www.pressuhtfn.xyz/
104.21.70.188200 OK 5.3 kB IP 104.21.70.188:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash c2e0516424011213df71803378c84a9c
eb056cffce9b75435be5fb7343d9153caad1ec56
3e064963fa9af0309d18b21ace389fdd697477637e586169d2356ec1764b1040
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: www.pressuhtfn.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 23:50:14 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: PHPSESSID=3a2mddkkaug4kj13fiqmrgdc65; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=N%2FYwxcLHHP2YSEB1Uy1uHgND6z1DT9AqntOrW3QoP8grL0Q9IMwQCy7SfD7OqWDKGb%2FMMtqobb9RGC%2BoZw31NfuJY3jMj%2FxyEUxQgEDh3J5oWomwk%2Bx9fitE2DK1kruvrlVY%2BH4%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75624c536b510b65-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 282f6e1328452c1cb41f6a6272fff757
20b9ff1b5f4f81b645769bd4b4cf7bf7dfc16262
6a8070ebe51259cb11db68cca2c81f3c7408fad481d8c14cc1c38912442c63f4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A8070EBE51259CB11DB68CCA2C81F3C7408FAD481D8C14CC1C38912442C63F4"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6593
Expires: Fri, 07 Oct 2022 01:40:07 GMT
Date: Thu, 06 Oct 2022 23:50:14 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
54.230.111.118200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 54.230.111.118:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=259200
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 05 Oct 2022 15:47:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: rgo5Dsa7Do0UypOB19_5QM-DeMyHUI4AQhR4sEdbxUlFf8PP2QAExg==
Age: 115376
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4ab7d8709d334de0e46dcb86aabfbff1
f221138a8ad9d0bfa3c054370dcdb363a67dc310
b91d37f606eaf448b9c7dfc05566a11de004ce44503409e1a776288ee2622805
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B91D37F606EAF448B9C7DFC05566A11DE004CE44503409E1A776288EE2622805"
Last-Modified: Wed, 05 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2374
Expires: Fri, 07 Oct 2022 00:29:48 GMT
Date: Thu, 06 Oct 2022 23:50:14 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: iVo7O4S4X0N7NPCu56cgH00SZjGNU8vbO3L8fdE9voRyapcZUPBcB9t/8SiaQG2SjIo87bxBabDUwpAUH4LhdA==
x-amz-request-id: W4QZWNYXXWF890DC
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 06 Oct 2022 23:30:58 GMT
age: 1156
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
www.pressuhtfn.xyz/libs/intl-tel-input-master/build/css/intlTelInput.css
104.21.70.188200 OK 3.2 kB URL HTTP/1.1 www.pressuhtfn.xyz/libs/intl-tel-input-master/build/css/intlTelInput.css
IP 104.21.70.188:0
Hash 3e7c55b45c8ba2220ee8b1343d1e0550
7e773820f890b4fa70f3e523ab22dd7ef0045399
df7db6ec4a5f4196dd4e65e37070abb48e722fc4a01ba9344cf4449b10b324c6
Analyzer Verdict Alert quad9 Sinkholed
GET /libs/intl-tel-input-master/build/css/intlTelInput.css HTTP/1.1
Host: www.pressuhtfn.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pressuhtfn.xyz/
Cookie: PHPSESSID=3a2mddkkaug4kj13fiqmrgdc65
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 23:50:14 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 16 Sep 2022 11:37:09 GMT
Vary: Accept-Encoding
ETag: W/"63245fe5-62a6"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 36199
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wygMo8Njl7XtxEvHLVBFyM6S8qlbwFwTp9upCB8E9KKQIx0jMOmihwVbYL8Ci%2FVCZRR3rTiDevhQvNKmpUBlbn0yW9xO7eZwpWzSzA45mednKXzyrXcCzoMkrP4Lbzhs%2B16brP0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75624c55fc490b65-OSL
alt-svc: h2=":443"; ma=60
www.pressuhtfn.xyz/css/quiz.css
104.21.70.188200 OK 3.8 kB URL HTTP/1.1 www.pressuhtfn.xyz/css/quiz.css
IP 104.21.70.188:0
Hash cf0e73fb07648b743e0035ed74550249
67d0f3089b6e39949e36204856b8d7377f69c9e8
60a78b0c2683900cf61a70287b771575f512b142ca9b9c6fb2cac68244ecdd30
Analyzer Verdict Alert quad9 Sinkholed
GET /css/quiz.css HTTP/1.1
Host: www.pressuhtfn.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pressuhtfn.xyz/
Cookie: PHPSESSID=3a2mddkkaug4kj13fiqmrgdc65
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 23:50:14 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 16 Sep 2022 11:37:27 GMT
Vary: Accept-Encoding
ETag: W/"63245ff7-5346"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 36188
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2B2nzkYAtfTLuGCqHdAGTJ%2BKhgbDu8m8iCarGbfHiw9SdxdcwATpsPZJPsZEPcHvBHKrIzXETjla5XMY%2FT4lyKuXvyxRtZCNBaPyPRVsxp1b0ifqcxLmcu4qYyRe4qMqXR9o%2FpAM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75624c55ff2bb500-OSL
alt-svc: h2=":443"; ma=60
www.pressuhtfn.xyz/css/question.css
104.21.70.188200 OK 330 B URL HTTP/1.1 www.pressuhtfn.xyz/css/question.css
IP 104.21.70.188:0
File type ASCII text, with CRLF line terminators
Hash c7377846474e478c12acdc5b5d77e170
762bc21ce5dcc30ae9bf6c47cd9a8f5efd7431b4
11052c5a21d15c4e92b9ecbbf0daeff96c3a6a0562a543b363a1ebe218666b15
Analyzer Verdict Alert quad9 Sinkholed
GET /css/question.css HTTP/1.1
Host: www.pressuhtfn.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pressuhtfn.xyz/
Cookie: PHPSESSID=3a2mddkkaug4kj13fiqmrgdc65
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 23:50:14 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 16 Sep 2022 11:37:26 GMT
Vary: Accept-Encoding
ETag: W/"63245ff6-404"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 36240
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yUJANgPaSp%2Fc5QVXI2wTBed6P1HZzAC9FWQkq7k5MQf9vTuty6jRTndfTEWRDvZ7WHqz2TOaLuPr0jAQGKcbqgRrFkBz0QsWKYZn7sM9YRLcGCoUFqg75YqZQgnIhhww2giLaRA%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75624c55ff6e0b02-OSL
alt-svc: h2=":443"; ma=60
www.pressuhtfn.xyz/css/media.css
104.21.70.188200 OK 774 B URL HTTP/1.1 www.pressuhtfn.xyz/css/media.css
IP 104.21.70.188:0
Hash 46d5010c7925d9e8410eb804fdf60c6b
270e801b933978ca8ab1017993b6e57f7fd8aea6
c992c7420ffea314957fdc53a7da637ea48e5420647d5f5e6ed12690fb2a5684
Analyzer Verdict Alert quad9 Sinkholed
GET /css/media.css HTTP/1.1
Host: www.pressuhtfn.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pressuhtfn.xyz/
Cookie: PHPSESSID=3a2mddkkaug4kj13fiqmrgdc65
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 23:50:14 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 16 Sep 2022 11:37:26 GMT
Vary: Accept-Encoding
ETag: W/"63245ff6-b33"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 36195
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qvL%2BZuqRPfTecXeB1ZeFULA9mnegozu6sCbjz84ClGyRlsYdH97oLegS2bvPdLVN3AP%2BJ7rioLluyOOR3DKRbQVp1%2F9aIXu278Mgc0B%2BxSiEZAudaUDF%2FVFbm9FsMW2Fqm%2FSKJI%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75624c55ff92b4ff-OSL
alt-svc: h2=":443"; ma=60
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 06 Oct 2022 23:50:14 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.pressuhtfn.xyz/libs/intl-tel-input-master/build/js/intlTelInput.min.js
104.21.70.188200 OK 11 kB URL HTTP/1.1 www.pressuhtfn.xyz/libs/intl-tel-input-master/build/js/intlTelInput.min.js
IP 104.21.70.188:0
File type Unicode text, UTF-8 text, with very long lines (26775)
Hash ce88ec1b8e4dd782d8505e7e799a671f
523a404c1912652f15ffbf8f46e7af495be9c2d7
f4653413b9a45e261cdfeb44f689f8cbedf6d69b7a52357ac630454dd9eb24c7
