pembekoala.net/wp-includes/Text/Diff/ca4ca71fbb5b782049e242b4f11903f7/dzhyjy=/gnhztk=
46.45.187.49301 Moved Permanently 0 B URL HTTP/1.1 pembekoala.net/wp-includes/Text/Diff/ca4ca71fbb5b782049e242b4f11903f7/dzhyjy=/gnhztk=
IP 46.45.187.49:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/Text/Diff/ca4ca71fbb5b782049e242b4f11903f7/dzhyjy=/gnhztk= HTTP/1.1
Host: pembekoala.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
x-redirect-by: WordPress
location: http://www.pembekoala.net/wp-includes/Text/Diff/ca4ca71fbb5b782049e242b4f11903f7/dzhyjy=/gnhztk=
x-litespeed-cache: hit
content-length: 0
date: Tue, 29 Nov 2022 01:10:58 GMT
server: LiteSpeed
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2d2e7649ce9e9ba6fc8b68aa89352e3c
0153d1d3d830a457043e16bb40d48a0b9ddef4b8
8eed57c91b42ef7b2d5eff1309e306e23e13c3de21219af24a693cbf3e8977fc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8EED57C91B42EF7B2D5EFF1309E306E23E13C3DE21219AF24A693CBF3E8977FC"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12242
Expires: Tue, 29 Nov 2022 04:35:00 GMT
Date: Tue, 29 Nov 2022 01:10:58 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9408cc0694fcbea57966c3a3ba906092
fddcee1fdcf3209298e41a4b1b5560357fa165f0
6ef7120d9463f56e3ddfadd5766d02da8523f34061b13bdba54bf9ab72a1e979
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6485
Cache-Control: max-age=126508
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:10:58 GMT
Etag: "63848df9-1d7"
Expires: Wed, 30 Nov 2022 12:19:26 GMT
Last-Modified: Mon, 28 Nov 2022 10:31:21 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6d9d34c96b9a826ae5676640c966469c
8052a16d41a637e420478b7de1ff5a2dc951fccd
f18ac558cb786126bb7efb159e03353d268d5f5796bcfd2691a349dfc68d863c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14532
Expires: Tue, 29 Nov 2022 05:13:10 GMT
Date: Tue, 29 Nov 2022 01:10:58 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 29 Nov 2022 00:19:33 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3085
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: DzoroHa9kbDXyB7EpF7jFREHTLtAsvZCbpE8BwyTQUpS7SyA2EiFkTj4yu2fyt+aDWgUmovVQdI=
x-amz-request-id: SEBMYFWCDJ4G5SJM
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 29 Nov 2022 00:42:18 GMT
age: 1720
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 01:10:58 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.pembekoala.net/wp-includes/Text/Diff/ca4ca71fbb5b782049e242b4f11903f7/dzhyjy=/gnhztk=
46.45.187.49404 Not Found 4.8 kB URL HTTP/1.1 www.pembekoala.net/wp-includes/Text/Diff/ca4ca71fbb5b782049e242b4f11903f7/dzhyjy=/gnhztk=
IP 46.45.187.49:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1746), with CRLF, LF line terminators
Hash 8633fca5b368f307e94440c30742eadd
30471bf2ab02304fdbf1901caeeaf06c7dc8daff
1d239f1fbc56fae15b2d7877dc17c2c64f75c78ff0985e4a89ed394ef748133d
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/Text/Diff/ca4ca71fbb5b782049e242b4f11903f7/dzhyjy=/gnhztk= HTTP/1.1
Host: www.pembekoala.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 404 Not Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
link: <https://www.pembekoala.net/wp-json/>; rel="https://api.w.org/"
x-litespeed-cache: hit
content-encoding: gzip
vary: Accept-Encoding
content-length: 4811
date: Tue, 29 Nov 2022 01:10:58 GMT
server: LiteSpeed
fonts.googleapis.com/css?family=Open+Sans%3A300%2C300italic%2C400%2C400italic%2C700%2C700italic%2C900%2C900italic%7COpen+Sans%3A300%2C300italic%2C400%2C400italic%2C700%2C700italic%2C900%2C900italic%27+rel%3D%27stylesheet%27+type%3D%27text%2Fcss&ver=5.1.15
142.250.74.10200 OK 882 B URL HTTP/1.1 fonts.googleapis.com/css?family=Open+Sans%3A300%2C300italic%2C400%2C400italic%2C700%2C700italic%2C900%2C900italic%7COpen+Sans%3A300%2C300italic%2C400%2C400italic%2C700%2C700italic%2C900%2C900italic%27+rel%3D%27stylesheet%27+type%3D%27text%2Fcss&ver=5.1.15
IP 142.250.74.10:0
Hash f1f3c8d0ba46895d5d119b0891e31880
de105aa0c695a042c509ca7dd4c9dd5df6105171
7f6cd431355a752e3cd7873f1d0a89b488a563f675092bab7e31d358e13e44f6
GET /css?family=Open+Sans%3A300%2C300italic%2C400%2C400italic%2C700%2C700italic%2C900%2C900italic%7COpen+Sans%3A300%2C300italic%2C400%2C400italic%2C700%2C700italic%2C900%2C900italic%27+rel%3D%27stylesheet%27+type%3D%27text%2Fcss&ver=5.1.15 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pembekoala.net/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Tue, 29 Nov 2022 01:10:59 GMT
Date: Tue, 29 Nov 2022 01:10:59 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
www.pembekoala.net/wp-includes/css/dist/block-library/style.min.css?ver=5.1.15
46.45.187.49200 OK 5.1 kB URL HTTP/1.1 www.pembekoala.net/wp-includes/css/dist/block-library/style.min.css?ver=5.1.15
IP 46.45.187.49:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type ASCII text, with very long lines (25245), with no line terminators
Hash 961772f85687671ecba93af1d629d450
46866b1df9bb204e537f848d26ab103d57163cb9
6a4fa273f30267262180819eeb96d06fa87594fe81b200470f32c2028cb57993
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.1.15 HTTP/1.1
Host: www.pembekoala.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pembekoala.net/wp-includes/Text/Diff/ca4ca71fbb5b782049e242b4f11903f7/dzhyjy=/gnhztk=
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 01:10:58 GMT
content-type: text/css
last-modified: Thu, 15 Apr 2021 03:00:07 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 5063
