r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 8afcbdfc50b3ac9488d629a1a4923b81
933fe7b84c2fbd931da70e92c86fa89110e7cfe7
9857b3b813177c23f90a7e53c7ec1f878362b1da27bc19493bebffc358a4b852
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9857B3B813177C23F90A7E53C7EC1F878362B1DA27BC19493BEBFFC358A4B852"
Last-Modified: Sun, 01 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18416
Expires: Wed, 04 Jan 2023 07:53:37 GMT
Date: Wed, 04 Jan 2023 02:46:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 16803ffa29e10ee999c43eb4e4acfe92
a5ede865a388fa440f20994b43c417d403e9a493
08de8f6abb622e84d2cb6e88dee8fc7c408147ac43da9c24d4cde510ed36b53a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08DE8F6ABB622E84D2CB6E88DEE8FC7C408147AC43DA9C24D4CDE510ED36B53A"
Last-Modified: Mon, 02 Jan 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2946
Expires: Wed, 04 Jan 2023 03:35:47 GMT
Date: Wed, 04 Jan 2023 02:46:41 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Type, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 04 Jan 2023 02:36:19 GMT
content-type: application/json
age: 622
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 225d42543c0190cdb3686bf236533f4f
13a0940800fce078487372b6b3ca614dd1ab6c31
766bbe15eb1642ac39e9b71669fbb44252471c8de5adb555cd1a76db44fbe7bc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "766BBE15EB1642AC39E9B71669FBB44252471C8DE5ADB555CD1A76DB44FBE7BC"
Last-Modified: Mon, 02 Jan 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16569
Expires: Wed, 04 Jan 2023 07:22:50 GMT
Date: Wed, 04 Jan 2023 02:46:41 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 87XgATos/6LA20SoBMKCXokr7teB2vkOldPveIpkFUz8CcN6PePX2w/bc3XUWPLTJPSHLnqoAuM=
x-amz-request-id: 2BNG18CTYHQSB8GP
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 04 Jan 2023 01:58:56 GMT
age: 2865
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 02:46:41 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
airbali.com/ertyuiolkjhg456kjhgdd/login.php
103.147.154.42200 OK 16 kB URL HTTP/1.1 airbali.com/ertyuiolkjhg456kjhgdd/login.php
IP 103.147.154.42:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (3773), with CRLF, LF line terminators
Hash 0223ec614eea0fb8ce4c43034cef7d4a
c373aba54ad818bfc090b42c5db31d5bdbb0b17a
a8e1d76f579506c31aa0298f48d36119185625ed2313326c26384bf708aa2e1a
Analyzer Verdict Alert fortinet Phishing
GET /ertyuiolkjhg456kjhgdd/login.php HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 02:46:40 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Server: DomaiNesia
DN-Request-Id: 76fa66ac9c03966a3c34ff729d9434eb
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Dynamic-Cache-Status: BYPASS
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash a68730f9f60521a7026df517496fd88b
16503e272daa22db7013fa2c1f7becc3fc8079b7
a564d389e9db3dc2d17f2cc04bf766e1e9d0c1349a3640b35e6023c9f3c39e98
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4497
Cache-Control: max-age=133134
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 02:46:42 GMT
Etag: "63b43c0f-117"
Expires: Thu, 05 Jan 2023 15:45:36 GMT
Last-Modified: Tue, 03 Jan 2023 14:30:39 GMT
Server: ECS (amb/6BA7)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f239920b11acb26d109b7a1b8cf58e46
f7bab98d3c21794c3e3d08d88c4331ef48420c13
c580620be129f2651f775f95daaeae659d6e62cdf2b8eb2277e6c794c7e53673
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 02:46:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-173215563-1
172.217.21.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-173215563-1
IP 172.217.21.168:0
File type ASCII text, with very long lines (1921)
Hash a6030f1951de8e7dcf5246af5c1666c1
be5b4193d9dab08ae77dcd44ff2af521746f143c
28d0cfd5dce32c6aff7cac87a9a16f8853a4fcf8d7661ccb4005eab3bd64dda3
GET /gtag/js?id=UA-173215563-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://airbali.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 04 Jan 2023 02:46:42 GMT
expires: Wed, 04 Jan 2023 02:46:42 GMT
cache-control: private, max-age=900
last-modified: Wed, 04 Jan 2023 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43633
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Alert, ETag, Content-Type, Last-Modified, Cache-Control, Expires, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 04 Jan 2023 02:33:36 GMT
age: 786
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
airbali.com/wp-content/cache/minify/a7542.js
103.147.154.42200 OK 4.5 kB URL HTTP/1.1 airbali.com/wp-content/cache/minify/a7542.js
IP 103.147.154.42:0
File type ASCII text, with very long lines (20351), with no line terminators
Hash d07f97237eacb46d10d1e4fd2468a474
76e4b66a7d41dd3492de1b01e3f2df5a2de8dd00
29e963ac78374e35fb1f14f626a79908ffc4be4ebd7bb9f17f8f392842d8a4ec
GET /wp-content/cache/minify/a7542.js HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/ertyuiolkjhg456kjhgdd/login.php
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 02:46:40 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 02 Jan 2023 13:25:47 GMT
Server: DomaiNesia
DN-Request-Id: cd75007e50f1b9ebb9944d7f31f66013
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Cache-Control: max-age=2592000
Static-Cache-Status: BYPASS
Expires: Fri, 03 Feb 2023 02:46:40 GMT
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f239920b11acb26d109b7a1b8cf58e46
f7bab98d3c21794c3e3d08d88c4331ef48420c13
c580620be129f2651f775f95daaeae659d6e62cdf2b8eb2277e6c794c7e53673
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 02:46:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
airbali.com/wp-content/cache/minify/f565c.js
103.147.154.42200 OK 3.4 kB URL HTTP/1.1 airbali.com/wp-content/cache/minify/f565c.js
IP 103.147.154.42:0
File type ASCII text, with very long lines (12330)
Hash 00e03d4cb5f9cc38d0f4ec62cfe62794
552d787b9994dbe61d967982777402949fb8fe9f
a51c6283589bfc1629f745dd71f5a3bcae13fe4544460d2148f67821f42e297e
GET /wp-content/cache/minify/f565c.js HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/ertyuiolkjhg456kjhgdd/login.php
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 02:46:40 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 02 Jan 2023 13:25:42 GMT
Server: DomaiNesia
DN-Request-Id: d33e93ea64a6160c3cba9d5e330f4728
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Cache-Control: max-age=2592000
Static-Cache-Status: BYPASS
Expires: Fri, 03 Feb 2023 02:46:40 GMT
Content-Encoding: gzip
airbali.com/wp-content/cache/minify/b68ea.js
103.147.154.42200 OK 3.2 kB URL HTTP/1.1 airbali.com/wp-content/cache/minify/b68ea.js
IP 103.147.154.42:0
File type HTML document, ASCII text, with very long lines (10946), with no line terminators
Hash 380c7a72b469094a1412b1b0b24b598c
a032f042f6bac78724676566618ac269bce588c9
79990b0f6ab706b97f00de71a418995b91084ce105dd6192f905f34dc4331cbf
GET /wp-content/cache/minify/b68ea.js HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/ertyuiolkjhg456kjhgdd/login.php
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 02:46:40 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 02 Jan 2023 13:25:42 GMT
Server: DomaiNesia
DN-Request-Id: 35dda72a03b93e5f5eeb508d4cf2bf2c
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Cache-Control: max-age=2592000
Static-Cache-Status: BYPASS
Expires: Fri, 03 Feb 2023 02:46:40 GMT
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e8b6c328643ac286f1949225731fb845
377ed2f2c0ef3b2266e7fed6df92f2a1bf559eaf
83ea86de3611890895c9d27c2314ebbf498cd95729792f493d6af8e9b7a04633