Analyzer Verdict Alert quad9 Sinkholed
GET /libs/intl-tel-input-master/build/js/intlTelInput.min.js HTTP/1.1
Host: www.pressuhtfn.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pressuhtfn.xyz/
Cookie: PHPSESSID=3a2mddkkaug4kj13fiqmrgdc65
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 23:50:14 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 16 Sep 2022 11:37:12 GMT
Vary: Accept-Encoding
ETag: W/"63245fe8-6f6b"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 0
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pl9TWTW3Vxu746Co9WkP4Ap9V9dEGIh5bMS3DvpXSUGeiR2q9hkRZheD6BJY4YVThUlUH%2B2HoG%2Bg4EtKM1Kyt%2FbFjnYLh3bs%2B66U5fiyWwGCa1eWVjv47QZMjKrjVfm0ZVbbuXw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75624c561f9bb4ff-OSL
alt-svc: h2=":443"; ma=60
www.pressuhtfn.xyz/js/quiz2.js
104.21.70.188200 OK 1.9 kB URL HTTP/1.1 www.pressuhtfn.xyz/js/quiz2.js
IP 104.21.70.188:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 2727daa78e24d8b1252dae213f06a76f
6afb047598ff21467e672c9b38ba71276800cf6e
b6d0fc77b822d5d0cd2e48be70e605008f6bbf0cf52e981164297fc7c899bad8
Analyzer Verdict Alert quad9 Sinkholed
GET /js/quiz2.js HTTP/1.1
Host: www.pressuhtfn.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pressuhtfn.xyz/
Cookie: PHPSESSID=3a2mddkkaug4kj13fiqmrgdc65
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 23:50:14 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 16 Sep 2022 11:37:19 GMT
Vary: Accept-Encoding
ETag: W/"63245fef-1aca"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 0
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dOp8ndvK0LpdtMX0qD1BOxiWopRVqQhwIx9i%2BCl%2FmMBpXbJ18jPR%2BU%2By0rFBfJhfTOS3kTKufNQoVVNc809XdMCV3ivttaj%2BiVYPhBlv0ghn4Td37C8F5rkbnInZ7EDpth1troQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75624c561b961bfa-OSL
alt-svc: h2=":443"; ma=60
cdnjs.cloudflare.com/ajax/libs/animate.css/4.1.1/animate.min.css
104.17.24.14200 OK 4.2 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/animate.css/4.1.1/animate.min.css
IP 104.17.24.14:0
File type ASCII text, with very long lines (65348)
Hash eefc9abe5bc10d658a2393a70d052566
dd49deafcd3ebe1306cda0b843f2da265f8a90e1
6011c33e447455e96e1d4926b0e15ca399eb993163a8e5ee0c523947396d66c3
GET /ajax/libs/animate.css/4.1.1/animate.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pressuhtfn.xyz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 23:50:14 GMT
content-type: text/css; charset=utf-8
content-length: 4216
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5f5628a2-11846"
last-modified: Mon, 07 Sep 2020 12:33:38 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 3732425
expires: Tue, 26 Sep 2023 23:50:14 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ex32cajTmPH%2B8WYcZ82L2V3q2bY0XQRZ23Rk%2B1T38y7DiU0xOdnfk583e8ylPagdgRzJhx1IWM08eUKE2SKuySVpapNa%2BrtZisFz%2FbXCmgBZnZLterEwh4RM6oJl4IUhEs1xuQFW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 75624c564b63b52d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.pressuhtfn.xyz/css/style.css
104.21.70.188200 OK 893 B URL HTTP/1.1 www.pressuhtfn.xyz/css/style.css
IP 104.21.70.188:0
Hash ac0e3d7f97831581968cfae691bc3173
a13c160a2d7fbed9e8aa855d37c3802b45581aa9
8828bd35c9af55aeba881d72aca2936c15491adae5848a5e34c9f7ea8e48da45
Analyzer Verdict Alert quad9 Sinkholed
GET /css/style.css HTTP/1.1
Host: www.pressuhtfn.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pressuhtfn.xyz/
Cookie: PHPSESSID=3a2mddkkaug4kj13fiqmrgdc65
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 23:50:14 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 16 Sep 2022 11:37:26 GMT
Vary: Accept-Encoding
ETag: W/"63245ff6-a25"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 0
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EokSAbHq8%2F99nhw11f27RXAdHNixaOKrue%2BfAD2vtAuoxp2uAgdZuhO4Jw9vkW9zQincDyp%2BhmMWEC0aQ8zv50vAPldMCje9k86QJLtcD4l0ei2ZgN2zIQfzzcSCmbzXVP45z40%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75624c55f8d3b50c-OSL
alt-svc: h2=":443"; ma=60
www.pressuhtfn.xyz/libs/jquery.maskedinput.min.js
104.21.70.188200 OK 2.4 kB URL HTTP/1.1 www.pressuhtfn.xyz/libs/jquery.maskedinput.min.js
IP 104.21.70.188:0
File type ASCII text, with very long lines (327)
Hash fa65b0a7717e9eb7a360173cde164870
66e33c4ae08a56bae415fe41fe8a393a5c633acd
b15d0d5ea8b2a69165ef818e4d0528bf10aadddd7d8cea916fd408bb5e643347
Analyzer Verdict Alert quad9 Sinkholed
GET /libs/jquery.maskedinput.min.js HTTP/1.1
Host: www.pressuhtfn.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pressuhtfn.xyz/
Cookie: PHPSESSID=3a2mddkkaug4kj13fiqmrgdc65
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 23:50:14 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 16 Sep 2022 11:36:36 GMT
Vary: Accept-Encoding
ETag: W/"63245fc4-2161"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 0
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O1DRErvR2Lw2XAET1lSi9TodQIJVKOdvCYEmvgSReybFN3uJr0NxL2wM5GE2W8jnR8OMgUmyoKK8e54jiDTiIzUJFVPu%2FhqKTPNSyep%2FiGUwP1bPbfAbolYNqw3vFQKIxRZJVVk%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75624c561c510b65-OSL
alt-svc: h2=":443"; ma=60
www.pressuhtfn.xyz/libs/intl-tel-input-master/build/js/intlTelInput-jquery.min.js
104.21.70.188200 OK 11 kB URL HTTP/1.1 www.pressuhtfn.xyz/libs/intl-tel-input-master/build/js/intlTelInput-jquery.min.js
IP 104.21.70.188:0
File type Unicode text, UTF-8 text, with very long lines (26836)
Hash 8ce4efebe93d3e7a1c228da8196790b9
9019afd796c151a56a7decd7505c89f97b3124d7
2eba53b71c1045675f5146c64ab6899f1671bb9098b147531e783b85a6095896
Analyzer Verdict Alert quad9 Sinkholed
GET /libs/intl-tel-input-master/build/js/intlTelInput-jquery.min.js HTTP/1.1
Host: www.pressuhtfn.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pressuhtfn.xyz/
Cookie: PHPSESSID=3a2mddkkaug4kj13fiqmrgdc65
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 23:50:14 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 16 Sep 2022 11:37:12 GMT
Vary: Accept-Encoding
ETag: W/"63245fe8-7140"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 0
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DE7QA4mxCAQjS9Cg60Qoub8Ao7LT%2Bq43LmsuMAJU%2BzypuTZR%2FcHY%2BIW9isvwmb1d6f%2FVoh9oMZdNHwXB0dq3uutBSxW4ONt8xGfhXFMrE3B9aHu3UPAkCOKrteey4QQzasEFnOw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75624c561f37b500-OSL
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 18e0e019cd697bb16806d8f00408a319
60ceb13c31595e6cf9bb6800657e4593a1fbd670
7cb0778c80be637b67a5d198ca180a76bbfa4c32e502a0fa472a4c6946ffb56e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 23:50:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.pressuhtfn.xyz/libs/intl-tel-input-master/build/js/utils.js
104.21.70.188200 OK 55 kB URL HTTP/1.1 www.pressuhtfn.xyz/libs/intl-tel-input-master/build/js/utils.js
IP 104.21.70.188:0
File type ASCII text, with very long lines (1505)
Hash 3ce9d069e3f1de9ddd6a3c873c1d6ee8
34f368bb55bc2b3efc3773b8893797fb604d7ef0
d4fef22e18139db7c86178f4ecc177b8299bf63e7f0b8d7ac93a5e9eb8a8865c
Analyzer Verdict Alert quad9 Sinkholed
GET /libs/intl-tel-input-master/build/js/utils.js HTTP/1.1
Host: www.pressuhtfn.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pressuhtfn.xyz/