date: Tue, 29 Nov 2022 01:10:58 GMT
server: LiteSpeed
www.pembekoala.net/wp-content/themes/simplemag/css/framework.css?ver=5.1.15
46.45.187.49200 OK 7.0 kB URL HTTP/1.1 www.pembekoala.net/wp-content/themes/simplemag/css/framework.css?ver=5.1.15
IP 46.45.187.49:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type Unicode text, UTF-8 (with BOM) text, with very long lines (2772)
Hash 57d292e18ed5dda256ad2166a3c7e52f
deb6915135ed32bf49b076db711f2ba7522dcef9
266d9b4aa5f58b0330db0895f35c1f95829635ad90c3e4585004f6b5a670abed
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/simplemag/css/framework.css?ver=5.1.15 HTTP/1.1
Host: www.pembekoala.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pembekoala.net/wp-includes/Text/Diff/ca4ca71fbb5b782049e242b4f11903f7/dzhyjy=/gnhztk=
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 01:10:58 GMT
content-type: text/css
last-modified: Wed, 19 Aug 2015 08:34:18 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 7032
date: Tue, 29 Nov 2022 01:10:58 GMT
server: LiteSpeed
www.pembekoala.net/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
46.45.187.49200 OK 4.3 kB URL HTTP/1.1 www.pembekoala.net/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP 46.45.187.49:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type ASCII text, with very long lines (9959)
Hash 481f980fc669b7b40694394421813cf5
e6eb02466e5242666924567e4de8c9f8a39913ef
4b37967650498f93eb3cf92be96b598a5a34e3dccba8b5f76620eea01be44051
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: www.pembekoala.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pembekoala.net/wp-includes/Text/Diff/ca4ca71fbb5b782049e242b4f11903f7/dzhyjy=/gnhztk=
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 01:10:58 GMT
content-type: application/javascript
last-modified: Wed, 22 Sep 2021 03:07:13 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 4251
date: Tue, 29 Nov 2022 01:10:58 GMT
server: LiteSpeed
www.pembekoala.net/wp-content/themes/simplemag/js/jquery.flexslider-min.js?ver=2.1
46.45.187.49200 OK 5.9 kB URL HTTP/1.1 www.pembekoala.net/wp-content/themes/simplemag/js/jquery.flexslider-min.js?ver=2.1
IP 46.45.187.49:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type ASCII text, with very long lines (527)
Hash d88ef0af6771200bcddaedaf5458f7c7
a6177949dc873d6d9d1622541783e039ff25250e
0006272b943d64fb5d7be240a58060dd09b8627e2ccad6b40b120bedda81f7fc
GET /wp-content/themes/simplemag/js/jquery.flexslider-min.js?ver=2.1 HTTP/1.1
Host: www.pembekoala.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pembekoala.net/wp-includes/Text/Diff/ca4ca71fbb5b782049e242b4f11903f7/dzhyjy=/gnhztk=
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 01:10:58 GMT
content-type: application/javascript
last-modified: Sun, 27 Jun 2021 03:59:41 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 5881
date: Tue, 29 Nov 2022 01:10:58 GMT
server: LiteSpeed
www.pembekoala.net/wp-content/themes/simplemag/js/jquery.custom.js?ver=1.0
46.45.187.49200 OK 2.7 kB URL HTTP/1.1 www.pembekoala.net/wp-content/themes/simplemag/js/jquery.custom.js?ver=1.0
IP 46.45.187.49:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
Hash 27f0024c57f2ac55863385c6a0170c45
3f1dd4dcf562ff0b2de04be60fae2436de50d540
a9bc2cfc2e5b7ddd449713da39c964d9455b8b42aa6589077c8c8030d1003209
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/simplemag/js/jquery.custom.js?ver=1.0 HTTP/1.1
Host: www.pembekoala.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pembekoala.net/wp-includes/Text/Diff/ca4ca71fbb5b782049e242b4f11903f7/dzhyjy=/gnhztk=
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 01:10:58 GMT
content-type: application/javascript
last-modified: Sun, 27 Jun 2021 03:59:50 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 2656
date: Tue, 29 Nov 2022 01:10:58 GMT
server: LiteSpeed
www.pembekoala.net/wp-content/themes/simplemag/js/jquery.assets.js?ver=1.0
46.45.187.49200 OK 9.2 kB URL HTTP/1.1 www.pembekoala.net/wp-content/themes/simplemag/js/jquery.assets.js?ver=1.0
IP 46.45.187.49:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type HTML document text\012- HTML document, ASCII text, with very long lines (9593)
Hash 47ef3f1af048568dcbce18054cc03b71
ff4250d50d51b91c7df13d44c9e24b824c1aeda0
787f27c4a82ee6bf60996e2b063764022941e438ff41e93976b373a2492319b0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/simplemag/js/jquery.assets.js?ver=1.0 HTTP/1.1
Host: www.pembekoala.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pembekoala.net/wp-includes/Text/Diff/ca4ca71fbb5b782049e242b4f11903f7/dzhyjy=/gnhztk=
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 01:10:58 GMT
content-type: application/javascript
last-modified: Sun, 27 Jun 2021 03:59:53 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 9218
date: Tue, 29 Nov 2022 01:10:58 GMT
server: LiteSpeed
www.pembekoala.net/wp-content/themes/simplemag/css/icons.css?ver=5.1.15
46.45.187.49200 OK 13 kB URL HTTP/1.1 www.pembekoala.net/wp-content/themes/simplemag/css/icons.css?ver=5.1.15
IP 46.45.187.49:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type ASCII text, with very long lines (10809)
Hash 926dc764087647bd2013ba329a403a9b
02ce66de43672a86c2fa726386d1fe04f65af5b6
aaa1a51537a5ff178cf082785cdceb33c217d8ff6088a08d44f59a0ce7cdcb6d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/simplemag/css/icons.css?ver=5.1.15 HTTP/1.1
