: Sat, 21 Jan 2023 02:27:39 GMT
location: https://sedo.com/search/details/?domain=reportage.wp-theme.pro&campaignId=329145&origin=sales_lander_15
x-sedo-request-id: 49c001260162f7a1cd61b746871b2e3e
reportage.wp-theme.pro/wp-content/themes/reportage/images/social/twitter.png
91.195.241.232301 Moved Permanently 166 B URL HTTP/1.1 reportage.wp-theme.pro/wp-content/themes/reportage/images/social/twitter.png
IP 91.195.241.232:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3ea1c8d079b38532a6e01a96216ba5e2
598d3ff91d3e252f1e13df8cf0348b270ff2da3f
87a9323ac85ce28867d5d7ce590c8f29b8d1a999961fca71bb33adef48683691
GET /wp-content/themes/reportage/images/social/twitter.png HTTP/1.1
Host: reportage.wp-theme.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.coolreviewsrule.com/
HTTP/1.1 301 Moved Permanently
content-length: 166
content-type: text/html
date: Sat, 21 Jan 2023 02:27:39 GMT
location: https://sedo.com/search/details/?domain=reportage.wp-theme.pro&campaignId=329145&origin=sales_lander_15
x-sedo-request-id: d62f8601f18c3d65e8bd965b59d1ce4b
push.services.mozilla.com/
35.163.38.240101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.163.38.240:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: pCYH0UkZRYhV9SK/pjsumQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: sUE9OTa6s1+cWq1r9+O9LB0IFdU=
upload.wikimedia.org/wikipedia/commons/thumb/6/6c/Star_Wars_Logo.svg/350px-Star_Wars_Logo.svg.png
91.198.174.208200 OK 16 kB URL HTTP/2 upload.wikimedia.org/wikipedia/commons/thumb/6/6c/Star_Wars_Logo.svg/350px-Star_Wars_Logo.svg.png
IP 91.198.174.208:0
File type PNG image data, 350 x 211, 8-bit/color RGB, non-interlaced\012- data
Hash f666c070859a0f70882698d4afaf44e4
5d133af44a591dd85a6beee7382153e6b769b1a6
b1a536de3650cd6a39fd13e15a0361c849a373dcb696cbc07a0a9e5bdacd3403
GET /wikipedia/commons/thumb/6/6c/Star_Wars_Logo.svg/350px-Star_Wars_Logo.svg.png HTTP/1.1
Host: upload.wikimedia.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.coolreviewsrule.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 20 Jan 2023 09:57:14 GMT
content-type: image/png
content-length: 15753
content-disposition: inline;filename*=UTF-8''Star_Wars_Logo.svg.png
etag: f666c070859a0f70882698d4afaf44e4
last-modified: Fri, 30 Dec 2022 22:02:56 GMT
server: ATS/9.1.3
age: 59424
x-cache: cp3053 hit, cp3061 hit/12
x-cache-status: hit-front
server-timing: cache;desc="hit-front", host;desc="cp3061"
strict-transport-security: max-age=106384710; includeSubDomains; preload
report-to: { "group": "wm_nel", "max_age": 86400, "endpoints": [{ "url": "https://intake-logging.wikimedia.org/v1/events?stream=w3c.reportingapi.network_error&schema_uri=/w3c/reportingapi/network_error/1.0.0" }] }
nel: { "report_to": "wm_nel", "max_age": 86400, "failure_fraction": 0.05, "success_fraction": 0.0}
accept-ch: Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version
permissions-policy: interest-cohort=(),ch-ua-arch=(self "intake-analytics.wikimedia.org"),ch-ua-bitness=(self "intake-analytics.wikimedia.org"),ch-ua-full-version-list=(self "intake-analytics.wikimedia.org"),ch-ua-model=(self "intake-analytics.wikimedia.org"),ch-ua-platform-version=(self "intake-analytics.wikimedia.org")
x-client-ip: 91.90.42.154
access-control-allow-origin: *
access-control-expose-headers: Age, Date, Content-Length, Content-Range, X-Content-Duration, X-Cache
timing-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d69935446ffe86685a18add76431ef05
3fadf1e68a81a5c90e83b08323057ddf70d3eea3
73ab9fa44ae7b36d288a25205c73bf959835dd230268ab2c19b06aa492a0498f
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6897
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 02:27:39 GMT
Last-Modified: Sat, 21 Jan 2023 00:32:42 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d69935446ffe86685a18add76431ef05
3fadf1e68a81a5c90e83b08323057ddf70d3eea3
73ab9fa44ae7b36d288a25205c73bf959835dd230268ab2c19b06aa492a0498f
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5252
Cache-Control: max-age=167475