Cookie: PHPSESSID=3a2mddkkaug4kj13fiqmrgdc65
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 23:50:14 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 16 Sep 2022 11:37:13 GMT
Vary: Accept-Encoding
ETag: W/"63245fe9-3a77c"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 0
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Hmy2Ax6LhUQImpnpN2%2Fh8%2F%2BkXqSJfiifsBrEgTciDNWFKc6lqyZoowWoSA5P5mAUNTvmwWbRC6ZUd3uLr%2FndI7Bs5vYL4h%2BkjlxAUKmOoE1h63he7xd7zpyU7fuZ2AlAm0qNgik%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75624c561f7a0b02-OSL
alt-svc: h2=":443"; ma=60
www.pressuhtfn.xyz/images/prev.svg
104.21.70.188200 OK 203 B URL HTTP/1.1 www.pressuhtfn.xyz/images/prev.svg
IP 104.21.70.188:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with no line terminators
Hash 702e97bf225ef7135f8350f5851b23d8
2483e831da2960b78a05729243fb2f875a1b70fd
621b9ccd53bc3edc51a5138213f6f05cc3d40f28aba464f3f84737b3b015e4a2
Analyzer Verdict Alert quad9 Sinkholed
GET /images/prev.svg HTTP/1.1
Host: www.pressuhtfn.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pressuhtfn.xyz/
Cookie: PHPSESSID=3a2mddkkaug4kj13fiqmrgdc65
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 23:50:14 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 16 Sep 2022 11:37:21 GMT
ETag: W/"63245ff1-108"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: HIT
Age: 0
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XuBoNzXZirUkf5oyTAPQgjAK6LaNbzymlShWf7EDz6uF%2FgzVt%2FFuF3ceh%2BM%2FEWi3BwkLs2QB76QFnYKdXTCDVLFTLan%2BFOskHgjA%2B9lkLDILXQ9cjJJeZxfVwqmpm1CYPn4mRRc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75624c566fbab4ff-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.pressuhtfn.xyz/images/logo_t.png
104.21.70.188200 OK 3.0 kB URL HTTP/1.1 www.pressuhtfn.xyz/images/logo_t.png
IP 104.21.70.188:0
File type PNG image data, 168 x 47, 8-bit/color RGBA, non-interlaced\012- data
Hash d38f11df8453bafd09216d6097a5ddc2
b442f438d7f96507ffeced29ba7bb25db77d326b
f53692d89b07ac4c2bef009bcfb0affa53ed37f424a0b3d661d9ef453e972f09
Analyzer Verdict Alert quad9 Sinkholed
GET /images/logo_t.png HTTP/1.1
Host: www.pressuhtfn.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pressuhtfn.xyz/
Cookie: PHPSESSID=3a2mddkkaug4kj13fiqmrgdc65
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 23:50:14 GMT
Content-Type: image/png
Content-Length: 2958
Connection: keep-alive
Last-Modified: Fri, 16 Sep 2022 11:37:22 GMT
ETag: "63245ff2-b8e"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: HIT
Age: 0
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=esZlnMerIFroINq9v6nbeimN8P1xgqypKmKza3QN6NSQRLRV7yQ0jUVHWbitBSh%2F86lSpk%2BVFn3J7vF7va%2BekcuGCEy%2F%2F17PVDBDLQ9pi8NtyWbEKAkbzgVkPLDhslk6owz5s3w%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75624c56691ab50c-OSL
alt-svc: h2=":443"; ma=60
www.pressuhtfn.xyz/images/next.svg
104.21.70.188200 OK 201 B URL HTTP/1.1 www.pressuhtfn.xyz/images/next.svg
IP 104.21.70.188:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with no line terminators
Hash 55cd1caa513f1762338a37498a4ba12e
80fe6e8862fb94ce467a7649077b0e2f47075f38
8eb9e80923a4b31451a5d4c1358296830d8fe4e73b9865291230a3714f96636d
Analyzer Verdict Alert quad9 Sinkholed
GET /images/next.svg HTTP/1.1
Host: www.pressuhtfn.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pressuhtfn.xyz/
Cookie: PHPSESSID=3a2mddkkaug4kj13fiqmrgdc65
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 23:50:14 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 16 Sep 2022 11:37:22 GMT
ETag: W/"63245ff2-114"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: HIT
Age: 0
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xVGF2YStu5yeF3ZpErQV29hV1FY5ee9vWymXU%2F0ooIIuDu%2Fnrk7J%2BvD9KkSWa7in00IyzSgfyZA7IFRiCWjhE1gJIHCqSmeV5uEHezQsZwaw7KEI5L3ds69P%2BzkO3IDetldAcX8%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75624c56dfe2b4ff-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.pressuhtfn.xyz/images/arrow_display.svg
104.21.70.188200 OK 279 B URL HTTP/1.1 www.pressuhtfn.xyz/images/arrow_display.svg
IP 104.21.70.188:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (387)
Hash 3460c82c3d3889aba43c8ef1ba91f739
dfb1229a06212fe4cdccc5a9506290bc1e135f11
816ffe794c5c189c9e32a285997ccd8ad4ad9e71a8edeead318f29fad38308f0
Analyzer Verdict Alert quad9 Sinkholed
GET /images/arrow_display.svg HTTP/1.1
Host: www.pressuhtfn.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pressuhtfn.xyz/
Cookie: PHPSESSID=3a2mddkkaug4kj13fiqmrgdc65
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 23:50:14 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 16 Sep 2022 11:37:22 GMT
ETag: W/"63245ff2-1eb"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: HIT
Age: 0
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=p9dRkIcx4EdLjBn2N%2BjpsPCo4CPm%2BSBO76YBmFgM38a1h3CZqwDeeUsBaApx7Wz1juO%2F9pbRpDRnqmnNuIKD5zxmm6OXRpLJ%2F1T3IXJFXsobT5Vzpbdlvr6x%2Fuo%2FiqVSCNXGeqw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75624c568f75b500-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.pressuhtfn.xyz/images/gift.svg
104.21.70.188200 OK 271 B URL HTTP/1.1 www.pressuhtfn.xyz/images/gift.svg
IP 104.21.70.188:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (440), with no line terminators
Hash c35bf49fa742787d30d8c25bf3d99591
a63638c5d50247179600185b00fd06f552d6e8e1
d51a804fd46027d4729cc55a831b066673b2006a1ac9cbc9a02a7547cd865661
Analyzer Verdict Alert quad9 Sinkholed
GET /images/gift.svg HTTP/1.1
Host: www.pressuhtfn.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pressuhtfn.xyz/
Cookie: PHPSESSID=3a2mddkkaug4kj13fiqmrgdc65
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 23:50:14 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 16 Sep 2022 11:37:22 GMT
ETag: W/"63245ff2-1b8"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: HIT
Age: 0
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GtlGUoMAKX9UD0kKc4JJ7rBc5%2BZOt4jc7jqsKssv%2B0SBHHdq4Jx537o%2B2Dk9ruGaVDtQpLKUEZFwvsOGpdSa3IDWz4ZJUMb5%2FbgBOdXi4Nwy8TG7g0Tc6Nsa%2BGJc60l1IGdbyzM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75624c568c7b0b65-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.pressuhtfn.xyz/images/check.svg
104.21.70.188200 OK 495 B URL HTTP/1.1 www.pressuhtfn.xyz/images/check.svg
IP 104.21.70.188:0
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document, ASCII text, with very long lines (793), with no line terminators
Hash 166756430b32fa0ffa181c9f4a613fcc
5137323a5f598e20428eb173bff1dfe2b9ed1b9e
d711bbf277883ffa625b4607bb08040e9e2f17ee354c1cd5b35ae03644642c50
Analyzer Verdict Alert quad9 Sinkholed
GET /images/check.svg HTTP/1.1
Host: www.pressuhtfn.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pressuhtfn.xyz/
Cookie: PHPSESSID=3a2mddkkaug4kj13fiqmrgdc65
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 23:50:14 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 16 Sep 2022 11:37:21 GMT
ETag: W/"63245ff1-319"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=B9%2BMNuRBrEIo8KH5XFdf7oO53ztiNWIU8tAjvRsix%2FSR4FokxBz77Vjj9RayveoTPJ1f%2FFt8Ngaq1QpYlcapWoYh6zexzObnQp%2BS2w4K8wF0VbgPgW%2BZENRr6r7GfKwxTOWKMnQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75624c566bae1bfa-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.pressuhtfn.xyz/fonts/TTNormsPro-Regular.ttf
