r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bcdebf7a2bad5db595e8a0c1abb2ddcb
249dda2fa5e37b8a8f3a8c797193bf0874b6eedc
9b43ec48b16f96449208a0094c4d660806a2a2d344b5862dbff4c393bf3f9f9f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9B43EC48B16F96449208A0094C4D660806A2A2D344B5862DBFF4C393BF3F9F9F"
Last-Modified: Thu, 01 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4148
Expires: Sat, 03 Sep 2022 17:36:48 GMT
Date: Sat, 03 Sep 2022 16:27:40 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 03 Sep 2022 15:43:04 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: al7JSjuI7HNIZZ46I90HOqdauobvtO3zXUFso2ra421wxOZVSMEHnA==
Age: 2676
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 03 Sep 2022 01:15:18 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: RyUzt3aDckiLGeiom35qhj8E_klCS9nmkyb-FhUU8-60PoO8y3VfYg==
age: 54743
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Sep 2022 16:27:40 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
cacult.com/e-invoicing-for-aggregate-turnover-exceeding-rs-10-crore
45.40.150.136301 Moved Permanently 0 B URL HTTP/1.1 cacult.com/e-invoicing-for-aggregate-turnover-exceeding-rs-10-crore
IP 45.40.150.136:0
ASN #398101 GO-DADDY-COM-LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /e-invoicing-for-aggregate-turnover-exceeding-rs-10-crore HTTP/1.1
Host: cacult.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Age: 0
Content-Length: 0
Content-Type: text/html; charset=UTF-8
Date: Sat, 03 Sep 2022 16:27:40 GMT
Location: http://cacult.com/e-invoicing-for-aggregate-turnover-exceeding-rs-10-crore/
Set-Cookie: dwqa_anonymous=bInTAkoMC4WLd0BGzGtraihN1uJQ45h2WO2cM6Mag9r; expires=Tue, 31-Aug-2032 16:27:40 GMT; Max-Age=315360000; path=/; HttpOnly
pvc_visits[0]=1662308860b46193; expires=Sun, 04-Sep-2022 16:27:40 GMT; Max-Age=86400; path=/; HttpOnly
Vary: User-Agent
X-Backend: local
X-Cache: uncached
X-Cache-Hit: MISS
X-Cacheable: YES:Forced
X-Cacheproxy-Retries: 0/2
X-Content-Type-Options: nosniff
X-Fawn-Proc-Count: 1,1,24
X-Php-Version: 7.4
X-Redirect-By: WordPress
X-Xss-Protection: 1; mode=block
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sat, 03 Sep 2022 15:38:16 GMT
Expires: Sat, 03 Sep 2022 16:38:16 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: fdMmwNczh58D8df3Y8PvGnd1MgrwgsXlUb9Vm8L-eY_tQLeFGY4gPw==
Age: 2964
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4fc12f0a98aa28ccb56e0b56d7e40ded
f7efcfb8b4f4aa40268bada3fec380820a70ee35
a34aa9b7db949a583c3f1b4d87fed415a11d119c9615b5e710c3125173f8a277
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5318
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 16:27:40 GMT
Last-Modified: Sat, 03 Sep 2022 14:59:02 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.89.136.7101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.89.136.7:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: gPut7cIN1HbpPfH442F52w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: H0I5A8wiG8+9vyp/xXjaA48rKnE=
www.googletagmanager.com/gtag/js?id=UA-179431534-2
142.250.74.72302 Found 255 B URL HTTP/1.1 www.googletagmanager.com/gtag/js?id=UA-179431534-2
IP 142.250.74.72:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash c384cf54f9a1c558cc492c7dc635fae2
00013677d025fd2e67a30277491b2fd49ebac98e
6235fced5d3d120fe7540cf39573fddc19610e4e997471cb2e307e84172859c2
GET /gtag/js?id=UA-179431534-2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cacult.com/
HTTP/1.1 302 Found
Location: https://www.googletagmanager.com/gtag/js?id=UA-179431534-2
Cross-Origin-Resource-Policy: cross-origin
Date: Sat, 03 Sep 2022 16:27:41 GMT
Content-Type: text/html; charset=UTF-8
Server: Google Tag Manager
Content-Length: 255
X-XSS-Protection: 0
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash cc6ea3e01d1d6b8c4b28ff64d3b795a7
017457c6f5a63157102485a956c667aad36d33ef
e6fe903f67363d3e92b929e274f0de7c2f6a15b6df1806198199440ed0fe221e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 16:27:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9439a7cde73fea464c1463febdda0556
6a0030d4f26b2e9658700708c82e7ce6120ce93c
c3a5a489f4ef8c8cce54dbd819c5cf573740317ea3718ccd6804a03374739199
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 16:27:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9439a7cde73fea464c1463febdda0556
6a0030d4f26b2e9658700708c82e7ce6120ce93c
c3a5a489f4ef8c8cce54dbd819c5cf573740317ea3718ccd6804a03374739199
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 16:27:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-179431534-1
142.250.74.72200 OK 43 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-179431534-1
IP 142.250.74.72:0
File type ASCII text, with very long lines (1615)
Hash 3849be8c4c302d11edfed6857b3fa7d3
5ef180692913a52cb22039e74be8e2f5df543c72
ddab4f0385f18ed00889582e2fb989d2a2486876d76e1e3bc77150cefbba534d
GET /gtag/js?id=UA-179431534-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cacult.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 03 Sep 2022 16:27:41 GMT
expires: Sat, 03 Sep 2022 16:27:41 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42862
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-179431534-2
142.250.74.72200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-179431534-2
IP 142.250.74.72:0
File type ASCII text, with very long lines (1615)
Hash 3b78f88388dd92f67ab489e8ec6fda5f
24170e7d8cf783090621f6c07390b963797f7cf9
ad2e026ae25a4332d241707ab3d64bf1d3e6541c41510c61d42466c1743c785e
GET /gtag/js?id=UA-179431534-2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://cacult.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 03 Sep 2022 16:27:41 GMT
expires: Sat, 03 Sep 2022 16:27:41 GMT
cache-control: private, max-age=900
last-modified: Sat, 03 Sep 2022 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 41842
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 20cc30f2a41f9c5e824ea46460548950
c153b447d44cbbe8f30d7f490605d1a430af20a1
0f8bb96e7dfd8a6bb3d7eae1a958195cb8ca9f20e0ad8cd952c34267ff0625f3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 16:27:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash b69e4ee589f24deef7c8a3004daae9d1
e96ab184083a5084569b86b8846a6fa0c3b6af9a
7560417294eeb0f5c955d68bcc9b9eae40d69d1ff4b717a115ca1c614b1f4a17
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 16:27:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cacult.com/e-invoicing-for-aggregate-turnover-exceeding-rs-10-crore/
45.40.150.136200 OK 46 kB URL HTTP/1.1 cacult.com/e-invoicing-for-aggregate-turnover-exceeding-rs-10-crore/
IP 45.40.150.136:0
ASN #398101 GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (20841)
Hash 021bd3d370bd7eac1282ba207dc141f8
ab9df82dbf6a2ad349b39a01d0326c7073e96d26
c2db9d7e379875e2d0323458c93f80e5ce3ebaa81a802521a560e8ea05f6db1e
Analyzer Verdict Alert fortinet Phishing
GET /e-invoicing-for-aggregate-turnover-exceeding-rs-10-crore/ HTTP/1.1
Host: cacult.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: dwqa_anonymous=bInTAkoMC4WLd0BGzGtraihN1uJQ45h2WO2cM6Mag9r; pvc_visits[0]=1662308860b46193
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Content-Encoding: gzip
Content-Type: text/html; charset=UTF-8
Date: Sat, 03 Sep 2022 16:27:40 GMT
Set-Cookie: pvc_visits[0]=1662308860b46193; expires=Sun, 04-Sep-2022 16:27:40 GMT; Max-Age=86400; path=/; HttpOnly
Vary: Accept-Encoding, User-Agent
X-Backend: local
X-Cache: uncached
X-Cache-Hit: MISS
X-Cacheable: YES:Forced
X-Cacheproxy-Retries: 0/2
X-Content-Type-Options: nosniff
X-Fawn-Proc-Count: 1,1,24
X-Php-Version: 7.4
X-Xss-Protection: 1; mode=block
Transfer-Encoding: chunked
cacult.com/wp-content/cache/autoptimize/css/autoptimize_single_92af97945be9a01d035850e792e4aefc.css?ver=1660661669
45.40.150.136200 OK 601 B URL HTTP/1.1 cacult.com/wp-content/cache/autoptimize/css/autoptimize_single_92af97945be9a01d035850e792e4aefc.css?ver=1660661669
IP 45.40.150.136:0
ASN #398101 GO-DADDY-COM-LLC
File type ASCII text, with very long lines (1702), with no line terminators
Hash 17944147a2af8cbda4a8513a2025f85e
d83f847f54257a3f75e57339d93764a707f391a9
07e5dee0fe962428b4e6defaa08d5fccdbb53d570e284293bc8fa6717f731452
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/cache/autoptimize/css/autoptimize_single_92af97945be9a01d035850e792e4aefc.css?ver=1660661669 HTTP/1.1
Host: cacult.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cacult.com/e-invoicing-for-aggregate-turnover-exceeding-rs-10-crore/
Cookie: dwqa_anonymous=bInTAkoMC4WLd0BGzGtraihN1uJQ45h2WO2cM6Mag9r; pvc_visits[0]=1662308860b46193
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 77718
Cache-Control: max-age=30672000, public, immutable
Content-Encoding: gzip
Content-Length: 601
Content-Type: text/css
Date: Fri, 02 Sep 2022 18:52:23 GMT
Etag: "6a6-5e7a20be501d4-gzip"
Expires: Wed, 23 Aug 2023 18:52:23 GMT
Last-Modified: Thu, 01 Sep 2022 18:47:33 GMT
Vary: Accept-Encoding
X-Backend: local
X-Cache: cached
X-Cache-Hit: HIT
X-Cacheable: YES
X-Cacheproxy-Retries: 0/2
X-Content-Type-Options: nosniff
X-Php-Version: 7.4
X-Xss-Protection: 1; mode=block
cacult.com/wp-content/cache/autoptimize/css/autoptimize_single_6125f2e5229ea16cc7faaeea2d3a35c5.css?ver=1660661670
45.40.150.136200 OK 993 B URL HTTP/1.1 cacult.com/wp-content/cache/autoptimize/css/autoptimize_single_6125f2e5229ea16cc7faaeea2d3a35c5.css?ver=1660661670
IP 45.40.150.136:0
ASN #398101 GO-DADDY-COM-LLC
File type ASCII text, with very long lines (7798), with no line terminators
Hash 1aaac5d262656231bb11228e0d74efb2
02187977e6b8adeac247e283d5e2c2704e4c0183
45c3b4e10b382d4975046e619b6891a02cc5fdb440290b54af7cf306cfac78fc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/cache/autoptimize/css/autoptimize_single_6125f2e5229ea16cc7faaeea2d3a35c5.css?ver=1660661670 HTTP/1.1
Host: cacult.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cacult.com/e-invoicing-for-aggregate-turnover-exceeding-rs-10-crore/
Cookie: dwqa_anonymous=bInTAkoMC4WLd0BGzGtraihN1uJQ45h2WO2cM6Mag9r; pvc_visits[0]=1662308860b46193
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 77718
Cache-Control: max-age=30672000, public, immutable
Content-Encoding: gzip
Content-Length: 993
Content-Type: text/css
Date: Fri, 02 Sep 2022 18:52:23 GMT
Etag: "1e76-5e7a20be5155c-gzip"
Expires: Wed, 23 Aug 2023 18:52:23 GMT
Last-Modified: Thu, 01 Sep 2022 18:47:33 GMT
Vary: Accept-Encoding
X-Backend: local
X-Cache: cached
X-Cache-Hit: HIT
X-Cacheable: YES
X-Cacheproxy-Retries: 0/2
X-Content-Type-Options: nosniff
X-Php-Version: 7.4
X-Xss-Protection: 1; mode=block
cacult.com/wp-content/plugins/autoptimize/classes/external/js/lazysizes.min.js?ao_version=3.1.1.1
45.40.150.136200 OK 4.1 kB URL HTTP/1.1 cacult.com/wp-content/plugins/autoptimize/classes/external/js/lazysizes.min.js?ao_version=3.1.1.1
IP 45.40.150.136:0
ASN #398101 GO-DADDY-COM-LLC
File type ASCII text, with very long lines (7862)
Hash ea443a71626e6c5188a175df31482994
b06e76958bc2dd62bcc3c094bdd7c1a79d33f7ea
0bed4a9a59b7963e63a6fe6ce67a83846294323bc168c71878efb829509f00dd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/autoptimize/classes/external/js/lazysizes.min.js?ao_version=3.1.1.1 HTTP/1.1
Host: cacult.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cacult.com/e-invoicing-for-aggregate-turnover-exceeding-rs-10-crore/
Cookie: dwqa_anonymous=bInTAkoMC4WLd0BGzGtraihN1uJQ45h2WO2cM6Mag9r; pvc_visits[0]=1662308860b46193
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 77717
Content-Encoding: gzip
Content-Length: 4122
Content-Type: application/javascript
Date: Fri, 02 Sep 2022 18:52:23 GMT
Etag: "2655-5e65ceafc0501-gzip"
Last-Modified: Tue, 16 Aug 2022 14:53:57 GMT
Vary: Accept-Encoding
X-Backend: local
X-Cache: cached
X-Cache-Hit: HIT
X-Cacheable: YES
X-Cacheproxy-Retries: 0/2
X-Content-Type-Options: nosniff
X-Php-Version: 7.4
X-Xss-Protection: 1; mode=block
cacult.com/wp-includes/css/dashicons.min.css?ver=6.0.2
45.40.150.136200 OK 36 kB URL HTTP/1.1 cacult.com/wp-includes/css/dashicons.min.css?ver=6.0.2
IP 45.40.150.136:0
ASN #398101 GO-DADDY-COM-LLC
File type ASCII text, with very long lines (58981)
Hash 00492d322e5572c7abc3e8701b6c52c1
0802ac2c8280ce7c98af881b1d49ec682acbf314
8bc01632cbc3ab834e04141d444ff82b05a4691444d70a9860477710e330b824
GET /wp-includes/css/dashicons.min.css?ver=6.0.2 HTTP/1.1
Host: cacult.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cacult.com/e-invoicing-for-aggregate-turnover-exceeding-rs-10-crore/
Cookie: dwqa_anonymous=bInTAkoMC4WLd0BGzGtraihN1uJQ45h2WO2cM6Mag9r; pvc_visits[0]=1662308860b46193
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 77718
Content-Encoding: gzip
Content-Length: 35730
Content-Type: text/css
Date: Fri, 02 Sep 2022 18:52:23 GMT
Etag: "e688-5e7a1723f9880-gzip"
Last-Modified: Thu, 01 Sep 2022 18:04:36 GMT
Vary: Accept-Encoding
X-Backend: local
X-Cache: cached
X-Cache-Hit: HIT
X-Cacheable: YES
X-Cacheproxy-Retries: 0/2
X-Content-Type-Options: nosniff
X-Php-Version: 7.4
X-Xss-Protection: 1; mode=block
cacult.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
45.40.150.136200 OK 31 kB URL HTTP/1.1 cacult.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 45.40.150.136:0
ASN #398101 GO-DADDY-COM-LLC
File type ASCII text, with very long lines (65447)
Hash 9640915738503451aa21181699feab5b
c053eaf36ef0da96619706b3abda326305063bd6
f8834e669ad1f4039442c26aaa373ec39c35a233b9786d374fc3f670f16b0adc
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: cacult.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cacult.com/e-invoicing-for-aggregate-turnover-exceeding-rs-10-crore/
Cookie: dwqa_anonymous=bInTAkoMC4WLd0BGzGtraihN1uJQ45h2WO2cM6Mag9r; pvc_visits[0]=1662308860b46193
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 77718
Content-Encoding: gzip
Content-Length: 30908
Content-Type: application/javascript
Date: Fri, 02 Sep 2022 18:52:23 GMT
Etag: "15db1-5e7a17249c9e3;5a49c09ee0300
Last-Modified: Thu, 01 Sep 2022 18:04:36 GMT
Vary: Accept-Encoding
X-Backend: local
X-Cache: cached
X-Cache-Hit: HIT
X-Cacheable: YES
X-Cacheproxy-Retries: 0/2
X-Content-Type-Options: nosniff
X-Php-Version: 7.4
X-Xss-Protection: 1; mode=block
cacult.com/wp-content/cache/autoptimize/css/autoptimize_911318633f22a12ee744190482d37949.css
45.40.150.136200 OK 126 kB URL HTTP/1.1 cacult.com/wp-content/cache/autoptimize/css/autoptimize_911318633f22a12ee744190482d37949.css
IP 45.40.150.136:0
ASN #398101 GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (40735)
Size 126 kB (126486 bytes)
Hash 544ec47f2dea2fdbfca96d63456fed95
efcdf82874c0f019bd2ae7e515bb5002c066e42b
ad8af3b1bf78b67ca64c23b707b10e91b475d5fee7ebf94d3e15604277275a0c
GET /wp-content/cache/autoptimize/css/autoptimize_911318633f22a12ee744190482d37949.css HTTP/1.1
Host: cacult.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cacult.com/e-invoicing-for-aggregate-turnover-exceeding-rs-10-crore/
Cookie: dwqa_anonymous=bInTAkoMC4WLd0BGzGtraihN1uJQ45h2WO2cM6Mag9r; pvc_visits[0]=1662308860b46193
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 71841
Cache-Control: max-age=30672000, public, immutable
Content-Encoding: gzip
Content-Length: 126486
Content-Type: text/css
Date: Fri, 02 Sep 2022 20:30:19 GMT
Etag: "cad03-5e7a20c1c8ca3-gzip"
Expires: Wed, 23 Aug 2023 20:30:19 GMT
Last-Modified: Thu, 01 Sep 2022 18:47:37 GMT
Vary: Accept-Encoding
X-Backend: local
X-Cache: cached
X-Cache-Hit: HIT
X-Cacheable: YES
X-Cacheproxy-Retries: 0/2
X-Content-Type-Options: nosniff
X-Php-Version: 7.4
X-Xss-Protection: 1; mode=block
www.googletagmanager.com/gtag/js?id=UA-179431534-1&l=dataLayer&cx=c
142.250.74.72302 Found 280 B URL HTTP/1.1 www.googletagmanager.com/gtag/js?id=UA-179431534-1&l=dataLayer&cx=c
IP 142.250.74.72:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 6225c1c133c9c4efafdc6b97057a3df0
8bb3f7fd7f43ee6f83bc6a88ea09d5f19e40e210
fa21f61588c5c10db2126ab599ee140386b3d5a5e9fd9c97221365672e2ac474
GET /gtag/js?id=UA-179431534-1&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cacult.com/
HTTP/1.1 302 Found
Location: https://www.googletagmanager.com/gtag/js?id=UA-179431534-1&l=dataLayer&cx=c
Cross-Origin-Resource-Policy: cross-origin
Date: Sat, 03 Sep 2022 16:27:42 GMT
Content-Type: text/html; charset=UTF-8
Server: Google Tag Manager
Content-Length: 280
X-XSS-Protection: 0
cacult.com/wp-content/cache/autoptimize/css/autoptimize_c7a0102adfc321f17432cacdf61aedec.css
45.40.150.136200 OK 278 B URL HTTP/1.1 cacult.com/wp-content/cache/autoptimize/css/autoptimize_c7a0102adfc321f17432cacdf61aedec.css
IP 45.40.150.136:0
ASN #398101 GO-DADDY-COM-LLC
File type ASCII text, with very long lines (656), with no line terminators
Hash bd2926564ae3c7eb4466f8cb1558324a
db069725b5a46e66bc6b99d0cc40ef867a9fd1ae
da080899a17bdcb722a8b16b32b7a81b6fe761e964c6b512d04ea90425fb2ab7
GET /wp-content/cache/autoptimize/css/autoptimize_c7a0102adfc321f17432cacdf61aedec.css HTTP/1.1
Host: cacult.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cacult.com/e-invoicing-for-aggregate-turnover-exceeding-rs-10-crore/
Cookie: dwqa_anonymous=bInTAkoMC4WLd0BGzGtraihN1uJQ45h2WO2cM6Mag9r; pvc_visits[0]=1662308860b46193
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 77718
Cache-Control: max-age=30672000, public, immutable
Content-Encoding: gzip
Content-Length: 278
Content-Type: text/css
Date: Fri, 02 Sep 2022 18:52:24 GMT
Etag: "290-5e7a20be9f375-gzip"
Expires: Wed, 23 Aug 2023 18:52:24 GMT
Last-Modified: Thu, 01 Sep 2022 18:47:34 GMT
Vary: Accept-Encoding
X-Backend: local
X-Cache: cached
X-Cache-Hit: HIT
X-Cacheable: YES
X-Cacheproxy-Retries: 0/2
X-Content-Type-Options: nosniff
X-Php-Version: 7.4
X-Xss-Protection: 1; mode=block
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 7ce90d6fafa13d92fcf445b688f0389f
480461a46fc291cbcdf6218c7743779d7e862788
dd33483769f6c715aeb257c2955147c1a5a47b0af1684190247701465af8af6c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 16:27:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 7ce90d6fafa13d92fcf445b688f0389f
480461a46fc291cbcdf6218c7743779d7e862788
dd33483769f6c715aeb257c2955147c1a5a47b0af1684190247701465af8af6c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 16:27:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cacult.com/wp-content/cache/autoptimize/js/autoptimize_4d93f58c02f8ef5c3677f07c039fb2da.js
45.40.150.136200 OK 123 kB URL HTTP/1.1 cacult.com/wp-content/cache/autoptimize/js/autoptimize_4d93f58c02f8ef5c3677f07c039fb2da.js
IP 45.40.150.136:0
ASN #398101 GO-DADDY-COM-LLC