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 02:46:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
airbali.com/wp-content/cache/minify/6aaea.js
103.147.154.42200 OK 2.0 kB URL HTTP/1.1 airbali.com/wp-content/cache/minify/6aaea.js
IP 103.147.154.42:0
File type ASCII text, with very long lines (6803), with no line terminators
Hash 7054fdf01503fb45366868c3c415ca47
10a22b4b1f32836ff255cdc6e2c6b673c33cde97
f15c5b9aab49a0782fdc8061317033e55e9b55eeed5609f74097ad783ca6e9dc
GET /wp-content/cache/minify/6aaea.js HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/ertyuiolkjhg456kjhgdd/login.php
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 02:46:40 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 02 Jan 2023 13:25:42 GMT
Server: DomaiNesia
DN-Request-Id: 456dbdb955bf406c991341ae2ae094d3
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Cache-Control: max-age=2592000
Static-Cache-Status: BYPASS
Expires: Fri, 03 Feb 2023 02:46:40 GMT
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 49d6e3cef8f01f0261ff5644001d652b
03eca12234d73b1f3e8489939e4f6551914d29b2
bb680ef4d4989e9e1147da3a7d5ccc518f63108b4ed1f2367a2793db0f740f21
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1969
Cache-Control: max-age=111176
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 02:46:42 GMT
Etag: "63b3f029-1d7"
Expires: Thu, 05 Jan 2023 09:39:38 GMT
Last-Modified: Tue, 03 Jan 2023 09:06:49 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
www.google.com/recaptcha/api.js?render=6Lf6jbwZAAAAAJxrA_CNE2_XOSZOXG_RLv4PPY-X&ver=3.0
142.250.74.132200 OK 585 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6Lf6jbwZAAAAAJxrA_CNE2_XOSZOXG_RLv4PPY-X&ver=3.0
IP 142.250.74.132:0
File type ASCII text, with very long lines (884), with no line terminators
Hash ae696497852f415eda1d0516f296ca69
be2545e38995446f424fd8708d8f66b7ca80911f
917a6066d89f5ccfafb4fc96f68123c18e35dc366d4a4cf0c4e003f9ef8519f6
GET /recaptcha/api.js?render=6Lf6jbwZAAAAAJxrA_CNE2_XOSZOXG_RLv4PPY-X&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://airbali.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Wed, 04 Jan 2023 02:46:42 GMT
date: Wed, 04 Jan 2023 02:46:42 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 585
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bd5977f4aa55d3b85eb4f69f5d451e18
09718f75359ff17a91d19fc8686de7154d6d7506
07e8ded9ec36b09fa080939323b4b51995abb0525a8103052eda1c1e76459345
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 02:46:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d162fbf507f35ee24367cba22eb27a5b
e4976b788c6f553e7e9e96d987ec9b3e25c5eba7
5e43deffee0ba1d85dfd9e2a1eb66371ed8e87ac64296508a5dbc4420b5df1f8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5E43DEFFEE0BA1D85DFD9E2A1EB66371ED8E87AC64296508A5DBC4420B5DF1F8"
Last-Modified: Sun, 01 Jan 2023 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 04 Jan 2023 08:46:42 GMT
Date: Wed, 04 Jan 2023 02:46:42 GMT
Connection: keep-alive
airbali.com/wp-content/cache/minify/02155.js
103.147.154.42200 OK 7.9 kB URL HTTP/1.1 airbali.com/wp-content/cache/minify/02155.js
IP 103.147.154.42:0
File type ASCII text, with very long lines (27159), with no line terminators
Hash c77c2bc03184d78400e763a98c6b5475
efaa3001fc066cec919f11f75f4510807191b5a8
4307826dd33fc8a4c85cd9d18e807370eab07999dff2d6ea14d89fd3ff0049ea
GET /wp-content/cache/minify/02155.js HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/ertyuiolkjhg456kjhgdd/login.php
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 02:46:40 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 02 Jan 2023 13:25:45 GMT
Server: DomaiNesia
DN-Request-Id: f6c6bdecbc4647411a2b733b542a931d
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Cache-Control: max-age=2592000
Static-Cache-Status: BYPASS
Expires: Fri, 03 Feb 2023 02:46:40 GMT
Content-Encoding: gzip
airbali.com/wp-content/cache/minify/e8751.js
103.147.154.42200 OK 40 kB URL HTTP/1.1 airbali.com/wp-content/cache/minify/e8751.js
IP 103.147.154.42:0
File type Algol 68 source text\012- Pascal source, ASCII text, with very long lines (1680)
Hash a703183b7b962b497029580540d0661c
e3e378db3c67cc8f9dea365630eaeda066bceca9
2cf2ebfd5bc232df0b31448434acc7e53fb5a2292495823320cf86822be3733c
GET /wp-content/cache/minify/e8751.js HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/ertyuiolkjhg456kjhgdd/login.php
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 02:46:40 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 02 Jan 2023 13:25:42 GMT
Server: DomaiNesia
DN-Request-Id: 38cba2f5b59046c09c8aeba9a2b74a3e
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Cache-Control: max-age=2592000
Static-Cache-Status: BYPASS
Expires: Fri, 03 Feb 2023 02:46:40 GMT
Content-Encoding: gzip
airbali.com/wp-content/cache/minify/64afb.js
103.147.154.42200 OK 32 kB URL HTTP/1.1 airbali.com/wp-content/cache/minify/64afb.js
IP 103.147.154.42:0
File type ASCII text, with very long lines (60719)
Hash a2c1dcd01903e3667cc8bfac047c7779
0581ff1cd9555d2b9e6c88d80af97b01d099d5e1
170e56dd05a773f5cd29ecfc4ab8377752e8095ccd87f48f00bbed3b97a06b7a
GET /wp-content/cache/minify/64afb.js HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/ertyuiolkjhg456kjhgdd/login.php
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 02:46:40 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 02 Jan 2023 13:25:42 GMT
Server: DomaiNesia
DN-Request-Id: d56952e8dcaf7a8a958d43addead9dee
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Cache-Control: max-age=2592000
Static-Cache-Status: BYPASS
Expires: Fri, 03 Feb 2023 02:46:40 GMT
Content-Encoding: gzip
push.services.mozilla.com/
35.162.52.254101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.162.52.254:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 3pGInvdwm8+tld7Jtfm0xA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: WU4WH2SlJOWe8aHGY7o9pM4oI/o=
airbali.com/wp-content/cache/minify/99006.js
103.147.154.42200 OK 26 kB URL HTTP/1.1 airbali.com/wp-content/cache/minify/99006.js
IP 103.147.154.42:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 0c37ad321d3ff2d1a66340de77dc9d5d
69349dabaf6cb6ec95ea172a0e65871e1572a83e
2a37b6c0ec6ee8722aa0edee2f3a73f4c5fccecd14cd6140854735589169b064
GET /wp-content/cache/minify/99006.js HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/ertyuiolkjhg456kjhgdd/login.php
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 02:46:40 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 02 Jan 2023 13:25:44 GMT
Server: DomaiNesia
DN-Request-Id: af31783ffdbc0f4da3528bb106f1526a
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Cache-Control: max-age=2592000
Static-Cache-Status: BYPASS
Expires: Fri, 03 Feb 2023 02:46:40 GMT
Content-Encoding: gzip
airbali.com/wp-content/cache/minify/93d60.js
103.147.154.42200 OK 4.5 kB URL HTTP/1.1 airbali.com/wp-content/cache/minify/93d60.js
IP 103.147.154.42:0
File type ASCII text, with very long lines (13062), with no line terminators
Hash 6cae471ce46411cdba6a965780345ec0
20740035df7c42945c4de69e82c09411de4687f6
0916a0eed2f869a212887c63c32a2c42ba2cd85d9d979c966cb9c2ca16e07022
GET /wp-content/cache/minify/93d60.js HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/ertyuiolkjhg456kjhgdd/login.php
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 02:46:41 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 02 Jan 2023 13:25:45 GMT
Server: DomaiNesia
DN-Request-Id: a162b09f63b2575818e61cdb9aff8abd