Host: www.pembekoala.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pembekoala.net/wp-includes/Text/Diff/ca4ca71fbb5b782049e242b4f11903f7/dzhyjy=/gnhztk=
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 01:10:58 GMT
content-type: text/css
last-modified: Sat, 27 Jun 2015 21:45:27 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 13131
date: Tue, 29 Nov 2022 01:10:58 GMT
server: LiteSpeed
www.pembekoala.net/wp-includes/js/wp-embed.min.js?ver=5.1.15
46.45.187.49200 OK 751 B URL HTTP/1.1 www.pembekoala.net/wp-includes/js/wp-embed.min.js?ver=5.1.15
IP 46.45.187.49:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type ASCII text, with very long lines (1391), with no line terminators
Hash 204c443a7de1de1504250d7d7afa5b37
9293366ded99791e97c79efd0033faccb4bfae58
3aa9d181f5425f879e8bc828dfbe4b3a8d2e2b44444cad4fd9edcb5555b0b522
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-embed.min.js?ver=5.1.15 HTTP/1.1
Host: www.pembekoala.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pembekoala.net/wp-includes/Text/Diff/ca4ca71fbb5b782049e242b4f11903f7/dzhyjy=/gnhztk=
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 01:10:58 GMT
content-type: application/javascript
last-modified: Wed, 22 Sep 2021 03:07:13 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 751
date: Tue, 29 Nov 2022 01:10:58 GMT
server: LiteSpeed
www.pembekoala.net/wp-includes/js/wp-emoji-release.min.js?ver=5.1.15
46.45.187.49200 OK 4.8 kB URL HTTP/1.1 www.pembekoala.net/wp-includes/js/wp-emoji-release.min.js?ver=5.1.15
IP 46.45.187.49:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type ASCII text, with very long lines (9071)
Hash 690839100df076386922f07c16d0d69d
2b50e1f8519666e114bd94cf3dc97f6876302c23
7b15e13b9b2491a7980beea42bf4d80ab65ae60450f00866dda3b096e6bf1428
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.1.15 HTTP/1.1
Host: www.pembekoala.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pembekoala.net/wp-includes/Text/Diff/ca4ca71fbb5b782049e242b4f11903f7/dzhyjy=/gnhztk=
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 01:10:58 GMT
content-type: application/javascript
last-modified: Wed, 22 Sep 2021 03:07:13 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 4813
date: Tue, 29 Nov 2022 01:10:58 GMT
server: LiteSpeed
www.pembekoala.net/wp-content/themes/simplemag/style.css?ver=5.1.15
46.45.187.49200 OK 11 kB URL HTTP/1.1 www.pembekoala.net/wp-content/themes/simplemag/style.css?ver=5.1.15
IP 46.45.187.49:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
Hash 30e5b1ad3a1b69d74f6d68f524b981ff
953d09ee7e5d6371d2b243869abcd3f41beaae2d
610fccaf83c47ed6eb15506e7bc2f6778b1f3edb4c99458f56e322f7dda322ff
GET /wp-content/themes/simplemag/style.css?ver=5.1.15 HTTP/1.1
Host: www.pembekoala.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pembekoala.net/wp-includes/Text/Diff/ca4ca71fbb5b782049e242b4f11903f7/dzhyjy=/gnhztk=
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 01:10:58 GMT
content-type: text/css
last-modified: Sat, 26 Dec 2015 14:20:13 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 10897
date: Tue, 29 Nov 2022 01:10:58 GMT
server: LiteSpeed
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 29 Nov 2022 00:11:12 GMT
cache-control: public,max-age=3600
age: 3587
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
www.pembekoala.net/wp-includes/js/jquery/jquery.js?ver=1.12.4
46.45.187.49200 OK 38 kB URL HTTP/1.1 www.pembekoala.net/wp-includes/js/jquery/jquery.js?ver=1.12.4
IP 46.45.187.49:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type ASCII text, with very long lines (31997)
Hash ae1d8396fa7a2c9e1b596ed4e3319fbd
5d83ee734228e0b4d4b42fb9d57599a011f12c2e
073e20dc911daf41506f642f26380f8a8f793dd2dbc603d12eb6d5727bbc2b04
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1
Host: www.pembekoala.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pembekoala.net/wp-includes/Text/Diff/ca4ca71fbb5b782049e242b4f11903f7/dzhyjy=/gnhztk=
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 01:10:58 GMT
content-type: application/javascript
last-modified: Wed, 22 Sep 2021 03:07:13 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 38045
date: Tue, 29 Nov 2022 01:10:58 GMT
server: LiteSpeed
www.pembekoala.net/wp-content/themes/simplemag/images/error-page.png
46.45.187.49200 OK 7.5 kB URL HTTP/1.1 www.pembekoala.net/wp-content/themes/simplemag/images/error-page.png
IP 46.45.187.49:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type PNG image data, 402 x 402, 8-bit colormap, non-interlaced\012- data
Hash 9cf7aa3d32fd1fd783f0143e96e01272
97fab53753a1bd7a0d0eaee161b08670613e3056
51ca7e3d4fc1a0f315d7253bc630940f33459756399f92cf2fc90c87540a9b5f
GET /wp-content/themes/simplemag/images/error-page.png HTTP/1.1
Host: www.pembekoala.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pembekoala.net/wp-includes/Text/Diff/ca4ca71fbb5b782049e242b4f11903f7/dzhyjy=/gnhztk=
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 01:10:58 GMT
content-type: image/png
last-modified: Sat, 27 Jun 2015 21:45:28 GMT
accept-ranges: bytes
content-length: 7492
date: Tue, 29 Nov 2022 01:10:58 GMT
server: LiteSpeed
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.195200 OK 45 kB URL HTTP/1.1 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.pembekoala.net
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 44856