File type C source, ASCII text, with very long lines (18448)
Size 123 kB (122563 bytes)
Hash 81cc5b14b76325922694efc11aef1caa
58789fc780ccacca2696633cea37d548c8627fa1
d6ef9d7f20287a04cec314e46f477477da9ec2d8e8aa173e47fd6b4074d799dd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/cache/autoptimize/js/autoptimize_4d93f58c02f8ef5c3677f07c039fb2da.js HTTP/1.1
Host: cacult.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cacult.com/e-invoicing-for-aggregate-turnover-exceeding-rs-10-crore/
Cookie: dwqa_anonymous=bInTAkoMC4WLd0BGzGtraihN1uJQ45h2WO2cM6Mag9r; pvc_visits[0]=1662308860b46193
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 77717
Cache-Control: max-age=30672000, public, immutable
Content-Encoding: gzip
Content-Length: 122563
Content-Type: application/javascript
Date: Fri, 02 Sep 2022 18:52:23 GMT
Etag: "6b434-5e7a20c1b86eb-gzip"
Expires: Wed, 23 Aug 2023 18:52:23 GMT
Last-Modified: Thu, 01 Sep 2022 18:47:37 GMT
Vary: Accept-Encoding
X-Backend: local
X-Cache: cached
X-Cache-Hit: HIT
X-Cacheable: YES
X-Cacheproxy-Retries: 0/2
X-Content-Type-Options: nosniff
X-Php-Version: 7.4
X-Xss-Protection: 1; mode=block
cacult.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
45.40.150.136200 OK 5.0 kB URL HTTP/1.1 cacult.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP 45.40.150.136:0
ASN #398101 GO-DADDY-COM-LLC
File type ASCII text, with very long lines (15660)
Hash e6624e0b978e6ddba476be41aaaa82df
822e920d8233072110ed7c8a7f379e5b13209b18
dac86a9ce08e4d8cded47b4fa900a664b0c997d8910c2a1be54a423678925a41
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: cacult.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cacult.com/e-invoicing-for-aggregate-turnover-exceeding-rs-10-crore/
Cookie: dwqa_anonymous=bInTAkoMC4WLd0BGzGtraihN1uJQ45h2WO2cM6Mag9r; pvc_visits[0]=1662308860b46193
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 77718
Content-Encoding: gzip
Content-Length: 5009
Content-Type: application/javascript
Date: Fri, 02 Sep 2022 18:52:23 GMT
Etag: "48b9-5e7a1724b5083-gzip"
Last-Modified: Thu, 01 Sep 2022 18:04:36 GMT
Vary: Accept-Encoding
X-Backend: local
X-Cache: cached
X-Cache-Hit: HIT
X-Cacheable: YES
X-Cacheproxy-Retries: 0/2
X-Content-Type-Options: nosniff
X-Php-Version: 7.4
X-Xss-Protection: 1; mode=block
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 7ce90d6fafa13d92fcf445b688f0389f
480461a46fc291cbcdf6218c7743779d7e862788
dd33483769f6c715aeb257c2955147c1a5a47b0af1684190247701465af8af6c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 16:27:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ws-in.amazon-adsystem.com/widgets/q?ServiceVersion=20070822&OneJS=1&Operation=GetAdHtml&MarketPlace=IN&source=ac&ref=tf_til&ad_type=product_link&tracking_id=cacult0816-21&marketplace=amazon®ion=IN&placement=B08HLTFB33&asins=B08HLTFB33&linkId=39f9d5378ed0549066dd82eb9b3cac7c&show_border=false&link_opens_in_new_window=false&price_color=333333&title_color=0066C0&bg_color=FFFFFF
52.94.216.147200 200 3.4 kB URL HTTP/1.1 ws-in.amazon-adsystem.com/widgets/q?ServiceVersion=20070822&OneJS=1&Operation=GetAdHtml&MarketPlace=IN&source=ac&ref=tf_til&ad_type=product_link&tracking_id=cacult0816-21&marketplace=amazon®ion=IN&placement=B08HLTFB33&asins=B08HLTFB33&linkId=39f9d5378ed0549066dd82eb9b3cac7c&show_border=false&link_opens_in_new_window=false&price_color=333333&title_color=0066C0&bg_color=FFFFFF
IP 52.94.216.147:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5870)
Hash 0d3fcd21b26e2a83d7a1f5b9cc2a03a2
699284dc40eb17cac3e8fc9935a632a6fd714c33
ca92652ee339152cafb446c8dbe2e28be101d58a4efd8dcc393d3c716c394ddb
GET /widgets/q?ServiceVersion=20070822&OneJS=1&Operation=GetAdHtml&MarketPlace=IN&source=ac&ref=tf_til&ad_type=product_link&tracking_id=cacult0816-21&marketplace=amazon®ion=IN&placement=B08HLTFB33&asins=B08HLTFB33&linkId=39f9d5378ed0549066dd82eb9b3cac7c&show_border=false&link_opens_in_new_window=false&price_color=333333&title_color=0066C0&bg_color=FFFFFF HTTP/1.1
Host: ws-in.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cacult.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 200
Date: Sat, 03 Sep 2022 16:27:42 GMT
Server: Server
Content-Encoding: gzip
Cache-Control: must-revalidate
Pragma: no-cache
Expires: -1
charset: UTF-8
Access-Control-Allow-Origin: *
Content-Length: 3400
Vary: User-Agent
nnCoection: close
Content-Type: text/html;charset=UTF-8
fonts.googleapis.com/css?family=Nunito%3A400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i&subset=latin%2Clatin-ext&ver=6.0.2
142.250.74.10200 OK 4.1 kB URL HTTP/2 fonts.googleapis.com/css?family=Nunito%3A400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i&subset=latin%2Clatin-ext&ver=6.0.2
IP 142.250.74.10:0
File type ASCII text, with very long lines (5870)
Hash 0291db3c7c8e1537f91c0cfb99f51719
85343154b823ac4f185afa600a27ccee82d52ab8
0595f66a65375419da977addc6b32d610fd0e72af42e53c212c0a832dc83bf95
GET /css?family=Nunito%3A400%2C400i%2C600%2C600i%2C700%2C700i%2C800%2C800i&subset=latin%2Clatin-ext&ver=6.0.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cacult.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 03 Sep 2022 16:27:41 GMT
date: Sat, 03 Sep 2022 16:27:41 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ws-in.amazon-adsystem.com/widgets/q?ServiceVersion=20070822&OneJS=1&Operation=GetAdHtml&MarketPlace=IN&source=ac&ref=tf_til&ad_type=product_link&tracking_id=cacult0816-21&marketplace=amazon®ion=IN&placement=B08D3KXF9Y&asins=B08D3KXF9Y&linkId=19a198e990ed4f93fa3ecf88dfb26e16&show_border=false&link_opens_in_new_window=false&price_color=333333&title_color=0066c0&bg_color=ffffff
52.94.216.147200 200 3.4 kB URL HTTP/1.1 ws-in.amazon-adsystem.com/widgets/q?ServiceVersion=20070822&OneJS=1&Operation=GetAdHtml&MarketPlace=IN&source=ac&ref=tf_til&ad_type=product_link&tracking_id=cacult0816-21&marketplace=amazon®ion=IN&placement=B08D3KXF9Y&asins=B08D3KXF9Y&linkId=19a198e990ed4f93fa3ecf88dfb26e16&show_border=false&link_opens_in_new_window=false&price_color=333333&title_color=0066c0&bg_color=ffffff
IP 52.94.216.147:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (5870)
Hash cd2d8a205aec095b4714403bc3d28d66
bc89831d2d50db83866182a8ae825f82702d58de
e6bc760e02acffe4ef208f1b92e59f7c2ae64035642a3a272897dd48dd374c1b
GET /widgets/q?ServiceVersion=20070822&OneJS=1&Operation=GetAdHtml&MarketPlace=IN&source=ac&ref=tf_til&ad_type=product_link&tracking_id=cacult0816-21&marketplace=amazon®ion=IN&placement=B08D3KXF9Y&asins=B08D3KXF9Y&linkId=19a198e990ed4f93fa3ecf88dfb26e16&show_border=false&link_opens_in_new_window=false&price_color=333333&title_color=0066c0&bg_color=ffffff HTTP/1.1
Host: ws-in.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cacult.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 200
Date: Sat, 03 Sep 2022 16:27:42 GMT
Server: Server
Content-Encoding: gzip
Cache-Control: must-revalidate
Pragma: no-cache
Expires: -1
charset: UTF-8
Access-Control-Allow-Origin: *
Content-Length: 3436
Vary: User-Agent
nnCoection: close
Content-Type: text/html;charset=UTF-8
fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2
142.250.74.163200 OK 36 kB URL HTTP/2 fonts.gstatic.com/s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 35904, version 1.0\012- data
Hash c26b97e7f5bb7a34d190703522d75e16
69d9e5aea0544dbaf9b78c1b65139c03eceece8f
96217f1d27fb909f92b4a6b35a0d3d6775f2f0b4d136d27aee88547d3ed87357
GET /s/nunito/v25/XRXV3I6Li01BKofINeaB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://cacult.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35904
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 21:11:04 GMT
expires: Tue, 29 Aug 2023 21:11:04 GMT
cache-control: public, max-age=31536000
age: 414998
last-modified: Mon, 18 Jul 2022 19:34:47 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cacult.com/wp-content/themes/cream-magazine/assets/dist/fonts/feather/feather.woff?t=1525787366991
45.40.150.136200 OK 63 kB URL HTTP/1.1 cacult.com/wp-content/themes/cream-magazine/assets/dist/fonts/feather/feather.woff?t=1525787366991
IP 45.40.150.136:0
ASN #398101 GO-DADDY-COM-LLC
Hash cb2fc60b5832189a4e83d405aa20f2e1
d74dd727daf5c596eb8e37f6e298215d760b1dfe
7d001a76e116ef5f6c355665adda6adc6616e3fb24bd881add1d845643d799d0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/cream-magazine/assets/dist/fonts/feather/feather.woff?t=1525787366991 HTTP/1.1
Host: cacult.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://cacult.com/wp-content/cache/autoptimize/css/autoptimize_911318633f22a12ee744190482d37949.css
Cookie: dwqa_anonymous=bInTAkoMC4WLd0BGzGtraihN1uJQ45h2WO2cM6Mag9r; pvc_visits[0]=1662308860b46193
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Age: 77718
Content-Length: 29500
Content-Type: font/woff
Date: Fri, 02 Sep 2022 18:52:24 GMT
Etag: "733c-5e0386fcbead2"
Last-Modified: Mon, 30 May 2022 10:51:21 GMT
X-Backend: local
X-Cache: cached
X-Cache-Hit: HIT
X-Cacheable: YES
X-Cacheproxy-Retries: 0/2
X-Content-Type-Options: nosniff
X-Php-Version: 7.4
X-Xss-Protection: 1; mode=block
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://cacult.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:34:08 GMT
expires: Thu, 31 Aug 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 248014
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/nunito/v25/XRXX3I6Li01BKofIMNaDRs4.woff2
142.250.74.163200 OK 38 kB URL HTTP/2 fonts.gstatic.com/s/nunito/v25/XRXX3I6Li01BKofIMNaDRs4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 37852, version 1.0\012- data
Hash 3e234fa0724b4b5b6c5f0bb405055d7d
508857a361080c23b3a3ea6c0c66c36525b7422d
fe7839e0dc27d5a668c79b399849d56bc542d9c5dbf2ce2b52c476c6a35a7803
GET /s/nunito/v25/XRXX3I6Li01BKofIMNaDRs4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://cacult.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 37852
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 21:13:17 GMT
expires: Tue, 29 Aug 2023 21:13:17 GMT
cache-control: public, max-age=31536000
age: 414865
last-modified: Mon, 18 Jul 2022 19:37:26 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 7ce90d6fafa13d92fcf445b688f0389f
480461a46fc291cbcdf6218c7743779d7e862788
dd33483769f6c715aeb257c2955147c1a5a47b0af1684190247701465af8af6c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 16:27:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4032
Expires: Sat, 03 Sep 2022 17:34:54 GMT
Date: Sat, 03 Sep 2022 16:27:42 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4032
Expires: Sat, 03 Sep 2022 17:34:54 GMT
Date: Sat, 03 Sep 2022 16:27:42 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4032
Expires: Sat, 03 Sep 2022 17:34:54 GMT
Date: Sat, 03 Sep 2022 16:27:42 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4032
Expires: Sat, 03 Sep 2022 17:34:54 GMT
Date: Sat, 03 Sep 2022 16:27:42 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4032
Expires: Sat, 03 Sep 2022 17:34:54 GMT
Date: Sat, 03 Sep 2022 16:27:42 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc55d0c73-4085-42ac-acb4-1ae9b2ffb393.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc55d0c73-4085-42ac-acb4-1ae9b2ffb393.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c199f7fc2a2857dec134bfdb2673e28c
af3989072b658e2de119d006ae4ca1703468913d
e57411ba0221f6ffa7baf7c374ec790959a66d6a683fad40883ef01cf67e35c3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc55d0c73-4085-42ac-acb4-1ae9b2ffb393.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6976
x-amzn-requestid: da379546-9525-4e13-b9f0-a6446839df66
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X2eNeG7kIAMF4-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63127722-37399f67565b06e7111095cd;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 21:35:30 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5SORUPJgJ_gKKs4hSa4EzCCQA6B1dmyO1EC-gCBvFKl2R2hV0mYTeA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Sep 2022 22:39:01 GMT
age: 64121
etag: "af3989072b658e2de119d006ae4ca1703468913d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cacult.com/wp-content/themes/cream-magazine/assets/dist/fonts/fontAwesome/fontawesome-webfont.woff2?v=4.7.0
45.40.150.136200 OK 77 kB URL HTTP/1.1 cacult.com/wp-content/themes/cream-magazine/assets/dist/fonts/fontAwesome/fontawesome-webfont.woff2?v=4.7.0
IP 45.40.150.136:0
ASN #398101 GO-DADDY-COM-LLC
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash 20695b422f74240c3ce6c8b5b19220e4
a1fb496f1b848eb67d835cdc4d0bb4a44b15f16c
829cc687c85b587c6e0b397b2a9edbd4984dde20df2d743042c2d76c413dc7d0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/cream-magazine/assets/dist/fonts/fontAwesome/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: cacult.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://cacult.com/wp-content/cache/autoptimize/css/autoptimize_911318633f22a12ee744190482d37949.css
Cookie: dwqa_anonymous=bInTAkoMC4WLd0BGzGtraihN1uJQ45h2WO2cM6Mag9r; pvc_visits[0]=1662308860b46193
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Age: 77717
Content-Length: 77160
Content-Type: font/woff2
Date: Fri, 02 Sep 2022 18:52:24 GMT
Etag: "12d68-5e0386fcb9b9d"
Last-Modified: Mon, 30 May 2022 10:51:21 GMT
X-Backend: local
X-Cache: cached
X-Cache-Hit: HIT
X-Cacheable: YES
X-Cacheproxy-Retries: 0/2
X-Content-Type-Options: nosniff
X-Php-Version: 7.4
X-Xss-Protection: 1; mode=block
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe9669117-bdb7-4eca-9f0c-900e888a9a98.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe9669117-bdb7-4eca-9f0c-900e888a9a98.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d9ae49d397bc8300ce0eceda8175a3ad
087b7d14d84ebb179126c9dcd8964d22f24f30ab
b9daa2fc390a97a4bd622dbdec7fe0fff7e6527ffb844a46b9b87b2bd6e0f006
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe9669117-bdb7-4eca-9f0c-900e888a9a98.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13241
x-amzn-requestid: 80083a05-9884-48f8-983b-d4132d7c8a0c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X2eMHFgPIAMF9qg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6312771a-16fd2f06541cb4bc027f153f;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 21:35:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: zugAT8FgWA5gShTMABbCTZbZzaCXxM6du0zskoXn-LtzDNb5j4ByeA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Sep 2022 22:18:36 GMT
age: 65346
etag: "087b7d14d84ebb179126c9dcd8964d22f24f30ab"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff7d7b349-4711-4e66-bc42-888934e385a2.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff7d7b349-4711-4e66-bc42-888934e385a2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 23b580e2b673257d24b9c2e80c4c48ce
f3a3d835a37f9b23e7458f9b7bc721bc415b61cc
c0e3559fde3dd08cdbd360f39dddcc98dd7c1b3aebd0861cc07105872a116d11
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff7d7b349-4711-4e66-bc42-888934e385a2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7501
x-amzn-requestid: bf297fc4-9164-45ee-bfab-06761a52e3ba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X2eMJEP1IAMFdpA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6312771a-6b3e6416133d67a83d8a1469;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 21:35:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: datd5eYK6nOAUdEpy_y4gcqsVmCqjP4qhzTnlJ9pSrquoYk2PPugTA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Sep 2022 22:02:34 GMT
age: 66308
etag: "f3a3d835a37f9b23e7458f9b7bc721bc415b61cc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7e53e5b7-d429-4f33-bd77-ce946421df55.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7e53e5b7-d429-4f33-bd77-ce946421df55.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 60769237af4f32c663d494d91a672d08
31305131f340191799484f212e15513bd1204e88
6df36e459f3a2d0271732b645009b116e6671363f6c3050d22bbfe2d911a77bd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7e53e5b7-d429-4f33-bd77-ce946421df55.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4994
x-amzn-requestid: de39357f-d378-4bb8-b4d9-7dd4f82fbb58
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xgj-kEHvoAMFyBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6309b390-119fa01e254e89cb39a1b794;Sampled=0
x-amzn-remapped-date: Sat, 27 Aug 2022 06:02:56 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 1yjBt3dqEztIRHo4yR3ZzI67J4lWUMS8R44-PpkeDJ4KNdCTPkmh-w==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 04:45:35 GMT
age: 42127
etag: "31305131f340191799484f212e15513bd1204e88"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2e13cf1-38c2-4f82-a50c-b409a24f3af6.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2e13cf1-38c2-4f82-a50c-b409a24f3af6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f4cb62c7c522b71c62a97630d8330ef5
950611314b81428b3d80ff8659272cc800cf48b6
3fd0bbf8a1fe8776136d611d6b99b909b71e6af3a13f8794338af2f0026b59ff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2e13cf1-38c2-4f82-a50c-b409a24f3af6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7975
x-amzn-requestid: d4695cb0-76ed-495c-b548-d7819edd6d90
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XwqDSGuDIAMF6kA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631023ae-7ba42ae9407c626a02d10e7f;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 03:14:54 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: paxjtCjggGuEMbpwW1HmCdQOemdktodVUl-grweVuYke_NynMIHMlg==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 03:54:34 GMT
age: 45188
etag: "950611314b81428b3d80ff8659272cc800cf48b6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb6f5d90-39e2-4288-8685-adf2348d38e8.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb6f5d90-39e2-4288-8685-adf2348d38e8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d78cbff83c152b84864606781a29563d
8bdbc6e135be6e582d0e23754399422e3792777b
3c385de9ade05e1652ccc386e73aaccc4c223a07b81af4c5fdf3f73a166909f7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb6f5d90-39e2-4288-8685-adf2348d38e8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14061
x-amzn-requestid: 43535b37-15c9-4a28-a7c0-f43482948382
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XqlhGFX4IAMF9oQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630db606-77bd935d4364050f230ba5da;Sampled=0
x-amzn-remapped-date: Tue, 30 Aug 2022 07:02:30 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: y_-knSwUodyBxS8I8PAoUexT6Z4o0Aq7m62v7HrRjm7vV-jP0VuCpw==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 06:26:07 GMT
age: 36095