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Cache-Control: max-age=2592000
Static-Cache-Status: BYPASS
Expires: Fri, 03 Feb 2023 02:46:41 GMT
Content-Encoding: gzip
airbali.com/wp-content/cache/minify/cb2f5.css
103.147.154.42200 OK 116 kB URL HTTP/1.1 airbali.com/wp-content/cache/minify/cb2f5.css
IP 103.147.154.42:0
File type ASCII text, with very long lines (31173)
Size 116 kB (116024 bytes)
Hash 7efe33ad4fe4c4493dd00d7411cb001f
540ace8c3b0d350396cfaa7696760a0d62378029
10378d39f3fff459e8208c45dd00d2c69e33d22ea1db8e3474c52032bc77e92b
GET /wp-content/cache/minify/cb2f5.css HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/ertyuiolkjhg456kjhgdd/login.php
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 02:46:40 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 02 Jan 2023 19:51:18 GMT
Server: DomaiNesia
DN-Request-Id: 60f64be626592e2237f05666f4cf101d
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Cache-Control: max-age=2592000
Static-Cache-Status: BYPASS
Expires: Fri, 03 Feb 2023 02:46:40 GMT
Content-Encoding: gzip
airbali.com/wp-content/cache/minify/a25f1.js
103.147.154.42200 OK 51 kB URL HTTP/1.1 airbali.com/wp-content/cache/minify/a25f1.js
IP 103.147.154.42:0
File type ASCII text, with very long lines (51917)
Hash 9586b256aff721c1f5c0b82148e1192e
d61fb524dd58573cf397ca47d0b4937fe1a4d53e
b618751d7a2b30fb9e44c78e338e51a7697f8bc32811b6255f6136131e120e2d
GET /wp-content/cache/minify/a25f1.js HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/ertyuiolkjhg456kjhgdd/login.php
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 02:46:40 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 02 Jan 2023 13:25:45 GMT
Server: DomaiNesia
DN-Request-Id: 401520102f45a0a4ad59a6bd82126786
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Cache-Control: max-age=2592000
Static-Cache-Status: BYPASS
Expires: Fri, 03 Feb 2023 02:46:40 GMT
Content-Encoding: gzip
airbali.com/wp-content/cache/minify/b6256.js
103.147.154.42200 OK 619 B URL HTTP/1.1 airbali.com/wp-content/cache/minify/b6256.js
IP 103.147.154.42:0
File type ASCII text, with very long lines (1710), with no line terminators
Hash e9ee0d9dffb00bd2fbf6cfea95334dd2
1bd2c3408b4e481a080e7a20894d3040f1fdd981
7397f2711092b2895d839c8fe6a469aaf5f64cab03ff1339c60dabac73cf55e3
GET /wp-content/cache/minify/b6256.js HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/ertyuiolkjhg456kjhgdd/login.php
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 02:46:41 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 02 Jan 2023 13:25:46 GMT
Server: DomaiNesia
DN-Request-Id: dbdb52da9db5b6d11c401920b1db796f
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Cache-Control: max-age=2592000
Static-Cache-Status: BYPASS
Expires: Fri, 03 Feb 2023 02:46:41 GMT
Content-Encoding: gzip
airbali.com/wp-includes/js/wp-emoji-release.min.js?ver=5.7.8
103.147.154.42301 Moved Permanently 276 B URL HTTP/1.1 airbali.com/wp-includes/js/wp-emoji-release.min.js?ver=5.7.8
IP 103.147.154.42:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash aa752b592cab1ba75474337219ac9bd7
ac1a9c73fb7ffe5073ada36503170b38b41be919
b25817f29c64b1d240d20dfe03d0a613da40ce94dc180a58d1b3d5de2c679852
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.7.8 HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/ertyuiolkjhg456kjhgdd/login.php
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://airbali.com/wp-includes/js/wp-emoji-release.min.js?ver=5.7.8
Server: DomaiNesia
DN-Request-Id: 6f929d298485ed37572ec28c46f89097
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Static-Cache-Status: MISS
Date: Wed, 04 Jan 2023 02:46:41 GMT
X-Page-Speed: DomaiNesia
Cache-Control: max-age=0, no-cache
airbali.com/wp-content/cache/minify/2a938.js
103.147.154.42200 OK 36 kB URL HTTP/1.1 airbali.com/wp-content/cache/minify/2a938.js
IP 103.147.154.42:0
File type ASCII text, with very long lines (65451)
Hash bb0f93e7035535f9971cc835ef93e867
f5e474e9a52997ccea4c07b09809b1cd47aa1f03
0095bae48b061998fad16fbcc283d637905853d7cf22ed9b697939e23843938a
GET /wp-content/cache/minify/2a938.js HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/ertyuiolkjhg456kjhgdd/login.php
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 02:46:41 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 02 Jan 2023 13:25:35 GMT
Server: DomaiNesia
DN-Request-Id: 43e39e78af06152bb2a1a09662410aea
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Cache-Control: max-age=2592000
Static-Cache-Status: BYPASS
Expires: Fri, 03 Feb 2023 02:46:41 GMT
Content-Encoding: gzip
airbali.com/wp-content/cache/minify/f4186.js
103.147.154.42200 OK 26 kB URL HTTP/1.1 airbali.com/wp-content/cache/minify/f4186.js
IP 103.147.154.42:0
File type ASCII text, with very long lines (4472)
Hash 3b9a2b77ef5370342d5a7897aa07bd76
02af02335c9d5080616595284b3773a15e5de9aa
5dca52ff3c0d3f088dc5638b9cdd0fd4c470e14bb4500bedd1e20cb302f9f104
GET /wp-content/cache/minify/f4186.js HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/ertyuiolkjhg456kjhgdd/login.php
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 02:46:41 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 02 Jan 2023 13:25:40 GMT
Server: DomaiNesia
DN-Request-Id: b226b828c56724b11ee29db039b3a28e
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Cache-Control: max-age=2592000
Static-Cache-Status: BYPASS
Expires: Fri, 03 Feb 2023 02:46:41 GMT
Content-Encoding: gzip
airbali.com/wp-content/cache/minify/e1df4.js
103.147.154.42200 OK 3.1 kB URL HTTP/1.1 airbali.com/wp-content/cache/minify/e1df4.js
IP 103.147.154.42:0
File type Unicode text, UTF-8 text, with very long lines (8720)
Hash 1cf5d53ccaf27b3cb4731d317bf0716c
bfca12be0d2621fafae48d5d94984951412f8a64
4f46e207cb464ffed1ac654bdc4b2af6c773586b3852654210f9f159fcccfadd
GET /wp-content/cache/minify/e1df4.js HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/ertyuiolkjhg456kjhgdd/login.php
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 02:46:41 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 02 Jan 2023 13:25:41 GMT
Server: DomaiNesia
DN-Request-Id: 34ba55796e36c8fa2bf7f7da0326537f
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Cache-Control: max-age=2592000
Static-Cache-Status: BYPASS
Expires: Fri, 03 Feb 2023 02:46:41 GMT
Content-Encoding: gzip
airbali.com/wp-content/cache/minify/344a7.js
103.147.154.42200 OK 1.9 kB URL HTTP/1.1 airbali.com/wp-content/cache/minify/344a7.js
IP 103.147.154.42:0
File type ASCII text, with very long lines (5277), with no line terminators
Hash 06435cada312d0a18b0b40a3b044d2da
08247c91dc5cd4a315e027481e77f549eccd78e5
c91173005709709dad7b44a62844ea5d19a0b9d33c4f86cefd44c2d1613c8fdf
GET /wp-content/cache/minify/344a7.js HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/ertyuiolkjhg456kjhgdd/login.php
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 02:46:41 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 02 Jan 2023 13:25:47 GMT
Server: DomaiNesia
DN-Request-Id: 8aa5f1ab3502b413ca8f9407903dcd2f
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Cache-Control: max-age=2592000
Static-Cache-Status: BYPASS
Expires: Fri, 03 Feb 2023 02:46:41 GMT
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash cbad870248cb8172be5849309582b77f
3e12044d8bf5e6df81ac6260b186ecce175dba86
dc5b6747fdf685bd97307ee6584a5d8109258199ca81a8ddf2e6f1471b6f0cda
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 02:46:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash cbad870248cb8172be5849309582b77f