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 28 Nov 2022 21:39:59 GMT
Expires: Tue, 28 Nov 2023 21:39:59 GMT
Cache-Control: public, max-age=31536000
Age: 12660
Last-Modified: Mon, 15 Aug 2022 18:20:18 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2
216.58.207.195200 OK 31 kB URL HTTP/1.1 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 31320, version 1.0\012- data
Hash 3fe71527811fbfedd2c07962e1bc49e7
f63e158a0480c5d711b5e268db0e75e57d87a8a5
24c0e724005344165ee0a0ff4c96a914e174bb4caa20c8a533fb194d92853e95
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.pembekoala.net
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 31320
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 22 Nov 2022 01:33:01 GMT
Expires: Wed, 22 Nov 2023 01:33:01 GMT
Cache-Control: public, max-age=31536000
Age: 603478
Last-Modified: Mon, 15 Aug 2022 18:11:37 GMT
Content-Type: font/woff2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7ab2ef968cb6a3078f4b9cb2dda813d4
e669116047ca058a2c1b2999ff0ea8682719162c
6ddecf0b21c44f3851da8efeb6ecdc6c8e9b83d7681153c31952b4ec8c23c940
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3956
Cache-Control: max-age=118912
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:10:59 GMT
Etag: "63847a2f-1d7"
Expires: Wed, 30 Nov 2022 10:12:51 GMT
Last-Modified: Mon, 28 Nov 2022 09:06:55 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
www.pembekoala.net/wp-content/uploads/logobirlesikson.png
46.45.187.49200 OK 27 kB URL HTTP/2 www.pembekoala.net/wp-content/uploads/logobirlesikson.png
IP 46.45.187.49:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type PNG image data, 500 x 143, 8-bit/color RGB, non-interlaced\012- data
Hash 46a26441965c40d3ff89810ab446f31e
71b663e6685bd43423e4ac8ccf881f03c3b48c7e
f8de9709b7a4c5ff8b4885c6f5167ebe21fe570eb5fde8be30c3a3ee6cfe401c
GET /wp-content/uploads/logobirlesikson.png HTTP/1.1
Host: www.pembekoala.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pembekoala.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 01:10:59 GMT
content-type: image/png
last-modified: Wed, 19 Aug 2015 08:31:22 GMT
accept-ranges: bytes
content-length: 26629
date: Tue, 29 Nov 2022 01:10:59 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/1.1 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pembekoala.net/
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 20039
Date: Tue, 29 Nov 2022 00:22:56 GMT
Expires: Tue, 29 Nov 2022 02:22:56 GMT
Cache-Control: public, max-age=7200
Age: 2883
Last-Modified: Tue, 27 Sep 2022 22:01:05 GMT
Content-Type: text/javascript
www.pembekoala.net/wp-content/themes/simplemag/images/retina-favicon.png
46.45.187.49200 OK 2.7 kB URL HTTP/1.1 www.pembekoala.net/wp-content/themes/simplemag/images/retina-favicon.png
IP 46.45.187.49:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type PNG image data, 144 x 144, 8-bit/color RGB, non-interlaced\012- data
Hash d22d3d632e69beff7b33a5953618e839
37819282cd66bdde23edc13b664d4902b60aea5d
b1ad5fc1623604d58962c77f8013139ed258196356954b656650a4c4945f9416
GET /wp-content/themes/simplemag/images/retina-favicon.png HTTP/1.1
Host: www.pembekoala.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.pembekoala.net/wp-includes/Text/Diff/ca4ca71fbb5b782049e242b4f11903f7/dzhyjy=/gnhztk=
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 01:10:59 GMT
content-type: image/png
last-modified: Sat, 27 Jun 2015 21:45:28 GMT
accept-ranges: bytes
content-length: 2693
date: Tue, 29 Nov 2022 01:10:59 GMT
server: LiteSpeed
www.pembekoala.net/wp-content/uploads/favicon-5.ico
46.45.187.49200 OK 1.1 kB URL HTTP/2 www.pembekoala.net/wp-content/uploads/favicon-5.ico
IP 46.45.187.49:0
ASN #42926 Radore Veri Merkezi Hizmetleri A.S.
File type MS Windows icon resource - 1 icon, 15x16, 32 bits/pixel\012- data
Hash 4e5b81d168b5cd63fe9e815a77538677
ddd0223b1cd49142c9e6b2376a7f481830654614
8d2fda31b8c1d74304ff390792f1c60565f50ad34d09de5dfc90f21b19663cfe
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/favicon-5.ico HTTP/1.1
Host: www.pembekoala.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pembekoala.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Tue, 06 Dec 2022 01:10:59 GMT
content-type: image/x-icon
last-modified: Tue, 18 Aug 2015 05:27:08 GMT
accept-ranges: bytes
content-length: 1086
date: Tue, 29 Nov 2022 01:10:59 GMT
server: LiteSpeed
X-Firefox-Spdy: h2
ocsp.globalsign.com/gseccovsslca2018
104.18.21.226200 OK 938 B URL HTTP/1.1 ocsp.globalsign.com/gseccovsslca2018
IP 104.18.21.226:0
Hash f30bb37d3b2760bae584d6e351a1da42
66ecf101fcb541464917fa95a713c6982d587a91
1d557b4b3f35ac360b1ccb956b963cdca845d3460a867aa804a17b54f260c187
POST /gseccovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 29 Nov 2022 01:10:59 GMT
Content-Type: application/ocsp-response
Content-Length: 938
Connection: keep-alive
Expires: Fri, 02 Dec 2022 23:06:35 GMT
ETag: "66ecf101fcb541464917fa95a713c6982d587a91"
Last-Modified: Mon, 28 Nov 2022 23:06:36 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 339
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7717777fba7e0b4d-OSL
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash c81653e99cfdfb43236c8d50248b2e51
a33bc0cb7d3bb714b7ef23b059bb304cf23d464f
e75fa0ce568755990d6949ef93e3e5c29213a5a11887f697af901f41b14e0274