etag: "8bdbc6e135be6e582d0e23754399422e3792777b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cacult.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
45.40.150.136200 OK 77 kB URL HTTP/1.1 cacult.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP 45.40.150.136:0
ASN #398101 GO-DADDY-COM-LLC
File type Web Open Font Format (Version 2), TrueType, length 76764, version 331.-31261\012- data
Hash f7307680c7fe85959f3ecf122493ea7d
fce0da592a3e536d6d5df5b50cb513398d8c5161
43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: cacult.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://cacult.com/wp-content/cache/autoptimize/css/autoptimize_911318633f22a12ee744190482d37949.css
Cookie: dwqa_anonymous=bInTAkoMC4WLd0BGzGtraihN1uJQ45h2WO2cM6Mag9r; pvc_visits[0]=1662308860b46193
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Age: 77717
Content-Length: 76764
Content-Type: font/woff2
Date: Fri, 02 Sep 2022 18:52:24 GMT
Etag: "12bdc-5e796a301f601"
Last-Modified: Thu, 01 Sep 2022 05:10:49 GMT
X-Backend: local
X-Cache: cached
X-Cache-Hit: HIT
X-Cacheable: YES
X-Cacheproxy-Retries: 0/2
X-Content-Type-Options: nosniff
X-Php-Version: 7.4
X-Xss-Protection: 1; mode=block
cdn0.cuelinks.com/js/cuelinksv2.js
104.21.35.30200 OK 1.5 kB URL HTTP/1.1 cdn0.cuelinks.com/js/cuelinksv2.js
IP 104.21.35.30:0
File type ASCII text, with very long lines (5588), with no line terminators
Hash 6f865d194520368cfe16af0aba7b186d
ae9c7b4acf9707661fab33a7b054bff8255c1c99
b9d3d32202c494ff0adf1232c475d861b3ebd92d5d6345997f0cf7fe92f7cfdc
GET /js/cuelinksv2.js HTTP/1.1
Host: cdn0.cuelinks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cacult.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 16:27:42 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 03 Sep 2019 11:32:06 GMT
ETag: W/"51a19ceea8226ff60feb227a1752b418"
X-Cache: Miss from cloudfront
Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: q2nR3IauXoJqAwr6GCocZeZFGDrjFMzyCDkWtTJ0-IEcUzjY-vTzzw==
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=y4whPCKlB8H5i5cQ%2FLiJcxn9A9k%2BUkF2As3zq%2BmTVjPTa5EOuijknwR0nz4iDvngh6h8KE1XHWizHm3l8TPTMsZf6WaWbhUlnpW6GadsrzIqNUqbTSrfc2EpjFPB%2FqYGquW%2BrA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 744fdab59eee1bfe-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
m.media-amazon.com/images/I/31I01zObT9L._AC_AC_SR98,95_.jpg
54.230.219.191200 OK 2.0 kB URL HTTP/2 m.media-amazon.com/images/I/31I01zObT9L._AC_AC_SR98,95_.jpg
IP 54.230.219.191:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 98x95, components 3\012- data
Hash 402904a5d8bc724e16dbba25cfcec403
4d17fe372423a25e1b95e9cb50c61d4b88368123
1b076761380f7336772cec2c23e953bf75de38d57a5492ea273e04b095863166
GET /images/I/31I01zObT9L._AC_AC_SR98,95_.jpg HTTP/1.1
Host: m.media-amazon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ws-in.amazon-adsystem.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 2029
server: Server
date: Wed, 17 Aug 2022 12:17:00 GMT
x-amz-ir-id: 1b5418a5-fe5e-4162-8302-540d4bdaea95
expires: Tue, 12 Aug 2042 12:17:00 GMT
cache-control: max-age=630720000,public
surrogate-key: x-cache-659 /images/I/31I01zObT9L
timing-allow-origin: https://www.amazon.in, https://www.amazon.com
edge-cache-tag: x-cache-659,/images/I/31I01zObT9L
access-control-allow-origin: *
last-modified: Sat, 17 Oct 2020 17:35:11 GMT
x-nginx-cache-status: MISS
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: zFOtK4XCuwnO2lUOaPU8R3fOmy6MD6M4-eB5ybJXyTSQOUimf1Zz8A==
age: 1483842
X-Firefox-Spdy: h2
m.media-amazon.com/images/I/51eJo0hFsbL._AC_AC_SR98,95_.jpg
54.230.219.191200 OK 1.9 kB URL HTTP/2 m.media-amazon.com/images/I/51eJo0hFsbL._AC_AC_SR98,95_.jpg
IP 54.230.219.191:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 98x95, components 3\012- data
Hash a317de9559579531ddc9f887c277b180
c9180c02b129416c8f7d5d3a8dd96e5a32d27287
8f5eaf965d13c7d383254d25cb06ff4e06f13600fdcd3be2fb587314059d767a
GET /images/I/51eJo0hFsbL._AC_AC_SR98,95_.jpg HTTP/1.1
Host: m.media-amazon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ws-in.amazon-adsystem.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 1929
server: Server
date: Mon, 22 Aug 2022 07:47:03 GMT
x-amz-ir-id: e10b5a69-bcd2-4a4c-9cd6-9118f062fae8
expires: Sat, 16 Aug 2042 08:08:40 GMT
cache-control: max-age=630720000,public
surrogate-key: x-cache-040 /images/I/51eJo0hFsbL
timing-allow-origin: https://www.amazon.in, https://www.amazon.com
edge-cache-tag: x-cache-040,/images/I/51eJo0hFsbL
access-control-allow-origin: *
last-modified: Fri, 15 May 2020 12:26:26 GMT
x-nginx-cache-status: HIT
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1I7O0OQ6kq2VE9pyf-6Xhb5gcjkxvbwU16XzZGQ6AsP5szVihMJmQQ==
age: 1068039
X-Firefox-Spdy: h2
m.media-amazon.com/images/I/41nzI1lhIVL._AC_AC_SR98,95_.jpg
54.230.219.191200 OK 2.2 kB URL HTTP/2 m.media-amazon.com/images/I/41nzI1lhIVL._AC_AC_SR98,95_.jpg
IP 54.230.219.191:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 98x95, components 3\012- data
Hash 0ab81bbe4633ff90c76d7926fe28aa9e
2f7d2a2c4bcf3aafe46cfd351dbed41bee27e07c
371ecb7184919d92d83027f93e872abdd9d1456f8f0edda26dd8a98eaee8b08f
GET /images/I/41nzI1lhIVL._AC_AC_SR98,95_.jpg HTTP/1.1
Host: m.media-amazon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ws-in.amazon-adsystem.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 2166
server: Server
date: Tue, 16 Aug 2022 07:47:17 GMT
x-amz-ir-id: 1e3749e1-e201-4a72-8632-531b7e8e705c
expires: Mon, 11 Aug 2042 07:42:52 GMT
cache-control: max-age=630720000,public
surrogate-key: x-cache-185 /images/I/41nzI1lhIVL
timing-allow-origin: https://www.amazon.in, https://www.amazon.com
edge-cache-tag: x-cache-185,/images/I/41nzI1lhIVL
access-control-allow-origin: *
last-modified: Thu, 17 Sep 2020 10:59:45 GMT
x-nginx-cache-status: HIT
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: q-R9Yh4jeD3AFuRJhmgGYX6fjmPk9bkc0yy9RDVu6XZlmPXdCfbohw==
age: 1586425
X-Firefox-Spdy: h2
m.media-amazon.com/images/I/51-ni+FoT4L._AC_AC_SR98,95_.jpg
54.230.219.191200 OK 3.1 kB URL HTTP/2 m.media-amazon.com/images/I/51-ni+FoT4L._AC_AC_SR98,95_.jpg
IP 54.230.219.191:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 98x95, components 3\012- data
Hash 3bfd8a0ec82f5b105dad1e1e58f631bb
71dbee588fcc7579020e908e393d4edc80552b17
6302de5bca949087a75d77db74449b983e3b7856d756ab63e433adeb72c57051
GET /images/I/51-ni+FoT4L._AC_AC_SR98,95_.jpg HTTP/1.1
Host: m.media-amazon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://ws-in.amazon-adsystem.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 3123
server: Server
date: Sun, 26 Jun 2022 03:57:40 GMT
x-amz-ir-id: 4b03a65b-d68a-405d-8ddc-6611e08bbf99
expires: Sat, 21 Jun 2042 03:57:40 GMT
cache-control: max-age=630720000,public
surrogate-key: x-cache-976 /images/I/51-ni+FoT4L
timing-allow-origin: https://www.amazon.in, https://www.amazon.com
edge-cache-tag: x-cache-976,/images/I/51-ni+FoT4L
access-control-allow-origin: *
last-modified: Wed, 28 Jul 2021 09:42:09 GMT
x-nginx-cache-status: MISS
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BhxQuWx9VlSEeFSfpWveFPX_KRUxlBMg0acBZ646j8TVXe8t0zrVdA==
age: 6006602
X-Firefox-Spdy: h2
wms-in.amazon-adsystem.com/panda/20070822/IN/img/a-logo-amazon.png
54.230.111.61301 Moved Permanently 183 B URL HTTP/1.1 wms-in.amazon-adsystem.com/panda/20070822/IN/img/a-logo-amazon.png
IP 54.230.111.61:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash e4e384d6672787c1bb2a9b500114f1f5
cf909e7937cd3f312c434367b732a53d7a6cbf14
80785f5520097dde3b28c617171415cd690cbf1e0353a5f3e348c83a4656ea0f
GET /panda/20070822/IN/img/a-logo-amazon.png HTTP/1.1
Host: wms-in.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ws-in.amazon-adsystem.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Sat, 03 Sep 2022 16:27:42 GMT
Content-Type: text/html
Content-Length: 183
Connection: keep-alive
Location: https://wms-in.amazon-adsystem.com/panda/20070822/IN/img/a-logo-amazon.png
X-Cache: Redirect from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Uf-r1nROl4Dz48VCGeJeXbpW3bG21TsH_aBp_h79fVGrY_fwtocDCQ==
wms-in.amazon-adsystem.com/panda/20070822/US/img/cart.gif
54.230.111.61301 Moved Permanently 183 B URL HTTP/1.1 wms-in.amazon-adsystem.com/panda/20070822/US/img/cart.gif
IP 54.230.111.61:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash e4e384d6672787c1bb2a9b500114f1f5
cf909e7937cd3f312c434367b732a53d7a6cbf14
80785f5520097dde3b28c617171415cd690cbf1e0353a5f3e348c83a4656ea0f
GET /panda/20070822/US/img/cart.gif HTTP/1.1
Host: wms-in.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ws-in.amazon-adsystem.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Sat, 03 Sep 2022 16:27:42 GMT
Content-Type: text/html
Content-Length: 183
Connection: keep-alive
Location: https://wms-in.amazon-adsystem.com/panda/20070822/US/img/cart.gif
X-Cache: Redirect from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: CAwf09VlJlyjob9Q8pyboNp2wSBqRASYunK5WcEFZ5XOWGAp322DKQ==
fls-eu.amazon-adsystem.com/1/associates-ads/1/OP/r/json?cb=1662222460256&p=%7B%22program%22%3A%2231%22%2C%22linkCode%22%3A%22w00%22%2C%22panda%22%3Atrue%2C%22tag%22%3A%22cacult0816-21%22%2C%22refUrl%22%3A%22http%3A%2F%2Fcacult.com%2F%22%7D
52.94.218.163200 OK 43 B URL HTTP/1.1 fls-eu.amazon-adsystem.com/1/associates-ads/1/OP/r/json?cb=1662222460256&p=%7B%22program%22%3A%2231%22%2C%22linkCode%22%3A%22w00%22%2C%22panda%22%3Atrue%2C%22tag%22%3A%22cacult0816-21%22%2C%22refUrl%22%3A%22http%3A%2F%2Fcacult.com%2F%22%7D
IP 52.94.218.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash e68cc604cab69bf03b8cd228d940f5ef
15c0c62c4c7c917b5dd82a8e1e439211a44b9e98
a3a64aea2e96ec58a163ddb8d4cf86cf236178ed2d225b8f44154bc1b010ddce
GET /1/associates-ads/1/OP/r/json?cb=1662222460256&p=%7B%22program%22%3A%2231%22%2C%22linkCode%22%3A%22w00%22%2C%22panda%22%3Atrue%2C%22tag%22%3A%22cacult0816-21%22%2C%22refUrl%22%3A%22http%3A%2F%2Fcacult.com%2F%22%7D HTTP/1.1
Host: fls-eu.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ws-in.amazon-adsystem.com/
HTTP/1.1 200 OK
x-amzn-RequestId: ef52daf2-59e1-49a3-9f66-540417a04138
Content-Type: image/gif
Content-Length: 43
Date: Sat, 03 Sep 2022 16:27:42 GMT
fls-eu.amazon-adsystem.com/1/associates-ads/1/OP/r/json?cb=1662222460270&p=%7B%22program%22%3A%2231%22%2C%22linkCode%22%3A%22w00%22%2C%22panda%22%3Atrue%2C%22tag%22%3A%22cacult0816-21%22%2C%22refUrl%22%3A%22http%3A%2F%2Fcacult.com%2F%22%7D
52.94.218.163200 OK 43 B URL HTTP/1.1 fls-eu.amazon-adsystem.com/1/associates-ads/1/OP/r/json?cb=1662222460270&p=%7B%22program%22%3A%2231%22%2C%22linkCode%22%3A%22w00%22%2C%22panda%22%3Atrue%2C%22tag%22%3A%22cacult0816-21%22%2C%22refUrl%22%3A%22http%3A%2F%2Fcacult.com%2F%22%7D
IP 52.94.218.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash e68cc604cab69bf03b8cd228d940f5ef
15c0c62c4c7c917b5dd82a8e1e439211a44b9e98
a3a64aea2e96ec58a163ddb8d4cf86cf236178ed2d225b8f44154bc1b010ddce
GET /1/associates-ads/1/OP/r/json?cb=1662222460270&p=%7B%22program%22%3A%2231%22%2C%22linkCode%22%3A%22w00%22%2C%22panda%22%3Atrue%2C%22tag%22%3A%22cacult0816-21%22%2C%22refUrl%22%3A%22http%3A%2F%2Fcacult.com%2F%22%7D HTTP/1.1
Host: fls-eu.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ws-in.amazon-adsystem.com/
HTTP/1.1 200 OK
x-amzn-RequestId: 51235b4b-2bdc-414e-89a5-fb5fbcc638ad
Content-Type: image/gif
Content-Length: 43
Date: Sat, 03 Sep 2022 16:27:42 GMT
fls-eu.amazon-adsystem.com/1/associates-ads/1/OP/r/json?cb=1662222460289&p=%7B%22program%22%3A%2231%22%2C%22linkCode%22%3A%22w00%22%2C%22panda%22%3Atrue%2C%22tag%22%3A%22cacult0816-21%22%2C%22refUrl%22%3A%22http%3A%2F%2Fcacult.com%2F%22%7D
52.94.218.163200 OK 43 B URL HTTP/1.1 fls-eu.amazon-adsystem.com/1/associates-ads/1/OP/r/json?cb=1662222460289&p=%7B%22program%22%3A%2231%22%2C%22linkCode%22%3A%22w00%22%2C%22panda%22%3Atrue%2C%22tag%22%3A%22cacult0816-21%22%2C%22refUrl%22%3A%22http%3A%2F%2Fcacult.com%2F%22%7D
IP 52.94.218.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash e68cc604cab69bf03b8cd228d940f5ef
15c0c62c4c7c917b5dd82a8e1e439211a44b9e98
a3a64aea2e96ec58a163ddb8d4cf86cf236178ed2d225b8f44154bc1b010ddce
GET /1/associates-ads/1/OP/r/json?cb=1662222460289&p=%7B%22program%22%3A%2231%22%2C%22linkCode%22%3A%22w00%22%2C%22panda%22%3Atrue%2C%22tag%22%3A%22cacult0816-21%22%2C%22refUrl%22%3A%22http%3A%2F%2Fcacult.com%2F%22%7D HTTP/1.1
Host: fls-eu.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ws-in.amazon-adsystem.com/
HTTP/1.1 200 OK
x-amzn-RequestId: 2e1011d0-764c-4908-9d03-057d94218d01
Content-Type: image/gif
Content-Length: 43
Date: Sat, 03 Sep 2022 16:27:42 GMT
fls-eu.amazon-adsystem.com/1/associates-ads/1/OP/r/json?cb=1662222460246&p=%7B%22program%22%3A%2231%22%2C%22linkCode%22%3A%22w00%22%2C%22panda%22%3Atrue%2C%22tag%22%3A%22cacult0816-21%22%2C%22refUrl%22%3A%22http%3A%2F%2Fcacult.com%2F%22%7D
52.94.218.163200 OK 43 B URL HTTP/1.1 fls-eu.amazon-adsystem.com/1/associates-ads/1/OP/r/json?cb=1662222460246&p=%7B%22program%22%3A%2231%22%2C%22linkCode%22%3A%22w00%22%2C%22panda%22%3Atrue%2C%22tag%22%3A%22cacult0816-21%22%2C%22refUrl%22%3A%22http%3A%2F%2Fcacult.com%2F%22%7D
IP 52.94.218.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash e68cc604cab69bf03b8cd228d940f5ef
15c0c62c4c7c917b5dd82a8e1e439211a44b9e98
a3a64aea2e96ec58a163ddb8d4cf86cf236178ed2d225b8f44154bc1b010ddce
GET /1/associates-ads/1/OP/r/json?cb=1662222460246&p=%7B%22program%22%3A%2231%22%2C%22linkCode%22%3A%22w00%22%2C%22panda%22%3Atrue%2C%22tag%22%3A%22cacult0816-21%22%2C%22refUrl%22%3A%22http%3A%2F%2Fcacult.com%2F%22%7D HTTP/1.1
Host: fls-eu.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ws-in.amazon-adsystem.com/
HTTP/1.1 200 OK
x-amzn-RequestId: 78322f96-105a-4312-ad6c-4525fb1acc58
Content-Type: image/gif
Content-Length: 43
Date: Sat, 03 Sep 2022 16:27:42 GMT
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash ac3c630c25ccceb889a4c06a2f70097f
18cfa38c457f785eb0bec3fde9d19c96208232fd
3b50e7f42609b3afc5aa98ad02bd37d0748aa9bec86f36bf02eefe67e4b4fe91
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 16:27:42 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Thu, 01 Sep 2022 01:08:40 GMT
Expires: Thu, 08 Sep 2022 01:08:39 GMT
Etag: "18cfa38c457f785eb0bec3fde9d19c96208232fd"
Cache-Control: max-age=376256,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 744fdab94e320b4d-OSL
ws-in.amazon-adsystem.com/widgets/q?ServiceVersion=20070822&OneJS=1&Operation=GetAdHtml&MarketPlace=IN&source=ac&ref=tf_til&ad_type=product_link&tracking_id=cacult0816-21&marketplace=amazon®ion=IN&placement=B08HLTFB33&asins=B08HLTFB33&linkId=39f9d5378ed0549066dd82eb9b3cac7c&show_border=false&link_opens_in_new_window=false&price_color=333333&title_color=0066C0&bg_color=FFFFFF
52.94.216.147200 200 3.4 kB URL HTTP/1.1 ws-in.amazon-adsystem.com/widgets/q?ServiceVersion=20070822&OneJS=1&Operation=GetAdHtml&MarketPlace=IN&source=ac&ref=tf_til&ad_type=product_link&tracking_id=cacult0816-21&marketplace=amazon®ion=IN&placement=B08HLTFB33&asins=B08HLTFB33&linkId=39f9d5378ed0549066dd82eb9b3cac7c&show_border=false&link_opens_in_new_window=false&price_color=333333&title_color=0066C0&bg_color=FFFFFF
IP 52.94.216.147:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5870)
Hash 0d3fcd21b26e2a83d7a1f5b9cc2a03a2
699284dc40eb17cac3e8fc9935a632a6fd714c33
ca92652ee339152cafb446c8dbe2e28be101d58a4efd8dcc393d3c716c394ddb
GET /widgets/q?ServiceVersion=20070822&OneJS=1&Operation=GetAdHtml&MarketPlace=IN&source=ac&ref=tf_til&ad_type=product_link&tracking_id=cacult0816-21&marketplace=amazon®ion=IN&placement=B08HLTFB33&asins=B08HLTFB33&linkId=39f9d5378ed0549066dd82eb9b3cac7c&show_border=false&link_opens_in_new_window=false&price_color=333333&title_color=0066C0&bg_color=FFFFFF HTTP/1.1
Host: ws-in.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cacult.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 200
Date: Sat, 03 Sep 2022 16:27:42 GMT
Server: Server
Content-Encoding: gzip
Cache-Control: must-revalidate
Pragma: no-cache
Expires: -1
charset: UTF-8
Access-Control-Allow-Origin: *
Content-Length: 3400
Vary: User-Agent
nnCoection: close
Content-Type: text/html;charset=UTF-8
ws-in.amazon-adsystem.com/widgets/q?ServiceVersion=20070822&OneJS=1&Operation=GetAdHtml&MarketPlace=IN&source=ac&ref=tf_til&ad_type=product_link&tracking_id=cacult0816-21&marketplace=amazon®ion=IN&placement=B08D3KXF9Y&asins=B08D3KXF9Y&linkId=19a198e990ed4f93fa3ecf88dfb26e16&show_border=false&link_opens_in_new_window=false&price_color=333333&title_color=0066c0&bg_color=ffffff
52.94.216.147200 200 3.4 kB URL HTTP/1.1 ws-in.amazon-adsystem.com/widgets/q?ServiceVersion=20070822&OneJS=1&Operation=GetAdHtml&MarketPlace=IN&source=ac&ref=tf_til&ad_type=product_link&tracking_id=cacult0816-21&marketplace=amazon®ion=IN&placement=B08D3KXF9Y&asins=B08D3KXF9Y&linkId=19a198e990ed4f93fa3ecf88dfb26e16&show_border=false&link_opens_in_new_window=false&price_color=333333&title_color=0066c0&bg_color=ffffff
IP 52.94.216.147:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (5870)
Hash cd2d8a205aec095b4714403bc3d28d66
bc89831d2d50db83866182a8ae825f82702d58de
e6bc760e02acffe4ef208f1b92e59f7c2ae64035642a3a272897dd48dd374c1b
GET /widgets/q?ServiceVersion=20070822&OneJS=1&Operation=GetAdHtml&MarketPlace=IN&source=ac&ref=tf_til&ad_type=product_link&tracking_id=cacult0816-21&marketplace=amazon®ion=IN&placement=B08D3KXF9Y&asins=B08D3KXF9Y&linkId=19a198e990ed4f93fa3ecf88dfb26e16&show_border=false&link_opens_in_new_window=false&price_color=333333&title_color=0066c0&bg_color=ffffff HTTP/1.1
Host: ws-in.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cacult.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 200
Date: Sat, 03 Sep 2022 16:27:42 GMT
Server: Server
Content-Encoding: gzip
Cache-Control: must-revalidate
Pragma: no-cache
Expires: -1
charset: UTF-8
Access-Control-Allow-Origin: *
Content-Length: 3436
Vary: User-Agent
nnCoection: close
Content-Type: text/html;charset=UTF-8
ws-in.amazon-adsystem.com/widgets/q?ServiceVersion=20070822&OneJS=1&Operation=GetAdHtml&MarketPlace=IN&source=ac&ref=tf_til&ad_type=product_link&tracking_id=cacult0816-21&marketplace=amazon®ion=IN&placement=0241491517&asins=0241491517&linkId=97dec1147bdcc2e14cf582fa878b7b4d&show_border=false&link_opens_in_new_window=false&price_color=333333&title_color=0066c0&bg_color=ffffff
52.94.216.147200 200 3.3 kB URL HTTP/1.1 ws-in.amazon-adsystem.com/widgets/q?ServiceVersion=20070822&OneJS=1&Operation=GetAdHtml&MarketPlace=IN&source=ac&ref=tf_til&ad_type=product_link&tracking_id=cacult0816-21&marketplace=amazon®ion=IN&placement=0241491517&asins=0241491517&linkId=97dec1147bdcc2e14cf582fa878b7b4d&show_border=false&link_opens_in_new_window=false&price_color=333333&title_color=0066c0&bg_color=ffffff