3e12044d8bf5e6df81ac6260b186ecce175dba86
dc5b6747fdf685bd97307ee6584a5d8109258199ca81a8ddf2e6f1471b6f0cda
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 02:46:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVQ.woff
216.58.207.227200 OK 21 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVQ.woff
IP 216.58.207.227:0
File type Web Open Font Format, TrueType, length 20712, version 1.1\012- data
Hash 600270a4cedf2a102a1d49e5148e6622
a5e4c1b17ab38d08e408937a5e5699d65c5a9f2b
22459e1de13b29a9997c47434287b7b07bcd58013dc71c6fa14637b0d46d469c
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVQ.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: http://airbali.com/
Origin: http://airbali.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20712
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 02 Jan 2023 19:26:56 GMT
expires: Tue, 02 Jan 2024 19:26:56 GMT
cache-control: public, max-age=31536000
age: 112787
last-modified: Mon, 15 Aug 2022 18:14:42 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
airbali.com/wp-content/cache/minify/654eb.js
103.147.154.42200 OK 5.5 kB URL HTTP/1.1 airbali.com/wp-content/cache/minify/654eb.js
IP 103.147.154.42:0
File type ASCII text, with very long lines (23420), with no line terminators
Hash 71d24dc2e4e3e154d7c39a0dc4dbd0a2
a72add33e7846b44792284c236154880745bb3c3
a36e2c3ed0d16b20b9ea5f406c4c87a4ad1dd3a2a3b329d7ebbf439abd8a2bfc
GET /wp-content/cache/minify/654eb.js HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/ertyuiolkjhg456kjhgdd/login.php
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 02:46:41 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 02 Jan 2023 13:25:47 GMT
Server: DomaiNesia
DN-Request-Id: bbed36eb47df71535ec3f2f4206b2ae0
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Cache-Control: max-age=2592000
Static-Cache-Status: BYPASS
Expires: Fri, 03 Feb 2023 02:46:41 GMT
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash cbad870248cb8172be5849309582b77f
3e12044d8bf5e6df81ac6260b186ecce175dba86
dc5b6747fdf685bd97307ee6584a5d8109258199ca81a8ddf2e6f1471b6f0cda
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 02:46:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/robotoslab/v24/BngbUXZYTXPIvIBgJJSb6s3BzlRRfKOFbvjoa4Omb2Rl.woff
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/robotoslab/v24/BngbUXZYTXPIvIBgJJSb6s3BzlRRfKOFbvjoa4Omb2Rl.woff
IP 216.58.207.227:0
File type Web Open Font Format, TrueType, length 16152, version 1.1\012- data
Hash 030d15914e77e8a01d4d36dd362462cf
666015bbef1524643d8138a9ccbdda1808e45b86
58bac2cba1eeb748986ebbd35c9c75871281c9a9c77f801c073cfd20a7f3ab2a
GET /s/robotoslab/v24/BngbUXZYTXPIvIBgJJSb6s3BzlRRfKOFbvjoa4Omb2Rl.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: http://airbali.com/
Origin: http://airbali.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16152
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 30 Dec 2022 13:42:52 GMT
expires: Sat, 30 Dec 2023 13:42:52 GMT
cache-control: public, max-age=31536000
age: 392631
last-modified: Mon, 11 Jul 2022 19:15:10 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4gaVQ.woff
216.58.207.227200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4gaVQ.woff
IP 216.58.207.227:0
File type Web Open Font Format, TrueType, length 20172, version 1.1\012- data
Hash dce81ef083f18473a89ab8626b4916cc
18dcf01a99d6491ee75ace209701edf6bdc881a5
c1582b13eb162368dd0dcad97e027ffb1ebfa8bcd67cf2801c43c94b4a1bfeae
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4gaVQ.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: http://airbali.com/
Origin: http://airbali.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20172
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 02 Jan 2023 19:47:56 GMT
expires: Tue, 02 Jan 2024 19:47:56 GMT
cache-control: public, max-age=31536000
age: 111527
last-modified: Mon, 15 Aug 2022 18:14:43 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash cbad870248cb8172be5849309582b77f
3e12044d8bf5e6df81ac6260b186ecce175dba86
dc5b6747fdf685bd97307ee6584a5d8109258199ca81a8ddf2e6f1471b6f0cda
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 02:46:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
airbali.com/wp-content/cache/minify/296d6.js
103.147.154.42200 OK 2.5 kB URL HTTP/1.1 airbali.com/wp-content/cache/minify/296d6.js
IP 103.147.154.42:0
File type ASCII text, with very long lines (8224), with no line terminators
Hash b201dd41b6c9793505b04259d1264c5c
f3e7ab3a72e9fd6d706ab411966b3dfb00b4e5e9
b139b373b2787313f47febc1a825c5568abe1ae978a8b823a581850a03244824
GET /wp-content/cache/minify/296d6.js HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/ertyuiolkjhg456kjhgdd/login.php
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 02:46:41 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 02 Jan 2023 13:25:48 GMT
Server: DomaiNesia
DN-Request-Id: 39352792ea187d301cbee8ff6f5add54
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Cache-Control: max-age=2592000
Static-Cache-Status: BYPASS
Expires: Fri, 03 Feb 2023 02:46:41 GMT
Content-Encoding: gzip
airbali.com/wp-content/cache/minify/81177.js
103.147.154.42200 OK 42 kB URL HTTP/1.1 airbali.com/wp-content/cache/minify/81177.js
IP 103.147.154.42:0
File type Unicode text, UTF-8 text, with very long lines (34729), with NEL line terminators
Hash 7d05cc812443dfed4347ca8c99c5eb5f
0cbb4896743a0a4d5c7a9c979b4a37365e164e39
71d38a8d293f5c9b5d7374049a66f660e2ea86ccc3fcb20c5eaf1be7ed021e3d
GET /wp-content/cache/minify/81177.js HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/ertyuiolkjhg456kjhgdd/login.php
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 02:46:41 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 02 Jan 2023 13:25:38 GMT
Server: DomaiNesia
DN-Request-Id: 6529ac69648076f0c7d1268644b30e6d
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Cache-Control: max-age=2592000
Static-Cache-Status: BYPASS
Expires: Fri, 03 Feb 2023 02:46:41 GMT
Content-Encoding: gzip
airbali.com/wp-content/cache/minify/26401.js
103.147.154.42200 OK 2.1 kB URL HTTP/1.1 airbali.com/wp-content/cache/minify/26401.js
IP 103.147.154.42:0
File type ASCII text, with very long lines (8403), with no line terminators
Hash d5b39a88e1ca141a6469425ec6c7e62b
dc1fa1558e5b8cbf591b60dabcee8150651c56ca
b5d85512316aca4afca90f37f680714fb08b97f448553398540f4b70566ce530
GET /wp-content/cache/minify/26401.js HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/ertyuiolkjhg456kjhgdd/login.php
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 02:46:41 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 02 Jan 2023 13:25:49 GMT
Server: DomaiNesia
DN-Request-Id: 143634bd883049226ff52cdbf6971692
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Cache-Control: max-age=2592000
Static-Cache-Status: BYPASS
Expires: Fri, 03 Feb 2023 02:46:41 GMT
Content-Encoding: gzip
airbali.com/wp-content/cache/minify/52145.js
103.147.154.42200 OK 6.8 kB URL HTTP/1.1 airbali.com/wp-content/cache/minify/52145.js
IP 103.147.154.42:0
File type ASCII text, with very long lines (21913), with no line terminators
Hash 7487a9189e36913dbf940f342e982a50
5929ad14ed7b12397b3558044ada1ee61b1d66ff
7df905da0416ee2dbcdaa5df3fa812497c3042ebd028c967f70f72bc96aa5e24
GET /wp-content/cache/minify/52145.js HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/ertyuiolkjhg456kjhgdd/login.php