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 01:10:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/j/collect?v=1&_v=j98&a=504540177&t=pageview&_s=1&dl=http%3A%2F%2Fwww.pembekoala.net%2Fwp-includes%2FText%2FDiff%2Fca4ca71fbb5b782049e242b4f11903f7%2Fdzhyjy%3D%2Fgnhztk%3D&ul=en-us&de=UTF-8&dt=Sayfa%20bulunamad%C4%B1%20%7C%20Pembe%20Koala&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=470171592&gjid=717077026&cid=514063366.1669684259&tid=UA-71463150-1&_gid=899981158.1669684259&_r=1&_slc=1&z=1334352824
142.250.74.174200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j98&a=504540177&t=pageview&_s=1&dl=http%3A%2F%2Fwww.pembekoala.net%2Fwp-includes%2FText%2FDiff%2Fca4ca71fbb5b782049e242b4f11903f7%2Fdzhyjy%3D%2Fgnhztk%3D&ul=en-us&de=UTF-8&dt=Sayfa%20bulunamad%C4%B1%20%7C%20Pembe%20Koala&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=470171592&gjid=717077026&cid=514063366.1669684259&tid=UA-71463150-1&_gid=899981158.1669684259&_r=1&_slc=1&z=1334352824
IP 142.250.74.174:0
File type ASCII text, with no line terminators
Hash 38684612f0c6bb6dfa16da92f4a6878f
6fe62d0dd7db314b7f9bb945672f078e01d27f0f
a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f
POST /j/collect?v=1&_v=j98&a=504540177&t=pageview&_s=1&dl=http%3A%2F%2Fwww.pembekoala.net%2Fwp-includes%2FText%2FDiff%2Fca4ca71fbb5b782049e242b4f11903f7%2Fdzhyjy%3D%2Fgnhztk%3D&ul=en-us&de=UTF-8&dt=Sayfa%20bulunamad%C4%B1%20%7C%20Pembe%20Koala&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=470171592&gjid=717077026&cid=514063366.1669684259&tid=UA-71463150-1&_gid=899981158.1669684259&_r=1&_slc=1&z=1334352824 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://www.pembekoala.net
Connection: keep-alive
Referer: http://www.pembekoala.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://www.pembekoala.net
date: Tue, 29 Nov 2022 01:10:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
mc.yandex.ru/metrika/watch.js
93.158.134.119200 OK 58 kB URL HTTP/2 mc.yandex.ru/metrika/watch.js
IP 93.158.134.119:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (586)
Hash 89185e037b366ee6c6b5d55bd893c11d
6a0e2cd6189b890da76b827beaeeca41097e8cf1
2b46f64d745301de1b0f94206157e0373db1e5db20e7725794fb34adaab08423
GET /metrika/watch.js HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pembekoala.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 57741
date: Tue, 29 Nov 2022 01:10:59 GMT
access-control-allow-origin: *
etag: "6384bff1-e18d"
expires: Tue, 29 Nov 2022 02:10:59 GMT
last-modified: Mon, 28 Nov 2022 17:04:33 GMT
cache-control: max-age=3600
content-encoding: br
content-type: application/javascript
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
push.services.mozilla.com/
35.163.114.208101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.163.114.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: cRidjmOFMkIyPhLdriR/Ng==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Bfc8P7hVRUQrnqUZqxTUM9O426k=
mc.yandex.ru/metrika/advert.gif
93.158.134.119200 OK 43 B URL HTTP/2 mc.yandex.ru/metrika/advert.gif
IP 93.158.134.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /metrika/advert.gif HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.pembekoala.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Tue, 29 Nov 2022 01:11:00 GMT
access-control-allow-origin: *
etag: "6384bff1-2b"
expires: Tue, 29 Nov 2022 02:11:00 GMT
accept-ranges: bytes
last-modified: Mon, 28 Nov 2022 17:04:33 GMT
cache-control: max-age=3600
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/32049616/1?wmode=7&page-url=http%3A%2F%2Fwww.pembekoala.net%2Fwp-includes%2FText%2FDiff%2Fca4ca71fbb5b782049e242b4f11903f7%2Fdzhyjy%3D%2Fgnhztk%3D&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aeaqp9qze4zeusy7lq5yic%3Afp%3A1111%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A123697959041%3Ahid%3A720122471%3Az%3A0%3Ai%3A20221129011059%3Aet%3A1669684259%3Ac%3A1%3Arn%3A622493693%3Arqn%3A1%3Au%3A1669684259230779393%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A70%2C67%2C66%2C1%2C343%2C0%2C%2C536%2C22%2C%2C%2C%2C1117%3Ans%3A1669684257661%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669684259%3At%3ASayfa%20bulunamad%C4%B1%20%7C%20Pembe%20Koala&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29
93.158.134.119200 OK 407 B URL HTTP/2 mc.yandex.ru/watch/32049616/1?wmode=7&page-url=http%3A%2F%2Fwww.pembekoala.net%2Fwp-includes%2FText%2FDiff%2Fca4ca71fbb5b782049e242b4f11903f7%2Fdzhyjy%3D%2Fgnhztk%3D&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aeaqp9qze4zeusy7lq5yic%3Afp%3A1111%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A123697959041%3Ahid%3A720122471%3Az%3A0%3Ai%3A20221129011059%3Aet%3A1669684259%3Ac%3A1%3Arn%3A622493693%3Arqn%3A1%3Au%3A1669684259230779393%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A70%2C67%2C66%2C1%2C343%2C0%2C%2C536%2C22%2C%2C%2C%2C1117%3Ans%3A1669684257661%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669684259%3At%3ASayfa%20bulunamad%C4%B1%20%7C%20Pembe%20Koala&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29
IP 93.158.134.119:0
File type JSON data\012- , ASCII text, with very long lines (407), with no line terminators
Hash cbfd3943cf82f4b971f44b4d03daeaa6
c93c4f438b7e4078537b00cdd3f5c940f2ae810a
fed9d2d9006f29db920366ad3cae2afc8525d761eb1ee1ae7b2a252fd63dae3b