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 02:27:39 GMT
Etag: "63cb244a-1d7"
Expires: Mon, 23 Jan 2023 00:58:54 GMT
Last-Modified: Fri, 20 Jan 2023 23:31:22 GMT
Server: ECS (amb/6BAC)
X-Cache: HIT
Content-Length: 471
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d69935446ffe86685a18add76431ef05
3fadf1e68a81a5c90e83b08323057ddf70d3eea3
73ab9fa44ae7b36d288a25205c73bf959835dd230268ab2c19b06aa492a0498f
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4325
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 02:27:39 GMT
Last-Modified: Sat, 21 Jan 2023 01:15:34 GMT
Server: ECS (amb/6BAB)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 89055b1f42119cc1e7a33ce2fc364e76
20550fd56bf49a8aa30e18a923be22cda3f2ba7b
7698e9bb59f46011dbd3b6b74fc5784ac60d64c9d8403e8fe3aa18a60c17393d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7698E9BB59F46011DBD3B6B74FC5784AC60D64C9D8403E8FE3AA18A60C17393D"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2160
Expires: Sat, 21 Jan 2023 03:03:40 GMT
Date: Sat, 21 Jan 2023 02:27:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 89055b1f42119cc1e7a33ce2fc364e76
20550fd56bf49a8aa30e18a923be22cda3f2ba7b
7698e9bb59f46011dbd3b6b74fc5784ac60d64c9d8403e8fe3aa18a60c17393d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7698E9BB59F46011DBD3B6B74FC5784AC60D64C9D8403E8FE3AA18A60C17393D"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2160
Expires: Sat, 21 Jan 2023 03:03:40 GMT
Date: Sat, 21 Jan 2023 02:27:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 89055b1f42119cc1e7a33ce2fc364e76
20550fd56bf49a8aa30e18a923be22cda3f2ba7b
7698e9bb59f46011dbd3b6b74fc5784ac60d64c9d8403e8fe3aa18a60c17393d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7698E9BB59F46011DBD3B6B74FC5784AC60D64C9D8403E8FE3AA18A60C17393D"
Last-Modified: Wed, 18 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2160
Expires: Sat, 21 Jan 2023 03:03:40 GMT
Date: Sat, 21 Jan 2023 02:27:40 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b7e829d-d4bc-4fa0-b5e5-e4527e48fd42.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b7e829d-d4bc-4fa0-b5e5-e4527e48fd42.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4483cb695fef2fe82f38a65e18ea1fd7
ea95504fc5be0259c8c3a39f47f8fcb322bca88d
807a120b964ee7ec7c83c5d943d29cea5df2171291ad1b99de9ef4df7e7e9046
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b7e829d-d4bc-4fa0-b5e5-e4527e48fd42.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9657
x-amzn-requestid: 63c51fc8-3cd1-486b-960b-91d0d4b14dbd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: exbnMFUvoAMFvYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c3a62d-3f30f1cb5bc13bf812d3cf71;Sampled=0
x-amzn-remapped-date: Sun, 15 Jan 2023 07:07:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 34RyiiWTD7qtrgZHxL7KpjUkCETug9eJ0TvPh6b2qGiLWLcZnmT3wg==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Fri, 20 Jan 2023 16:05:34 GMT
age: 37326
etag: "ea95504fc5be0259c8c3a39f47f8fcb322bca88d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F831c16ae-85e5-4da2-b22e-f840afcd3678.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F831c16ae-85e5-4da2-b22e-f840afcd3678.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5a7ab95a69ddfa5014258076e66a6e19
1a54cca86788536002d6d18c5180ccf265ba1169
09348afd6055b26b5dba6f8f6ef763d52e6e040c039c6f763d64f71b8ca08d51
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F831c16ae-85e5-4da2-b22e-f840afcd3678.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10988
x-amzn-requestid: 67c03c6c-3896-4890-a75b-ecd7c1c1a4e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3foHG8tIAMF3XQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c61300-2de17e5b0225f9427c197bc5;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:16 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: cxuHpm9vR0_DvHdEtR5p5eRRNAFgCrOTnak0RsH3OeCccehhurKhJA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 20 Jan 2023 03:24:48 GMT
age: 82972
etag: "1a54cca86788536002d6d18c5180ccf265ba1169"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