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 02:46:41 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 02 Jan 2023 13:25:49 GMT
Server: DomaiNesia
DN-Request-Id: eb348c5ef62d79a51b8bf12555245774
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Cache-Control: max-age=2592000
Static-Cache-Status: BYPASS
Expires: Fri, 03 Feb 2023 02:46:41 GMT
Content-Encoding: gzip
airbali.com/wp-content/cache/minify/7b0a4.js
103.147.154.42200 OK 2.3 kB URL HTTP/1.1 airbali.com/wp-content/cache/minify/7b0a4.js
IP 103.147.154.42:0
File type ASCII text, with very long lines (6355), with no line terminators
Hash f8a76a12d241a68b39de400f9bfd3bc7
1e0616167a0a56d88480877d9acaa96dc0eedadc
ab28ddd25a82888769f65ba9e164e3bf9c7c0173cf4dc10b4ed3f6930d4b8b06
GET /wp-content/cache/minify/7b0a4.js HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/ertyuiolkjhg456kjhgdd/login.php
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 02:46:41 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 02 Jan 2023 13:25:50 GMT
Server: DomaiNesia
DN-Request-Id: 1fae8e92faeb3af681d6d5a6e20a5564
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Cache-Control: max-age=2592000
Static-Cache-Status: BYPASS
Expires: Fri, 03 Feb 2023 02:46:41 GMT
Content-Encoding: gzip
airbali.com/wp-includes/js/wp-emoji-release.min.js?ver=5.7.8
103.147.154.42200 OK 4.6 kB URL HTTP/2 airbali.com/wp-includes/js/wp-emoji-release.min.js?ver=5.7.8
IP 103.147.154.42:0
File type ASCII text, with very long lines (11272)
Hash 525cb2ea738bf94d2461d78ecdc8b13a
c0654358c775e3e213fcdc78365c33f9f97a5358
9d97fa52385375d8e393ff17a6d5a4a3c4b60087bba53a8e770975afbdcf0292
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.7.8 HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://airbali.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
last-modified: Thu, 18 Mar 2021 11:52:03 GMT
server: DomaiNesia
dn-request-id: 37c1dad77a9884ecc04524b28a3612b2
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
strict-transport-security: max-age=31536000; includeSubDomains; preload always
static-cache-status: MISS
expires: Wed, 01 Feb 2023 08:59:38 GMT
date: Mon, 02 Jan 2023 08:59:38 GMT
cache-control: max-age=2592000
etag: W/"PSA-6qhkG82iNx"
vary: Accept-Encoding
x-original-content-length: 14229
content-encoding: gzip
content-length: 4619
X-Firefox-Spdy: h2
airbali.com/wp-content/cache/minify/ebc27.js
103.147.154.42200 OK 7.9 kB URL HTTP/1.1 airbali.com/wp-content/cache/minify/ebc27.js
IP 103.147.154.42:0
File type ASCII text, with very long lines (28716), with no line terminators
Hash 14a28cf1bd9cdfbb4ca1d00e4392f32e
74940acece37a1cd7c10daf2359661083bdbad86
28b25fca3790aa129964fbf292d809ac993713fb0ece51ef5635466fa22c132b
GET /wp-content/cache/minify/ebc27.js HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/ertyuiolkjhg456kjhgdd/login.php
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 02:46:41 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 02 Jan 2023 13:25:50 GMT
Server: DomaiNesia
DN-Request-Id: c40c9bf0a1fda7be135438f306609542
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Cache-Control: max-age=2592000
Static-Cache-Status: BYPASS
Expires: Fri, 03 Feb 2023 02:46:41 GMT
Content-Encoding: gzip
airbali.com/wp-content/cache/minify/8456f.js
103.147.154.42200 OK 33 kB URL HTTP/1.1 airbali.com/wp-content/cache/minify/8456f.js
IP 103.147.154.42:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 77f5b26e07be6603cf87a0cbce078e16
f5bd0f87a085821f25822343aed67498241eb1da
2f2e3b686d90de88097e4d7c64497607b93d80c09e617a2e5ff08fa46fc9379c
GET /wp-content/cache/minify/8456f.js HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/ertyuiolkjhg456kjhgdd/login.php
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 02:46:41 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 02 Jan 2023 13:25:52 GMT
Server: DomaiNesia
DN-Request-Id: eda141ed159458e6516db2d832bb2e95
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Cache-Control: max-age=2592000
Static-Cache-Status: BYPASS
Expires: Fri, 03 Feb 2023 02:46:41 GMT
Content-Encoding: gzip
airbali.com/wp-content/cache/minify/c2571.js
103.147.154.42200 OK 10 kB URL HTTP/1.1 airbali.com/wp-content/cache/minify/c2571.js
IP 103.147.154.42:0
File type Unicode text, UTF-8 text, with very long lines (16492)
Hash 23f941cb4c165a51fb23c74a978d475d
fa313f845d7124eb5f2121c7cd05045d2daaa441
f288c36a5da9d1d452875a82c07a1cfdc26515c7252f70fe8cd8aad0933ff05d
GET /wp-content/cache/minify/c2571.js HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/ertyuiolkjhg456kjhgdd/login.php
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 02:46:41 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 02 Jan 2023 13:25:51 GMT
Server: DomaiNesia
DN-Request-Id: cad5c6682779a909451ad071c964f291
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Cache-Control: max-age=2592000
Static-Cache-Status: BYPASS
Expires: Fri, 03 Feb 2023 02:46:41 GMT
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 55d54fd5c74d7ecd66dbbe5bd1e9470f
aac89a9df48cfa2539185fd7c41b18b20967e505
56c0b53c50b9ac11cec52b34f4b23f0128776f92b424754ba915f97a163ddf3c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2149
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 02:46:43 GMT
Last-Modified: Wed, 04 Jan 2023 02:10:54 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash db474534a9804114810e1a5eb97a9d7c
01ad97b9bf10ab18e05e66a3edf9ee26542af27f
710cc788b22c58f1b26822a693dd52f3ce2cd13c5a33b100fa2936f668a96e22
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2814
Cache-Control: max-age=103053
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 02:46:43 GMT
Etag: "63b3cd22-117"
Expires: Thu, 05 Jan 2023 07:24:16 GMT
Last-Modified: Tue, 03 Jan 2023 06:37:22 GMT
Server: ECS (amb/6BA7)
X-Cache: HIT
Content-Length: 279
airbali.com/wp-content/cache/minify/0351e.js
103.147.154.42200 OK 2.0 kB URL HTTP/1.1 airbali.com/wp-content/cache/minify/0351e.js
IP 103.147.154.42:0
File type ASCII text, with very long lines (9171), with no line terminators
Hash 821530f59abdb1b9c6b2919e05825f54
438fc2d047d8cb5bfe77cd7da6cacb13f4b16e23
3f5e8dec7302ec9d3f18cb8e5c789cabadd9852b3ada3c45ea1eb6263e56c263
GET /wp-content/cache/minify/0351e.js HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/ertyuiolkjhg456kjhgdd/login.php
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 02:46:41 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 02 Jan 2023 13:25:55 GMT
Server: DomaiNesia
DN-Request-Id: 5b454b5e1a0d5495fefe6fa6237f4af2
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Cache-Control: max-age=2592000
Static-Cache-Status: BYPASS
Expires: Fri, 03 Feb 2023 02:46:41 GMT
Content-Encoding: gzip
airbali.com/wp-content/cache/minify/5c1bc.js
103.147.154.42200 OK 1.3 kB URL HTTP/1.1 airbali.com/wp-content/cache/minify/5c1bc.js
IP 103.147.154.42:0
File type ASCII text, with very long lines (4419), with no line terminators
Hash 09ec812c86236074c0b175e793df0bcf
baf490dee53c5fa2601dc42868457a235f84b7bb
9d1599704eb7708069749c1aa0422e339863b25860a76e0d230950ed0936b583
GET /wp-content/cache/minify/5c1bc.js HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/ertyuiolkjhg456kjhgdd/login.php
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 02:46:41 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 02 Jan 2023 13:25:51 GMT
Server: DomaiNesia
DN-Request-Id: f18a1060b72e402d4a5c8b91ce6d32ec
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Cache-Control: max-age=2592000