GET /watch/32049616/1?wmode=7&page-url=http%3A%2F%2Fwww.pembekoala.net%2Fwp-includes%2FText%2FDiff%2Fca4ca71fbb5b782049e242b4f11903f7%2Fdzhyjy%3D%2Fgnhztk%3D&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aeaqp9qze4zeusy7lq5yic%3Afp%3A1111%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A123697959041%3Ahid%3A720122471%3Az%3A0%3Ai%3A20221129011059%3Aet%3A1669684259%3Ac%3A1%3Arn%3A622493693%3Arqn%3A1%3Au%3A1669684259230779393%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A70%2C67%2C66%2C1%2C343%2C0%2C%2C536%2C22%2C%2C%2C%2C1117%3Ans%3A1669684257661%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669684259%3At%3ASayfa%20bulunamad%C4%B1%20%7C%20Pembe%20Koala&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29 HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.pembekoala.net
Referer: http://www.pembekoala.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 407
date: Tue, 29 Nov 2022 01:11:00 GMT
x-content-type-options: nosniff
access-control-allow-origin: http://www.pembekoala.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 29-Nov-2022 01:11:00 GMT
last-modified: Tue, 29-Nov-2022 01:11:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: application/json; charset=utf-8
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10875
Expires: Tue, 29 Nov 2022 04:12:16 GMT
Date: Tue, 29 Nov 2022 01:11:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10875
Expires: Tue, 29 Nov 2022 04:12:16 GMT
Date: Tue, 29 Nov 2022 01:11:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10875
Expires: Tue, 29 Nov 2022 04:12:16 GMT
Date: Tue, 29 Nov 2022 01:11:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10875
Expires: Tue, 29 Nov 2022 04:12:16 GMT
Date: Tue, 29 Nov 2022 01:11:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10875
Expires: Tue, 29 Nov 2022 04:12:16 GMT
Date: Tue, 29 Nov 2022 01:11:01 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69f1b665-d8ee-457c-8f1d-e696be0cdbf6.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69f1b665-d8ee-457c-8f1d-e696be0cdbf6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c808183085a429c53515508678fc7ab2
6567069d9f5199205ba1ca7a937fcb0a52f95d06
c7ca95730cbc97d7c243e05b23520166faefcd2dfe90f36f70fad1f7e4537e4c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69f1b665-d8ee-457c-8f1d-e696be0cdbf6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9162
x-amzn-requestid: f7fb3b99-6f1c-4ab3-9547-a337d54e8c9a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVjI8E9poAMFaQw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63854bd2-0679b83d1aa3b7c71aa6bf1c;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 00:01:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RAAJeCuVxs-hpp4wMmcBEmqPf71bUMueBvhwLaYTixj9IiIGNp0ZIQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 00:28:27 GMT
age: 2554
etag: "6567069d9f5199205ba1ca7a937fcb0a52f95d06"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdef9eb6-c1f1-4337-aff8-0986561782c7.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdef9eb6-c1f1-4337-aff8-0986561782c7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5d574c4db20a68295dbd06cb08f5990b
433061bbb226048765a711deca3026ee3e52372f
8cc1a4d18e242f8bfc8ab94637f635b73554b903462c29b06d0ec67872542afb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdef9eb6-c1f1-4337-aff8-0986561782c7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9203
x-amzn-requestid: 8cba52d6-3c1c-495c-bb9d-3ba6f0adc7e1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cHcHmGmQoAMF6dQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fa6fd-73abfa592ff223061401af9a;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 17:16:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UmhWm03jrsV8dFagrzIA0E-8eL8dykoO5kw3cYOBd172dCGqNdAX-Q==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 03:31:58 GMT
age: 77943
etag: "433061bbb226048765a711deca3026ee3e52372f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1ee10f9-36dd-4ca4-986e-a80758149640.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1ee10f9-36dd-4ca4-986e-a80758149640.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 516776052e5e906ea9f42d25bae5cc85
be4c4d01fc67218e26a3e9d27a2f708e639c9d4b
28e70e38cfad65ad8a7a68ab1dc78747c7013a87b854fc35b163cc5765cd0570
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1ee10f9-36dd-4ca4-986e-a80758149640.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8460
x-amzn-requestid: 51416479-3854-4f1a-9d86-35e104c57f6a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVNnkHuZIAMF-_A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63852963-180b323d4a45fa2f29f9b1fc;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 21:34:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 3MKambAjrBl64HI6hBuOtNJi3Tj6gxtwH_lOfk0WNX15UnCrAJbNig==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:48:54 GMT
age: 12127
etag: "be4c4d01fc67218e26a3e9d27a2f708e639c9d4b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb99c22d6-3187-4d40-8281-7980c7988464.webp
34.120.237.76200 OK 3.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb99c22d6-3187-4d40-8281-7980c7988464.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 06723cdab42df9b5334f540a8c7ebc60
3bbc44cb84a37ce6a067db4301dd81647a77c29f
9f6f064b16044c510650635690c61003fb2f6439021a2e681431136f5e7a08b3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb99c22d6-3187-4d40-8281-7980c7988464.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3905