sedo.com/search/details/?domain=reportage.wp-theme.pro&campaignId=329145&origin=sales_lander_15
104.16.5.91200 OK 12 kB URL HTTP/2 sedo.com/search/details/?domain=reportage.wp-theme.pro&campaignId=329145&origin=sales_lander_15
IP 104.16.5.91:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1553)
Hash 46dbbec6d634e1e4cff0f980d48e9b5b
d88498e624df97f2579893032e0d9bb40fe3d523
04b04312907085615d8c58ef97e8a37943ae032ebfa710282063d6eacef35d3c
GET /search/details/?domain=reportage.wp-theme.pro&campaignId=329145&origin=sales_lander_15 HTTP/1.1
Host: sedo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.coolreviewsrule.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 21 Jan 2023 02:27:39 GMT
content-type: text/html
vary: Accept-Encoding
x-sedo-request-id: ID-5496df797c-5gjsg-cd88a98574591081edc774373dc80e8d
x-sedo-campaign-id: 329145
x-frame-options: sameorigin
last-modified: Tue, 04 Oct 2022 06:47:22 GMT
cf-cache-status: DYNAMIC
set-cookie: campaignId=329145; Max-Age=86400; Path=/; Secure; HttpOnly
__cf_bm=3Pe0tpsbkbJyz2FPb0.cqr62R0ISOjF0ZJtdEiuUhig-1674268059-0-Abxuo3w6s7G5j3d/w4K6ZiDvQL0VlHKEXBL1n5O8tzgz/LjGL/r+xfVuhIP3/4OvyrnEvVqdfgRTUiKgAaRIrdo=; path=/; expires=Sat, 21-Jan-23 02:57:39 GMT; domain=.sedo.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 78cc9cad48580b65-OSL
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07b5b95d-798c-4d73-bd79-8e3c092be9b0.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07b5b95d-798c-4d73-bd79-8e3c092be9b0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f4b8e05930ca3ed03e20300b36819b1a
90645bb11f3788a9a03ad1756de541fea594fb15
0530c3fd68291836e997842e3e4b5bbef6086e89686f786dbda059143a5a8b5d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07b5b95d-798c-4d73-bd79-8e3c092be9b0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5081
x-amzn-requestid: 56788104-29ed-4ff9-b9c5-58b83e53d169
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: etktlF50oAMFwNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c21b23-1dafe7e12dbeee0e3318ccdc;Sampled=0
x-amzn-remapped-date: Sat, 14 Jan 2023 03:01:55 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 886cYViC-eBqAPpavmVYF0Jxqhsk8VQc8O1KPpTGM1yFpjrs-IxFVw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Fri, 20 Jan 2023 10:16:08 GMT
age: 58292
etag: "90645bb11f3788a9a03ad1756de541fea594fb15"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F96cce020-7bd3-4d07-a265-a0ff76f15c24.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F96cce020-7bd3-4d07-a265-a0ff76f15c24.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash eff1c7571054ef3a3535dc3cf0756d38
54ccc9d66c916cab0d7b70135e0331d83f57a2d1
6d2f74f27c2622882bf06980569a8a6cf6402e2ec800cf9987c86a3779d1b023
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F96cce020-7bd3-4d07-a265-a0ff76f15c24.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10300
x-amzn-requestid: ba8a3ff1-2c2c-4f83-8524-20a003f25ca2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: etkvHGbOoAMF18g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c21b2d-0cc97cf827da6b61341da50c;Sampled=0
x-amzn-remapped-date: Sat, 14 Jan 2023 03:02:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Ga1TpKKwjTPqwgCqEIag_BOzFo-cKW7WqQkzIJWrPq6Z3CNouaEjnA==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 20 Jan 2023 21:40:03 GMT
age: 17257
etag: "54ccc9d66c916cab0d7b70135e0331d83f57a2d1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4f85f34-177a-42e1-8337-e98ac6995842.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4f85f34-177a-42e1-8337-e98ac6995842.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b48f53e84a3ec564b35cf6b0754d09bb
dc7ad580f90e8af4349f409fb0302a79c672ff99
37d8f9a37eed22705123275ac7a36ff34bcdea1b2faaa7108a7112afe5a8201f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb4f85f34-177a-42e1-8337-e98ac6995842.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6068
x-amzn-requestid: 8962c77a-e852-426f-b37a-024546e0a2ee