IP 52.94.216.147:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5870)
Hash 24b699b10f6d32775ec0005302aa3426
779c5033a77eb50266cf2f65e278b714ca0437c3
26d8dbfb7ad208d4a6cb58c0102c24c283e4faef05a610fec41568abc592a107
GET /widgets/q?ServiceVersion=20070822&OneJS=1&Operation=GetAdHtml&MarketPlace=IN&source=ac&ref=tf_til&ad_type=product_link&tracking_id=cacult0816-21&marketplace=amazon®ion=IN&placement=0241491517&asins=0241491517&linkId=97dec1147bdcc2e14cf582fa878b7b4d&show_border=false&link_opens_in_new_window=false&price_color=333333&title_color=0066c0&bg_color=ffffff HTTP/1.1
Host: ws-in.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cacult.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 200
Date: Sat, 03 Sep 2022 16:27:42 GMT
Server: Server
Content-Encoding: gzip
Cache-Control: must-revalidate
Pragma: no-cache
Expires: -1
charset: UTF-8
Access-Control-Allow-Origin: *
Content-Length: 3332
Vary: User-Agent
nnCoection: close
Content-Type: text/html;charset=UTF-8
ws-in.amazon-adsystem.com/widgets/q?ServiceVersion=20070822&OneJS=1&Operation=GetAdHtml&MarketPlace=IN&source=ac&ref=tf_til&ad_type=product_link&tracking_id=cacult0816-21&marketplace=amazon®ion=IN&placement=B089QCLYG5&asins=B089QCLYG5&linkId=b4f1c02fc28d9a81d0ccf01ca724e81e&show_border=false&link_opens_in_new_window=false&price_color=333333&title_color=0066c0&bg_color=ffffff
52.94.216.147200 200 3.4 kB URL HTTP/1.1 ws-in.amazon-adsystem.com/widgets/q?ServiceVersion=20070822&OneJS=1&Operation=GetAdHtml&MarketPlace=IN&source=ac&ref=tf_til&ad_type=product_link&tracking_id=cacult0816-21&marketplace=amazon®ion=IN&placement=B089QCLYG5&asins=B089QCLYG5&linkId=b4f1c02fc28d9a81d0ccf01ca724e81e&show_border=false&link_opens_in_new_window=false&price_color=333333&title_color=0066c0&bg_color=ffffff
IP 52.94.216.147:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5870)
Hash 81c4a12b4344d22bc830748f718dd83a
ca6ddd08cacd8213537b56a607034a326ec14886
234dc2837916971382f031bdcacf4e76212a8db4853ea30aea1043b3d57baf68
GET /widgets/q?ServiceVersion=20070822&OneJS=1&Operation=GetAdHtml&MarketPlace=IN&source=ac&ref=tf_til&ad_type=product_link&tracking_id=cacult0816-21&marketplace=amazon®ion=IN&placement=B089QCLYG5&asins=B089QCLYG5&linkId=b4f1c02fc28d9a81d0ccf01ca724e81e&show_border=false&link_opens_in_new_window=false&price_color=333333&title_color=0066c0&bg_color=ffffff HTTP/1.1
Host: ws-in.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cacult.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 200
Date: Sat, 03 Sep 2022 16:27:42 GMT
Server: Server
Content-Encoding: gzip
Cache-Control: must-revalidate
Pragma: no-cache
Expires: -1
charset: UTF-8
Access-Control-Allow-Origin: *
Content-Length: 3420
Vary: User-Agent
nnCoection: close
Content-Type: text/html;charset=UTF-8
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 2733f38a6c4b094c74c6f3b2f0a8b084
fbf4b0f723ed8468c605311ebcd306bf36775e21
40587c4ff37624d627a2b9cbc64a15bf52b5c574341b8c802f3afa916eeb121a
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Sat, 03 Sep 2022 16:27:42 GMT
Server: ECS (dcb/7EA4)
X-Cache: Miss from cloudfront
Via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ByqRFGUvPCxHZcUh0JbcYLnIwMjJ_iOuvqBhhRTugD2ZW6rJhMpmMw==
sp-ao.shortpixel.ai/client/to_auto,q_glossy,ret_img,w_1200/http://cacult.com/wp-content/uploads/2020/06/gst.jpg
194.242.11.186302 Found 0 B URL HTTP/2 sp-ao.shortpixel.ai/client/to_auto,q_glossy,ret_img,w_1200/http://cacult.com/wp-content/uploads/2020/06/gst.jpg
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /client/to_auto,q_glossy,ret_img,w_1200/http://cacult.com/wp-content/uploads/2020/06/gst.jpg HTTP/1.1
Host: sp-ao.shortpixel.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cacult.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 03 Sep 2022 16:27:42 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: http://cacult.com/wp-content/uploads/2020/06/gst.jpg
server: BunnyCDN-NO-830
cdn-pullzone: 257218
cdn-uid: ceac3dab-9909-4315-8d54-a27751b54dd0
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=86400
pragma: cache
cdn-cachedat: 09/03/2022 16:27:42
cdn-tag: 0; Domain: cacult.com; 302
cdn-proxyver: 1.02
cdn-requestpullcode: 302
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 302
cdn-requestid: 0bd6048f92ce55de0aa2087ab403ed15
cdn-cache: MISS
X-Firefox-Spdy: h2
fls-eu.amazon-adsystem.com/1/associates-ads/1/OP/r/json?cb=1662222460509&p=%7B%22program%22%3A%2231%22%2C%22linkCode%22%3A%22w00%22%2C%22panda%22%3Atrue%2C%22tag%22%3A%22cacult0816-21%22%2C%22refUrl%22%3A%22http%3A%2F%2Fcacult.com%2F%22%7D
52.94.218.163200 OK 43 B URL HTTP/1.1 fls-eu.amazon-adsystem.com/1/associates-ads/1/OP/r/json?cb=1662222460509&p=%7B%22program%22%3A%2231%22%2C%22linkCode%22%3A%22w00%22%2C%22panda%22%3Atrue%2C%22tag%22%3A%22cacult0816-21%22%2C%22refUrl%22%3A%22http%3A%2F%2Fcacult.com%2F%22%7D
IP 52.94.218.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash e68cc604cab69bf03b8cd228d940f5ef
15c0c62c4c7c917b5dd82a8e1e439211a44b9e98
a3a64aea2e96ec58a163ddb8d4cf86cf236178ed2d225b8f44154bc1b010ddce
GET /1/associates-ads/1/OP/r/json?cb=1662222460509&p=%7B%22program%22%3A%2231%22%2C%22linkCode%22%3A%22w00%22%2C%22panda%22%3Atrue%2C%22tag%22%3A%22cacult0816-21%22%2C%22refUrl%22%3A%22http%3A%2F%2Fcacult.com%2F%22%7D HTTP/1.1
Host: fls-eu.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ws-in.amazon-adsystem.com/
HTTP/1.1 200 OK
x-amzn-RequestId: b35b1927-0985-4052-b8ac-08e58d071113
Content-Type: image/gif
Content-Length: 43
Date: Sat, 03 Sep 2022 16:27:42 GMT
fls-eu.amazon-adsystem.com/1/associates-ads/1/OP/r/json?cb=1662222460551&p=%7B%22program%22%3A%2231%22%2C%22linkCode%22%3A%22w00%22%2C%22panda%22%3Atrue%2C%22tag%22%3A%22cacult0816-21%22%2C%22refUrl%22%3A%22http%3A%2F%2Fcacult.com%2F%22%7D
52.94.218.163200 OK 43 B URL HTTP/1.1 fls-eu.amazon-adsystem.com/1/associates-ads/1/OP/r/json?cb=1662222460551&p=%7B%22program%22%3A%2231%22%2C%22linkCode%22%3A%22w00%22%2C%22panda%22%3Atrue%2C%22tag%22%3A%22cacult0816-21%22%2C%22refUrl%22%3A%22http%3A%2F%2Fcacult.com%2F%22%7D
IP 52.94.218.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash e68cc604cab69bf03b8cd228d940f5ef
15c0c62c4c7c917b5dd82a8e1e439211a44b9e98
a3a64aea2e96ec58a163ddb8d4cf86cf236178ed2d225b8f44154bc1b010ddce
GET /1/associates-ads/1/OP/r/json?cb=1662222460551&p=%7B%22program%22%3A%2231%22%2C%22linkCode%22%3A%22w00%22%2C%22panda%22%3Atrue%2C%22tag%22%3A%22cacult0816-21%22%2C%22refUrl%22%3A%22http%3A%2F%2Fcacult.com%2F%22%7D HTTP/1.1
Host: fls-eu.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ws-in.amazon-adsystem.com/
HTTP/1.1 200 OK
x-amzn-RequestId: ad31dede-22ac-4611-9243-1d27422f3663
Content-Type: image/gif
Content-Length: 43
Date: Sat, 03 Sep 2022 16:27:42 GMT
cacult.com/wp-content/themes/cream-magazine/assets/dist/fonts/fontAwesome/fontawesome-webfont.woff?v=4.7.0
45.40.150.136200 OK 98 kB URL HTTP/1.1 cacult.com/wp-content/themes/cream-magazine/assets/dist/fonts/fontAwesome/fontawesome-webfont.woff?v=4.7.0
IP 45.40.150.136:0
ASN #398101 GO-DADDY-COM-LLC
File type Web Open Font Format, TrueType, length 98024, version 4.7\012- data
Hash fee66e712a8a08eef5805a46892932ad
28b782240b3e76db824e12c02754a9731a167527
ba0c59deb5450f5cb41b3f93609ee2d0d995415877ddfa223e8a8a7533474f07
GET /wp-content/themes/cream-magazine/assets/dist/fonts/fontAwesome/fontawesome-webfont.woff?v=4.7.0 HTTP/1.1
Host: cacult.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://cacult.com/wp-content/cache/autoptimize/css/autoptimize_911318633f22a12ee744190482d37949.css
Cookie: dwqa_anonymous=bInTAkoMC4WLd0BGzGtraihN1uJQ45h2WO2cM6Mag9r; pvc_visits[0]=1662308860b46193
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Age: 77717
Content-Length: 98024
Content-Type: font/woff
Date: Fri, 02 Sep 2022 18:52:25 GMT
Etag: "17ee8-5e0386fcb45e8"
Last-Modified: Mon, 30 May 2022 10:51:21 GMT
X-Backend: local
X-Cache: cached
X-Cache-Hit: HIT
X-Cacheable: YES
X-Cacheproxy-Retries: 0/2
X-Content-Type-Options: nosniff
X-Php-Version: 7.4
X-Xss-Protection: 1; mode=block
wms-in.amazon-adsystem.com/panda/20070822/IN/img/a-logo-amazon.png
54.230.111.61200 OK 16 kB URL HTTP/1.1 wms-in.amazon-adsystem.com/panda/20070822/IN/img/a-logo-amazon.png
IP 54.230.111.61:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC (Macintosh), datetime=2014:07:22 16:54:04], baseline, precision 8, 110x24, components 3\012- data
Hash 997d80238c0644f2b08e9d5dc902f0d1
2145c446e6afd503cdfc8bd2eed1b82b391aca4b
d576be5f516a4a72b8e2f85d61de19966d749c9b84066864dc686bf4e6cfbac9
GET /panda/20070822/IN/img/a-logo-amazon.png HTTP/1.1
Host: wms-in.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://ws-in.amazon-adsystem.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 15728
Connection: keep-alive
Date: Sat, 13 Aug 2022 22:51:02 GMT
Server: Server
Last-Modified: Thu, 04 Aug 2022 00:11:38 GMT
ETag: "3d70-5e55f317dd43c"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Sat, 20 Aug 2022 22:51:02 GMT
Charset: UTF-8
X-Cache: Hit from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: pu0VXPJXJx2b4nU16lkr-bR0R7MsjzBlv5vd2Y33xiW3u74CpfdLOw==
Age: 1791401
fls-eu.amazon-adsystem.com/1/associates-ads/1/OP/r/json?cb=1662222460565&p=%7B%22program%22%3A%2231%22%2C%22linkCode%22%3A%22w00%22%2C%22panda%22%3Atrue%2C%22tag%22%3A%22cacult0816-21%22%2C%22refUrl%22%3A%22http%3A%2F%2Fcacult.com%2F%22%7D
52.94.218.163200 OK 43 B URL HTTP/1.1 fls-eu.amazon-adsystem.com/1/associates-ads/1/OP/r/json?cb=1662222460565&p=%7B%22program%22%3A%2231%22%2C%22linkCode%22%3A%22w00%22%2C%22panda%22%3Atrue%2C%22tag%22%3A%22cacult0816-21%22%2C%22refUrl%22%3A%22http%3A%2F%2Fcacult.com%2F%22%7D
IP 52.94.218.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash e68cc604cab69bf03b8cd228d940f5ef
15c0c62c4c7c917b5dd82a8e1e439211a44b9e98
a3a64aea2e96ec58a163ddb8d4cf86cf236178ed2d225b8f44154bc1b010ddce
GET /1/associates-ads/1/OP/r/json?cb=1662222460565&p=%7B%22program%22%3A%2231%22%2C%22linkCode%22%3A%22w00%22%2C%22panda%22%3Atrue%2C%22tag%22%3A%22cacult0816-21%22%2C%22refUrl%22%3A%22http%3A%2F%2Fcacult.com%2F%22%7D HTTP/1.1
Host: fls-eu.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ws-in.amazon-adsystem.com/
HTTP/1.1 200 OK
x-amzn-RequestId: e1a6a7d7-838c-4e2a-88d8-68159fd98a4a
Content-Type: image/gif
Content-Length: 43
Date: Sat, 03 Sep 2022 16:27:42 GMT
fls-eu.amazon-adsystem.com/1/associates-ads/1/OP/r/json?cb=1662222460578&p=%7B%22program%22%3A%2231%22%2C%22linkCode%22%3A%22w00%22%2C%22panda%22%3Atrue%2C%22tag%22%3A%22cacult0816-21%22%2C%22refUrl%22%3A%22http%3A%2F%2Fcacult.com%2F%22%7D
52.94.218.163200 OK 43 B URL HTTP/1.1 fls-eu.amazon-adsystem.com/1/associates-ads/1/OP/r/json?cb=1662222460578&p=%7B%22program%22%3A%2231%22%2C%22linkCode%22%3A%22w00%22%2C%22panda%22%3Atrue%2C%22tag%22%3A%22cacult0816-21%22%2C%22refUrl%22%3A%22http%3A%2F%2Fcacult.com%2F%22%7D
IP 52.94.218.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash e68cc604cab69bf03b8cd228d940f5ef
15c0c62c4c7c917b5dd82a8e1e439211a44b9e98
a3a64aea2e96ec58a163ddb8d4cf86cf236178ed2d225b8f44154bc1b010ddce
GET /1/associates-ads/1/OP/r/json?cb=1662222460578&p=%7B%22program%22%3A%2231%22%2C%22linkCode%22%3A%22w00%22%2C%22panda%22%3Atrue%2C%22tag%22%3A%22cacult0816-21%22%2C%22refUrl%22%3A%22http%3A%2F%2Fcacult.com%2F%22%7D HTTP/1.1
Host: fls-eu.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ws-in.amazon-adsystem.com/
HTTP/1.1 200 OK
x-amzn-RequestId: d9147c00-348c-4ed0-a22f-78c27a5f2a6d
Content-Type: image/gif
Content-Length: 43
Date: Sat, 03 Sep 2022 16:27:42 GMT
wms-in.amazon-adsystem.com/panda/20070822/US/img/cart.gif
54.230.111.61301 Moved Permanently 183 B URL HTTP/1.1 wms-in.amazon-adsystem.com/panda/20070822/US/img/cart.gif
IP 54.230.111.61:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash e4e384d6672787c1bb2a9b500114f1f5
cf909e7937cd3f312c434367b732a53d7a6cbf14
80785f5520097dde3b28c617171415cd690cbf1e0353a5f3e348c83a4656ea0f
GET /panda/20070822/US/img/cart.gif HTTP/1.1
Host: wms-in.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://ws-in.amazon-adsystem.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Sat, 03 Sep 2022 16:27:43 GMT
Content-Type: text/html
Content-Length: 183
Connection: keep-alive
Location: https://wms-in.amazon-adsystem.com/panda/20070822/US/img/cart.gif
X-Cache: Redirect from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: EsYvo7iMfmlyU-z7YedZGEnaR6T86ND1VBFag53NfENi61v-0Bb8NQ==
wms-in.amazon-adsystem.com/panda/20070822/US/img/cart.gif
54.230.111.61200 OK 341 B URL HTTP/1.1 wms-in.amazon-adsystem.com/panda/20070822/US/img/cart.gif
IP 54.230.111.61:0
File type GIF image data, version 89a, 25 x 25\012- data
Hash a49e8b12d209a3ec2dd5f0c5b7a252fc
2d5a47a0950357adb667781b5eac5b991add0b1c
6330c7a831bf641f1fc1ae115b02900b25e4786f461bbfc3a3301bab2d319b93
GET /panda/20070822/US/img/cart.gif HTTP/1.1
Host: wms-in.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://ws-in.amazon-adsystem.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 341
Connection: keep-alive
Date: Thu, 11 Aug 2022 17:38:53 GMT
Server: Server
Last-Modified: Thu, 04 Aug 2022 00:11:38 GMT
ETag: "155-5e55f317f4b3c"
Accept-Ranges: bytes
Cache-Control: max-age=2592000
Expires: Thu, 18 Aug 2022 17:38:53 GMT
Charset: UTF-8
X-Cache: Hit from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: t4cB-D1_2TsW5HrBp0ev2YzPKZB5nM7T49uV_X2kHZwNIA3-1O6rzA==
Age: 1982930
static.getclicky.com/js
104.16.160.16200 OK 5.3 kB IP 104.16.160.16:0
File type ASCII text, with very long lines (14891), with no line terminators
Hash ed226c4039bfc38b6e52bc7329e91a83
19a2b855ac61858e85464f649e6436a0cca6ab60
b51a58cbeba6359d2e15f2546041fe0bb600ddce4f557d12e3091df5121414a1
GET /js HTTP/1.1
Host: static.getclicky.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cacult.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 16:27:43 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Accept-Encoding
Access-Control-Allow-Origin: *
Expires: Tue, 06 Sep 2022 16:55:01 GMT
Cache-Control: max-age=604800
X-Proxy-Cache: HIT
Content-Encoding: gzip
Last-Modified: Tue, 30 Aug 2022 16:55:01 GMT
CF-Cache-Status: HIT
Age: 343960
Server: cloudflare
CF-RAY: 744fdabb08adb4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
sp-ao.shortpixel.ai/client/to_auto,q_glossy,ret_img,w_32,h_32/http://cacult.com/wp-content/uploads/2020/06/logo-150x150.jpeg
194.242.11.186302 Found 0 B URL HTTP/2 sp-ao.shortpixel.ai/client/to_auto,q_glossy,ret_img,w_32,h_32/http://cacult.com/wp-content/uploads/2020/06/logo-150x150.jpeg
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /client/to_auto,q_glossy,ret_img,w_32,h_32/http://cacult.com/wp-content/uploads/2020/06/logo-150x150.jpeg HTTP/1.1
Host: sp-ao.shortpixel.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cacult.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sat, 03 Sep 2022 16:27:43 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: http://cacult.com/wp-content/uploads/2020/06/logo-150x150.jpeg
server: BunnyCDN-NO-830
cdn-pullzone: 257218
cdn-uid: ceac3dab-9909-4315-8d54-a27751b54dd0
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=86400
pragma: cache
cdn-cachedat: 09/03/2022 16:27:43
cdn-tag: 0; Domain: cacult.com; 302
cdn-proxyver: 1.02
cdn-requestpullcode: 302
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 302
cdn-requestid: b25740e5f859438f112ead6d8ff2ec29
cdn-cache: MISS
X-Firefox-Spdy: h2
sp-ao.shortpixel.ai/client/to_auto,q_glossy,ret_img,w_192,h_192/http://cacult.com/wp-content/uploads/2020/06/logo.jpeg
194.242.11.186302 Found 0 B URL HTTP/2 sp-ao.shortpixel.ai/client/to_auto,q_glossy,ret_img,w_192,h_192/http://cacult.com/wp-content/uploads/2020/06/logo.jpeg
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /client/to_auto,q_glossy,ret_img,w_192,h_192/http://cacult.com/wp-content/uploads/2020/06/logo.jpeg HTTP/1.1
Host: sp-ao.shortpixel.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cacult.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sat, 03 Sep 2022 16:27:43 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: http://cacult.com/wp-content/uploads/2020/06/logo.jpeg
server: BunnyCDN-NO-830
cdn-pullzone: 257218
cdn-uid: ceac3dab-9909-4315-8d54-a27751b54dd0
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=86400
pragma: cache
cdn-cachedat: 09/03/2022 16:27:43
cdn-tag: 0; Domain: cacult.com; 302
cdn-proxyver: 1.02
cdn-requestpullcode: 302
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 302
cdn-requestid: 28d044348e4424b83b535104cbb68a15
cdn-cache: MISS
X-Firefox-Spdy: h2
platform.twitter.com/widgets.js
93.184.220.66200 OK 29 kB URL HTTP/1.1 platform.twitter.com/widgets.js
IP 93.184.220.66:0
File type Unicode text, UTF-8 text, with very long lines (33915)
Hash 0ccf02d52b75b85c65aa5460aa24aebf
50d1a19cb9ebbd6d42173ce2d963ea4df29e8e5a
d13778acf057777bad23fd020088463d65d2b7baff042cd4529d27faa46daf38
GET /widgets.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cacult.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 554
Cache-Control: public, max-age=1800
Content-Type: application/javascript; charset=utf-8
Date: Sat, 03 Sep 2022 16:27:43 GMT
Etag: "f116c7e6b28e2aebeb60ade5bdc8e2b4+gzip"
Last-Modified: Wed, 31 Aug 2022 20:41:50 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F713)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 29220
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 0fb935f05e6aaba744f686e2bb3928f9
5b8211247e237b44ddd5bc3df47063bfcac84b0e
a998f91aa98aee49510e973a892dd630395bb1af087c7dbc77b61d29bef2bf68
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 16:27:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 0fb935f05e6aaba744f686e2bb3928f9
5b8211247e237b44ddd5bc3df47063bfcac84b0e
a998f91aa98aee49510e973a892dd630395bb1af087c7dbc77b61d29bef2bf68
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 16:27:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 0fb935f05e6aaba744f686e2bb3928f9
5b8211247e237b44ddd5bc3df47063bfcac84b0e
a998f91aa98aee49510e973a892dd630395bb1af087c7dbc77b61d29bef2bf68
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 16:27:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cacult.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Sat, 03 Sep 2022 14:41:12 GMT
expires: Sat, 03 Sep 2022 16:41:12 GMT