x-amzn-requestid: bf50db76-dd95-44fc-abbe-1a26a5559ae3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMFcYHE6IAMFmpA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638182b5-50b6d010058c6cb75c05c6de;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 03:06:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 73Fr-7-mRcw9_OVt8Wdi4pjFBHkqi_vBa-zgLtbHKEx1ay9s8wDSgQ==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 06:26:11 GMT
age: 67490
etag: "3bbc44cb84a37ce6a067db4301dd81647a77c29f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad01b94-5d16-49b9-bf3e-5742e02ae8b6.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad01b94-5d16-49b9-bf3e-5742e02ae8b6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7e44c46db2ac9917110dc47aa38fdc85
b5b245c90705ad80c31d457c0d7c96709ca31e96
5024225a583b188860eaf21f7196c06cef8b2e89389ae4b1df6e314399f3b2ae
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ad01b94-5d16-49b9-bf3e-5742e02ae8b6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8796
x-amzn-requestid: 2eed036c-fcda-425b-8c5d-0b0ff31214a0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cGDTEEWMIAMFwKA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637f18e0-5cb071a2098d43d909eb8d5c;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 07:10:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: uWzs8gOBoczTeYXB7-FfJemWbh-hYHwNcR3b9BM5VtJ55NRUzCZeTQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 09:53:45 GMT
age: 55036
etag: "b5b245c90705ad80c31d457c0d7c96709ca31e96"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffa7a7fb1-8e53-47cc-bd1c-80ab0e8ecd59.jpeg
34.120.237.76200 OK 3.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffa7a7fb1-8e53-47cc-bd1c-80ab0e8ecd59.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8b421b66a29c15df61049ef5d5f34bc2
f3c1297885fa2fd37557222d5490dfb0afed19ef
3c88aecb898378f0d070fe9e9733ac42b89b57349e8e9f51ffb0508b88821980
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffa7a7fb1-8e53-47cc-bd1c-80ab0e8ecd59.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3711
x-amzn-requestid: e9825e7e-0fa7-4165-9b59-f554a4bf1d6b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b_dkuFKToAMF1OA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637c761e-7ebc3c3b480cdd94059616b7;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 07:11:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: TQQiAdJwsSxsS2C-3y_SNOHPtiuPMKcfu-4Db4zlOjbHsTfRnHWl8Q==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 08:00:12 GMT
age: 61849
etag: "f3c1297885fa2fd37557222d5490dfb0afed19ef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/32049616?wv-check=34286&wv-type=0&wmode=0&wv-part=1&wv-hit=720122471&page-url=http%3A%2F%2Fwww.pembekoala.net%2Fwp-includes%2FText%2FDiff%2Fca4ca71fbb5b782049e242b4f11903f7%2Fdzhyjy%3D%2Fgnhztk%3D&rn=712936292&browser-info=gdpr%3A14%3Aet%3A1669684266%3Aw%3A1268x939%3Av%3A923%3Az%3A0%3Ai%3A20221129011106%3Au%3A1669684259230779393%3Avf%3Aeaqp9qze4zeusy7lq5yic%3Ast%3A1669684266&t=gdpr(14)ti(2)
93.158.134.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/32049616?wv-check=34286&wv-type=0&wmode=0&wv-part=1&wv-hit=720122471&page-url=http%3A%2F%2Fwww.pembekoala.net%2Fwp-includes%2FText%2FDiff%2Fca4ca71fbb5b782049e242b4f11903f7%2Fdzhyjy%3D%2Fgnhztk%3D&rn=712936292&browser-info=gdpr%3A14%3Aet%3A1669684266%3Aw%3A1268x939%3Av%3A923%3Az%3A0%3Ai%3A20221129011106%3Au%3A1669684259230779393%3Avf%3Aeaqp9qze4zeusy7lq5yic%3Ast%3A1669684266&t=gdpr(14)ti(2)
IP 93.158.134.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/32049616?wv-check=34286&wv-type=0&wmode=0&wv-part=1&wv-hit=720122471&page-url=http%3A%2F%2Fwww.pembekoala.net%2Fwp-includes%2FText%2FDiff%2Fca4ca71fbb5b782049e242b4f11903f7%2Fdzhyjy%3D%2Fgnhztk%3D&rn=712936292&browser-info=gdpr%3A14%3Aet%3A1669684266%3Aw%3A1268x939%3Av%3A923%3Az%3A0%3Ai%3A20221129011106%3Au%3A1669684259230779393%3Avf%3Aeaqp9qze4zeusy7lq5yic%3Ast%3A1669684266&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 44
Origin: http://www.pembekoala.net
Connection: keep-alive
Referer: http://www.pembekoala.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Tue, 29 Nov 2022 01:11:07 GMT
access-control-allow-origin: http://www.pembekoala.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 29-Nov-2022 01:11:07 GMT
last-modified: Tue, 29-Nov-2022 01:11:07 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/webvisor/32049616?wv-check=3341&wv-type=0&wmode=0&wv-part=2&wv-hit=720122471&page-url=http%3A%2F%2Fwww.pembekoala.net%2Fwp-includes%2FText%2FDiff%2Fca4ca71fbb5b782049e242b4f11903f7%2Fdzhyjy%3D%2Fgnhztk%3D&rn=625732490&browser-info=gdpr%3A14%3Aet%3A1669684266%3Aw%3A1268x939%3Av%3A923%3Az%3A0%3Ai%3A20221129011106%3Au%3A1669684259230779393%3Avf%3Aeaqp9qze4zeusy7lq5yic%3Ast%3A1669684266&t=gdpr(14)ti(2)
93.158.134.119200 OK 43 B URL HTTP/2 mc.yandex.ru/webvisor/32049616?wv-check=3341&wv-type=0&wmode=0&wv-part=2&wv-hit=720122471&page-url=http%3A%2F%2Fwww.pembekoala.net%2Fwp-includes%2FText%2FDiff%2Fca4ca71fbb5b782049e242b4f11903f7%2Fdzhyjy%3D%2Fgnhztk%3D&rn=625732490&browser-info=gdpr%3A14%3Aet%3A1669684266%3Aw%3A1268x939%3Av%3A923%3Az%3A0%3Ai%3A20221129011106%3Au%3A1669684259230779393%3Avf%3Aeaqp9qze4zeusy7lq5yic%3Ast%3A1669684266&t=gdpr(14)ti(2)
IP 93.158.134.119:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