104.21.70.188404 Not Found 723 B URL HTTP/1.1 www.pressuhtfn.xyz/fonts/TTNormsPro-Regular.ttf
IP 104.21.70.188:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash c075f06c6b10da0bedaf2517651e792e
97d9d3d2a1f0ec2b1745f677401f866708c4905b
b163313893d86ffc18811ab7b77830dffc807cdfe66bdad33dcf86a09aed6044
Analyzer Verdict Alert quad9 Sinkholed
GET /fonts/TTNormsPro-Regular.ttf HTTP/1.1
Host: www.pressuhtfn.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pressuhtfn.xyz/css/style.css
Cookie: PHPSESSID=3a2mddkkaug4kj13fiqmrgdc65
HTTP/1.1 404 Not Found
Date: Thu, 06 Oct 2022 23:50:14 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 14 Sep 2022 13:56:27 GMT
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 0
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CVi2PqDd8TgBqQ2eig%2BOAWQnM3CFqaIABspNiujF4E92%2F%2FMsLpz7QtoUgsfp9HcRyTgIK9%2FkcTuKiW1B81YYPRcJJctOZjf51SOpk6y%2F0bLrTQXW0QD7%2FidlPf%2Fe3%2BWYcH5zEhw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75624c574971b50c-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 18e0e019cd697bb16806d8f00408a319
60ceb13c31595e6cf9bb6800657e4593a1fbd670
7cb0778c80be637b67a5d198ca180a76bbfa4c32e502a0fa472a4c6946ffb56e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 06 Oct 2022 23:50:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.pressuhtfn.xyz/images/darrow.svg
104.21.70.188200 OK 344 B URL HTTP/1.1 www.pressuhtfn.xyz/images/darrow.svg
IP 104.21.70.188:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (311)
Hash ddd54f2966d7874bd06bf1bc34b0a120
dd27e5e8548b60de1077be419156c033af392ab4
d2587eb3932b0f20cd4e2530977b590a2f3c4418065fd73ab931f42f353fce39
Analyzer Verdict Alert quad9 Sinkholed
GET /images/darrow.svg HTTP/1.1
Host: www.pressuhtfn.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pressuhtfn.xyz/
Cookie: PHPSESSID=3a2mddkkaug4kj13fiqmrgdc65
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 23:50:15 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 16 Sep 2022 11:37:20 GMT
ETag: W/"63245ff0-2d4"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: HIT
Age: 1
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IXScd0lZfbWQNtWehfA3XLGvIH9KeW80xXb9AJ0b8odKrH%2Fg2MGqEJVK%2Fyq4Hi1l%2FF0iSv6VJNtmf%2BAGbQiGilxfApBf4LF9f8QGd%2FPXRv5RwXHO44LCWLMNcdb428rx8nSLJp8%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75624c56cfbc0b02-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.pressuhtfn.xyz/images/hero_bg_image.png
104.21.70.188200 OK 133 kB URL HTTP/1.1 www.pressuhtfn.xyz/images/hero_bg_image.png
IP 104.21.70.188:0
File type PNG image data, 360 x 561, 8-bit/color RGBA, non-interlaced\012- data
Size 133 kB (133372 bytes)
Hash 2714608e98508ff04de21cd53be3f107
7d793ef779fdbc1941c4669db4bacddefd7b1b18
1aefa21e091d9c0e64dc2c4aca2e716ca079b1b81368c0d5f9ef4974e9be17ae
Analyzer Verdict Alert quad9 Sinkholed
GET /images/hero_bg_image.png HTTP/1.1
Host: www.pressuhtfn.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pressuhtfn.xyz/css/quiz.css
Cookie: PHPSESSID=3a2mddkkaug4kj13fiqmrgdc65
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 23:50:14 GMT
Content-Type: image/png
Content-Length: 133372
Connection: keep-alive
Last-Modified: Fri, 16 Sep 2022 11:37:21 GMT
ETag: "63245ff1-208fc"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: HIT
Age: 0
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YBM%2BApmNrZoWKgczY4VyC4qxZveK2gjjexcxgjdG8yNKmA%2Fmuwp3jqvWSLhUVx%2B7pyv%2BM4w2P8G6qLzLu2sHfmrEfex%2BZbMY%2BJ067vsBAFXzw8a7hWBBETMicFHDq5LSR%2F95nkY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75624c57381ab4ff-OSL
alt-svc: h2=":443"; ma=60
www.pressuhtfn.xyz/fonts/TTNormsPro-Medium.ttf
104.21.70.188404 Not Found 723 B URL HTTP/1.1 www.pressuhtfn.xyz/fonts/TTNormsPro-Medium.ttf
IP 104.21.70.188:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash c075f06c6b10da0bedaf2517651e792e
97d9d3d2a1f0ec2b1745f677401f866708c4905b
b163313893d86ffc18811ab7b77830dffc807cdfe66bdad33dcf86a09aed6044
Analyzer Verdict Alert quad9 Sinkholed
GET /fonts/TTNormsPro-Medium.ttf HTTP/1.1
Host: www.pressuhtfn.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pressuhtfn.xyz/css/style.css
Cookie: PHPSESSID=3a2mddkkaug4kj13fiqmrgdc65
HTTP/1.1 404 Not Found
Date: Thu, 06 Oct 2022 23:50:15 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 14 Sep 2022 13:56:27 GMT
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 0
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DlSxuHbaBvVOMdK7u%2Bp%2B3yvgZOMErT9MMHqGpXepAuPOreX08H6Nq93kpRqf37BxkRCiiBEy6Kdcw14PzvIRbXLni%2F80PkoyhAXDwGxYPu7bLtYHYCCi04N9E5e%2Bck%2B661NUcfU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75624c57c9b9b50c-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.pressuhtfn.xyz/images/hero.jpg
104.21.70.188200 OK 135 kB URL HTTP/1.1 www.pressuhtfn.xyz/images/hero.jpg
IP 104.21.70.188:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2021:05:18 20:07:56], progressive, precision 8, 672x617, components 3\012- data
Size 135 kB (135071 bytes)
Hash 8cd4c2b1b6a47b8d483c0eabc36e1481
22cf0091df6a080bc384cb4bf076e8c58bba329b
7c3656840a1e36c5dcfcbff0a6b70de5fe89f9fea21d754621c68c606ce706c5
Analyzer Verdict Alert quad9 Sinkholed
GET /images/hero.jpg HTTP/1.1
Host: www.pressuhtfn.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pressuhtfn.xyz/css/quiz.css
Cookie: PHPSESSID=3a2mddkkaug4kj13fiqmrgdc65
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 23:50:15 GMT
Content-Type: image/jpeg
Content-Length: 135071
Connection: keep-alive
Last-Modified: Fri, 16 Sep 2022 11:37:20 GMT
ETag: "63245ff0-20f9f"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: HIT
Age: 0
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ah%2BHqLdtjUeP8Z23kcaOwBt3wEd9ipOIcIv7jOxXrbmmFr93wN3r7OI5W6Ms0lw5MMGLYKzOwwnVqsANJvBGmdhcp5ncFFXeeATC2C%2FcebUr71d%2BoqSOBJOhS1YY0aA5jrqJjtE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75624c573ff1b500-OSL
alt-svc: h2=":443"; ma=60
www.pressuhtfn.xyz/fonts/TTNormsPro-Bold.ttf
104.21.70.188404 Not Found 723 B URL HTTP/1.1 www.pressuhtfn.xyz/fonts/TTNormsPro-Bold.ttf
IP 104.21.70.188:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash c075f06c6b10da0bedaf2517651e792e
97d9d3d2a1f0ec2b1745f677401f866708c4905b
b163313893d86ffc18811ab7b77830dffc807cdfe66bdad33dcf86a09aed6044
Analyzer Verdict Alert quad9 Sinkholed
GET /fonts/TTNormsPro-Bold.ttf HTTP/1.1
Host: www.pressuhtfn.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pressuhtfn.xyz/css/style.css
Cookie: PHPSESSID=3a2mddkkaug4kj13fiqmrgdc65
HTTP/1.1 404 Not Found
Date: Thu, 06 Oct 2022 23:50:15 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 14 Sep 2022 13:56:27 GMT
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 0
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OnhWRqIfi90TO%2BhiEQ1dO%2FF41mgtQfvzrBAoRRXJLraiXFIFGaOGIXWGGXker939Oai6JJpisTPcB9byHN6AJGLCJVz7DO4AwVphuSYXuS98QNnMyDzYf9DAvdKMzzcNQWu2%2F2g%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75624c5848d7b4ff-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.pressuhtfn.xyz/libs/intl-tel-input-master/build/img/flags.png