cache-control: public, max-age=7200
age: 6391
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
142.250.74.2200 OK 57 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 142.250.74.2:0
File type ASCII text, with very long lines (2897)
Hash 116cfe53b6030e22bed7201e15966781
4991046bfd57266c12e8e9ac462334e8970dd4cb
40b410909b5a4d85bf77e98c1c7114dc384f658e752b6d64e6b349e48d31b05c
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cacult.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
date: Sat, 03 Sep 2022 16:27:43 GMT
expires: Sat, 03 Sep 2022 16:27:43 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 8193099233894789505
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 57445
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
platform.twitter.com/widgets/widget_iframe.c4bdc17e77719578b594d5555bee90db.html?origin=http%3A%2F%2Fcacult.com
93.184.220.66200 OK 105 kB URL HTTP/1.1 platform.twitter.com/widgets/widget_iframe.c4bdc17e77719578b594d5555bee90db.html?origin=http%3A%2F%2Fcacult.com
IP 93.184.220.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56168)
Size 105 kB (105445 bytes)
Hash aa228863765c3263e12f1d7c71015518
619739a12e0f16eab26a43a913b35779edea57a6
cf9a241903646ee9b88b76da2bb3e11d16f36246f7bbc53bbe2c98466e5ea12a
GET /widgets/widget_iframe.c4bdc17e77719578b594d5555bee90db.html?origin=http%3A%2F%2Fcacult.com HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cacult.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 243872
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Sat, 03 Sep 2022 16:27:43 GMT
Etag: "50d73c0b4a4c7e4697b9c6ac6f1ecd75+gzip"
Last-Modified: Wed, 31 Aug 2022 20:40:57 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F706)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 105445
cacult.com/wp-content/uploads/2020/06/gst.jpg
45.40.150.136200 OK 62 kB URL HTTP/1.1 cacult.com/wp-content/uploads/2020/06/gst.jpg
IP 45.40.150.136:0
ASN #398101 GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1200x800, components 3\012- data
Hash 729e5c71d6921841013e65272a3caf4c
b40a429a01f41ddfde2fc55530feac147d8bd591
3e17f7c51343e963d0e3dfdfa92043318737144c379d5b4d5d658b95ee34a0a6
GET /wp-content/uploads/2020/06/gst.jpg HTTP/1.1
Host: cacult.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://cacult.com/
Connection: keep-alive
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 39021
Content-Length: 62229
Content-Type: image/jpeg
Date: Sat, 03 Sep 2022 05:37:21 GMT
Etag: "f315-5a729bc86c580"
Last-Modified: Wed, 03 Jun 2020 08:23:02 GMT
X-Backend: local
X-Cache: cached
X-Cache-Hit: HIT
X-Cacheable: YES
X-Cacheproxy-Retries: 0/2
X-Content-Type-Options: nosniff
X-Php-Version: 7.4
X-Xss-Protection: 1; mode=block
cacult.com/wp-content/uploads/2020/06/logo-150x150.jpeg
45.40.150.136200 OK 4.0 kB URL HTTP/1.1 cacult.com/wp-content/uploads/2020/06/logo-150x150.jpeg
IP 45.40.150.136:0
ASN #398101 GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Hash 961a0f57b85a9affce13db0ff85d2d71
146fae4b49fcda57eaed058244787e023de19c88
e210778cf008edceed87b1b0b9fc19a21dbacafd28138b5e68d2fbaf7d540bdd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/06/logo-150x150.jpeg HTTP/1.1
Host: cacult.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://cacult.com/
Connection: keep-alive
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 77217
Content-Length: 3968
Content-Type: image/jpeg
Date: Fri, 02 Sep 2022 19:00:46 GMT
Etag: "f80-5a8e204ca5f00"
Last-Modified: Thu, 25 Jun 2020 05:39:40 GMT
X-Backend: local
X-Cache: cached
X-Cache-Hit: HIT
X-Cacheable: YES
X-Cacheproxy-Retries: 0/2
X-Content-Type-Options: nosniff
X-Php-Version: 7.4
X-Xss-Protection: 1; mode=block
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 0fb935f05e6aaba744f686e2bb3928f9
5b8211247e237b44ddd5bc3df47063bfcac84b0e
a998f91aa98aee49510e973a892dd630395bb1af087c7dbc77b61d29bef2bf68
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 16:27:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/html/r20220831/r20190131/zrt_lookup.html
142.250.74.66200 OK 4.4 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20220831/r20190131/zrt_lookup.html
IP 142.250.74.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1731)
Hash 09a8bd805dba1307ae0bd76a0c9ca73d
bdc16e7610abae944da47ff3a0e5fea818241fb0
e3978f36e9c5f0b909ed64015db629e2c64b46e75d165c6d1d146fcb792cdbde
GET /pagead/html/r20220831/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cacult.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 4412
x-xss-protection: 0
date: Fri, 02 Sep 2022 20:15:31 GMT
expires: Fri, 16 Sep 2022 20:15:31 GMT
cache-control: public, max-age=1209600
age: 72732
etag: 8616628553774171045
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-1P3WC7K379>m=2oe8v0&_p=1243058818&cid=1706428956.1662222461&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1662222460&sct=1&seg=0&dl=http%3A%2F%2Fcacult.com%2Fe-invoicing-for-aggregate-turnover-exceeding-rs-10-crore%2F&dt=E-invoicing%20for%20aggregate%20turnover%20exceeding%20Rs%2010%20crore%20%E2%80%93%20CA%20Cult&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-1P3WC7K379>m=2oe8v0&_p=1243058818&cid=1706428956.1662222461&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1662222460&sct=1&seg=0&dl=http%3A%2F%2Fcacult.com%2Fe-invoicing-for-aggregate-turnover-exceeding-rs-10-crore%2F&dt=E-invoicing%20for%20aggregate%20turnover%20exceeding%20Rs%2010%20crore%20%E2%80%93%20CA%20Cult&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-1P3WC7K379>m=2oe8v0&_p=1243058818&cid=1706428956.1662222461&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1662222460&sct=1&seg=0&dl=http%3A%2F%2Fcacult.com%2Fe-invoicing-for-aggregate-turnover-exceeding-rs-10-crore%2F&dt=E-invoicing%20for%20aggregate%20turnover%20exceeding%20Rs%2010%20crore%20%E2%80%93%20CA%20Cult&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://cacult.com
Connection: keep-alive
Referer: http://cacult.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: http://cacult.com
date: Sat, 03 Sep 2022 16:27:43 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash eacf2641ef6027fc86dabb8f6d2d21cc
a39e20eb6bcf51f822fa16729df9855d906c7189
f0443f15eca7981abb60e43ebb071edef2cb0cf2c1b4a507c69abc7303eaef62
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4813
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 16:27:43 GMT
Last-Modified: Sat, 03 Sep 2022 15:07:30 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 314
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9665d92cfb2f9db5f7032ed692dff0e0
2ca6220de116f04429a7ce3f3c8f95cae61db137
5cc77ac9117df4aa52cc268287bf82f9dde172f1bcd7f640d3f0ef04a5ed07c5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 16:27:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash cebfe28b301ffe9583a29d4e2e787a07
c312300cb020f4f61edaf4b51394aa889bc815e8
faf415663681aab7051de03f75a3163352ff9cffa4f72e38f56d4e0eb337af4f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 16:27:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/adsid/integrator.js?domain=cacult.com
142.250.74.98200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=cacult.com
IP 142.250.74.98:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=cacult.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cacult.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 03 Sep 2022 16:27:43 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=cacult.com
142.250.74.162200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=cacult.com
IP 142.250.74.162:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=cacult.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cacult.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 03 Sep 2022 16:27:43 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 51df98c169fb7de773301d014bcea4b8
9bdf9bdb9b5eee378e9ac4ec68ca07c665ae4819
c8336f3a2e16c9390b610c612ce9be7c19286f04a6328a29200cbf65db5801c8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 16:27:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash cebfe28b301ffe9583a29d4e2e787a07
c312300cb020f4f61edaf4b51394aa889bc815e8
faf415663681aab7051de03f75a3163352ff9cffa4f72e38f56d4e0eb337af4f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 16:27:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 2d7a177ba4f5d07378f3f80625ca76d4
aeb98c6fcc81f8337738537995dc458e4ca05744
81581b3594ced0fbfec9a2b0818692ba149112c2aecf167c661d52f26dd5904f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 16:27:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
syndication.twitter.com/settings?session_id=935a248bb980077339862b72625c57da3975b0ac
104.244.42.72200 OK 308 B URL HTTP/2 syndication.twitter.com/settings?session_id=935a248bb980077339862b72625c57da3975b0ac
IP 104.244.42.72:0
File type JSON data\012- , ASCII text, with very long lines (709), with no line terminators
Hash d8e2887342b363c09cd19d9b36199dbe
47c62bf9e3e60b6ab0b61eae608db43c04f7bea4
c38e646e125827b7520415ecaf228031c848266838cd894fa44a41686fedc553
GET /settings?session_id=935a248bb980077339862b72625c57da3975b0ac HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://platform.twitter.com/
Origin: https://platform.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sat, 03 Sep 2022 16:27:43 GMT
vary: Origin
server: tsa_o
content-type: application/json; charset=utf-8
cache-control: must-revalidate, max-age=600
last-modified: Sat, 03 Sep 2022 16:27:43 GMT
content-length: 308
content-encoding: gzip
strict-transport-security: max-age=631138519
access-control-allow-origin: https://platform.twitter.com
access-control-allow-credentials: true
x-response-time: 109
x-connection-hash: 21a0d8cc1e0c28ecd9b6d0f2dea671cd0131f7ef6e78b95b62f460865681eb03
X-Firefox-Spdy: h2
partner.googleadservices.com/gampad/cookie.js?domain=cacult.com&callback=_gfp_s_&client=ca-pub-5831461336219457
142.250.74.98200 OK 199 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=cacult.com&callback=_gfp_s_&client=ca-pub-5831461336219457
IP 142.250.74.98:0
File type ASCII text, with no line terminators
Hash 4954598dedf57406d7787f7e245ee6b1
37846f9c190ae5e06e5ec55524108364613c1ee1
58c8ea8634b012cfc0ff716f13eb82492c27f896ec0ff3ec52208624bd180228
GET /gampad/cookie.js?domain=cacult.com&callback=_gfp_s_&client=ca-pub-5831461336219457 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cacult.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 03 Sep 2022 16:27:43 GMT
server: cafe
cache-control: private
content-length: 199
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 2d7a177ba4f5d07378f3f80625ca76d4
aeb98c6fcc81f8337738537995dc458e4ca05744
81581b3594ced0fbfec9a2b0818692ba149112c2aecf167c661d52f26dd5904f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 16:27:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
in.getclicky.com/in.php?site_id=101259826&type=pageview&href=%2Fe-invoicing-for-aggregate-turnover-exceeding-rs-10-crore%2F&title=E-invoicing%20for%20aggregate%20turnover%20exceeding%20Rs%2010%20crore%20%E2%80%93%20CA%20Cult&res=1280x1024&lang=en-US&tz=UTC&tc=&ck=0&mime=js&x=0.754628992226038
198.145.13.14200 OK 95 B URL HTTP/1.1 in.getclicky.com/in.php?site_id=101259826&type=pageview&href=%2Fe-invoicing-for-aggregate-turnover-exceeding-rs-10-crore%2F&title=E-invoicing%20for%20aggregate%20turnover%20exceeding%20Rs%2010%20crore%20%E2%80%93%20CA%20Cult&res=1280x1024&lang=en-US&tz=UTC&tc=&ck=0&mime=js&x=0.754628992226038
IP 198.145.13.14:0
Hash 4a1ebadfc0638324edb701c27fed5067
ca3787610ffa1d43eae0dfdc85c4d294acc08fc3
ac3042af611aef5ac2df95080cc3c5cff345fdf9f89aaa2e8b86b6495572e973
GET /in.php?site_id=101259826&type=pageview&href=%2Fe-invoicing-for-aggregate-turnover-exceeding-rs-10-crore%2F&title=E-invoicing%20for%20aggregate%20turnover%20exceeding%20Rs%2010%20crore%20%E2%80%93%20CA%20Cult&res=1280x1024&lang=en-US&tz=UTC&tc=&ck=0&mime=js&x=0.754628992226038 HTTP/1.1
Host: in.getclicky.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cacult.com/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 03 Sep 2022 16:27:44 GMT
Content-Type: text/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: close
Vary: Accept-Encoding, Accept-Encoding
Cache-Control: no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Access-Control-Allow-Origin: *
Content-Encoding: gzip
platform.twitter.com/js/horizon_timeline.4836f7a62ef55f5880337b3b6602854f.js
93.184.220.66200 OK 2.7 kB URL HTTP/1.1 platform.twitter.com/js/horizon_timeline.4836f7a62ef55f5880337b3b6602854f.js
IP 93.184.220.66:0
File type ASCII text, with very long lines (7729), with no line terminators
Hash 2ce707766c2a99aa8497f2904fa9195b
8f0bcd28031ff2d9a6751b1672bab7e81ec3f220
4cfbf18d190969551c0a6c752f4128c9ac73c328ac01311efe43d92514eaa75c
GET /js/horizon_timeline.4836f7a62ef55f5880337b3b6602854f.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cacult.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 243872
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Sat, 03 Sep 2022 16:27:44 GMT
Etag: "34e2e8018518a39f9995c88495115818+gzip"
Last-Modified: Wed, 31 Aug 2022 20:40:49 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F70B)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 2685
syndication.twitter.com/i/jot/embeds?l=%7B%22experiment_key%22%3A%22tfw_horizon_timeline_12034%22%2C%22bucket%22%3A%22treatment%22%2C%22version%22%3Anull%2C%22data%22%3A%7B%7D%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1662222461564%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221bfeb5c3714e8%3A1661975971032%22%2C%22format_version%22%3A1%2C%22widget_origin%22%3A%22%22%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22ddg%22%2C%22section%22%3A%22tfw_horizon_timeline_12034%22%2C%22action%22%3A%22experiment%22%7D%7D&session_id=935a248bb980077339862b72625c57da3975b0ac
104.244.42.72200 OK 43 B URL HTTP/2 syndication.twitter.com/i/jot/embeds?l=%7B%22experiment_key%22%3A%22tfw_horizon_timeline_12034%22%2C%22bucket%22%3A%22treatment%22%2C%22version%22%3Anull%2C%22data%22%3A%7B%7D%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1662222461564%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221bfeb5c3714e8%3A1661975971032%22%2C%22format_version%22%3A1%2C%22widget_origin%22%3A%22%22%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22ddg%22%2C%22section%22%3A%22tfw_horizon_timeline_12034%22%2C%22action%22%3A%22experiment%22%7D%7D&session_id=935a248bb980077339862b72625c57da3975b0ac
IP 104.244.42.72:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/jot/embeds?l=%7B%22experiment_key%22%3A%22tfw_horizon_timeline_12034%22%2C%22bucket%22%3A%22treatment%22%2C%22version%22%3Anull%2C%22data%22%3A%7B%7D%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1662222461564%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%221bfeb5c3714e8%3A1661975971032%22%2C%22format_version%22%3A1%2C%22widget_origin%22%3A%22%22%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22ddg%22%2C%22section%22%3A%22tfw_horizon_timeline_12034%22%2C%22action%22%3A%22experiment%22%7D%7D&session_id=935a248bb980077339862b72625c57da3975b0ac HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cacult.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Sep 2022 16:27:43 GMT
vary: Origin
server: tsa_o
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Sat, 03 Sep 2022 16:27:44 GMT
content-length: 43
strict-transport-security: max-age=631138519
x-response-time: 108
x-connection-hash: 21a0d8cc1e0c28ecd9b6d0f2dea671cd0131f7ef6e78b95b62f460865681eb03
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash dfe1fbb87f4c18f02c645d7dbe667406
e78b12ad21586958fd1126b5c91057e2e168183d
6110dacd0f764fb0dc689a8d430b2f44e02d8c0791f39d67190bbb991c969c5f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 16:27:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash dfe1fbb87f4c18f02c645d7dbe667406
e78b12ad21586958fd1126b5c91057e2e168183d
6110dacd0f764fb0dc689a8d430b2f44e02d8c0791f39d67190bbb991c969c5f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 16:27:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/pagead/js/r20220831/r20110914/abg_lite_fy2021.js
142.250.74.33200 OK 9.6 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20220831/r20110914/abg_lite_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1621)
Hash a4c731f85862faf40d4fae51bf83fb0c
537ddcb9b854155e5f9136d0585dd54e26447baf
0826f7dfc1e4a221aba4cc7c381d0259c54f5fed8a9f50c0a247696f40af2d49
GET /pagead/js/r20220831/r20110914/abg_lite_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 9632
x-xss-protection: 0
date: Sat, 03 Sep 2022 16:01:35 GMT
expires: Sat, 17 Sep 2022 16:01:35 GMT
cache-control: public, max-age=1209600
etag: 2755732409155645664
content-type: text/javascript; charset=UTF-8
age: 1569
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20220831/r20110914/client/qs_click_protection_fy2021.js
142.250.74.33200 OK 7.6 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20220831/r20110914/client/qs_click_protection_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (2276)
Hash ceef0ca095073b4ec419ad144ec336c1
9b3f3d2431b9c0d99435d45d420bbd4b1927b1e1
a6bd3712cc1aeaec9f5a7445c595d52607d34457546a189bf51a775a4112e4e8
GET /pagead/js/r20220831/r20110914/client/qs_click_protection_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding, Origin
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 7599
x-xss-protection: 0
date: Sat, 03 Sep 2022 16:25:42 GMT
expires: Sat, 17 Sep 2022 16:25:42 GMT
cache-control: public, max-age=1209600
etag: 9215437806027971270
content-type: text/javascript; charset=UTF-8
age: 122
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
imasdk.googleapis.com/formats/outstream/versioned/prod2/outstream_web_client_20220829_RC00/outstream.min.js
142.250.74.138200 OK 126 kB URL HTTP/2 imasdk.googleapis.com/formats/outstream/versioned/prod2/outstream_web_client_20220829_RC00/outstream.min.js
IP 142.250.74.138:0
File type ASCII text, with very long lines (2175)
Size 126 kB (126309 bytes)
Hash 0346fe5f08462197251bcec953e2b86b
f2d2297fda46556d1b20bc9e36440bb6b9ef6bc5
e148426680e9689194c29529fd24227aa536c2b0bc4ff3a0511a67a38e9b410c
GET /formats/outstream/versioned/prod2/outstream_web_client_20220829_RC00/outstream.min.js HTTP/1.1
Host: imasdk.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-doubleclick-instream-static"
report-to: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
timing-allow-origin: *
content-length: 126309