POST /webvisor/32049616?wv-check=3341&wv-type=0&wmode=0&wv-part=2&wv-hit=720122471&page-url=http%3A%2F%2Fwww.pembekoala.net%2Fwp-includes%2FText%2FDiff%2Fca4ca71fbb5b782049e242b4f11903f7%2Fdzhyjy%3D%2Fgnhztk%3D&rn=625732490&browser-info=gdpr%3A14%3Aet%3A1669684266%3Aw%3A1268x939%3Av%3A923%3Az%3A0%3Ai%3A20221129011106%3Au%3A1669684259230779393%3Avf%3Aeaqp9qze4zeusy7lq5yic%3Ast%3A1669684266&t=gdpr(14)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 12
Origin: http://www.pembekoala.net
Connection: keep-alive
Referer: http://www.pembekoala.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 43
date: Tue, 29 Nov 2022 01:11:07 GMT
access-control-allow-origin: http://www.pembekoala.net
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 29-Nov-2022 01:11:07 GMT
last-modified: Tue, 29-Nov-2022 01:11:07 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
content-type: image/gif
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
mc.yandex.ru/watch/32049616?wmode=7&page-url=http%3A%2F%2Fwww.pembekoala.net%2Fwp-includes%2FText%2FDiff%2Fca4ca71fbb5b782049e242b4f11903f7%2Fdzhyjy%3D%2Fgnhztk%3D&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aeaqp9qze4zeusy7lq5yic%3Afp%3A1111%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A123697959041%3Ahid%3A720122471%3Az%3A0%3Ai%3A20221129011059%3Aet%3A1669684259%3Ac%3A1%3Arn%3A622493693%3Arqn%3A1%3Au%3A1669684259230779393%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A70%2C67%2C66%2C1%2C343%2C0%2C%2C536%2C22%2C%2C%2C%2C1117%3Ans%3A1669684257661%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669684259%3At%3ASayfa%20bulunamad%C4%B1%20%7C%20Pembe%20Koala&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)rqnl(1)ti(2)
93.158.134.119302 Found 0 B URL HTTP/2 mc.yandex.ru/watch/32049616?wmode=7&page-url=http%3A%2F%2Fwww.pembekoala.net%2Fwp-includes%2FText%2FDiff%2Fca4ca71fbb5b782049e242b4f11903f7%2Fdzhyjy%3D%2Fgnhztk%3D&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aeaqp9qze4zeusy7lq5yic%3Afp%3A1111%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A123697959041%3Ahid%3A720122471%3Az%3A0%3Ai%3A20221129011059%3Aet%3A1669684259%3Ac%3A1%3Arn%3A622493693%3Arqn%3A1%3Au%3A1669684259230779393%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A70%2C67%2C66%2C1%2C343%2C0%2C%2C536%2C22%2C%2C%2C%2C1117%3Ans%3A1669684257661%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669684259%3At%3ASayfa%20bulunamad%C4%B1%20%7C%20Pembe%20Koala&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)rqnl(1)ti(2)
IP 93.158.134.119:0
GET /watch/32049616?wmode=7&page-url=http%3A%2F%2Fwww.pembekoala.net%2Fwp-includes%2FText%2FDiff%2Fca4ca71fbb5b782049e242b4f11903f7%2Fdzhyjy%3D%2Fgnhztk%3D&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aeaqp9qze4zeusy7lq5yic%3Afp%3A1111%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A123697959041%3Ahid%3A720122471%3Az%3A0%3Ai%3A20221129011059%3Aet%3A1669684259%3Ac%3A1%3Arn%3A622493693%3Arqn%3A1%3Au%3A1669684259230779393%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A70%2C67%2C66%2C1%2C343%2C0%2C%2C536%2C22%2C%2C%2C%2C1117%3Ans%3A1669684257661%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669684259%3At%3ASayfa%20bulunamad%C4%B1%20%7C%20Pembe%20Koala&t=gdpr(14)clc(0-0-0)rqnt(1)aw(1)fip(1)rqnl(1)ti(2) HTTP/1.1
Host: mc.yandex.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.pembekoala.net
Connection: keep-alive
Referer: http://www.pembekoala.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: /watch/32049616/1?wmode=7&page-url=http%3A%2F%2Fwww.pembekoala.net%2Fwp-includes%2FText%2FDiff%2Fca4ca71fbb5b782049e242b4f11903f7%2Fdzhyjy%3D%2Fgnhztk%3D&charset=utf-8&browser-info=pv%3A1%3Agdpr%3A14%3Avf%3Aeaqp9qze4zeusy7lq5yic%3Afp%3A1111%3Afu%3A0%3Aen%3Autf-8%3Ala%3Aen-US%3Av%3A923%3Acn%3A1%3Adp%3A0%3Als%3A123697959041%3Ahid%3A720122471%3Az%3A0%3Ai%3A20221129011059%3Aet%3A1669684259%3Ac%3A1%3Arn%3A622493693%3Arqn%3A1%3Au%3A1669684259230779393%3Aw%3A1268x939%3As%3A1280x1024x24%3Ask%3A1%3Ads%3A70%2C67%2C66%2C1%2C343%2C0%2C%2C536%2C22%2C%2C%2C%2C1117%3Ans%3A1669684257661%3Afip%3Aa81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-a81f3b9bcdd80a361c14af38dc09b309-4bd84c89c35a312599d807af285e7b5f-4335742423629acc806791d3e9f585f3-5b56a9f28e63b1a76c5f94a136cc484e-61b9878bbce18de73aafc8582a198c0c-e9c964637c807fcca817e718cc2d1338-a81f3b9bcdd80a361c14af38dc09b309-c6d7b47b2dcff33f80cab17f3a360d0b-2facd2c41a0047c68391f933b930bc3a%3Arqnl%3A1%3Ast%3A1669684259%3At%3ASayfa%20bulunamad%C4%B1%20%7C%20Pembe%20Koala&t=gdpr%2814%29clc%280-0-0%29rqnt%281%29aw%281%29fip%281%29rqnl%281%29ti%282%29
date: Tue, 29 Nov 2022 01:11:00 GMT
access-control-allow-origin: http://www.pembekoala.net
set-cookie: yandexuid=8796185891669684260; Expires=Wed, 29-Nov-2023 01:11:00 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yuidss=8796185891669684260; Expires=Wed, 29-Nov-2023 01:11:00 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
yabs-sid=95895731669684260; Path=/; SameSite=None; Secure
i=oTIIW0vBjjOYx+nTsvziAsLgG6rTm6aaULy7AVyYBMDNAOyMWZ48yNbNnSiQN2fE9m9eyN7QnMQgbgGAZMVS+lvZ1vA=; Expires=Fri, 26-Nov-2032 01:10:12 GMT; Domain=.yandex.ru; Path=/; Secure; HttpOnly; SameSite=None
ymex=1701220260.yc.1669684260#1701220260.yrts.1669684260#1701220260.yrtsi.1669684260; Expires=Wed, 29-Nov-2023 01:11:00 GMT; Domain=.yandex.ru; Path=/; SameSite=None; Secure
access-control-allow-credentials: true
pragma: no-cache
x-xss-protection: 1; mode=block
expires: Tue, 29-Nov-2022 01:11:00 GMT
last-modified: Tue, 29-Nov-2022 01:11:00 GMT
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2