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fD5VKG_zoAMFgZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb08ed-368af491496d024a0142b0e4;Sampled=0
x-amzn-remapped-date: Fri, 20 Jan 2023 21:34:37 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: GVOdNzEzcPvkVkDOfnHOI1RPDfuJ_gUmoqYFkge2Qdp87B0wdOA6Bw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 20 Jan 2023 21:40:03 GMT
age: 17257
etag: "dc7ad580f90e8af4349f409fb0302a79c672ff99"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
assets.pinterest.com/js/pinit.js
23.38.200.197200 OK 290 B URL HTTP/1.1 assets.pinterest.com/js/pinit.js
IP 23.38.200.197:0
File type ASCII text, with very long lines (361), with no line terminators
Hash 82bfd941d2c9b3b9e0650a27c9d11737
2eb742a101e79067c9df4d15b518bde85e8eeb2e
3f6e9b85ad3ee165ec6c9587d98d2a43588f7ba0f63d31ad019a0d4cbfd3f3d1
GET /js/pinit.js HTTP/1.1
Host: assets.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.coolreviewsrule.com/
HTTP/1.1 200 OK
ETag: "82bfd941d2c9b3b9e0650a27c9d11737"
Content-Encoding: gzip
Accept-Ranges: bytes
Content-Type: application/javascript; charset=utf-8
Content-Length: 290
Cache-Control: max-age=251
Connection: keep-alive
Vary: Accept-Encoding, Origin
X-CDN: akamai
Access-Control-Max-Age: 86400
Access-Control-Expose-Headers: X-CDN
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
connect.facebook.net/en_US/all.js
31.13.72.12301 Moved Permanently 0 B URL HTTP/1.1 connect.facebook.net/en_US/all.js
IP 31.13.72.12:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /en_US/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.coolreviewsrule.com/
HTTP/1.1 301 Moved Permanently
Location: https://connect.facebook.net/en_US/all.js
Content-Type: text/plain
Server: proxygen-bolt
Date: Sat, 21 Jan 2023 02:27:41 GMT
Connection: keep-alive
Content-Length: 0
www.google-analytics.com/analytics.js
142.250.74.14200 OK 20 kB URL HTTP/1.1 www.google-analytics.com/analytics.js
IP 142.250.74.14:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.coolreviewsrule.com/
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 20085
Date: Sat, 21 Jan 2023 02:16:43 GMT
Expires: Sat, 21 Jan 2023 04:16:43 GMT
Cache-Control: public, max-age=7200
Age: 658
Last-Modified: Tue, 10 Jan 2023 21:29:14 GMT
Content-Type: text/javascript
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f76685480cc0a396abec56b2bacff3d5
6fc14273e16deb512063bcde6d936d3f331c1b28
96318b41cd34b22f88213f7f246780d3aeb476536c22566ef3f450aac93d1271
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5785
Cache-Control: max-age=87713
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 02:27:41 GMT
Etag: "63c9eaa5-1d7"
Expires: Sun, 22 Jan 2023 02:49:34 GMT
Last-Modified: Fri, 20 Jan 2023 01:13:09 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/all.js
31.13.72.12200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/all.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (1957)
Hash 95f71acca7c7a6aaa31b8998e7ba3bc3
621a0db2e32821828460b7f2ce3fb14d52a83d2c
4f8143580928ec066a13715044e65f305923a0b358108c1d250044fd29c24379
GET /en_US/all.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.coolreviewsrule.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 145dff2605994ced2cb3a43ef5b2d560
etag: "eaed1a8970cf5071c67547aeaa782554"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sat, 21 Jan 2023 02:45:01 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: lfcazKfHpqqjG4mY57o7ww==
x-fb-debug: qXvgZ07m+Fuq60qP1JazJKKo4nn3QHyfLIAdvDCRw47pG/dj4TWAsBXI/FcIbeGeVzWZaYNiVje2ddBMkOjRtw==
content-length: 1687
x-fb-trip-id: 1904183273
date: Sat, 21 Jan 2023 02:27:41 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash bccd1fe14275d3bb56418297e502cd10
cdf19d2a4099ada369589fc7aa7021f9b30302aa
801e8b57b77806d98fe23b8421a8fdba9f1138827cc320cb5dcc986161aa7ca4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 02:27:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f76685480cc0a396abec56b2bacff3d5
6fc14273e16deb512063bcde6d936d3f331c1b28
96318b41cd34b22f88213f7f246780d3aeb476536c22566ef3f450aac93d1271