Static-Cache-Status: BYPASS
Expires: Fri, 03 Feb 2023 02:46:41 GMT
Content-Encoding: gzip
airbali.com/wp-content/cache/minify/3c970.js
103.147.154.42200 OK 3.1 kB URL HTTP/1.1 airbali.com/wp-content/cache/minify/3c970.js
IP 103.147.154.42:0
File type ASCII text, with very long lines (10648), with no line terminators
Hash dc807c33d54337c302b130031462c13d
62580830d69466320be7a5a9af922ea55271b07f
f2450d667a38571f4c8cc3811ab6c734c88bb587eadf7965f44f85e18a2eb5f7
GET /wp-content/cache/minify/3c970.js HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/ertyuiolkjhg456kjhgdd/login.php
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 02:46:41 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 02 Jan 2023 13:25:53 GMT
Server: DomaiNesia
DN-Request-Id: cbe9982f23671953a4109b2f17bf2e58
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Cache-Control: max-age=2592000
Static-Cache-Status: BYPASS
Expires: Fri, 03 Feb 2023 02:46:41 GMT
Content-Encoding: gzip
airbali.com/wp-content/cache/minify/5f0d1.js
103.147.154.42200 OK 4.1 kB URL HTTP/1.1 airbali.com/wp-content/cache/minify/5f0d1.js
IP 103.147.154.42:0
File type ASCII text, with very long lines (33164), with no line terminators
Hash d10069c16f69cb837207a6c65b986ace
f1bb1f29b1eb4a91bb6dbfb4917517734e0e35f9
dff2576adb91e371ef587ca931429ddcc2334375924f587f08dae37dde2649e4
GET /wp-content/cache/minify/5f0d1.js HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/ertyuiolkjhg456kjhgdd/login.php
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 02:46:41 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 02 Jan 2023 13:25:56 GMT
Server: DomaiNesia
DN-Request-Id: dc4b47e21121b74540d0529cb9b4717d
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Cache-Control: max-age=2592000
Static-Cache-Status: BYPASS
Expires: Fri, 03 Feb 2023 02:46:41 GMT
Content-Encoding: gzip
airbali.com/wp-content/cache/minify/31e22.js
103.147.154.42200 OK 6.8 kB URL HTTP/1.1 airbali.com/wp-content/cache/minify/31e22.js
IP 103.147.154.42:0
File type ASCII text, with very long lines (39756), with no line terminators
Hash e960f8892c1a52cb3205c0eaf324ed4d
780f41f8cc1a7441a64c24862ff9185a84716b87
eec29d7b2121581600aba0d4493b38540585fec767ce1b2933b28bc08549c624
GET /wp-content/cache/minify/31e22.js HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/ertyuiolkjhg456kjhgdd/login.php
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 02:46:41 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 02 Jan 2023 13:25:55 GMT
Server: DomaiNesia
DN-Request-Id: 6fee59d1807134b6e2e770fcbc1ef3b1
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Cache-Control: max-age=2592000
Static-Cache-Status: BYPASS
Expires: Fri, 03 Feb 2023 02:46:41 GMT
Content-Encoding: gzip
airbali.com/wp-content/cache/minify/59632.js
103.147.154.42200 OK 1.4 kB URL HTTP/1.1 airbali.com/wp-content/cache/minify/59632.js
IP 103.147.154.42:0
File type ASCII text, with very long lines (4600), with no line terminators
Hash e3f4a1520c05cba5753063e3e7438f9e
868e6296d8041aa7fa29abb056b9440edbd685bd
a4ca171077ee36906b4697bc741ca0638fd687d1887e661bef27bea0a0e1a4bc
GET /wp-content/cache/minify/59632.js HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/ertyuiolkjhg456kjhgdd/login.php
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 02:46:41 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 02 Jan 2023 13:25:54 GMT
Server: DomaiNesia
DN-Request-Id: d8e308836fc7ee68c7e70747bab750b8
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Cache-Control: max-age=2592000
Static-Cache-Status: BYPASS
Expires: Fri, 03 Feb 2023 02:46:41 GMT
Content-Encoding: gzip
airbali.com/wp-content/cache/minify/10e29.js
103.147.154.42200 OK 2.1 kB URL HTTP/1.1 airbali.com/wp-content/cache/minify/10e29.js
IP 103.147.154.42:0
File type ASCII text, with very long lines (6485), with no line terminators
Hash f0f45b9da4d745fac5cb6b7edd5c092e
5180ae619f9192c4997b578d96c3cd1f729b0ddc
5c4a96c6f653703c81cf9f1dfa77d930fcb38208bfae658e999e9a702eb9f9a8
GET /wp-content/cache/minify/10e29.js HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/ertyuiolkjhg456kjhgdd/login.php
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 02:46:42 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 02 Jan 2023 13:25:57 GMT
Server: DomaiNesia
DN-Request-Id: 094add9cf4bfd80893e269ae02fa4705
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Cache-Control: max-age=2592000
Static-Cache-Status: BYPASS
Expires: Fri, 03 Feb 2023 02:46:42 GMT
Content-Encoding: gzip
airbali.com/wp-content/cache/minify/9a50d.js
103.147.154.42200 OK 1.6 kB URL HTTP/1.1 airbali.com/wp-content/cache/minify/9a50d.js
IP 103.147.154.42:0
File type ASCII text, with very long lines (5174), with no line terminators
Hash bf8cd01d885f62110ea537d0bd6933c5
3b10136f4bec815ea2d13bb7e84570142d0712c9
1e2cafbaf2cb50ef5eebd80e92efd10d6bd1fc3dd45b094c02fe73843168efed
GET /wp-content/cache/minify/9a50d.js HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/ertyuiolkjhg456kjhgdd/login.php
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 02:46:42 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 02 Jan 2023 13:25:58 GMT
Server: DomaiNesia
DN-Request-Id: a32bc3e53942fb772a8e83be6ce79367
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Cache-Control: max-age=2592000
Static-Cache-Status: BYPASS
Expires: Fri, 03 Feb 2023 02:46:42 GMT
Content-Encoding: gzip
airbali.com/wp-content/uploads/2020/06/Pilot.png
103.147.154.42200 OK 525 kB URL HTTP/2 airbali.com/wp-content/uploads/2020/06/Pilot.png
IP 103.147.154.42:0
File type PNG image data, 960 x 1280, 8-bit colormap, non-interlaced\012- data
Size 525 kB (525113 bytes)
Hash 48e7dc6f5a8467868825cb241a2b7076
0c3c528e6799e1489d16f0e0192132d56a0731e2
2aed22743783e0431b3e3ee27f56d8696c30e35d59636ab0e4afffcac0e42e83
GET /wp-content/uploads/2020/06/Pilot.png HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://airbali.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 525113
last-modified: Wed, 17 Jun 2020 05:04:49 GMT
server: DomaiNesia
dn-request-id: 3cfbceb85cbf3c3e7eff9bc9102bc581
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
strict-transport-security: max-age=31536000; includeSubDomains; preload always
static-cache-status: MISS
expires: Fri, 20 Jan 2023 05:46:32 GMT
accept-ranges: bytes
date: Wed, 21 Dec 2022 05:46:32 GMT
cache-control: max-age=2592000
etag: W/"PSA-SOfcb1qEZ4"
X-Firefox-Spdy: h2
airbali.com/wp-content/uploads/2020/02/about_exspo.jpg
103.147.154.42200 OK 122 kB URL HTTP/2 airbali.com/wp-content/uploads/2020/02/about_exspo.jpg
IP 103.147.154.42:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 636x960, components 3\012- data
Size 122 kB (121632 bytes)
Hash 6c19173d69d8d7f616e2cc603588d3d7
b55c90cfaf2ac0bde1c8ba0f1b61bcebc8d3214d
698f88831e462452ecfe80ade2a3fa809f0684bb0500c8992b17b3ae27579c59
GET /wp-content/uploads/2020/02/about_exspo.jpg HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://airbali.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 121632
last-modified: Thu, 27 Feb 2020 14:46:59 GMT
server: DomaiNesia
dn-request-id: 268eab6260103cdb1cb4be03183983d7
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
strict-transport-security: max-age=31536000; includeSubDomains; preload always
static-cache-status: MISS
expires: Fri, 20 Jan 2023 05:46:32 GMT
accept-ranges: bytes
date: Wed, 21 Dec 2022 05:46:32 GMT
cache-control: max-age=2592000
etag: W/"PSA-bBkXPWnY1_"
X-Firefox-Spdy: h2