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 13:14:14 GMT
expires: Tue, 29 Aug 2023 13:14:14 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 29 Aug 2022 10:45:34 GMT
content-type: text/javascript
age: 443610
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
imasdk.googleapis.com/formats/outstream/versioned/prod2/outstream_web_client_20220829_RC00/outstream.min.css
142.250.74.138200 OK 2.8 kB URL HTTP/2 imasdk.googleapis.com/formats/outstream/versioned/prod2/outstream_web_client_20220829_RC00/outstream.min.css
IP 142.250.74.138:0
File type ASCII text, with very long lines (14567), with no line terminators
Hash 0ea7c62c1ffefe2c0695008097779f30
30701f1fa6b52c2a2216b540f189d654c2a6c458
07686fcb89f2ba27df013c73b4ad2ebf0d28e3103fd0f835450606d0a832c941
GET /formats/outstream/versioned/prod2/outstream_web_client_20220829_RC00/outstream.min.css HTTP/1.1
Host: imasdk.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-doubleclick-instream-static"
report-to: {"group":"ads-doubleclick-instream-static","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-instream-static"}]}
timing-allow-origin: *
content-length: 2798
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 13:14:14 GMT
expires: Tue, 29 Aug 2023 13:14:14 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 29 Aug 2022 10:45:34 GMT
content-type: text/css
age: 443610
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
142.250.74.130200 OK 45 kB URL HTTP/2 www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
IP 142.250.74.130:0
File type ASCII text, with very long lines (3498)
Hash e233451d114b7f2754d6a4eb131920ce
34aab2498621e84e7946aeb1830c8178c2417f52
8e31af45a596f9d000300c2220b1953f3d6adbb5bfafdf9a493f6b29ac1df323
GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-length: 44792
date: Sat, 03 Sep 2022 16:27:44 GMT
expires: Sat, 03 Sep 2022 16:27:44 GMT
cache-control: private, max-age=3000
etag: "1661945761880069"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://googleads.g.doubleclick.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 03 Sep 2022 02:02:22 GMT
expires: Sun, 03 Sep 2023 02:02:22 GMT
cache-control: public, max-age=31536000
age: 51922
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
syndication.twitter.com/srv/timeline-profile/screen-name/CACultUpdates?creatorScreenName=CacultFor&dnt=false&embedId=twitter-widget-0&frame=false&hideBorder=false&hideFooter=false&hideHeader=false&hideScrollBar=false&lang=en&maxHeight=400px&origin=http%3A%2F%2Fcacult.com%2Fe-invoicing-for-aggregate-turnover-exceeding-rs-10-crore%2F&sessionId=935a248bb980077339862b72625c57da3975b0ac&showHeader=true&showReplies=false&siteScreenName=CacultFor&theme=light&transparent=false&widgetsVersion=1bfeb5c3714e8%3A1661975971032
104.244.42.72200 OK 11 kB URL HTTP/2 syndication.twitter.com/srv/timeline-profile/screen-name/CACultUpdates?creatorScreenName=CacultFor&dnt=false&embedId=twitter-widget-0&frame=false&hideBorder=false&hideFooter=false&hideHeader=false&hideScrollBar=false&lang=en&maxHeight=400px&origin=http%3A%2F%2Fcacult.com%2Fe-invoicing-for-aggregate-turnover-exceeding-rs-10-crore%2F&sessionId=935a248bb980077339862b72625c57da3975b0ac&showHeader=true&showReplies=false&siteScreenName=CacultFor&theme=light&transparent=false&widgetsVersion=1bfeb5c3714e8%3A1661975971032
IP 104.244.42.72:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (65492), with no line terminators
Hash b587c8b2c97188b83b37198761ba6082
032af2d88af9a0fd71c187acd7f932efe4aa6735
fd8b9fe026c1d4e0c499ba7cfda0e5aad039d6031fb41013c1922ce0d05d23ad
GET /srv/timeline-profile/screen-name/CACultUpdates?creatorScreenName=CacultFor&dnt=false&embedId=twitter-widget-0&frame=false&hideBorder=false&hideFooter=false&hideHeader=false&hideScrollBar=false&lang=en&maxHeight=400px&origin=http%3A%2F%2Fcacult.com%2Fe-invoicing-for-aggregate-turnover-exceeding-rs-10-crore%2F&sessionId=935a248bb980077339862b72625c57da3975b0ac&showHeader=true&showReplies=false&siteScreenName=CacultFor&theme=light&transparent=false&widgetsVersion=1bfeb5c3714e8%3A1661975971032 HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cacult.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Sep 2022 16:27:44 GMT
etag: "22abe-pwF6Tqlcg338teJ1Gew15BjyRGk"
server: tsa_o
content-type: text/html; charset=utf-8
cache-control: must-revalidate, max-age=60
x-xss-protection: 0
strict-transport-security: max-age=631138519
content-encoding: gzip
content-length: 11363
x-response-time: 389
x-connection-hash: 21a0d8cc1e0c28ecd9b6d0f2dea671cd0131f7ef6e78b95b62f460865681eb03
X-Firefox-Spdy: h2
platform.twitter.com/_next/static/chunks/runtime-c5040a30986fc1d092cc.js
93.184.220.66200 OK 2.1 kB URL HTTP/1.1 platform.twitter.com/_next/static/chunks/runtime-c5040a30986fc1d092cc.js
IP 93.184.220.66:0
File type ASCII text, with very long lines (3831), with no line terminators
Hash 6c8f424d75306b44b49424b21ac54f5b
a0dd31b1643c93c951552b12d6c18891ef988768
b13ec5d63adc6a84449311aacb45c0152da15b14b4069dc13b48fcb1d641b69f
GET /_next/static/chunks/runtime-c5040a30986fc1d092cc.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 163059
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Sat, 03 Sep 2022 16:27:44 GMT
Etag: "e3bac7bbcce0b4c5a7d1d12f33d62321+gzip"
Last-Modified: Thu, 01 Sep 2022 19:07:42 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71E)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 2103
platform.twitter.com/_next/static/chunks/modules.c7def0268c66f6a548ed.js
93.184.220.66200 OK 96 kB URL HTTP/1.1 platform.twitter.com/_next/static/chunks/modules.c7def0268c66f6a548ed.js
IP 93.184.220.66:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 11ed6cc5db4c57bf9373769fedcb1f73
8e122a197c75318f9284aacd233fe5547ae47b71
187b41f9843e9b9ea3f13d41413fe1f532215f284fb4632f2f2b51c107b5d558
GET /_next/static/chunks/modules.c7def0268c66f6a548ed.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 243873
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Sat, 03 Sep 2022 16:27:44 GMT
Etag: "51acddf0dbfab928b183f36c1ee67619+gzip"
Last-Modified: Wed, 17 Aug 2022 17:37:21 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F70E)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 95749
platform.twitter.com/_next/static/chunks/pages/_app-6b59be76f6e3292c4dd6.js
93.184.220.66200 OK 668 B URL HTTP/1.1 platform.twitter.com/_next/static/chunks/pages/_app-6b59be76f6e3292c4dd6.js
IP 93.184.220.66:0
File type ASCII text, with very long lines (1338), with no line terminators
Hash a3286a4bdf27182a76272cfa136a8655
b08407afb2f9f203c2559b5c1683c40b81fe7352
1fff240cbcc6bb55591a9d4fbfda64ede1c00d8ff0c4653613282e9890f455a2
GET /_next/static/chunks/pages/_app-6b59be76f6e3292c4dd6.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 163059
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Sat, 03 Sep 2022 16:27:44 GMT
Etag: "be3e428d416daa9027cecf70b5f26bf9+gzip"
Last-Modified: Thu, 01 Sep 2022 19:07:41 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F70A)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 668
platform.twitter.com/_next/static/chunks/pages/timeline-profile/screen-name/%5BscreenName%5D-568c81a96d7917ec4ebb.js
93.184.220.66200 OK 1.3 kB URL HTTP/1.1 platform.twitter.com/_next/static/chunks/pages/timeline-profile/screen-name/%5BscreenName%5D-568c81a96d7917ec4ebb.js
IP 93.184.220.66:0
File type ASCII text, with very long lines (12981), with no line terminators
Hash d1cbab4cdecd431435093f7fab431b17
455bf671c83fb099406ae413293d84d9402c5ee6
475146b33d53cac0e3b66925341fe539217267c2d77346df89f2fd7221dee2bc
GET /_next/static/chunks/pages/timeline-profile/screen-name/%5BscreenName%5D-568c81a96d7917ec4ebb.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 163059
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Sat, 03 Sep 2022 16:27:44 GMT
Etag: "91226f111c965b9d32e61425d0e4a158+gzip"
Last-Modified: Thu, 01 Sep 2022 19:07:42 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F70F)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 1258
platform.twitter.com/_next/static/chunks/main-e9db78f5e7b3d83edd5e.js
93.184.220.66200 OK 90 B URL HTTP/1.1 platform.twitter.com/_next/static/chunks/main-e9db78f5e7b3d83edd5e.js
IP 93.184.220.66:0
File type ASCII text, with no line terminators
Hash 8e33207e7b788da9abde5b6d33da0b00
23e48f1b412b3a0a406639f297fb6f4c4740efe8
80534a6e1ec41d37acec8be383f8d1112dbbeea31dd51ead47463095c13bff3a
GET /_next/static/chunks/main-e9db78f5e7b3d83edd5e.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 243873
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Sat, 03 Sep 2022 16:27:44 GMT
Etag: "8e33207e7b788da9abde5b6d33da0b00"
Last-Modified: Wed, 17 Aug 2022 17:37:20 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71A)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 90
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6b6b5ffecd53193507458fbe6e66d3f0
c96009132e435078cd79e19b19eeb0dbcf9abef3
229806893f073d6d725880c375c2f72ab09221a46095e1203d7379c1a29b8bef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 16:27:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/pagead/drt/ui
142.250.74.164302 Found 0 B URL HTTP/2 www.google.com/pagead/drt/ui
IP 142.250.74.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/drt/ui HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/drt/si?st=NO_DATA
cache-control: private
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Sat, 03 Sep 2022 16:27:44 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
platform.twitter.com/_next/static/fJUFW1qGayM-Fl0txyHpE/_buildManifest.js
93.184.220.66200 OK 416 B URL HTTP/1.1 platform.twitter.com/_next/static/fJUFW1qGayM-Fl0txyHpE/_buildManifest.js
IP 93.184.220.66:0
File type ASCII text, with very long lines (1208), with no line terminators
Hash 823652b8cf8b89f91648f220b9b1a53e
bacefde18884f35aafcb9cf9d3f34e154f079f3e
a023533422b9ee57c01fb8b0dea77cc7c1f9d45f21ba14e8a38f2cef69c70bcc
GET /_next/static/fJUFW1qGayM-Fl0txyHpE/_buildManifest.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 163059
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Sat, 03 Sep 2022 16:27:44 GMT
Etag: "1f6a6abc61cbf7717855800fa8295867+gzip"
Last-Modified: Thu, 01 Sep 2022 19:07:41 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F707)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 416
ws-in.amazon-adsystem.com/widgets/q?ServiceVersion=20070822&OneJS=1&Operation=GetAdHtml&MarketPlace=IN&source=ac&ref=tf_til&ad_type=product_link&tracking_id=cacult0816-21&marketplace=amazon®ion=IN&placement=0241491517&asins=0241491517&linkId=97dec1147bdcc2e14cf582fa878b7b4d&show_border=false&link_opens_in_new_window=false&price_color=333333&title_color=0066c0&bg_color=ffffff
52.94.216.147200 200 15 kB URL HTTP/1.1 ws-in.amazon-adsystem.com/widgets/q?ServiceVersion=20070822&OneJS=1&Operation=GetAdHtml&MarketPlace=IN&source=ac&ref=tf_til&ad_type=product_link&tracking_id=cacult0816-21&marketplace=amazon®ion=IN&placement=0241491517&asins=0241491517&linkId=97dec1147bdcc2e14cf582fa878b7b4d&show_border=false&link_opens_in_new_window=false&price_color=333333&title_color=0066c0&bg_color=ffffff
IP 52.94.216.147:0
File type ASCII text, with very long lines (2289)
Hash 4a6eb6cff1bd687798eb64e7f232bc14
658dfe0797ee4c158c4d80e673be9bbf026da600
1e6b2901d07bf87aba54476c62459a6faeaf3c67fd1d13a329e6cf6a663a5006
GET /widgets/q?ServiceVersion=20070822&OneJS=1&Operation=GetAdHtml&MarketPlace=IN&source=ac&ref=tf_til&ad_type=product_link&tracking_id=cacult0816-21&marketplace=amazon®ion=IN&placement=0241491517&asins=0241491517&linkId=97dec1147bdcc2e14cf582fa878b7b4d&show_border=false&link_opens_in_new_window=false&price_color=333333&title_color=0066c0&bg_color=ffffff HTTP/1.1
Host: ws-in.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cacult.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 200
Date: Sat, 03 Sep 2022 16:27:42 GMT
Server: Server
Content-Encoding: gzip
Cache-Control: must-revalidate
Pragma: no-cache
Expires: -1
charset: UTF-8
Access-Control-Allow-Origin: *
Content-Length: 3332
Vary: User-Agent
nnCoection: close
Content-Type: text/html;charset=UTF-8
bid.g.doubleclick.net/dbm/vast?dbm_c=AKAmf-AB1Gjro3Nd9ZnWiArdpoRSvycm9ki6u2LTMD8jrsGm3E8uFVbvNMLP1MKv1TchpZT2Owc-n7T6HIwZbF3mW0I0bOOy7g&cry=1&dbm_d=AKAmf-CRsL7K7bhC5fSh4MPMPAcvselUyU8jKLm8sV4SI72jwjBJpZZacfFwzxcOHAywUiE0EfRc-9Loqz2CLR08AkC7PJODjKMvfarztLt4HkXSb9i7bvn54oiRps2CdB3AhZZdR5NSxzzK3W5v61HybRVGFFsKkO5SefNcr3OZXc6VTxOiZCaq1_YcO6tff3_YtSvKsaaUzxMBGN-_B23jB6KUc0PEbZDBzeiihjk8WFqszCm-GMQBdKW0UgodqoqaIyavcsCMFW636t5Llky1LsZZ6lcXbpQtjD3_0xoi5-YB0V6e3a0xWFTmw-GjdzxtvMT5fCSlhCaZp5Q2vkMB4-IcdqLMXGDrlLWPDu5C2-mv-QHLRVbFWYLfqTsilEP2yRLJHMdH16eitju5FgNCviD4-nb7jkOih5-f9729rKHnIXLGxgRyKpDmBdMGQti9vXC9f8cEWp4XEIsBvUB9x6EswRU5N8SH5Kyra0ZfV-7VyR7KSpz6QqMKch2pq9IoyBQWN76gaMsqzr6NHOz2CClrbGBga9qRXeHR-3Ur45ZU02Gzefm1yCSMZpkiROo8NhvnWzOM_mOJ1m5dIbRCyHHYzww9L2c8Z1nvWT6kYPcvK10Mvu4csvb1GC7AaDiCIiAhI-1zUNo3T5Nd3CTT6x1i4jhTUAYRfZvFSN0AUv6We_8anMcg4vXb2zIcQn6nGlPM7-_zNvp9-usLkPq71mhOaEgQsC76dsKL6xsVLc6kgg5OGyHIkV-ty0nQWoZ252tCPh6ZmQ8mSBzDhyVJwyJeidCJaJAYJp28ej1XQo8AptoTCLyrjkXqTnOgebZ3cMp5MWfEfKsfUDMYpn0H7h-cJsrokonbsoiz1isVUTPSlZGVs1CDBcoKffFA-34wmpa338lTd18LWBcKlsK9mltAjGdmeM2Uo08APW6rvDVrZi7GWYLrv1PA8yPhhjEAFyLodb7vCu8PlswRgyXAzCJFkIwdDm7A0uwEgo1KnqdsVNitfv158U2O4RezJ5CNi3ucFetNK4tsmLlh_4NbcQ9duWlrxoiNCpH-W-Gh4tNCQgTMgwXe0lFEeLMyHeIsWnChhdoA8ZUfqKVZ8jkEZ0wvpvixWOwLRKpZ6pO1gXPRjbBgJQBpEUXfzn0Jjlrb0AIwLCdp0viU1zaje0xWlfjnSNeo9zP7BUhShUQ5gAAH4ZGmz6S-6n6FV5mWtlYU64dTbwpyv0iqqAKJ8PiDOWbI8O2Gsb6TfhuyJkXnhsjYT3B_61A7GGj_OPCuLkIkWMFd9DVIhZHb5IUI9rFUnW4a_HbXSQDVYvMgRf5NwRqE0cj-lCrXLIUSmKrWxBeu_J7IaviiaSA_PGhohrbqM4kIuAuWjea7zkZ_6qty5dmrCAzn1NbYn0oWGZhXOr7NwPefCr77HYUNELF-vU_GoLJkzPAN4MiU4UUI4pl16xmdcJP4Wl2lsy5BrXTVIqK_97WQ5sMU_rEnyn8Rx53b2g9KW-rAGfI3ORphHAQTwBDPBj4kvxlXtur8QIIH3gYboYYbFEOkmhsWkU4Uov2TcngEJawAnE4BSVORMA-lxttDkmHhkQ0RcccCp20anly8KDlOjr73zEz3ehrH1deudH4dC04HcS6Nkn_BC4KYzBD357c0eMoDrJrFoC5dJYyCl48e9KXto3W0h2BeIPf83MLvh2fhaKCQNaks9DyKpjUDk1hxuocQ9fwMbIH1nUi-FlIiqS6dplKaCozE4L6D4VU4mJ40MNkf5sOPqtV14Rn74YdItsopIc6whNgTw-9p4gLYdindvbvOlgtUsO3itT0x8S_MRQ3DUjd3b9pdkyG64T4C4ILtogcTwznb3CblloH9L2Zo4TCB0rg9aLCMMv6orm0Mdr0WEtAxWNkblD-zDcZvWKctRyStghqDp5j-djxyfZaXa47bwRagS5EP7tLwDEcJ6T_s_EvZ3Z2TyNtPmuz9wQ-_YCvht80JOC5AZoJYdjaC-Ov1gJ9kJ-x8hEQneahjsHAaMYOQvYDpllTyUl9_Jov1Nd_sKNvc7qSL2rXwN6XOnLGgcXo7Dh6t1-e-KBtvr_W9xAZ46T3Fc_phNZhqybUbbQ4XpRlCXe_yc80N2rj82qeeFGVs7VYuG1Jy6jCoqyINeTo2QOj3hHSRQYFK6IYb1iVutoHUXg6f-4DVSteCcFHLbbnAOd1RBsCllYjSHrAwmXP_kTe8mLmPWksSPv0yzLhwtgHKeQ2opTba6qVtAGDkfOBZuwLNSl9rGi5fsJe6h5L-OtTTTgj5QPjYiixO4cHSYeLILStEyLG8ubMQ-DZcbyq7RZ2pei9QY0pdW7_CKSUBdRhHP4ngLjcPQA9qHWB1hT0zu66mjzmTH0aeIe5hW2Cy7JDYCiB-TvlNVinLD_Iyup4Efox4Vv2BSyEax4XCF9rk7qUVn1fUM85B4EOkj7rELvpyMRRXtWO-xISE94kyi1Z_QGIn_GcrxtAgh6xm0SelKw0cdzyywpJjZGFQ7t8PQlLOwXwc-tsSbHwSpY1J9nRf2gGXg0iX6wQdnQWHQSuecuaF2-ZBDHPXCztvZ2e9GKQxjDXamiI8Om1a1HOE54JTAXPTD-8bK13eJo1mXexNSRsMAuNIlSzNEJyh_IwRZkAuO1GPiN2cOJfgLcTzMRUekAv0MsneubOm22oZaPMF5COxv-CNyIk-ZxsUR_3cDdVYoTiDz5eVeS2x4LUrtW6Nb1-lRF264FC5mIDUW6PSttLWi1OitNRpeWbvD9nU2yT8WiQOP2r16APA6BvKwNgUxc2EGDkBd97rpILyBqFBGm54ttN9SlvIu4uOWlMTXFPf14TFhfzFNqUDga5f0i6pBEPWDg00xvPxh8cCGwceRU35T9eNq2XgYtvELpVIw586uvEdolzDhyCo6P7cSEXkPBMkx-pYW2AEEMRy14lu9iVMPE5ZBV7gDvua5UPZdDeRuJ_72hJsFrqre6lmJtU2X_sJhL3ZoVTwtUNbAiXIG5iNJ9vp02zoEuInGFQPw4kzZJFVTeB5xn1NysukmHBP7xu-CXt0-ribQzEH-g5A52bEhmtAiYZrX3yLrIzbVtSMAjJSE3iZYB9pWE2uQfGbNkLXpqt_ZSIuo9_2SP-d1m9aBVu3UsretZW6WPC9SNNSlFFuYdukl6_vU9FKE6ul9rXqwtVPKjf6wnen0zAD0Gsj4-wNviyOD9xHSv62BoiNaRwkVazhfCbxBi0CApBZBlwndneNdfI&cid=CAASBORoY9Y&sdkv=h.0.0.0&osd=2&frm=2&vis=1&sdr=1
173.194.222.156200 OK 16 kB URL HTTP/2 bid.g.doubleclick.net/dbm/vast?dbm_c=AKAmf-AB1Gjro3Nd9ZnWiArdpoRSvycm9ki6u2LTMD8jrsGm3E8uFVbvNMLP1MKv1TchpZT2Owc-n7T6HIwZbF3mW0I0bOOy7g&cry=1&dbm_d=AKAmf-CRsL7K7bhC5fSh4MPMPAcvselUyU8jKLm8sV4SI72jwjBJpZZacfFwzxcOHAywUiE0EfRc-9Loqz2CLR08AkC7PJODjKMvfarztLt4HkXSb9i7bvn54oiRps2CdB3AhZZdR5NSxzzK3W5v61HybRVGFFsKkO5SefNcr3OZXc6VTxOiZCaq1_YcO6tff3_YtSvKsaaUzxMBGN-_B23jB6KUc0PEbZDBzeiihjk8WFqszCm-GMQBdKW0UgodqoqaIyavcsCMFW636t5Llky1LsZZ6lcXbpQtjD3_0xoi5-YB0V6e3a0xWFTmw-GjdzxtvMT5fCSlhCaZp5Q2vkMB4-IcdqLMXGDrlLWPDu5C2-mv-QHLRVbFWYLfqTsilEP2yRLJHMdH16eitju5FgNCviD4-nb7jkOih5-f9729rKHnIXLGxgRyKpDmBdMGQti9vXC9f8cEWp4XEIsBvUB9x6EswRU5N8SH5Kyra0ZfV-7VyR7KSpz6QqMKch2pq9IoyBQWN76gaMsqzr6NHOz2CClrbGBga9qRXeHR-3Ur45ZU02Gzefm1yCSMZpkiROo8NhvnWzOM_mOJ1m5dIbRCyHHYzww9L2c8Z1nvWT6kYPcvK10Mvu4csvb1GC7AaDiCIiAhI-1zUNo3T5Nd3CTT6x1i4jhTUAYRfZvFSN0AUv6We_8anMcg4vXb2zIcQn6nGlPM7-_zNvp9-usLkPq71mhOaEgQsC76dsKL6xsVLc6kgg5OGyHIkV-ty0nQWoZ252tCPh6ZmQ8mSBzDhyVJwyJeidCJaJAYJp28ej1XQo8AptoTCLyrjkXqTnOgebZ3cMp5MWfEfKsfUDMYpn0H7h-cJsrokonbsoiz1isVUTPSlZGVs1CDBcoKffFA-34wmpa338lTd18LWBcKlsK9mltAjGdmeM2Uo08APW6rvDVrZi7GWYLrv1PA8yPhhjEAFyLodb7vCu8PlswRgyXAzCJFkIwdDm7A0uwEgo1KnqdsVNitfv158U2O4RezJ5CNi3ucFetNK4tsmLlh_4NbcQ9duWlrxoiNCpH-W-Gh4tNCQgTMgwXe0lFEeLMyHeIsWnChhdoA8ZUfqKVZ8jkEZ0wvpvixWOwLRKpZ6pO1gXPRjbBgJQBpEUXfzn0Jjlrb0AIwLCdp0viU1zaje0xWlfjnSNeo9zP7BUhShUQ5gAAH4ZGmz6S-6n6FV5mWtlYU64dTbwpyv0iqqAKJ8PiDOWbI8O2Gsb6TfhuyJkXnhsjYT3B_61A7GGj_OPCuLkIkWMFd9DVIhZHb5IUI9rFUnW4a_HbXSQDVYvMgRf5NwRqE0cj-lCrXLIUSmKrWxBeu_J7IaviiaSA_PGhohrbqM4kIuAuWjea7zkZ_6qty5dmrCAzn1NbYn0oWGZhXOr7NwPefCr77HYUNELF-vU_GoLJkzPAN4MiU4UUI4pl16xmdcJP4Wl2lsy5BrXTVIqK_97WQ5sMU_rEnyn8Rx53b2g9KW-rAGfI3ORphHAQTwBDPBj4kvxlXtur8QIIH3gYboYYbFEOkmhsWkU4Uov2TcngEJawAnE4BSVORMA-lxttDkmHhkQ0RcccCp20anly8KDlOjr73zEz3ehrH1deudH4dC04HcS6Nkn_BC4KYzBD357c0eMoDrJrFoC5dJYyCl48e9KXto3W0h2BeIPf83MLvh2fhaKCQNaks9DyKpjUDk1hxuocQ9fwMbIH1nUi-FlIiqS6dplKaCozE4L6D4VU4mJ40MNkf5sOPqtV14Rn74YdItsopIc6whNgTw-9p4gLYdindvbvOlgtUsO3itT0x8S_MRQ3DUjd3b9pdkyG64T4C4ILtogcTwznb3CblloH9L2Zo4TCB0rg9aLCMMv6orm0Mdr0WEtAxWNkblD-zDcZvWKctRyStghqDp5j-djxyfZaXa47bwRagS5EP7tLwDEcJ6T_s_EvZ3Z2TyNtPmuz9wQ-_YCvht80JOC5AZoJYdjaC-Ov1gJ9kJ-x8hEQneahjsHAaMYOQvYDpllTyUl9_Jov1Nd_sKNvc7qSL2rXwN6XOnLGgcXo7Dh6t1-e-KBtvr_W9xAZ46T3Fc_phNZhqybUbbQ4XpRlCXe_yc80N2rj82qeeFGVs7VYuG1Jy6jCoqyINeTo2QOj3hHSRQYFK6IYb1iVutoHUXg6f-4DVSteCcFHLbbnAOd1RBsCllYjSHrAwmXP_kTe8mLmPWksSPv0yzLhwtgHKeQ2opTba6qVtAGDkfOBZuwLNSl9rGi5fsJe6h5L-OtTTTgj5QPjYiixO4cHSYeLILStEyLG8ubMQ-DZcbyq7RZ2pei9QY0pdW7_CKSUBdRhHP4ngLjcPQA9qHWB1hT0zu66mjzmTH0aeIe5hW2Cy7JDYCiB-TvlNVinLD_Iyup4Efox4Vv2BSyEax4XCF9rk7qUVn1fUM85B4EOkj7rELvpyMRRXtWO-xISE94kyi1Z_QGIn_GcrxtAgh6xm0SelKw0cdzyywpJjZGFQ7t8PQlLOwXwc-tsSbHwSpY1J9nRf2gGXg0iX6wQdnQWHQSuecuaF2-ZBDHPXCztvZ2e9GKQxjDXamiI8Om1a1HOE54JTAXPTD-8bK13eJo1mXexNSRsMAuNIlSzNEJyh_IwRZkAuO1GPiN2cOJfgLcTzMRUekAv0MsneubOm22oZaPMF5COxv-CNyIk-ZxsUR_3cDdVYoTiDz5eVeS2x4LUrtW6Nb1-lRF264FC5mIDUW6PSttLWi1OitNRpeWbvD9nU2yT8WiQOP2r16APA6BvKwNgUxc2EGDkBd97rpILyBqFBGm54ttN9SlvIu4uOWlMTXFPf14TFhfzFNqUDga5f0i6pBEPWDg00xvPxh8cCGwceRU35T9eNq2XgYtvELpVIw586uvEdolzDhyCo6P7cSEXkPBMkx-pYW2AEEMRy14lu9iVMPE5ZBV7gDvua5UPZdDeRuJ_72hJsFrqre6lmJtU2X_sJhL3ZoVTwtUNbAiXIG5iNJ9vp02zoEuInGFQPw4kzZJFVTeB5xn1NysukmHBP7xu-CXt0-ribQzEH-g5A52bEhmtAiYZrX3yLrIzbVtSMAjJSE3iZYB9pWE2uQfGbNkLXpqt_ZSIuo9_2SP-d1m9aBVu3UsretZW6WPC9SNNSlFFuYdukl6_vU9FKE6ul9rXqwtVPKjf6wnen0zAD0Gsj4-wNviyOD9xHSv62BoiNaRwkVazhfCbxBi0CApBZBlwndneNdfI&cid=CAASBORoY9Y&sdkv=h.0.0.0&osd=2&frm=2&vis=1&sdr=1