104.21.70.188200 OK 71 kB URL HTTP/1.1 www.pressuhtfn.xyz/libs/intl-tel-input-master/build/img/flags.png
IP 104.21.70.188:0
File type PNG image data, 5652 x 15, 8-bit/color RGBA, non-interlaced\012- data
Hash 416250f60d785a2e02f17e054d2e4e44
21572c9751e5a3dc20395befa0fcb349c32c4811
0a012cf808a24573168308916092d2d4bd3f2b4af8e16b59167013cc77acee55
Analyzer Verdict Alert quad9 Sinkholed
GET /libs/intl-tel-input-master/build/img/flags.png HTTP/1.1
Host: www.pressuhtfn.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pressuhtfn.xyz/libs/intl-tel-input-master/build/css/intlTelInput.css
Cookie: PHPSESSID=3a2mddkkaug4kj13fiqmrgdc65
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 23:50:15 GMT
Content-Type: image/png
Content-Length: 70857
Connection: keep-alive
Last-Modified: Fri, 16 Sep 2022 11:37:14 GMT
ETag: "63245fea-114c9"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: HIT
Age: 0
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EaX1dsKoi6PWgxaNdK4WHRrPC1%2FdEubaKoHhiamVTyV4Sq1mdcCFBobzkv%2BGwywldIWZiIgzScVubd%2B6hBVo%2B2Mu65qHUbg3APMqyTL30kahXe%2B6%2BmRCiggMpOnNf3H%2FK%2FayYQY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75624c58181e0b02-OSL
alt-svc: h2=":443"; ma=60
www.pressuhtfn.xyz/images/favicon.ico
104.21.70.188200 OK 2.6 kB URL HTTP/1.1 www.pressuhtfn.xyz/images/favicon.ico
IP 104.21.70.188:0
File type MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash 4a9d70a7d6bc98fdea46dcef6f9abef6
f11ab9b5e63d527898874f68d76be296b1358d61
773d747c9e204688639409d14b23b018037d2bf39df295e0a1fa55ae8c228eb6
Analyzer Verdict Alert quad9 Sinkholed
GET /images/favicon.ico HTTP/1.1
Host: www.pressuhtfn.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pressuhtfn.xyz/
Cookie: PHPSESSID=3a2mddkkaug4kj13fiqmrgdc65
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 23:50:15 GMT
Content-Type: image/x-icon
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 16 Sep 2022 11:37:19 GMT
ETag: W/"63245fef-3aee"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
CF-Cache-Status: HIT
Age: 0
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nae1KnVKlJ3eIPtaMm3x2LVdp5sbEY4jRkN75O9Ku7pZ2JetVeXPtL7N1fax2o0T9z072PqYcI5oqCDlvh8kEswZce0%2FpmaGjyanFPsU%2BxZhj4NwknoEsYmizK3a20kLRgxhDLo%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75624c59c995b4ff-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.pressuhtfn.xyz/fonts/TTNormsPro-ExtraBold.ttf
104.21.70.188404 Not Found 723 B URL HTTP/1.1 www.pressuhtfn.xyz/fonts/TTNormsPro-ExtraBold.ttf
IP 104.21.70.188:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash c075f06c6b10da0bedaf2517651e792e
97d9d3d2a1f0ec2b1745f677401f866708c4905b
b163313893d86ffc18811ab7b77830dffc807cdfe66bdad33dcf86a09aed6044
Analyzer Verdict Alert quad9 Sinkholed
GET /fonts/TTNormsPro-ExtraBold.ttf HTTP/1.1
Host: www.pressuhtfn.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pressuhtfn.xyz/css/style.css
Cookie: PHPSESSID=3a2mddkkaug4kj13fiqmrgdc65
HTTP/1.1 404 Not Found
Date: Thu, 06 Oct 2022 23:50:15 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 14 Sep 2022 13:56:27 GMT
Cache-Control: max-age=14400
CF-Cache-Status: HIT
Age: 0
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YN7iBZoQJlM83JJT09zCopxKbIM1Sf0xjcCJ17ufHsrX0QfZvfxkE%2BT5Oq7oqqTZsC%2Buv6xHPyqTa7p%2F2RlcwNd7Jj9F%2FagKFrEjlQmNUD8%2BkgDUFN24srmZYi2G1pM1d5jtreo%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 75624c58c8f8b500-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
54.230.111.118200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 54.230.111.118:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Thu, 06 Oct 2022 23:29:41 GMT
Expires: Thu, 06 Oct 2022 23:58:46 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: dRAkPCZn7byR2tMyfYplDB-z5FxaHx_IVzwjfEwJVUTQB-m5ecGuYA==
Age: 1234
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash aa650f4b5b471d13bb54c8bc2aab54da
ddedea853f29daf06cd7f61d23ec6279964ce94b
bf8b08edb464b4fd2b759a97f752928a78944527284c3d3a7019a8d2ed64f864
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 06 Oct 2022 23:50:15 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Mon, 10 Oct 2022 22:30:46 GMT
ETag: "ddedea853f29daf06cd7f61d23ec6279964ce94b"
Last-Modified: Thu, 06 Oct 2022 22:30:47 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3056
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75624c5a4863b527-OSL
mc.yandex.ru/metrika/tag.js
87.250.251.119200 OK 72 kB URL HTTP/2 mc.yandex.ru/metrika/tag.js
IP 87.250.251.119:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (593)
Hash 7a68c8644032413981e4ba5bc0d66c4a
2d46ca8055e8577ae7138140e34a6e633434973c
e0573e9a9cbfc3f00a921fa64c50270f5941a1ebb253ab70af2cc0dac45cb0d5
GET /metrika/tag.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pressuhtfn.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 72341
date: Thu, 06 Oct 2022 23:50:15 GMT
access-control-allow-origin: *
etag: "633be002-11a95"
expires: Fri, 07 Oct 2022 00:50:15 GMT
last-modified: Tue, 04 Oct 2022 10:25:54 GMT
cache-control: max-age=3600
content-encoding: br
content-type: application/javascript
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/advert.gif
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pressuhtfn.xyz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Thu, 06 Oct 2022 23:50:15 GMT
access-control-allow-origin: *
etag: "633be002-2b"
expires: Fri, 07 Oct 2022 00:50:15 GMT
accept-ranges: bytes
last-modified: Tue, 04 Oct 2022 10:25:54 GMT
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/90467639?wmode=7&page-url=http%3A%2F%2Fwww.pressuhtfn.xyz%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aat6op7b9z7b01ildsv2t4%3Afp%3A644%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A1205544537053%3Ahid%3A756762830%3Az%3A0%3Ai%3A20221006235015%3Aet%3A1665100216%3Ac%3A1%3Arn%3A569934379%3Arqn%3A1%3Au%3A1665100216237665696%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A27%2C0%2C97%2C1%2C-6%2C0%2C%2C570%2C2%2C%2C%2C%2C749%3Ans%3A1665100214212%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665100216%3At%3AQuizGO&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2)
87.250.251.119302 Found 407 B URL HTTP/2 mc.yandex.ru/watch/90467639?wmode=7&page-url=http%3A%2F%2Fwww.pressuhtfn.xyz%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aat6op7b9z7b01ildsv2t4%3Afp%3A644%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A1205544537053%3Ahid%3A756762830%3Az%3A0%3Ai%3A20221006235015%3Aet%3A1665100216%3Ac%3A1%3Arn%3A569934379%3Arqn%3A1%3Au%3A1665100216237665696%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A27%2C0%2C97%2C1%2C-6%2C0%2C%2C570%2C2%2C%2C%2C%2C749%3Ans%3A1665100214212%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665100216%3At%3AQuizGO&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2)
IP 87.250.251.119:0
File type JSON data\012- , ASCII text, with very long lines (407), with no line terminators
Hash 3cb1e67f487efd4e665f728635b6bd77
43cc9bbc0dcc70f9924b5e4be53056407cd3cfb5
621f3c598e222e5ae265e7422d2c55816fa7fc5ca1f234cacb933dc7511d778e