airbali.com/wp-content/cache/minify/48abf.js
103.147.154.42200 OK 2.2 kB URL HTTP/1.1 airbali.com/wp-content/cache/minify/48abf.js
IP 103.147.154.42:0
File type ASCII text, with very long lines (7117), with no line terminators
Hash 3b79859bdfe256ca64fa2c97a64360ca
b8212d314a03cc66c9605c06cf6eb25d61cd8552
bf7694e6d48333998915b6b39eef88ad5240d157b8f9e567e5d991b6ff498f1c
GET /wp-content/cache/minify/48abf.js HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/ertyuiolkjhg456kjhgdd/login.php
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 02:46:42 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 02 Jan 2023 13:25:59 GMT
Server: DomaiNesia
DN-Request-Id: 206f14e8fe7c798657eb22dcf707b76c
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Cache-Control: max-age=2592000
Static-Cache-Status: BYPASS
Expires: Fri, 03 Feb 2023 02:46:42 GMT
Content-Encoding: gzip
airbali.com/wp-content/cache/minify/c89d5.js
103.147.154.42200 OK 3.0 kB URL HTTP/1.1 airbali.com/wp-content/cache/minify/c89d5.js
IP 103.147.154.42:0
File type ASCII text, with very long lines (12472), with no line terminators
Hash 71829208fc1723af22816144e072d9b6
af4c20584b1fc6cbbf6d1c1b0ab289f6a0f5c777
10dc5f1f51f008db8edf83c0fe88b61ff15930c0f68faaf18a29e4937e346f45
GET /wp-content/cache/minify/c89d5.js HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/ertyuiolkjhg456kjhgdd/login.php
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 02:46:42 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 02 Jan 2023 13:25:58 GMT
Server: DomaiNesia
DN-Request-Id: 7e6e3f9af0eb86aaf6674b6b2ac30b3c
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Cache-Control: max-age=2592000
Static-Cache-Status: BYPASS
Expires: Fri, 03 Feb 2023 02:46:42 GMT
Content-Encoding: gzip
airbali.com/wp-content/cache/minify/e7d9a.js
103.147.154.42200 OK 1.2 kB URL HTTP/1.1 airbali.com/wp-content/cache/minify/e7d9a.js
IP 103.147.154.42:0
File type ASCII text, with very long lines (5147), with no line terminators
Hash 14100ba4cd7b37197a554d2660269ea2
70867494e328e965c9e7d4fb59f17c13e4456018
aaa50632943cb7173a350bd75bc86207103f5c33b9597d0cdde649c3eb06fe9b
GET /wp-content/cache/minify/e7d9a.js HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/ertyuiolkjhg456kjhgdd/login.php
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 02:46:42 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 02 Jan 2023 13:25:59 GMT
Server: DomaiNesia
DN-Request-Id: b2f271630c322258049c23f06641123e
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Cache-Control: max-age=2592000
Static-Cache-Status: BYPASS
Expires: Fri, 03 Feb 2023 02:46:42 GMT
Content-Encoding: gzip
airbali.com/wp-content/cache/minify/275d1.js
103.147.154.42200 OK 584 B URL HTTP/1.1 airbali.com/wp-content/cache/minify/275d1.js
IP 103.147.154.42:0
File type HTML document, ASCII text, with very long lines (1182), with no line terminators
Hash 3219ba42332cd17e98873e1ec1bf31a4
d20393a331ea2b8bff60e3eee038db8caaf075fc
a4f27665c25437cad69ac20b3ae112c5000826853caaa7ecbfe98f27a537a305
GET /wp-content/cache/minify/275d1.js HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/ertyuiolkjhg456kjhgdd/login.php
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 02:46:42 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 02 Jan 2023 13:25:59 GMT
Server: DomaiNesia
DN-Request-Id: a34e46fb8ad4709cf0cb390ccff9642a
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Cache-Control: max-age=2592000
Static-Cache-Status: BYPASS
Expires: Fri, 03 Feb 2023 02:46:42 GMT
Content-Encoding: gzip
airbali.com/wp-content/cache/minify/3a8b5.js
103.147.154.42200 OK 995 B URL HTTP/1.1 airbali.com/wp-content/cache/minify/3a8b5.js
IP 103.147.154.42:0
File type ASCII text, with very long lines (3245), with no line terminators
Hash c757a1b2130b151156f49c80f1d29a2f
493ea531e858c79c3d3b8e516d83a370460fe04a
5350243b9f0fe49bbc7ec26307cdad6efdd0d5787974c47e48cb9a53f138576c
GET /wp-content/cache/minify/3a8b5.js HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/ertyuiolkjhg456kjhgdd/login.php
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 02:46:42 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 02 Jan 2023 13:25:59 GMT
Server: DomaiNesia
DN-Request-Id: 661059f8944cdfb367cbbcda7556a65d
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Cache-Control: max-age=2592000
Static-Cache-Status: BYPASS
Expires: Fri, 03 Feb 2023 02:46:42 GMT
Content-Encoding: gzip
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 06df5289bf33faf0b87af8ed2b337be4
0006bf96bfe53c68f3c414e3507f8a8ce9698d0a
f42cf618d71efffa435090795cd04205693063a17f8e44854845a2515aab0fdd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F42CF618D71EFFFA435090795CD04205693063A17F8E44854845A2515AAB0FDD"
Last-Modified: Sun, 01 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2377
Expires: Wed, 04 Jan 2023 03:26:21 GMT
Date: Wed, 04 Jan 2023 02:46:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 06df5289bf33faf0b87af8ed2b337be4
0006bf96bfe53c68f3c414e3507f8a8ce9698d0a
f42cf618d71efffa435090795cd04205693063a17f8e44854845a2515aab0fdd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F42CF618D71EFFFA435090795CD04205693063A17F8E44854845A2515AAB0FDD"
Last-Modified: Sun, 01 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2377
Expires: Wed, 04 Jan 2023 03:26:21 GMT
Date: Wed, 04 Jan 2023 02:46:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 06df5289bf33faf0b87af8ed2b337be4
0006bf96bfe53c68f3c414e3507f8a8ce9698d0a
f42cf618d71efffa435090795cd04205693063a17f8e44854845a2515aab0fdd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F42CF618D71EFFFA435090795CD04205693063A17F8E44854845A2515AAB0FDD"
Last-Modified: Sun, 01 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2377
Expires: Wed, 04 Jan 2023 03:26:21 GMT
Date: Wed, 04 Jan 2023 02:46:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 06df5289bf33faf0b87af8ed2b337be4
0006bf96bfe53c68f3c414e3507f8a8ce9698d0a
f42cf618d71efffa435090795cd04205693063a17f8e44854845a2515aab0fdd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F42CF618D71EFFFA435090795CD04205693063A17F8E44854845A2515AAB0FDD"
Last-Modified: Sun, 01 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2377
Expires: Wed, 04 Jan 2023 03:26:21 GMT
Date: Wed, 04 Jan 2023 02:46:44 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash a00e7ffd9a6adb3c804c2d6ca564dfa8
e049f76dff0b3750645f8f5b5b11b62216ae800b
194e9eb437c9feff2b5b0cb449df0aedc3fe875748ef720ffde8e0d37b3ab10b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4326
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 02:46:44 GMT
Last-Modified: Wed, 04 Jan 2023 01:34:38 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 279
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F625ac435-5ac8-46ca-9178-7aa9cb621f60.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F625ac435-5ac8-46ca-9178-7aa9cb621f60.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c820340d5ed98c9573754e3a749bf40c
09d31b45d4cc16c4d321e616e5445d9ba921a1ba
2a69c58358ae763ddef6603f783d7d25c465ff4d3777e6bd540c1b673381813a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F625ac435-5ac8-46ca-9178-7aa9cb621f60.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8307
x-amzn-requestid: 37c27710-0d63-49f5-b929-87fa6fc9d654
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eKbG0GL1oAMFZCg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b40bc5-2a3a53235b7c4f9c21dcb51e;Sampled=0