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5785
Cache-Control: max-age=87713
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 02:27:41 GMT
Etag: "63c9eaa5-1d7"
Expires: Sun, 22 Jan 2023 02:49:34 GMT
Last-Modified: Fri, 20 Jan 2023 01:13:09 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/j/collect?v=1&_v=j99&a=1812048113&t=pageview&_s=1&dl=http%3A%2F%2Fwww.coolreviewsrule.com%2F&ul=en-us&de=UTF-8&dt=Cool%20Reviews%20Rule&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=915556780&gjid=1118253313&cid=673937563.1674268060&tid=UA-31256100-2&_gid=1342977465.1674268060&_r=1&_slc=1&z=1330637983
142.250.74.14200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=1812048113&t=pageview&_s=1&dl=http%3A%2F%2Fwww.coolreviewsrule.com%2F&ul=en-us&de=UTF-8&dt=Cool%20Reviews%20Rule&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=915556780&gjid=1118253313&cid=673937563.1674268060&tid=UA-31256100-2&_gid=1342977465.1674268060&_r=1&_slc=1&z=1330637983
IP 142.250.74.14:0
File type ASCII text, with no line terminators
Hash 38684612f0c6bb6dfa16da92f4a6878f
6fe62d0dd7db314b7f9bb945672f078e01d27f0f
a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f
POST /j/collect?v=1&_v=j99&a=1812048113&t=pageview&_s=1&dl=http%3A%2F%2Fwww.coolreviewsrule.com%2F&ul=en-us&de=UTF-8&dt=Cool%20Reviews%20Rule&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=915556780&gjid=1118253313&cid=673937563.1674268060&tid=UA-31256100-2&_gid=1342977465.1674268060&_r=1&_slc=1&z=1330637983 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://www.coolreviewsrule.com
Connection: keep-alive
Referer: http://www.coolreviewsrule.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://www.coolreviewsrule.com
date: Sat, 21 Jan 2023 02:27:41 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.coolreviewsrule.com/favicon.ico
142.250.74.147200 OK 604 B URL HTTP/1.1 www.coolreviewsrule.com/favicon.ico
IP 142.250.74.147:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 2e4cdd8d786f8af63283e92f2856bab3
f3bff4848cb52bd7490cdcb13b73ae6ba6a030d4
a982f8d009b31f08ce3619d2dfe74632eff4d6026078b014d77919ef63b6266c
GET /favicon.ico HTTP/1.1
Host: www.coolreviewsrule.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.coolreviewsrule.com/
HTTP/1.1 200 OK
Content-Type: image/x-icon; charset=UTF-8
Expires: Sat, 21 Jan 2023 02:27:41 GMT
Date: Sat, 21 Jan 2023 02:27:41 GMT
Cache-Control: private, max-age=86400
Last-Modified: Sun, 08 Jan 2023 19:40:54 GMT
ETag: W/"d59108327763d37bdb2d19bc9ff160dc6d1c810c0ae3440e859f4a9926dbd7fb"
Content-Encoding: gzip
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Length: 604
Server: GSE
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash bccd1fe14275d3bb56418297e502cd10
cdf19d2a4099ada369589fc7aa7021f9b30302aa
801e8b57b77806d98fe23b8421a8fdba9f1138827cc320cb5dcc986161aa7ca4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 21 Jan 2023 02:27:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
go.adversal.com/do?id=1517710
3.216.179.245200 OK 2.8 kB URL HTTP/1.1 go.adversal.com/do?id=1517710
IP 3.216.179.245:0
File type ASCII text, with very long lines (2769)
Hash 2511febeda1a4d6a3380f089e9618e9b
9696a42fd36571beac59a372bd3b6de303d6b1be
088f9bacb16803a6a49735626622d16ada1c199419db1a084f5966f41b6d9ce3
GET /do?id=1517710 HTTP/1.1
Host: go.adversal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.coolreviewsrule.com/
HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 02:27:41 GMT
Server: Apache
Last-Modified: Fri, 31 Aug 2018 15:03:06 GMT
ETag: "2c009f-ad2-574bc7d27fe80"
Accept-Ranges: bytes
Content-Length: 2770
Cache-Control: no-cache, max-age=0, s-maxage=0, must-revalidate, proxy-revalidate
Pragma: no-cache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Connection: close
Content-Type: text/plain; charset=UTF-8
assets.pinterest.com/images/pidgets/pinit_fg_en_rect_gray_28.png
23.38.200.197200 OK 1.4 kB URL HTTP/1.1 assets.pinterest.com/images/pidgets/pinit_fg_en_rect_gray_28.png
IP 23.38.200.197:0