GET /watch/90467639?wmode=7&page-url=http%3A%2F%2Fwww.pressuhtfn.xyz%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aat6op7b9z7b01ildsv2t4%3Afp%3A644%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A1205544537053%3Ahid%3A756762830%3Az%3A0%3Ai%3A20221006235015%3Aet%3A1665100216%3Ac%3A1%3Arn%3A569934379%3Arqn%3A1%3Au%3A1665100216237665696%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A27%2C0%2C97%2C1%2C-6%2C0%2C%2C570%2C2%2C%2C%2C%2C749%3Ans%3A1665100214212%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665100216%3At%3AQuizGO&t=gdpr(14)clc(0-0-0)aw(1)rqnt(1)fip(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.pressuhtfn.xyz
Connection: keep-alive
Referer: http://www.pressuhtfn.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/90467639/1?wmode=7&page-url=http%3A%2F%2Fwww.pressuhtfn.xyz%2F&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aat6op7b9z7b01ildsv2t4%3Afp%3A644%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A904%3Acn%3A1%3Adp%3A0%3Als%3A1205544537053%3Ahid%3A756762830%3Az%3A0%3Ai%3A20221006235015%3Aet%3A1665100216%3Ac%3A1%3Arn%3A569934379%3Arqn%3A1%3Au%3A1665100216237665696%3Aw%3A1280x939%3As%3A1280x1024x24%3Ask%3A1%3Awv%3A2%3Ads%3A27%2C0%2C97%2C1%2C-6%2C0%2C%2C570%2C2%2C%2C%2C%2C749%3Ans%3A1665100214212%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1665100216%3At%3AQuizGO&t=gdpr%2814%29clc%280-0-0%29aw%281%29rqnt%281%29fip%281%29rqnl%281%29ti%282%29
date: Thu, 06 Oct 2022 23:50:15 GMT
access-control-allow-origin: http://www.pressuhtfn.xyz
set-cookie: yandexuid=6936648981665100215; Expires=Fri, 06-Oct-2023 23:50:15 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=6936648981665100215; Expires=Fri, 06-Oct-2023 23:50:15 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yabs-sid=662653471665100215; Path=/; SameSite=None; Secure
i=3nEXJ8jgTnZ90PreS86WRhsD0sGFHbcW7nv/VzfJkQD/SqzLL/ZTjIGXdB8uYQu1wTq+cROiIMyiM61gR91MkfFHldE=; Expires=Sun, 03-Oct-2032 23:49:56 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
ymex=1696636215.yrts.1665100215#1696636215.yrtsi.1665100215; Expires=Fri, 06-Oct-2023 23:50:15 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 06-Oct-2022 23:50:15 GMT
last-modified: Thu, 06-Oct-2022 23:50:15 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.42.148.177101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.42.148.177:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 03/mw0ibTcGLtN0jJQONHw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 1viFDtrK3xXOcWbJqEqNAXfctrc=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6575
Expires: Fri, 07 Oct 2022 01:39:51 GMT
Date: Thu, 06 Oct 2022 23:50:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6575
Expires: Fri, 07 Oct 2022 01:39:51 GMT
Date: Thu, 06 Oct 2022 23:50:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6575
Expires: Fri, 07 Oct 2022 01:39:51 GMT
Date: Thu, 06 Oct 2022 23:50:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 31e440ccd993c4ee793f50511c2ac7c4
4380327d50b7001d158aee05a57c6078e57c94e4
65d8a97f6df1e110333a01d1f6dcb4982db7bb4b1c5f3f1498fafa716e250c0f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "65D8A97F6DF1E110333A01D1F6DCB4982DB7BB4B1C5F3F1498FAFA716E250C0F"
Last-Modified: Thu, 06 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6575
Expires: Fri, 07 Oct 2022 01:39:51 GMT
Date: Thu, 06 Oct 2022 23:50:16 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F837dece8-fc6a-4543-a1b5-e8504c153d81.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F837dece8-fc6a-4543-a1b5-e8504c153d81.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a4d23ef36836d4691f44e51885513cc3
10fc52375fd8946bfd468eb96e4aaf592c239663
fb3d2d52e1dbbe4225c3df920b36eeb73dc52a1010db52018bc1eb5c5bfbd028
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F837dece8-fc6a-4543-a1b5-e8504c153d81.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6063
x-amzn-requestid: e4067d2e-5fe8-4c80-ab2c-15e98605d458
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZQw32GbTIAMFx0Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633694fe-5d650b9433007db41ea51a35;Sampled=0
x-amzn-remapped-date: Fri, 30 Sep 2022 07:04:30 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: a8Wrtvoc1hKrYtCETPZXyOZJbdNZxPq71SJ6fy1iLDyRPqXGALgyzA==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 23:09:03 GMT
age: 2473
etag: "10fc52375fd8946bfd468eb96e4aaf592c239663"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F41249b23-0479-4820-9c68-da428c1d2faa.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F41249b23-0479-4820-9c68-da428c1d2faa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash caf0e5e75898e70a4f2caa2a707c7af9
25a573f90d12a42a6e63c65485be5fc325b0bfde
cec7ab3a7f6e02b57ee72ca7eee70c16b9026679aa7cd6c0739669731ccc94d5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F41249b23-0479-4820-9c68-da428c1d2faa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8090
x-amzn-requestid: 7aeb8664-0241-40e1-ac8d-aef56b2a1847
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZmirBHS9IAMFYKg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f4b13-19caf51e2f8b7df363293db3;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 21:39:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: -Y3Utot6t5i9ws9JDG4eGGQYEzrN5d48KD9rZ0p1mscrMzOXBTsp1Q==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 7f06047c304d80ea094816a27c933914.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 21:44:25 GMT
etag: "25a573f90d12a42a6e63c65485be5fc325b0bfde"
content-type: image/jpeg
age: 7551
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38d969a0-82cd-4d27-8f25-f1b95cacc89f.webp
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38d969a0-82cd-4d27-8f25-f1b95cacc89f.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ed3fa86bbe319c9a2f81ff625e677cb0
e3d5210207f6ff922bc28e328285059c19a523a4
5919694bd942a4f25d5b7ffc3f8aee1af6cdb8461d4ba3dba9a2e72cf19164c8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38d969a0-82cd-4d27-8f25-f1b95cacc89f.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7261
x-amzn-requestid: e1bdf299-b29e-4f58-9c8a-33f5dacdb081
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZmirBELYoAMFfgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f4b13-1969b32c6f4f7e5749e7caa0;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 21:39:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: V3fTgH8URZ1iWMxWPy49--20mtdJvMK6XTG_aPKk68pvwCxPl8lULw==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 583992e175976bd59a21b4416890271e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 21:44:18 GMT
age: 7558
etag: "e3d5210207f6ff922bc28e328285059c19a523a4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36097bf9-dd7a-4dde-af42-0e23e000e84a.jpeg
34.120.237.76200 OK 2.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36097bf9-dd7a-4dde-af42-0e23e000e84a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e9646987c0395eec23e32dc00954d386
5545b691aeefcd31bbc6b6cad6726234773e9d74
900a2bfbe3984db79056d38764b1986399d827a7f54d1c54d4fd3b06c7981385
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36097bf9-dd7a-4dde-af42-0e23e000e84a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2732