IP 173.194.222.156:0
File type XML 1.0 document text\012- XML document, ASCII text, with very long lines (16581)
Hash 8d25ea1f6ba2c52410ef08ef9a8f5e01
0401c857730adee9c4c89aeb707b3f9079d727cc
ded27042d1e1de861ec8751b55d21f8e819bd5403921c6c6cbddf8aa17a5f505
GET /dbm/vast?dbm_c=AKAmf-AB1Gjro3Nd9ZnWiArdpoRSvycm9ki6u2LTMD8jrsGm3E8uFVbvNMLP1MKv1TchpZT2Owc-n7T6HIwZbF3mW0I0bOOy7g&cry=1&dbm_d=AKAmf-CRsL7K7bhC5fSh4MPMPAcvselUyU8jKLm8sV4SI72jwjBJpZZacfFwzxcOHAywUiE0EfRc-9Loqz2CLR08AkC7PJODjKMvfarztLt4HkXSb9i7bvn54oiRps2CdB3AhZZdR5NSxzzK3W5v61HybRVGFFsKkO5SefNcr3OZXc6VTxOiZCaq1_YcO6tff3_YtSvKsaaUzxMBGN-_B23jB6KUc0PEbZDBzeiihjk8WFqszCm-GMQBdKW0UgodqoqaIyavcsCMFW636t5Llky1LsZZ6lcXbpQtjD3_0xoi5-YB0V6e3a0xWFTmw-GjdzxtvMT5fCSlhCaZp5Q2vkMB4-IcdqLMXGDrlLWPDu5C2-mv-QHLRVbFWYLfqTsilEP2yRLJHMdH16eitju5FgNCviD4-nb7jkOih5-f9729rKHnIXLGxgRyKpDmBdMGQti9vXC9f8cEWp4XEIsBvUB9x6EswRU5N8SH5Kyra0ZfV-7VyR7KSpz6QqMKch2pq9IoyBQWN76gaMsqzr6NHOz2CClrbGBga9qRXeHR-3Ur45ZU02Gzefm1yCSMZpkiROo8NhvnWzOM_mOJ1m5dIbRCyHHYzww9L2c8Z1nvWT6kYPcvK10Mvu4csvb1GC7AaDiCIiAhI-1zUNo3T5Nd3CTT6x1i4jhTUAYRfZvFSN0AUv6We_8anMcg4vXb2zIcQn6nGlPM7-_zNvp9-usLkPq71mhOaEgQsC76dsKL6xsVLc6kgg5OGyHIkV-ty0nQWoZ252tCPh6ZmQ8mSBzDhyVJwyJeidCJaJAYJp28ej1XQo8AptoTCLyrjkXqTnOgebZ3cMp5MWfEfKsfUDMYpn0H7h-cJsrokonbsoiz1isVUTPSlZGVs1CDBcoKffFA-34wmpa338lTd18LWBcKlsK9mltAjGdmeM2Uo08APW6rvDVrZi7GWYLrv1PA8yPhhjEAFyLodb7vCu8PlswRgyXAzCJFkIwdDm7A0uwEgo1KnqdsVNitfv158U2O4RezJ5CNi3ucFetNK4tsmLlh_4NbcQ9duWlrxoiNCpH-W-Gh4tNCQgTMgwXe0lFEeLMyHeIsWnChhdoA8ZUfqKVZ8jkEZ0wvpvixWOwLRKpZ6pO1gXPRjbBgJQBpEUXfzn0Jjlrb0AIwLCdp0viU1zaje0xWlfjnSNeo9zP7BUhShUQ5gAAH4ZGmz6S-6n6FV5mWtlYU64dTbwpyv0iqqAKJ8PiDOWbI8O2Gsb6TfhuyJkXnhsjYT3B_61A7GGj_OPCuLkIkWMFd9DVIhZHb5IUI9rFUnW4a_HbXSQDVYvMgRf5NwRqE0cj-lCrXLIUSmKrWxBeu_J7IaviiaSA_PGhohrbqM4kIuAuWjea7zkZ_6qty5dmrCAzn1NbYn0oWGZhXOr7NwPefCr77HYUNELF-vU_GoLJkzPAN4MiU4UUI4pl16xmdcJP4Wl2lsy5BrXTVIqK_97WQ5sMU_rEnyn8Rx53b2g9KW-rAGfI3ORphHAQTwBDPBj4kvxlXtur8QIIH3gYboYYbFEOkmhsWkU4Uov2TcngEJawAnE4BSVORMA-lxttDkmHhkQ0RcccCp20anly8KDlOjr73zEz3ehrH1deudH4dC04HcS6Nkn_BC4KYzBD357c0eMoDrJrFoC5dJYyCl48e9KXto3W0h2BeIPf83MLvh2fhaKCQNaks9DyKpjUDk1hxuocQ9fwMbIH1nUi-FlIiqS6dplKaCozE4L6D4VU4mJ40MNkf5sOPqtV14Rn74YdItsopIc6whNgTw-9p4gLYdindvbvOlgtUsO3itT0x8S_MRQ3DUjd3b9pdkyG64T4C4ILtogcTwznb3CblloH9L2Zo4TCB0rg9aLCMMv6orm0Mdr0WEtAxWNkblD-zDcZvWKctRyStghqDp5j-djxyfZaXa47bwRagS5EP7tLwDEcJ6T_s_EvZ3Z2TyNtPmuz9wQ-_YCvht80JOC5AZoJYdjaC-Ov1gJ9kJ-x8hEQneahjsHAaMYOQvYDpllTyUl9_Jov1Nd_sKNvc7qSL2rXwN6XOnLGgcXo7Dh6t1-e-KBtvr_W9xAZ46T3Fc_phNZhqybUbbQ4XpRlCXe_yc80N2rj82qeeFGVs7VYuG1Jy6jCoqyINeTo2QOj3hHSRQYFK6IYb1iVutoHUXg6f-4DVSteCcFHLbbnAOd1RBsCllYjSHrAwmXP_kTe8mLmPWksSPv0yzLhwtgHKeQ2opTba6qVtAGDkfOBZuwLNSl9rGi5fsJe6h5L-OtTTTgj5QPjYiixO4cHSYeLILStEyLG8ubMQ-DZcbyq7RZ2pei9QY0pdW7_CKSUBdRhHP4ngLjcPQA9qHWB1hT0zu66mjzmTH0aeIe5hW2Cy7JDYCiB-TvlNVinLD_Iyup4Efox4Vv2BSyEax4XCF9rk7qUVn1fUM85B4EOkj7rELvpyMRRXtWO-xISE94kyi1Z_QGIn_GcrxtAgh6xm0SelKw0cdzyywpJjZGFQ7t8PQlLOwXwc-tsSbHwSpY1J9nRf2gGXg0iX6wQdnQWHQSuecuaF2-ZBDHPXCztvZ2e9GKQxjDXamiI8Om1a1HOE54JTAXPTD-8bK13eJo1mXexNSRsMAuNIlSzNEJyh_IwRZkAuO1GPiN2cOJfgLcTzMRUekAv0MsneubOm22oZaPMF5COxv-CNyIk-ZxsUR_3cDdVYoTiDz5eVeS2x4LUrtW6Nb1-lRF264FC5mIDUW6PSttLWi1OitNRpeWbvD9nU2yT8WiQOP2r16APA6BvKwNgUxc2EGDkBd97rpILyBqFBGm54ttN9SlvIu4uOWlMTXFPf14TFhfzFNqUDga5f0i6pBEPWDg00xvPxh8cCGwceRU35T9eNq2XgYtvELpVIw586uvEdolzDhyCo6P7cSEXkPBMkx-pYW2AEEMRy14lu9iVMPE5ZBV7gDvua5UPZdDeRuJ_72hJsFrqre6lmJtU2X_sJhL3ZoVTwtUNbAiXIG5iNJ9vp02zoEuInGFQPw4kzZJFVTeB5xn1NysukmHBP7xu-CXt0-ribQzEH-g5A52bEhmtAiYZrX3yLrIzbVtSMAjJSE3iZYB9pWE2uQfGbNkLXpqt_ZSIuo9_2SP-d1m9aBVu3UsretZW6WPC9SNNSlFFuYdukl6_vU9FKE6ul9rXqwtVPKjf6wnen0zAD0Gsj4-wNviyOD9xHSv62BoiNaRwkVazhfCbxBi0CApBZBlwndneNdfI&cid=CAASBORoY9Y&sdkv=h.0.0.0&osd=2&frm=2&vis=1&sdr=1 HTTP/1.1
Host: bid.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://googleads.g.doubleclick.net
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 03 Sep 2022 16:27:44 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
access-control-allow-credentials: true
access-control-allow-origin: https://googleads.g.doubleclick.net
content-type: text/xml; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 15450
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 03-Sep-2022 16:42:44 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
platform.twitter.com/_next/static/fJUFW1qGayM-Fl0txyHpE/_ssgManifest.js
93.184.220.66200 OK 76 B URL HTTP/1.1 platform.twitter.com/_next/static/fJUFW1qGayM-Fl0txyHpE/_ssgManifest.js
IP 93.184.220.66:0
File type ASCII text, with no line terminators
Hash abee47769bf307639ace4945f9cfd4ff
c0a0dc51ee8a2852baf5ff30c33b1478ff302585
653f3e53e89b4f8548ff86c19e92bb3c6b84b6be7485a320b1e00893ed877479
GET /_next/static/fJUFW1qGayM-Fl0txyHpE/_ssgManifest.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 163059
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Sat, 03 Sep 2022 16:27:44 GMT
Etag: "abee47769bf307639ace4945f9cfd4ff"
Last-Modified: Thu, 01 Sep 2022 19:07:41 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F704)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 76
fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2
142.250.74.163200 OK 28 kB URL HTTP/2 fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 28288, version 1.0\012- data
Hash 53b5e785dfdca21fa7adf7119fa1f8cc
a3a86dfd216ad29183ba5493ae39d45b62f9d8b8
4a6fab14bfe7b33fe5dc5349a2bb3720037e0ed7ebe621b352340f9514d83c08
GET /s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://googleads.g.doubleclick.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28288
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 20:35:24 GMT
expires: Thu, 31 Aug 2023 20:35:24 GMT
cache-control: public, max-age=31536000
age: 244340
last-modified: Wed, 01 Jun 2022 19:05:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4f6d9674a0a2b4887d6c6d04fa8e084c
ac31080b6eb2bf3b6b7d94df94c79394a2721026
ce66b4299293498a050c05bdd7c1e2261bcab782a32bd37f59800a64770ccf62
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 16:27:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
platform.twitter.com/_next/static/chunks/13.1400171dc985d5f47aaf.js
93.184.220.66200 OK 12 kB URL HTTP/1.1 platform.twitter.com/_next/static/chunks/13.1400171dc985d5f47aaf.js
IP 93.184.220.66:0
File type ASCII text, with very long lines (37725), with no line terminators
Hash 9ec58ff6002ddd501a29b67a484a28f3
ea8eac40bd40fd880a0121fcf5e4c105e248d64d
d5a5505a6baa37d8d7e83d75eb6ccce833dc79449f582f0c61a8c6c706a07acf
GET /_next/static/chunks/13.1400171dc985d5f47aaf.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 163036
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Sat, 03 Sep 2022 16:27:44 GMT
Etag: "15b5ec14cb278c05621cea19cb44555b+gzip"
Last-Modified: Thu, 01 Sep 2022 19:07:42 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F6FC)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 11940
platform.twitter.com/_next/static/chunks/2.691622e4391d1973cb65.js
93.184.220.66200 OK 7.7 kB URL HTTP/1.1 platform.twitter.com/_next/static/chunks/2.691622e4391d1973cb65.js
IP 93.184.220.66:0
File type ASCII text, with very long lines (23122), with no line terminators
Hash 4a5157f70210215c373507af7f7e7a9f
7f9b86187dd74939aaaa720d91362cae0f6ddd81
ca9f1f2e073c2df1c788902a60c876ea3a151c1350e7dd607bbe319eb294c730
GET /_next/static/chunks/2.691622e4391d1973cb65.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 243873
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Sat, 03 Sep 2022 16:27:44 GMT
Etag: "942b5b928a24465d1906b4716131d896+gzip"
Last-Modified: Wed, 17 Aug 2022 17:37:20 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F712)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 7674
googleads4.g.doubleclick.net/pcs/view?xai=AKAOjsuAcgy439ZMa0qg_bnAy9cQO2iC58CMAgEwy19FnhiNIJTeMnKbrNSqDcHv1hrfPGo4gC0wlQ8xhgkoDF8fW-tsLiAo7nVqzeBUvJBuNNdHIVqqT3d4I0lUZyIq8_Tg-_kkHREPD5EbTw3e_e8iHlCwhLEZrIU7qOE8QyvwHbt1l0xdj4ddzCnQvlnxQfqyanJ_VU-1TfYRFhfCMRMP35aF8xWm2GAtf0QS6zcIvicjuu_22v-07AEjWufys1iItdQvgWJqnhfc_Wz8EyeygiJ8v8ag1VZUSlfG6JPzzzIeC0-iII5OFWSmT4NDZs8y17cvtUqg8Lyq4fR2KTdDKB7DcrgricFr8s0dzzD3RqJJGKlk9qZXSqgZaN85P0VYnuiAGBVt7T-KKtX8Gx6IhzAzXNiaZCl2jOElsDA3wH_G18DFW_DI28m-WBgdZZ1sxjgY775C2ZcrG_fGuDNEUxZYvQvhfafjDqhNm338w_KZdaTOzBsBSgmN5L3hvLOdlqiSKVPKNA6Zs3EqsAab36CqDFFjmtvWa4AETji_krCWpc5nXVAlx70-fPTdvbBF0kT8Dp2eFSnOeA5DZ1bAyFZE1TxrQpyHVG-kQdzNbdviZX-Tl3EsXndTk9tJ3Ho616ty7CkoQ9_l-FndLFHzb3f4wS5NqcEfB3vMz4wp95BAN83HIQQagMktvwrRi-WiGX5Hs9oUOdUoVGKKSmaBAw_zCjR8aB9YZ0qhNLEw4Bc8Qak_XVCTJg6LHAKhLz8fJe-OG7ajXmwqsInDgwhXM7B082hH8imia65aS2SLOUtLxpjhIY0Ai1a7ZP5Cu1nGFIVRwCo_JGnw4w6gMP-5T8w_Ihy4rBTLyACFz3_s2RTwFZKIrBN2l-qCcVkG0cQTjHtLeiGjeyt-1XTXdgd_jFhnGNW82McO771OPgwXm_PpelcMwP7u8zOaR409lZk1cmlN0_i7jny7k5QX6fzlgIEk8nD04mWaliTiwbZGI6j_liEdW1QAKQOIk5eo6oOPLl0lGvK1LS9klJONhR3nYTzwpRHS7i83kQG1NkrldvfzdRTZxcK2dk-0jdPtwgFhKrZO1cCO6fhdwFuzpbxGt3ed1k2hZ8-goldbV8iVdd7yWRVyydsX&sai=AMfl-YR8LYbv0n0CNWegt0y3U50swNNTCQFtwQEAE4Qq0TeHnoSYWtUnZIv5p37RaVx_p_ZxaQeTGbN8EdB65dFGbRCGPcWQ4pSf9XxewK2D523Gkdq4CA&sig=Cg0ArKJSzIodGX67peS1EAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=1&cbvp=1&cstd=0&cisv=r20220831.21695&adurl=
216.58.207.194200 OK 0 B URL HTTP/2 googleads4.g.doubleclick.net/pcs/view?xai=AKAOjsuAcgy439ZMa0qg_bnAy9cQO2iC58CMAgEwy19FnhiNIJTeMnKbrNSqDcHv1hrfPGo4gC0wlQ8xhgkoDF8fW-tsLiAo7nVqzeBUvJBuNNdHIVqqT3d4I0lUZyIq8_Tg-_kkHREPD5EbTw3e_e8iHlCwhLEZrIU7qOE8QyvwHbt1l0xdj4ddzCnQvlnxQfqyanJ_VU-1TfYRFhfCMRMP35aF8xWm2GAtf0QS6zcIvicjuu_22v-07AEjWufys1iItdQvgWJqnhfc_Wz8EyeygiJ8v8ag1VZUSlfG6JPzzzIeC0-iII5OFWSmT4NDZs8y17cvtUqg8Lyq4fR2KTdDKB7DcrgricFr8s0dzzD3RqJJGKlk9qZXSqgZaN85P0VYnuiAGBVt7T-KKtX8Gx6IhzAzXNiaZCl2jOElsDA3wH_G18DFW_DI28m-WBgdZZ1sxjgY775C2ZcrG_fGuDNEUxZYvQvhfafjDqhNm338w_KZdaTOzBsBSgmN5L3hvLOdlqiSKVPKNA6Zs3EqsAab36CqDFFjmtvWa4AETji_krCWpc5nXVAlx70-fPTdvbBF0kT8Dp2eFSnOeA5DZ1bAyFZE1TxrQpyHVG-kQdzNbdviZX-Tl3EsXndTk9tJ3Ho616ty7CkoQ9_l-FndLFHzb3f4wS5NqcEfB3vMz4wp95BAN83HIQQagMktvwrRi-WiGX5Hs9oUOdUoVGKKSmaBAw_zCjR8aB9YZ0qhNLEw4Bc8Qak_XVCTJg6LHAKhLz8fJe-OG7ajXmwqsInDgwhXM7B082hH8imia65aS2SLOUtLxpjhIY0Ai1a7ZP5Cu1nGFIVRwCo_JGnw4w6gMP-5T8w_Ihy4rBTLyACFz3_s2RTwFZKIrBN2l-qCcVkG0cQTjHtLeiGjeyt-1XTXdgd_jFhnGNW82McO771OPgwXm_PpelcMwP7u8zOaR409lZk1cmlN0_i7jny7k5QX6fzlgIEk8nD04mWaliTiwbZGI6j_liEdW1QAKQOIk5eo6oOPLl0lGvK1LS9klJONhR3nYTzwpRHS7i83kQG1NkrldvfzdRTZxcK2dk-0jdPtwgFhKrZO1cCO6fhdwFuzpbxGt3ed1k2hZ8-goldbV8iVdd7yWRVyydsX&sai=AMfl-YR8LYbv0n0CNWegt0y3U50swNNTCQFtwQEAE4Qq0TeHnoSYWtUnZIv5p37RaVx_p_ZxaQeTGbN8EdB65dFGbRCGPcWQ4pSf9XxewK2D523Gkdq4CA&sig=Cg0ArKJSzIodGX67peS1EAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=1&cbvp=1&cstd=0&cisv=r20220831.21695&adurl=
IP 216.58.207.194:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pcs/view?xai=AKAOjsuAcgy439ZMa0qg_bnAy9cQO2iC58CMAgEwy19FnhiNIJTeMnKbrNSqDcHv1hrfPGo4gC0wlQ8xhgkoDF8fW-tsLiAo7nVqzeBUvJBuNNdHIVqqT3d4I0lUZyIq8_Tg-_kkHREPD5EbTw3e_e8iHlCwhLEZrIU7qOE8QyvwHbt1l0xdj4ddzCnQvlnxQfqyanJ_VU-1TfYRFhfCMRMP35aF8xWm2GAtf0QS6zcIvicjuu_22v-07AEjWufys1iItdQvgWJqnhfc_Wz8EyeygiJ8v8ag1VZUSlfG6JPzzzIeC0-iII5OFWSmT4NDZs8y17cvtUqg8Lyq4fR2KTdDKB7DcrgricFr8s0dzzD3RqJJGKlk9qZXSqgZaN85P0VYnuiAGBVt7T-KKtX8Gx6IhzAzXNiaZCl2jOElsDA3wH_G18DFW_DI28m-WBgdZZ1sxjgY775C2ZcrG_fGuDNEUxZYvQvhfafjDqhNm338w_KZdaTOzBsBSgmN5L3hvLOdlqiSKVPKNA6Zs3EqsAab36CqDFFjmtvWa4AETji_krCWpc5nXVAlx70-fPTdvbBF0kT8Dp2eFSnOeA5DZ1bAyFZE1TxrQpyHVG-kQdzNbdviZX-Tl3EsXndTk9tJ3Ho616ty7CkoQ9_l-FndLFHzb3f4wS5NqcEfB3vMz4wp95BAN83HIQQagMktvwrRi-WiGX5Hs9oUOdUoVGKKSmaBAw_zCjR8aB9YZ0qhNLEw4Bc8Qak_XVCTJg6LHAKhLz8fJe-OG7ajXmwqsInDgwhXM7B082hH8imia65aS2SLOUtLxpjhIY0Ai1a7ZP5Cu1nGFIVRwCo_JGnw4w6gMP-5T8w_Ihy4rBTLyACFz3_s2RTwFZKIrBN2l-qCcVkG0cQTjHtLeiGjeyt-1XTXdgd_jFhnGNW82McO771OPgwXm_PpelcMwP7u8zOaR409lZk1cmlN0_i7jny7k5QX6fzlgIEk8nD04mWaliTiwbZGI6j_liEdW1QAKQOIk5eo6oOPLl0lGvK1LS9klJONhR3nYTzwpRHS7i83kQG1NkrldvfzdRTZxcK2dk-0jdPtwgFhKrZO1cCO6fhdwFuzpbxGt3ed1k2hZ8-goldbV8iVdd7yWRVyydsX&sai=AMfl-YR8LYbv0n0CNWegt0y3U50swNNTCQFtwQEAE4Qq0TeHnoSYWtUnZIv5p37RaVx_p_ZxaQeTGbN8EdB65dFGbRCGPcWQ4pSf9XxewK2D523Gkdq4CA&sig=Cg0ArKJSzIodGX67peS1EAE&uach_m=[UACH]&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=1&cbvp=1&cstd=0&cisv=r20220831.21695&adurl= HTTP/1.1
Host: googleads4.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
content-security-policy: script-src 'none'; object-src 'none'
cache-control: private
access-control-allow-origin: *
content-type: image/gif
x-content-type-options: nosniff
date: Sat, 03 Sep 2022 16:27:44 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 03-Sep-2022 16:42:44 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Sat, 03 Sep 2022 16:27:44 GMT
X-Firefox-Spdy: h2
s0.2mdn.net/simgad/17901818236827837264
216.58.211.6200 OK 84 kB URL HTTP/2 s0.2mdn.net/simgad/17901818236827837264
IP 216.58.211.6:0
File type PNG image data, 300 x 250, 8-bit/color RGB, non-interlaced\012- data
Hash d034ffde27b6c7db50bc9eb770b7891d
48231815c1cdc1ebe544fb6ddf72fe7425b0f2d8
eebee97c483e5a8e65a404868ce325196d0cc1e0a2c3ddc59e13f0ae801bc214
GET /simgad/17901818236827837264 HTTP/1.1
Host: s0.2mdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 84436
x-content-type-options: nosniff
x-dns-prefetch-control: off
server: sffe
x-xss-protection: 0
date: Tue, 30 Aug 2022 11:15:59 GMT
expires: Wed, 30 Aug 2023 11:15:59 GMT
cache-control: public, max-age=31536000
age: 364305
last-modified: Mon, 08 Aug 2022 13:08:09 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
platform.twitter.com/_next/static/chunks/0.8f205dbb7b06b224e307.js
93.184.220.66200 OK 187 kB URL HTTP/1.1 platform.twitter.com/_next/static/chunks/0.8f205dbb7b06b224e307.js
IP 93.184.220.66:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 187 kB (186671 bytes)
Hash 138046088fc9950c02b3397a306c6926
ee43af6df2e3818806a7534db5b8cf8eb55af7df
2ae4cd8681538b28234b961d0f0f60382e24fc775102362c2746899bb03036b7
GET /_next/static/chunks/0.8f205dbb7b06b224e307.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 243873
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Sat, 03 Sep 2022 16:27:44 GMT
Etag: "11f6449263029b9f59f18afa52cc99ed+gzip"
Last-Modified: Wed, 17 Aug 2022 17:37:22 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F715)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 186671
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4f6d9674a0a2b4887d6c6d04fa8e084c
ac31080b6eb2bf3b6b7d94df94c79394a2721026
ce66b4299293498a050c05bdd7c1e2261bcab782a32bd37f59800a64770ccf62
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 16:27:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
platform.twitter.com/_next/static/chunks/4.096fc3966cc81b0f4642.js
93.184.220.66200 OK 1.2 kB URL HTTP/1.1 platform.twitter.com/_next/static/chunks/4.096fc3966cc81b0f4642.js
IP 93.184.220.66:0
File type ASCII text, with very long lines (2496), with no line terminators
Hash 55272ce1615195b04309b5e45f4c2197
47589eb69f25efad1cf6e59d5fd5fb4156d5d074
062595a5d26d285b6e467801b7700219f003006c33e77ea441e0a9d007ad1bdf
GET /_next/static/chunks/4.096fc3966cc81b0f4642.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 163058
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Sat, 03 Sep 2022 16:27:44 GMT
Etag: "74fc8570e9c4ef27736b0fd8e9534b6f+gzip"
Last-Modified: Thu, 01 Sep 2022 19:07:42 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F70A)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 1249
platform.twitter.com/_next/static/chunks/1.d77d8092171c9a9ccc4c.js
93.184.220.66200 OK 297 kB URL HTTP/1.1 platform.twitter.com/_next/static/chunks/1.d77d8092171c9a9ccc4c.js
IP 93.184.220.66:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 297 kB (296589 bytes)
Hash d1398172924090b6de76c57fde702b67
5c9ec16609c603920a118c56eebe38c11169aec2
1aa6e9a02c7de6f5fcc817ea021190e406742af2db2d1362036c825bf0f91c2a
GET /_next/static/chunks/1.d77d8092171c9a9ccc4c.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 163058
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Sat, 03 Sep 2022 16:27:44 GMT
Etag: "d951ba70c2a27d88a8b99a82c9a7361b+gzip"
Last-Modified: Thu, 01 Sep 2022 19:07:42 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F717)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 296589
gcdn.2mdn.net/videoplayback/id/4fa93477ffcdc534/itag/343/source/web_video_ads/ctier/L/acao/yes/ip/0.0.0.0/ipbits/0/expire/1693758464/sparams/ip,ipbits,expire,id,itag,source,ctier,acao/signature/2E03D3BE01501E48B64AE468D4BFB31CFD8EE2B5.45C9A8B8AAD11DCECF352BAB7CECFD898F8C4F4C/key/ck2/file/file.mp4
142.250.74.174302 Found 0 B URL HTTP/2 gcdn.2mdn.net/videoplayback/id/4fa93477ffcdc534/itag/343/source/web_video_ads/ctier/L/acao/yes/ip/0.0.0.0/ipbits/0/expire/1693758464/sparams/ip,ipbits,expire,id,itag,source,ctier,acao/signature/2E03D3BE01501E48B64AE468D4BFB31CFD8EE2B5.45C9A8B8AAD11DCECF352BAB7CECFD898F8C4F4C/key/ck2/file/file.mp4
IP 142.250.74.174:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /videoplayback/id/4fa93477ffcdc534/itag/343/source/web_video_ads/ctier/L/acao/yes/ip/0.0.0.0/ipbits/0/expire/1693758464/sparams/ip,ipbits,expire,id,itag,source,ctier,acao/signature/2E03D3BE01501E48B64AE468D4BFB31CFD8EE2B5.45C9A8B8AAD11DCECF352BAB7CECFD898F8C4F4C/key/ck2/file/file.mp4 HTTP/1.1
Host: gcdn.2mdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://googleads.g.doubleclick.net/
Origin: https://googleads.g.doubleclick.net
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 03 Sep 2022 16:27:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
access-control-allow-origin: https://googleads.g.doubleclick.net
access-control-allow-credentials: true
timing-allow-origin: https://googleads.g.doubleclick.net
access-control-expose-headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
location: https://r5---sn-5goeen7r.c.2mdn.net/videoplayback/id/4fa93477ffcdc534/itag/343/source/web_video_ads/ctier/L/acao/yes/ip/0.0.0.0/ipbits/0/expire/1693758464/sparams/acao,ctier,expire,id,ip,ipbits,itag,mh,mip,mm,mn,ms,mv,mvi,pl,source/signature/03786BFE5112613907E3C7867D885E36B6BA2A8D.404CAE9A7B4234EC4045D6F39CDAB3B278819324/key/cms1/cms_redirect/yes/mh/YV/mip/91.90.42.154/mm/42/mn/sn-5goeen7r/ms/onc/mt/1662221749/mv/u/mvi/5/pl/21/file/file.mp4