File type PNG image data, 56 x 28, 8-bit/color RGBA, non-interlaced\012- data
Hash 68587135cb07ea273b1ac0456ecc4dae
c1c29225e136eaa52e9c9fa643d282d79d4f24c4
554898655b1a25273e51355c241ddf4612b7d92b7c7fc99ec9d15afca6fe4beb
GET /images/pidgets/pinit_fg_en_rect_gray_28.png HTTP/1.1
Host: assets.pinterest.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.coolreviewsrule.com/
HTTP/1.1 200 OK
ETag: "68587135cb07ea273b1ac0456ecc4dae"
Accept-Ranges: bytes
Content-Type: image/png
Content-Length: 1422
Cache-Control: max-age=86400
Connection: keep-alive
Vary: Accept-Encoding, Origin
X-CDN: akamai
Access-Control-Max-Age: 86400
Access-Control-Expose-Headers: X-CDN
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
go.adversal.com/do?id=1517710
3.216.179.245200 OK 2.8 kB URL HTTP/1.1 go.adversal.com/do?id=1517710
IP 3.216.179.245:0
File type ASCII text, with very long lines (2769)
Hash 2511febeda1a4d6a3380f089e9618e9b
9696a42fd36571beac59a372bd3b6de303d6b1be
088f9bacb16803a6a49735626622d16ada1c199419db1a084f5966f41b6d9ce3
GET /do?id=1517710 HTTP/1.1
Host: go.adversal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.coolreviewsrule.com/
HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 02:27:41 GMT
Server: Apache
Last-Modified: Fri, 31 Aug 2018 15:03:06 GMT
ETag: "2c009f-ad2-574bc7d27fe80"
Accept-Ranges: bytes
Content-Length: 2770
Cache-Control: no-cache, max-age=0, s-maxage=0, must-revalidate, proxy-revalidate
Pragma: no-cache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Connection: close
Content-Type: text/plain; charset=UTF-8
aax-us-east.amazon-adsystem.com/x/getad?src=330&c=100&sz=160x600&apiVersion=2.0&pj=%7B%22height%22%3A%22600%22%2C%22placement%22%3A%22XNZA5YPVN4UA6IZA%22%2C%22tracking_id%22%3A%22comotvshanbo-20%22%2C%22fallback_products%22%3A%22%22%2C%22width%22%3A%22160%22%2C%22ad_type%22%3A%22contextual%22%2C%22emphasize_categories%22%3A%2216261631%2C%201000%2C%20130%2C%20133140011%2C%20468642%22%2C%22marketplace%22%3A%22amazon%22%2C%22region%22%3A%22US%22%2C%22linkid%22%3A%22XNZA5YPVN4UA6IZA%22%2C%22viewerCountry%22%3A%22NO%22%2C%22textlinks%22%3A%22%22%2C%22debug%22%3A%22false%22%2C%22acap_publisherId%22%3A%22comotvshanbo-20%22%2C%22acap_categoryConstraints%22%3A%5B%7B%22category%22%3A%2216261631%22%2C%22emphasis%22%3A%22Strong%22%2C%22type%22%3A%22AmazonBrowse%22%7D%2C%7B%22category%22%3A%221000%22%2C%22emphasis%22%3A%22Strong%22%2C%22type%22%3A%22AmazonBrowse%22%7D%2C%7B%22category%22%3A%22130%22%2C%22emphasis%22%3A%22Strong%22%2C%22type%22%3A%22AmazonBrowse%22%7D%2C%7B%22category%22%3A%22133140011%22%2C%22emphasis%22%3A%22Strong%22%2C%22type%22%3A%22AmazonBrowse%22%7D%2C%7B%22category%22%3A%22468642%22%2C%22emphasis%22%3A%22Strong%22%2C%22type%22%3A%22AmazonBrowse%22%7D%5D%2C%22slotNum%22%3A0%7D&u=http%3A%2F%2Fwww.coolreviewsrule.com%2F&jscb=amzn_assoc_jsonp_callback_XNZA5YPVN4UA6IZA_0
52.46.154.240200 OK 2.4 kB URL HTTP/1.1 aax-us-east.amazon-adsystem.com/x/getad?src=330&c=100&sz=160x600&apiVersion=2.0&pj=%7B%22height%22%3A%22600%22%2C%22placement%22%3A%22XNZA5YPVN4UA6IZA%22%2C%22tracking_id%22%3A%22comotvshanbo-20%22%2C%22fallback_products%22%3A%22%22%2C%22width%22%3A%22160%22%2C%22ad_type%22%3A%22contextual%22%2C%22emphasize_categories%22%3A%2216261631%2C%201000%2C%20130%2C%20133140011%2C%20468642%22%2C%22marketplace%22%3A%22amazon%22%2C%22region%22%3A%22US%22%2C%22linkid%22%3A%22XNZA5YPVN4UA6IZA%22%2C%22viewerCountry%22%3A%22NO%22%2C%22textlinks%22%3A%22%22%2C%22debug%22%3A%22false%22%2C%22acap_publisherId%22%3A%22comotvshanbo-20%22%2C%22acap_categoryConstraints%22%3A%5B%7B%22category%22%3A%2216261631%22%2C%22emphasis%22%3A%22Strong%22%2C%22type%22%3A%22AmazonBrowse%22%7D%2C%7B%22category%22%3A%221000%22%2C%22emphasis%22%3A%22Strong%22%2C%22type%22%3A%22AmazonBrowse%22%7D%2C%7B%22category%22%3A%22130%22%2C%22emphasis%22%3A%22Strong%22%2C%22type%22%3A%22AmazonBrowse%22%7D%2C%7B%22category%22%3A%22133140011%22%2C%22emphasis%22%3A%22Strong%22%2C%22type%22%3A%22AmazonBrowse%22%7D%2C%7B%22category%22%3A%22468642%22%2C%22emphasis%22%3A%22Strong%22%2C%22type%22%3A%22AmazonBrowse%22%7D%5D%2C%22slotNum%22%3A0%7D&u=http%3A%2F%2Fwww.coolreviewsrule.com%2F&jscb=amzn_assoc_jsonp_callback_XNZA5YPVN4UA6IZA_0