x-amzn-requestid: 004a85ab-b33b-4b7f-86f2-9762e6cd2f0b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZmhkQGWgoAMF7mw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f494e-473458094dc2ded55a681505;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 21:31:58 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: eJltrBVIRbJ-_OUHZjw8mtfK6Ivb9C51B6lC1C11eaq_O4Psd7evRg==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 ca66331b52971370c4e54619e8a952cc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 21:46:38 GMT
age: 7418
etag: "5545b691aeefcd31bbc6b6cad6726234773e9d74"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff362ea4b-2913-4401-9322-7a70f223e2a9.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff362ea4b-2913-4401-9322-7a70f223e2a9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5cf80f9e9e5aabf650c561b5939acf1c
6a66ddb2c8c77cbd27101b8705a34492aa998b98
9aff5e0564805bbf83edb94b2d0462f76e09b5b67a39f3ab65aee66a24a192da
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff362ea4b-2913-4401-9322-7a70f223e2a9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9160
x-amzn-requestid: 3064ca86-5e0e-4bff-ad0c-6dcce9fa1404
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZmhkaGIGoAMFZzg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f494f-06a55ad9421678605d12a4a6;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 21:31:59 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: 1uTAUuD8oF_Y8yRT9Fh30YuIJMN-iKXQiXwDfq7NgCnPeyM5pV9BKQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 27fe6f224e0cfa3f3a446471ee256e56.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 22:01:45 GMT
age: 6511
etag: "6a66ddb2c8c77cbd27101b8705a34492aa998b98"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0135ba0-9033-445f-8155-a6c093862ccb.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0135ba0-9033-445f-8155-a6c093862ccb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7e30ca5022768294665070cafc9d489c
c6ebf53c21206cfcf8e70279d3ae43f0170ade3a
6b834cdae692318a114c0d82ebff4fa8f4e65526983758e08ffb130d4d86020f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0135ba0-9033-445f-8155-a6c093862ccb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9046
x-amzn-requestid: d560c8ba-6e81-46f7-a451-30c40fbfce6f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zmhi_F7qIAMFkQg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f4946-012e65d675558ec8544a1f30;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 21:31:50 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: a9tOPCySPRdXpvJf239ycM7_3PJS7GcITvM52Sxic_FwYr_-n2XQHA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 de8fc80b494d3d381f7e006918dcc588.cloudfront.net (CloudFront), 1.1 google
date: Thu, 06 Oct 2022 21:44:18 GMT
etag: "c6ebf53c21206cfcf8e70279d3ae43f0170ade3a"
content-type: image/jpeg
age: 7558
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/90467639?wmode=0&wv-part=1&wv-hit=756762830&page-url=http%3A%2F%2Fwww.pressuhtfn.xyz%2F&rn=744681126&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1665100219%3Aw%3A1280x939%3Av%3A904%3Az%3A0%3Ai%3A20221006235018%3Au%3A1665100216237665696%3Avf%3Aat6op7b9z7b01ildsv2t4%3Awe%3A1%3Ast%3A1665100219&t=gdpr(14)ti(2)
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/90467639?wmode=0&wv-part=1&wv-hit=756762830&page-url=http%3A%2F%2Fwww.pressuhtfn.xyz%2F&rn=744681126&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1665100219%3Aw%3A1280x939%3Av%3A904%3Az%3A0%3Ai%3A20221006235018%3Au%3A1665100216237665696%3Avf%3Aat6op7b9z7b01ildsv2t4%3Awe%3A1%3Ast%3A1665100219&t=gdpr(14)ti(2)
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/90467639?wmode=0&wv-part=1&wv-hit=756762830&page-url=http%3A%2F%2Fwww.pressuhtfn.xyz%2F&rn=744681126&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1665100219%3Aw%3A1280x939%3Av%3A904%3Az%3A0%3Ai%3A20221006235018%3Au%3A1665100216237665696%3Avf%3Aat6op7b9z7b01ildsv2t4%3Awe%3A1%3Ast%3A1665100219&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 144030
Origin: http://www.pressuhtfn.xyz
Connection: keep-alive
Referer: http://www.pressuhtfn.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Thu, 06 Oct 2022 23:50:19 GMT
access-control-allow-origin: http://www.pressuhtfn.xyz
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 06-Oct-2022 23:50:19 GMT
last-modified: Thu, 06-Oct-2022 23:50:19 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/90467639?wmode=0&wv-part=1&wv-hit=756762830&page-url=http%3A%2F%2Fwww.pressuhtfn.xyz%2F&rn=585115401&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1665100219%3Aw%3A1280x939%3Av%3A904%3Az%3A0%3Ai%3A20221006235019%3Au%3A1665100216237665696%3Avf%3Aat6op7b9z7b01ildsv2t4%3Awe%3A1%3Ast%3A1665100219&t=gdpr(14)ti(2)
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/90467639?wmode=0&wv-part=1&wv-hit=756762830&page-url=http%3A%2F%2Fwww.pressuhtfn.xyz%2F&rn=585115401&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1665100219%3Aw%3A1280x939%3Av%3A904%3Az%3A0%3Ai%3A20221006235019%3Au%3A1665100216237665696%3Avf%3Aat6op7b9z7b01ildsv2t4%3Awe%3A1%3Ast%3A1665100219&t=gdpr(14)ti(2)
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/90467639?wmode=0&wv-part=1&wv-hit=756762830&page-url=http%3A%2F%2Fwww.pressuhtfn.xyz%2F&rn=585115401&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1665100219%3Aw%3A1280x939%3Av%3A904%3Az%3A0%3Ai%3A20221006235019%3Au%3A1665100216237665696%3Avf%3Aat6op7b9z7b01ildsv2t4%3Awe%3A1%3Ast%3A1665100219&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 54
Origin: http://www.pressuhtfn.xyz
Connection: keep-alive
Referer: http://www.pressuhtfn.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Thu, 06 Oct 2022 23:50:19 GMT
access-control-allow-origin: http://www.pressuhtfn.xyz
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 06-Oct-2022 23:50:19 GMT
last-modified: Thu, 06-Oct-2022 23:50:19 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/90467639?wmode=0&wv-part=2&wv-hit=756762830&page-url=http%3A%2F%2Fwww.pressuhtfn.xyz%2F&rn=160713281&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1665100220%3Aw%3A1280x939%3Av%3A904%3Az%3A0%3Ai%3A20221006235020%3Au%3A1665100216237665696%3Avf%3Aat6op7b9z7b01ildsv2t4%3Awe%3A1%3Ast%3A1665100220&t=gdpr(14)ti(2)
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/90467639?wmode=0&wv-part=2&wv-hit=756762830&page-url=http%3A%2F%2Fwww.pressuhtfn.xyz%2F&rn=160713281&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1665100220%3Aw%3A1280x939%3Av%3A904%3Az%3A0%3Ai%3A20221006235020%3Au%3A1665100216237665696%3Avf%3Aat6op7b9z7b01ildsv2t4%3Awe%3A1%3Ast%3A1665100220&t=gdpr(14)ti(2)
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/90467639?wmode=0&wv-part=2&wv-hit=756762830&page-url=http%3A%2F%2Fwww.pressuhtfn.xyz%2F&rn=160713281&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1665100220%3Aw%3A1280x939%3Av%3A904%3Az%3A0%3Ai%3A20221006235020%3Au%3A1665100216237665696%3Avf%3Aat6op7b9z7b01ildsv2t4%3Awe%3A1%3Ast%3A1665100220&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 2058
Origin: http://www.pressuhtfn.xyz
Connection: keep-alive
Referer: http://www.pressuhtfn.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Thu, 06 Oct 2022 23:50:20 GMT
access-control-allow-origin: http://www.pressuhtfn.xyz