content-type: text/html; charset=UTF-8
server: ClientMapServer
content-length: 642
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
csi.gstatic.com/csi?v=2&s=osv&puid=1~l7m4c46u&c=7313275422633&slotId=3656637711316.5&qqid=CKvj_5uF-fkCFeVGkQUdYZEBGA&fb=outstream-lima&sei=44729911%2C44730425%2C44730426%2C44752538%2C75259414%2C420706098&nsei=44714510%2C72811302%2C75259405%2C75259407%2C75259408%2C318491509%2C447279544&bi=outstream
142.250.200.3204 No Content 0 B URL HTTP/2 csi.gstatic.com/csi?v=2&s=osv&puid=1~l7m4c46u&c=7313275422633&slotId=3656637711316.5&qqid=CKvj_5uF-fkCFeVGkQUdYZEBGA&fb=outstream-lima&sei=44729911%2C44730425%2C44730426%2C44752538%2C75259414%2C420706098&nsei=44714510%2C72811302%2C75259405%2C75259407%2C75259408%2C318491509%2C447279544&bi=outstream
IP 142.250.200.3:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csi?v=2&s=osv&puid=1~l7m4c46u&c=7313275422633&slotId=3656637711316.5&qqid=CKvj_5uF-fkCFeVGkQUdYZEBGA&fb=outstream-lima&sei=44729911%2C44730425%2C44730426%2C44752538%2C75259414%2C420706098&nsei=44714510%2C72811302%2C75259405%2C75259407%2C75259408%2C318491509%2C447279544&bi=outstream HTTP/1.1
Host: csi.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://googleads.g.doubleclick.net
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: *
date: Sat, 03 Sep 2022 16:27:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Wed, 21 Jan 2004 19:51:30 GMT
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
platform.twitter.com/_next/static/chunks/ondemand.Dropdown.5730e0a49ea6a6dde3b4.js
93.184.220.66200 OK 2.6 kB URL HTTP/1.1 platform.twitter.com/_next/static/chunks/ondemand.Dropdown.5730e0a49ea6a6dde3b4.js
IP 93.184.220.66:0
File type ASCII text, with very long lines (6637), with no line terminators
Hash 8275746421c9a7da878fec42e2ef43c7
ae21039ceeb067b1ef8423583b75939f38801599
7480282cdc87e4812d6ae138dfff5c670b9e3f778748d21828cbb16bf0a8b62d
GET /_next/static/chunks/ondemand.Dropdown.5730e0a49ea6a6dde3b4.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 163058
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Sat, 03 Sep 2022 16:27:45 GMT
Etag: "deb1205c6e01f2720f75bbd978f5925b+gzip"
Last-Modified: Thu, 01 Sep 2022 19:07:42 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F704)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 2597
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9c953db0ebb4413d0961d038ef10b70b
57a1d18726644a6532ce46242c27e19b9472cc2b
6bcf5c4aef3201db615e36c1677d015430ad725d2bba7e1d87411a3225f22625
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 16:27:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r5---sn-5goeen7r.c.2mdn.net/videoplayback/id/4fa93477ffcdc534/itag/343/source/web_video_ads/ctier/L/acao/yes/ip/0.0.0.0/ipbits/0/expire/1693758464/sparams/acao,ctier,expire,id,ip,ipbits,itag,mh,mip,mm,mn,ms,mv,mvi,pl,source/signature/03786BFE5112613907E3C7867D885E36B6BA2A8D.404CAE9A7B4234EC4045D6F39CDAB3B278819324/key/cms1/cms_redirect/yes/mh/YV/mip/91.90.42.154/mm/42/mn/sn-5goeen7r/ms/onc/mt/1662221749/mv/u/mvi/5/pl/21/file/file.mp4
173.194.150.219200 OK 0 B URL HTTP/1.1 r5---sn-5goeen7r.c.2mdn.net/videoplayback/id/4fa93477ffcdc534/itag/343/source/web_video_ads/ctier/L/acao/yes/ip/0.0.0.0/ipbits/0/expire/1693758464/sparams/acao,ctier,expire,id,ip,ipbits,itag,mh,mip,mm,mn,ms,mv,mvi,pl,source/signature/03786BFE5112613907E3C7867D885E36B6BA2A8D.404CAE9A7B4234EC4045D6F39CDAB3B278819324/key/cms1/cms_redirect/yes/mh/YV/mip/91.90.42.154/mm/42/mn/sn-5goeen7r/ms/onc/mt/1662221749/mv/u/mvi/5/pl/21/file/file.mp4
IP 173.194.150.219:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /videoplayback/id/4fa93477ffcdc534/itag/343/source/web_video_ads/ctier/L/acao/yes/ip/0.0.0.0/ipbits/0/expire/1693758464/sparams/acao,ctier,expire,id,ip,ipbits,itag,mh,mip,mm,mn,ms,mv,mvi,pl,source/signature/03786BFE5112613907E3C7867D885E36B6BA2A8D.404CAE9A7B4234EC4045D6F39CDAB3B278819324/key/cms1/cms_redirect/yes/mh/YV/mip/91.90.42.154/mm/42/mn/sn-5goeen7r/ms/onc/mt/1662221749/mv/u/mvi/5/pl/21/file/file.mp4 HTTP/1.1
Host: r5---sn-5goeen7r.c.2mdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Referer: https://googleads.g.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Last-Modified: Fri, 29 Jul 2022 02:12:20 GMT
Content-Type: video/mp4
Date: Sat, 03 Sep 2022 16:27:45 GMT
Expires: Sat, 03 Sep 2022 16:27:45 GMT
Cache-Control: private, max-age=86400
Accept-Ranges: bytes
Content-Length: 2932494
Connection: close
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: null
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: null
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9c953db0ebb4413d0961d038ef10b70b
57a1d18726644a6532ce46242c27e19b9472cc2b
6bcf5c4aef3201db615e36c1677d015430ad725d2bba7e1d87411a3225f22625
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 16:27:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
platform.twitter.com/_next/static/chunks/vendors~ondemand.LottieWeb.84a69543ec64b75cae2a.js
93.184.220.66200 OK 42 kB URL HTTP/1.1 platform.twitter.com/_next/static/chunks/vendors~ondemand.LottieWeb.84a69543ec64b75cae2a.js
IP 93.184.220.66:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash e5a2bf7e277ab0fb04fe0bee48444031
34611541b54576e3f32a59821c44f810e1a23875
053db71a537b514e6a3b8495ec4c4d33f776dc54941e673e57df041e5fe1d6b6
GET /_next/static/chunks/vendors~ondemand.LottieWeb.84a69543ec64b75cae2a.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 243875
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Sat, 03 Sep 2022 16:27:46 GMT
Etag: "72929dff5e574c1b877555fd36c7683a+gzip"
Last-Modified: Wed, 17 Aug 2022 17:37:21 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F711)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 41941
abs.twimg.com/sticky/animations/like.3.json
152.199.21.141200 OK 1.6 kB URL HTTP/2 abs.twimg.com/sticky/animations/like.3.json
IP 152.199.21.141:0
File type ASCII text, with very long lines (19834)
Hash 07da5ecc2e4029fc7d3befffa5f3c536
1b57e1656f3cbf73adc77bf2a1a732b7882b2aca
faffe9c75fe31ec6ba41e043e88b0ad50c13ad847a468e1b34ecde308fa6f569
GET /sticky/animations/like.3.json HTTP/1.1
Host: abs.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://syndication.twitter.com/
Origin: https://syndication.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
age: 31504569
content-type: application/json
date: Sat, 03 Sep 2022 16:27:46 GMT
etag: "b9munHAdxNyPtNl2GaO2bw=="
expires: Sun, 03 Sep 2023 16:27:46 GMT
last-modified: Sat, 04 Sep 2021 01:11:20 GMT
server: ECAcc (ska/F796)
strict-transport-security: max-age=631138519
surrogate-key: twitter-assets
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
vary: Accept-Encoding
x-cache: HIT
x-connection-hash: 7bf06426ddf2142199d3421cea321130c53973a2425f366ea9c7af412231bedb
x-content-type-options: nosniff
x-ton-expected-size: 19835
content-length: 1627
X-Firefox-Spdy: h2
syndication.twitter.com/i/jot?l=%7B%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1662222464044%2C%22event_namespace%22%3A%7B%22action%22%3A%22results%22%2C%22client%22%3A%22tfw%22%2C%22page%22%3A%22timeline-profile%22%2C%22section%22%3A%22main%22%7D%2C%22context%22%3A%22horizon%22%2C%22client_version%22%3A%221bfeb5c3714e8%3A1661975971032%22%2C%22dnt%22%3Afalse%2C%22widget_id%22%3A%22twitter-widget-0%22%2C%22widget_origin%22%3A%22http%3A%2F%2Fcacult.com%2Fe-invoicing-for-aggregate-turnover-exceeding-rs-10-crore%2F%22%2C%22widget_frame%22%3A%22false%22%2C%22widget_partner%22%3A%22%22%2C%22widget_site_screen_name%22%3A%22CacultFor%22%2C%22widget_site_user_id%22%3A%22%22%2C%22widget_creator_screen_name%22%3A%22CacultFor%22%2C%22widget_creator_user_id%22%3A%22%22%2C%22widget_iframe_version%22%3A%2254fb0dd%3A1662057638149%22%2C%22widget_data_source%22%3A%22screen-name%3ACACultUpdates%22%7D&session_id=935a248bb980077339862b72625c57da3975b0ac
104.244.42.72200 OK 43 B URL HTTP/2 syndication.twitter.com/i/jot?l=%7B%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1662222464044%2C%22event_namespace%22%3A%7B%22action%22%3A%22results%22%2C%22client%22%3A%22tfw%22%2C%22page%22%3A%22timeline-profile%22%2C%22section%22%3A%22main%22%7D%2C%22context%22%3A%22horizon%22%2C%22client_version%22%3A%221bfeb5c3714e8%3A1661975971032%22%2C%22dnt%22%3Afalse%2C%22widget_id%22%3A%22twitter-widget-0%22%2C%22widget_origin%22%3A%22http%3A%2F%2Fcacult.com%2Fe-invoicing-for-aggregate-turnover-exceeding-rs-10-crore%2F%22%2C%22widget_frame%22%3A%22false%22%2C%22widget_partner%22%3A%22%22%2C%22widget_site_screen_name%22%3A%22CacultFor%22%2C%22widget_site_user_id%22%3A%22%22%2C%22widget_creator_screen_name%22%3A%22CacultFor%22%2C%22widget_creator_user_id%22%3A%22%22%2C%22widget_iframe_version%22%3A%2254fb0dd%3A1662057638149%22%2C%22widget_data_source%22%3A%22screen-name%3ACACultUpdates%22%7D&session_id=935a248bb980077339862b72625c57da3975b0ac
IP 104.244.42.72:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/jot?l=%7B%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1662222464044%2C%22event_namespace%22%3A%7B%22action%22%3A%22results%22%2C%22client%22%3A%22tfw%22%2C%22page%22%3A%22timeline-profile%22%2C%22section%22%3A%22main%22%7D%2C%22context%22%3A%22horizon%22%2C%22client_version%22%3A%221bfeb5c3714e8%3A1661975971032%22%2C%22dnt%22%3Afalse%2C%22widget_id%22%3A%22twitter-widget-0%22%2C%22widget_origin%22%3A%22http%3A%2F%2Fcacult.com%2Fe-invoicing-for-aggregate-turnover-exceeding-rs-10-crore%2F%22%2C%22widget_frame%22%3A%22false%22%2C%22widget_partner%22%3A%22%22%2C%22widget_site_screen_name%22%3A%22CacultFor%22%2C%22widget_site_user_id%22%3A%22%22%2C%22widget_creator_screen_name%22%3A%22CacultFor%22%2C%22widget_creator_user_id%22%3A%22%22%2C%22widget_iframe_version%22%3A%2254fb0dd%3A1662057638149%22%2C%22widget_data_source%22%3A%22screen-name%3ACACultUpdates%22%7D&session_id=935a248bb980077339862b72625c57da3975b0ac HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/srv/timeline-profile/screen-name/CACultUpdates?creatorScreenName=CacultFor&dnt=false&embedId=twitter-widget-0&frame=false&hideBorder=false&hideFooter=false&hideHeader=false&hideScrollBar=false&lang=en&maxHeight=400px&origin=http%3A%2F%2Fcacult.com%2Fe-invoicing-for-aggregate-turnover-exceeding-rs-10-crore%2F&sessionId=935a248bb980077339862b72625c57da3975b0ac&showHeader=true&showReplies=false&siteScreenName=CacultFor&theme=light&transparent=false&widgetsVersion=1bfeb5c3714e8%3A1661975971032
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 03 Sep 2022 16:27:46 GMT
vary: Origin
server: tsa_o
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Sat, 03 Sep 2022 16:27:46 GMT
content-length: 43
strict-transport-security: max-age=631138519
x-response-time: 114
x-connection-hash: 21a0d8cc1e0c28ecd9b6d0f2dea671cd0131f7ef6e78b95b62f460865681eb03
X-Firefox-Spdy: h2
pbs.twimg.com/profile_images/1276034925997654016/NFAKALVg_normal.jpg
192.229.233.50200 OK 2.2 kB URL HTTP/2 pbs.twimg.com/profile_images/1276034925997654016/NFAKALVg_normal.jpg
IP 192.229.233.50:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 48x48, components 3\012- data
Hash 4d895033ecf0bd20776f5db738363cea
fe4a6345c05e17a2550900596bde865c10afdc22
b03febdae20ccbb16e1444b00b184eea803d2ac90edc59ae1b6e5302f61f730f
GET /profile_images/1276034925997654016/NFAKALVg_normal.jpg HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Length
age: 512969
cache-control: max-age=604800, must-revalidate
content-type: image/jpeg
date: Sat, 03 Sep 2022 16:27:47 GMT
last-modified: Thu, 25 Jun 2020 06:08:08 GMT
server: ECS (ska/F71A)
server-timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=2
strict-transport-security: max-age=631138519
surrogate-key: profile_images profile_images/bucket/2 profile_images/1276034925997654016
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-cache: HIT
x-connection-hash: ba0aa5ad589adb5c46c890998a687b427625fd0bad49bf66164513167d62aa4b
x-content-type-options: nosniff
x-response-time: 117
x-tw-cdn: VZ, VZ
content-length: 2187
X-Firefox-Spdy: h2
r5---sn-5goeen7r.c.2mdn.net/videoplayback/id/4fa93477ffcdc534/itag/343/source/web_video_ads/ctier/L/acao/yes/ip/0.0.0.0/ipbits/0/expire/1693758464/sparams/acao,ctier,expire,id,ip,ipbits,itag,mh,mip,mm,mn,ms,mv,mvi,pl,source/signature/03786BFE5112613907E3C7867D885E36B6BA2A8D.404CAE9A7B4234EC4045D6F39CDAB3B278819324/key/cms1/cms_redirect/yes/mh/YV/mip/91.90.42.154/mm/42/mn/sn-5goeen7r/ms/onc/mt/1662221749/mv/u/mvi/5/pl/21/file/file.mp4
173.194.150.219206 Partial Content 1.8 MB URL HTTP/1.1 r5---sn-5goeen7r.c.2mdn.net/videoplayback/id/4fa93477ffcdc534/itag/343/source/web_video_ads/ctier/L/acao/yes/ip/0.0.0.0/ipbits/0/expire/1693758464/sparams/acao,ctier,expire,id,ip,ipbits,itag,mh,mip,mm,mn,ms,mv,mvi,pl,source/signature/03786BFE5112613907E3C7867D885E36B6BA2A8D.404CAE9A7B4234EC4045D6F39CDAB3B278819324/key/cms1/cms_redirect/yes/mh/YV/mip/91.90.42.154/mm/42/mn/sn-5goeen7r/ms/onc/mt/1662221749/mv/u/mvi/5/pl/21/file/file.mp4
IP 173.194.150.219:0
File type ISO Media, MP4 v2 [ISO 14496-14]\012- data
Size 1.8 MB (1843024 bytes)
Hash 8637c29c654b2d3da85611c944e19272
f052d04711da0bc1a62f0eb87daf84762ac426d2
bc019288b7ea9ece165c024075de0482f6c3f5605392167e8950e368442683d7
GET /videoplayback/id/4fa93477ffcdc534/itag/343/source/web_video_ads/ctier/L/acao/yes/ip/0.0.0.0/ipbits/0/expire/1693758464/sparams/acao,ctier,expire,id,ip,ipbits,itag,mh,mip,mm,mn,ms,mv,mvi,pl,source/signature/03786BFE5112613907E3C7867D885E36B6BA2A8D.404CAE9A7B4234EC4045D6F39CDAB3B278819324/key/cms1/cms_redirect/yes/mh/YV/mip/91.90.42.154/mm/42/mn/sn-5goeen7r/ms/onc/mt/1662221749/mv/u/mvi/5/pl/21/file/file.mp4 HTTP/1.1
Host: r5---sn-5goeen7r.c.2mdn.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Origin: https://googleads.g.doubleclick.net
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 206 Partial Content
Last-Modified: Fri, 29 Jul 2022 02:12:20 GMT
Content-Type: video/mp4
Date: Sat, 03 Sep 2022 16:27:48 GMT
Expires: Sat, 03 Sep 2022 16:27:48 GMT
Cache-Control: private, max-age=86400
Content-Range: bytes 0-2932493/2932494
Accept-Ranges: bytes
Content-Length: 2932494
Connection: close
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
Access-Control-Allow-Origin: https://googleads.g.doubleclick.net
Access-Control-Allow-Credentials: true
Timing-Allow-Origin: https://googleads.g.doubleclick.net
Access-Control-Expose-Headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
Vary: Origin
X-Content-Type-Options: nosniff
Server: gvs 1.0
adservice.google.no/adsid/integrator.js?domain=cacult.com
142.250.74.162200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=cacult.com
IP 142.250.74.162:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=cacult.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cacult.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 03 Sep 2022 16:27:48 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pbs.twimg.com/card_img/1565205259894820864/1HBf-QFH?format=jpg&name=360x360
192.229.233.50200 OK 16 kB URL HTTP/2 pbs.twimg.com/card_img/1565205259894820864/1HBf-QFH?format=jpg&name=360x360
IP 192.229.233.50:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 360x240, components 3\012- data
Hash 99a2ff048cf74af9a05b3390638bc09b
6a6c989d177d12e106b37d4b7ee8e3e518e159a2
b875d5a2d40ef43ab6983f4839a2e812339413a9a9b63f88c59f32c6720c5b06
GET /card_img/1565205259894820864/1HBf-QFH?format=jpg&name=360x360 HTTP/1.1
Host: pbs.twimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://syndication.twitter.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: Content-Length
age: 30403
cache-control: max-age=604800, must-revalidate
content-type: image/jpeg
date: Sat, 03 Sep 2022 16:27:49 GMT
last-modified: Thu, 01 Sep 2022 05:07:48 GMT
server: ECS (ska/F6FD)
server-timing: x-cache;desc= ,x-tw-cdn;desc=VZ,edge;dur=27
strict-transport-security: max-age=631138519
surrogate-key: card_img card_img/bucket/7 card_img/1565205259894820864
timing-allow-origin: https://twitter.com, https://mobile.twitter.com
x-cache: MISS
x-connection-hash: c9ef9ca83f1d14a7a693f3770e182873b47e9b52df71798384e7faac985fa8fa
x-content-type-options: nosniff
x-response-time: 239
x-tw-cdn: VZ, VZ
content-length: 16137
X-Firefox-Spdy: h2
sp-ao.shortpixel.ai/client/to_auto,q_glossy,ret_img,w_14,h_14/http://cacult.com/wp-includes/images/rss.png
194.242.11.186302 Found 0 B URL HTTP/2 sp-ao.shortpixel.ai/client/to_auto,q_glossy,ret_img,w_14,h_14/http://cacult.com/wp-includes/images/rss.png
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /client/to_auto,q_glossy,ret_img,w_14,h_14/http://cacult.com/wp-includes/images/rss.png HTTP/1.1
Host: sp-ao.shortpixel.ai
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cacult.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sat, 03 Sep 2022 16:27:49 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: http://cacult.com/wp-includes/images/rss.png
server: BunnyCDN-NO-830
cdn-pullzone: 257218
cdn-uid: ceac3dab-9909-4315-8d54-a27751b54dd0
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=86400
pragma: cache
cdn-cachedat: 09/03/2022 16:27:49
cdn-tag: 0; Domain: cacult.com; 302
cdn-proxyver: 1.02
cdn-requestpullcode: 302
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 302
cdn-requestid: 6ffe674605acf8dc302a2996c8603138
cdn-cache: MISS
X-Firefox-Spdy: h2
static.addtoany.com/menu/page.js
104.22.70.197200 OK 0 B URL HTTP/2 static.addtoany.com/menu/page.js
IP 104.22.70.197:0
GET /menu/page.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cacult.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Sep 2022 16:27:41 GMT
content-type: application/javascript; charset=utf-8
cache-control: public, max-age=172800
cf-bgj: minify
access-control-allow-origin: *
age: 55847
etag: W/"ba7-5e7bb5238fa5f"
last-modified: Sat, 03 Sep 2022 00:56:47 GMT
vary: Accept-Encoding
via: e4s
x-content-type-options: nosniff
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 744fdab108489912-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.2
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.2
IP 142.250.74.10:0
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cacult.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 03 Sep 2022 16:27:41 GMT
date: Sat, 03 Sep 2022 16:27:41 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2