IP 52.46.154.240:0
File type HTML document, ASCII text, with very long lines (6280)
Hash c451cc37eb9a92c1e7784254f09c36c2
eb1acb394267661518b52820cbad46f2c8855a5d
7a05a05aa21de25efaf2db9961e3c73770724a00f3b15faa601fc4953787d641
GET /x/getad?src=330&c=100&sz=160x600&apiVersion=2.0&pj=%7B%22height%22%3A%22600%22%2C%22placement%22%3A%22XNZA5YPVN4UA6IZA%22%2C%22tracking_id%22%3A%22comotvshanbo-20%22%2C%22fallback_products%22%3A%22%22%2C%22width%22%3A%22160%22%2C%22ad_type%22%3A%22contextual%22%2C%22emphasize_categories%22%3A%2216261631%2C%201000%2C%20130%2C%20133140011%2C%20468642%22%2C%22marketplace%22%3A%22amazon%22%2C%22region%22%3A%22US%22%2C%22linkid%22%3A%22XNZA5YPVN4UA6IZA%22%2C%22viewerCountry%22%3A%22NO%22%2C%22textlinks%22%3A%22%22%2C%22debug%22%3A%22false%22%2C%22acap_publisherId%22%3A%22comotvshanbo-20%22%2C%22acap_categoryConstraints%22%3A%5B%7B%22category%22%3A%2216261631%22%2C%22emphasis%22%3A%22Strong%22%2C%22type%22%3A%22AmazonBrowse%22%7D%2C%7B%22category%22%3A%221000%22%2C%22emphasis%22%3A%22Strong%22%2C%22type%22%3A%22AmazonBrowse%22%7D%2C%7B%22category%22%3A%22130%22%2C%22emphasis%22%3A%22Strong%22%2C%22type%22%3A%22AmazonBrowse%22%7D%2C%7B%22category%22%3A%22133140011%22%2C%22emphasis%22%3A%22Strong%22%2C%22type%22%3A%22AmazonBrowse%22%7D%2C%7B%22category%22%3A%22468642%22%2C%22emphasis%22%3A%22Strong%22%2C%22type%22%3A%22AmazonBrowse%22%7D%5D%2C%22slotNum%22%3A0%7D&u=http%3A%2F%2Fwww.coolreviewsrule.com%2F&jscb=amzn_assoc_jsonp_callback_XNZA5YPVN4UA6IZA_0 HTTP/1.1
Host: aax-us-east.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.coolreviewsrule.com/
HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 02:27:41 GMT
Server: Server
Content-Type: text/javascript;charset=UTF-8
Set-Cookie: ad-id=AzhGhWEEZU7VvhwZJLhcpmU; Domain=.amazon-adsystem.com; Expires=Sun, 01-Oct-2023 02:27:41 GMT; Path=/; Secure; HttpOnly; SameSite=None
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
x-amz-rid: 04A1Z8838H7Y07KJ251C
Content-Length: 2406
ws-na.amazon-adsystem.com/widgets/q?ServiceVersion=20070822&Operation=GetAdHtml&OneJS=1&placement=XNZA5YPVN4UA6IZA®ion=US&marketplace=amazon&width=160&height=600&linkid=XNZA5YPVN4UA6IZA&ad_type=contextual&tracking_id=comotvshanbo-20&slotNum=0&asins=&recType=
52.94.230.46404 Not Found 2.4 kB URL HTTP/1.1 ws-na.amazon-adsystem.com/widgets/q?ServiceVersion=20070822&Operation=GetAdHtml&OneJS=1&placement=XNZA5YPVN4UA6IZA®ion=US&marketplace=amazon&width=160&height=600&linkid=XNZA5YPVN4UA6IZA&ad_type=contextual&tracking_id=comotvshanbo-20&slotNum=0&asins=&recType=
IP 52.94.230.46:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e3df3b6962a3834d77ede57390e342cd
d33bcfb66808c42eeb18b5c30060f78e4878dda7
9125abf03b7fb3fc8acfa7f9ca13d72b95d5a6f42f012905bec02dd2ed37aeac
GET /widgets/q?ServiceVersion=20070822&Operation=GetAdHtml&OneJS=1&placement=XNZA5YPVN4UA6IZA®ion=US&marketplace=amazon&width=160&height=600&linkid=XNZA5YPVN4UA6IZA&ad_type=contextual&tracking_id=comotvshanbo-20&slotNum=0&asins=&recType= HTTP/1.1
Host: ws-na.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.coolreviewsrule.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 404 Not Found
Date: Sat, 21 Jan 2023 02:27:41 GMT
Server: Server
Last-Modified: Wed, 30 Jun 2021 08:31:24 GMT
ETag: "936-5c5f78c3daf00"
Accept-Ranges: bytes
Content-Length: 2358
Vary: User-Agent
nnCoection: close
Content-Type: text/html
g-images.amazon.com/images/G/01/associates/network/amzn.gif
54.230.82.142200 OK 6.3 kB URL HTTP/1.1 g-images.amazon.com/images/G/01/associates/network/amzn.gif
IP 54.230.82.142:0
File type GIF image data, version 89a, 258 x 74\012- data
Hash 22249fc20088a6f2d8687e2f0110122d
90ab4d1d3847527944a24b061de9dbb6ab90cb98
3af20d2a89c668a1e7f4f464570dce04b3f9d93f6d8c93fb69c63cd6ebfd9914
GET /images/G/01/associates/network/amzn.gif HTTP/1.1
Host: g-images.amazon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ws-na.amazon-adsystem.com/