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 06-Oct-2022 23:50:20 GMT
last-modified: Thu, 06-Oct-2022 23:50:20 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/90467639?wmode=0&wv-part=3&wv-hit=756762830&page-url=http%3A%2F%2Fwww.pressuhtfn.xyz%2F&rn=504059494&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1665100222%3Aw%3A1280x939%3Av%3A904%3Az%3A0%3Ai%3A20221006235022%3Au%3A1665100216237665696%3Avf%3Aat6op7b9z7b01ildsv2t4%3Awe%3A1%3Ast%3A1665100222&t=gdpr(14)ti(2)
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/90467639?wmode=0&wv-part=3&wv-hit=756762830&page-url=http%3A%2F%2Fwww.pressuhtfn.xyz%2F&rn=504059494&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1665100222%3Aw%3A1280x939%3Av%3A904%3Az%3A0%3Ai%3A20221006235022%3Au%3A1665100216237665696%3Avf%3Aat6op7b9z7b01ildsv2t4%3Awe%3A1%3Ast%3A1665100222&t=gdpr(14)ti(2)
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/90467639?wmode=0&wv-part=3&wv-hit=756762830&page-url=http%3A%2F%2Fwww.pressuhtfn.xyz%2F&rn=504059494&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1665100222%3Aw%3A1280x939%3Av%3A904%3Az%3A0%3Ai%3A20221006235022%3Au%3A1665100216237665696%3Avf%3Aat6op7b9z7b01ildsv2t4%3Awe%3A1%3Ast%3A1665100222&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 2058
Origin: http://www.pressuhtfn.xyz
Connection: keep-alive
Referer: http://www.pressuhtfn.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Thu, 06 Oct 2022 23:50:22 GMT
access-control-allow-origin: http://www.pressuhtfn.xyz
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 06-Oct-2022 23:50:22 GMT
last-modified: Thu, 06-Oct-2022 23:50:22 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/90467639?wv-check=5245&wv-type=0&wmode=0&wv-part=1&wv-hit=756762830&page-url=http%3A%2F%2Fwww.pressuhtfn.xyz%2F&rn=820200275&browser-info=gdpr%3A14%3Aet%3A1665100223%3Aw%3A1280x939%3Av%3A904%3Az%3A0%3Ai%3A20221006235023%3Au%3A1665100216237665696%3Avf%3Aat6op7b9z7b01ildsv2t4%3Awe%3A1%3Ast%3A1665100223&t=gdpr(14)ti(2)
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/90467639?wv-check=5245&wv-type=0&wmode=0&wv-part=1&wv-hit=756762830&page-url=http%3A%2F%2Fwww.pressuhtfn.xyz%2F&rn=820200275&browser-info=gdpr%3A14%3Aet%3A1665100223%3Aw%3A1280x939%3Av%3A904%3Az%3A0%3Ai%3A20221006235023%3Au%3A1665100216237665696%3Avf%3Aat6op7b9z7b01ildsv2t4%3Awe%3A1%3Ast%3A1665100223&t=gdpr(14)ti(2)
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/90467639?wv-check=5245&wv-type=0&wmode=0&wv-part=1&wv-hit=756762830&page-url=http%3A%2F%2Fwww.pressuhtfn.xyz%2F&rn=820200275&browser-info=gdpr%3A14%3Aet%3A1665100223%3Aw%3A1280x939%3Av%3A904%3Az%3A0%3Ai%3A20221006235023%3Au%3A1665100216237665696%3Avf%3Aat6op7b9z7b01ildsv2t4%3Awe%3A1%3Ast%3A1665100223&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 44
Origin: http://www.pressuhtfn.xyz
Connection: keep-alive
Referer: http://www.pressuhtfn.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Thu, 06 Oct 2022 23:50:23 GMT
access-control-allow-origin: http://www.pressuhtfn.xyz
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 06-Oct-2022 23:50:23 GMT
last-modified: Thu, 06-Oct-2022 23:50:23 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/90467639?wmode=0&wv-part=2&wv-hit=756762830&page-url=http%3A%2F%2Fwww.pressuhtfn.xyz%2F&rn=743689080&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1665100223%3Aw%3A1280x939%3Av%3A904%3Az%3A0%3Ai%3A20221006235023%3Au%3A1665100216237665696%3Avf%3Aat6op7b9z7b01ildsv2t4%3Awe%3A1%3Ast%3A1665100223&t=gdpr(14)ti(2)
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/90467639?wmode=0&wv-part=2&wv-hit=756762830&page-url=http%3A%2F%2Fwww.pressuhtfn.xyz%2F&rn=743689080&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1665100223%3Aw%3A1280x939%3Av%3A904%3Az%3A0%3Ai%3A20221006235023%3Au%3A1665100216237665696%3Avf%3Aat6op7b9z7b01ildsv2t4%3Awe%3A1%3Ast%3A1665100223&t=gdpr(14)ti(2)
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/90467639?wmode=0&wv-part=2&wv-hit=756762830&page-url=http%3A%2F%2Fwww.pressuhtfn.xyz%2F&rn=743689080&wv-type=3&browser-info=gdpr%3A14%3Aet%3A1665100223%3Aw%3A1280x939%3Av%3A904%3Az%3A0%3Ai%3A20221006235023%3Au%3A1665100216237665696%3Avf%3Aat6op7b9z7b01ildsv2t4%3Awe%3A1%3Ast%3A1665100223&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 21
Origin: http://www.pressuhtfn.xyz
Connection: keep-alive
Referer: http://www.pressuhtfn.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Thu, 06 Oct 2022 23:50:23 GMT
access-control-allow-origin: http://www.pressuhtfn.xyz
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 06-Oct-2022 23:50:23 GMT
last-modified: Thu, 06-Oct-2022 23:50:23 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/90467639?wmode=0&wv-part=4&wv-hit=756762830&page-url=http%3A%2F%2Fwww.pressuhtfn.xyz%2F&rn=97923894&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1665100223%3Aw%3A1280x939%3Av%3A904%3Az%3A0%3Ai%3A20221006235023%3Au%3A1665100216237665696%3Avf%3Aat6op7b9z7b01ildsv2t4%3Awe%3A1%3Ast%3A1665100223&t=gdpr(14)ti(2)
87.250.251.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/90467639?wmode=0&wv-part=4&wv-hit=756762830&page-url=http%3A%2F%2Fwww.pressuhtfn.xyz%2F&rn=97923894&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1665100223%3Aw%3A1280x939%3Av%3A904%3Az%3A0%3Ai%3A20221006235023%3Au%3A1665100216237665696%3Avf%3Aat6op7b9z7b01ildsv2t4%3Awe%3A1%3Ast%3A1665100223&t=gdpr(14)ti(2)
IP 87.250.251.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/90467639?wmode=0&wv-part=4&wv-hit=756762830&page-url=http%3A%2F%2Fwww.pressuhtfn.xyz%2F&rn=97923894&wv-type=3&browser-info=bt%3A1%3Agdpr%3A14%3Aet%3A1665100223%3Aw%3A1280x939%3Av%3A904%3Az%3A0%3Ai%3A20221006235023%3Au%3A1665100216237665696%3Avf%3Aat6op7b9z7b01ildsv2t4%3Awe%3A1%3Ast%3A1665100223&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 15
Origin: http://www.pressuhtfn.xyz
Connection: keep-alive
Referer: http://www.pressuhtfn.xyz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Thu, 06 Oct 2022 23:50:23 GMT
access-control-allow-origin: http://www.pressuhtfn.xyz
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Thu, 06-Oct-2022 23:50:23 GMT
last-modified: Thu, 06-Oct-2022 23:50:23 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
get.geojs.io/v1/ip/geo.js
104.26.0.100200 OK 0 B URL HTTP/2 get.geojs.io/v1/ip/geo.js
IP 104.26.0.100:0
GET /v1/ip/geo.js HTTP/1.1
Host: get.geojs.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pressuhtfn.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 06 Oct 2022 23:50:14 GMT
content-type: application/javascript; charset=utf-8
x-request-id: 19aeed8c048fb39c6cc5e48804f8a5ab-AMS
strict-transport-security: max-age=15552000; includeSubDomains; preload
access-control-allow-origin: *
access-control-allow-methods: GET
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, private, max-age=0
x-geojs-location: AMS
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uu89doTK31XvfGqPu8Epq06KNGuNOWcjYl%2BGldWF6hkXnJWuiw94gPvuldJd9vjlquS1LWL2S%2FO0TkVo1tDT424T%2BK7IocNrA6yUbaZAakX36CNrDsp%2FQ70f3Qmq5A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 75624c564d1ab523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2