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 6255
Connection: keep-alive
Server: Server
X-Amz-Ir-Id: dec3ce28-df3b-4223-b0f3-31de0d40c4da
Surrogate-Key: x-cache-801 /images/G/01/associates/network/amzn
Timing-Allow-Origin: https://www.amazon.com
Edge-Cache-Tag: x-cache-801,/images/G/01/associates/network/amzn
Access-Control-Allow-Origin: *
Last-Modified: Fri, 05 Sep 2014 13:24:18 GMT
X-Nginx-Cache-Status: HIT
Accept-Ranges: bytes
Date: Fri, 20 Jan 2023 15:42:50 GMT
Expires: Sat, 21 Jan 2023 05:57:36 GMT
Cache-Control: max-age=86400,public
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
Age: 38772
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: bTQXtvUKXkqeiKqNns0TnXQbzBVVpwdjFJckybPKTgmLfDH-6G5oNQ==
connect.facebook.net/en_US/all.js?hash=5cd0b5ca8d562755fe89884f3c1455f0
31.13.72.12200 OK 88 kB URL HTTP/2 connect.facebook.net/en_US/all.js?hash=5cd0b5ca8d562755fe89884f3c1455f0
IP 31.13.72.12:0
File type ASCII text, with very long lines (18605)
Hash 5b70bd199270574b65ed3a99694411a8
f9f64802a23985e8ed25b026201715f538be4d21
feb78144789978b8925a1574184e549860d056157ee74af1d796ac54dc31d9f2
GET /en_US/all.js?hash=5cd0b5ca8d562755fe89884f3c1455f0 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.coolreviewsrule.com
Connection: keep-alive
Referer: http://www.coolreviewsrule.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: f93840f1bcbc91f0a41cf0ae851f8e8e
etag: "bfb30f6bb30409bf6742d8dfcc2ff9d6"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sat, 20 Jan 2024 21:52:51 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: W3C9GZJwV0tl7TqZaUQRqA==
x-fb-debug: dlJ4cGT9ya15H0AFoJdfiymches4jji6OgSeotqe/5yRJaBhTGkMJVriJpZ9Xg0DFpsTbB1BuorxwhFSrVj+aA==
priority: u=3,i
content-length: 88275
x-fb-trip-id: 1904183273
date: Sat, 21 Jan 2023 02:27:42 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/x/oauth/status?client_id=1553088044949966&input_token&origin=1&redirect_uri=http%3A%2F%2Fwww.coolreviewsrule.com%2F&sdk=joey&wants_cookie_data=true
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/x/oauth/status?client_id=1553088044949966&input_token&origin=1&redirect_uri=http%3A%2F%2Fwww.coolreviewsrule.com%2F&sdk=joey&wants_cookie_data=true
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /x/oauth/status?client_id=1553088044949966&input_token&origin=1&redirect_uri=http%3A%2F%2Fwww.coolreviewsrule.com%2F&sdk=joey&wants_cookie_data=true HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.coolreviewsrule.com/
Origin: http://www.coolreviewsrule.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
access-control-expose-headers: fb-s
access-control-allow-credentials: true
access-control-allow-origin: http://www.coolreviewsrule.com
fb-s: unknown
fb-error-description: "This endpoint may only be called from an HTTPS Origin."
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-fb-rlafr: 0
document-policy: force-load-at-top
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
strict-transport-security: max-age=15552000; preload
x-fb-debug: SHAYmxUVST4Ssv3gSDsFMmEFOBEjypowDDsajed8aag7JA0V0zPsVGu0Z+uoNU835F8fWfTdnKPh075aq3Yg3w==
content-length: 0
date: Sat, 21 Jan 2023 02:27:42 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
go.adversal.com/as?2
3.216.179.245200 OK 81 kB IP 3.216.179.245:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 53531c3910226c72203b0681866bb5fb
4524a8c52d4dada794b6ce5bc39960547b1fba4f
7e4b969d476ed15ccf203e9bc28036eb0d84ad35196a87e8f48d781c5444807f
GET /as?2 HTTP/1.1
Host: go.adversal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.coolreviewsrule.com/
HTTP/1.1 200 OK
Date: Sat, 21 Jan 2023 02:27:42 GMT
Server: Apache
Last-Modified: Thu, 10 Sep 2020 15:27:10 GMT
ETag: "2c0093-13aab-5aef733b130af"
Accept-Ranges: bytes
Content-Length: 80555
Cache-Control: no-cache, max-age=0, s-maxage=0, must-revalidate, proxy-revalidate
Pragma: no-cache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Connection: close
Content-Type: text/plain; charset=UTF-8