x-amzn-remapped-date: Tue, 03 Jan 2023 11:04:37 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: SEpv7jTgKBOEfRLOfLuDOmiadNqYRsIFfVthmVndwcA55BGXLYTV5Q==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 04 Jan 2023 02:24:41 GMT
age: 1323
etag: "09d31b45d4cc16c4d321e616e5445d9ba921a1ba"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
airbali.com/wp-content/cache/minify/70743.js
103.147.154.42200 OK 939 B URL HTTP/1.1 airbali.com/wp-content/cache/minify/70743.js
IP 103.147.154.42:0
File type ASCII text, with very long lines (2548), with no line terminators
Hash 5db8146b68813e1e5a92b4c0280d4666
0abf15109af5ab27c5436b29db5558936758f1e3
7eba44e3643687c31dfdcf07a60344c864a84df51241537eac9c4ee84a54e230
GET /wp-content/cache/minify/70743.js HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/ertyuiolkjhg456kjhgdd/login.php
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 02:46:42 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 02 Jan 2023 13:25:59 GMT
Server: DomaiNesia
DN-Request-Id: c0e3cb7b75f904e1a458fe58cd75a8d0
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Cache-Control: max-age=2592000
Static-Cache-Status: BYPASS
Expires: Fri, 03 Feb 2023 02:46:42 GMT
Content-Encoding: gzip
airbali.com/wp-content/uploads/2020/07/new_airbali_slide_expos_low.png
103.147.154.42200 OK 304 kB URL HTTP/2 airbali.com/wp-content/uploads/2020/07/new_airbali_slide_expos_low.png
IP 103.147.154.42:0
File type PNG image data, 1000 x 615, 8-bit colormap, non-interlaced\012- data
Size 304 kB (304289 bytes)
Hash cbb720098b4827860dd818bbe9269f6e
9877525473a63d2e46a8b2a4db540183d8c646ea
ce34ba21ccece27f0283af117dceaa4530101aa7670fc8fa6b8b0ba7b8357a5b
GET /wp-content/uploads/2020/07/new_airbali_slide_expos_low.png HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://airbali.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 04 Jan 2023 02:46:41 GMT
content-type: image/png
content-length: 304289
last-modified: Wed, 01 Jul 2020 06:05:46 GMT
server: DomaiNesia
dn-request-id: e8f7687e39613ba5edf3d50dae062821
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
strict-transport-security: max-age=31536000; includeSubDomains; preload always
static-cache-status: MISS
expires: Fri, 03 Feb 2023 02:46:41 GMT
cache-control: max-age=2592000, s-maxage=10
accept-ranges: bytes
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68ecb4b1-cd89-45e3-ae9d-b225ccd2e379.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68ecb4b1-cd89-45e3-ae9d-b225ccd2e379.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a3688d2e4e22bd8da693034332f90571
5864cbe9905bc35f9b6e708c969a342aa2fd5e4f
20caefb9ce8efe17d568f631f5d11edd76a6e6fc6d60f7a01475151ad93b118e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68ecb4b1-cd89-45e3-ae9d-b225ccd2e379.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6620
x-amzn-requestid: 448c830d-5388-4ad4-9374-7dafcba6b40e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eJ3_2F2lIAMFawQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b3d398-79b3fdba5af7be120453d42d;Sampled=0
x-amzn-remapped-date: Tue, 03 Jan 2023 07:04:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: LBNdrwSINMazhuFz4VatYsSwc-aSkNQyspK9DiB16ivp-KuGtWkKTA==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 03 Jan 2023 07:33:52 GMT
age: 69172
etag: "5864cbe9905bc35f9b6e708c969a342aa2fd5e4f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0fae0836-a888-409d-9ad4-e4791536b146.png
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0fae0836-a888-409d-9ad4-e4791536b146.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a8a37f8d46e8ab1478a0347c1de2d647
4547e54e620a8f45bd76d55f78eb05d5ad175f1f
176804e5630d33ded9d117504d63dbb718c8e682afdf8cbc18390d0f25790a80
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0fae0836-a888-409d-9ad4-e4791536b146.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9531
x-amzn-requestid: 18053309-6970-4993-92b2-1c567542baa2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eL4N2EoNoAMFafA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b4a0be-5030fcc056a4cd26341f1bcd;Sampled=0
x-amzn-remapped-date: Tue, 03 Jan 2023 21:40:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ZN-PNJNtLFIWz4gqgztfeTfAfZ7v-lqgnPYzemtlEce1fEn41_XrkQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 03 Jan 2023 21:49:52 GMT
age: 17812
etag: "4547e54e620a8f45bd76d55f78eb05d5ad175f1f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36836a00-5089-401d-9a69-e25230099d0a.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36836a00-5089-401d-9a69-e25230099d0a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cb033e4a3035a49677a810f764021597
a76b2ab1c4b33be2244cc4e81ee56b95d9ddc860
fa816b99c77b4c1ac27153355574d7a4fbdc1a43ac8417bdfd45004fb54b878a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36836a00-5089-401d-9a69-e25230099d0a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6861
x-amzn-requestid: eb43b3e5-316e-4fa0-b6a7-696e747a4e6d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eL3IuGQFoAMFwbw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b49f04-3d752ea257c839dc59e5b803;Sampled=0
x-amzn-remapped-date: Tue, 03 Jan 2023 21:32:52 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 00E0yhrr9z2tJ-8fyJ-ANOEdeY9sK72o7HogOfr7AoeN9ubT7jY2OA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Tue, 03 Jan 2023 22:00:55 GMT
age: 17149
etag: "a76b2ab1c4b33be2244cc4e81ee56b95d9ddc860"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd778a59b-6bc4-4e21-bec7-38d1b87be05b.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd778a59b-6bc4-4e21-bec7-38d1b87be05b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fdda07f757a2d7f87e34e168f8dcdf1d
861b6c16e2a034b9793dde7a6898cbf485c4b6e1
21a043424ce5469863e0208d1de4a1927d0ca44b9d1a6d8cc627d44dd9eadad6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd778a59b-6bc4-4e21-bec7-38d1b87be05b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12254
x-amzn-requestid: f38b287f-1426-4fd8-8608-72a72778a939
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eL3pVHPKIAMF7AA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b49fd5-1a67e1244d14cbac5f03a8d7;Sampled=0
x-amzn-remapped-date: Tue, 03 Jan 2023 21:36:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: cWXYmrpcCmufg0dFPyV9jhe8n5dMr_oFEFJ6vhIF_kFikH5BEqHOsA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Tue, 03 Jan 2023 21:51:57 GMT
age: 17687
etag: "861b6c16e2a034b9793dde7a6898cbf485c4b6e1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ff2360c-5204-4d20-b397-821a4c4421e7.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ff2360c-5204-4d20-b397-821a4c4421e7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 359f30e64bec00d0a01acd69a08b684d
ac965c8642c4d1e47713965060fa2fc8f19088b1
fff1b001462468cc953092a2312650c03f307e95c40e2c6bb7356e2a8b9b0283
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ff2360c-5204-4d20-b397-821a4c4421e7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11877
x-amzn-requestid: 884b9243-6a8a-4434-9b2a-e5eff84d4e99
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eL33bFnDoAMFpoQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b4a02f-3f7043ae29d21e010ddc1ff9;Sampled=0
x-amzn-remapped-date: Tue, 03 Jan 2023 21:37:51 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: AmpRiMJDlhYtRCxTT0l7VEPHwk7eK_rnGceIYRUobRqi8hIM2LMrCQ==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 03 Jan 2023 22:00:54 GMT
age: 17150
etag: "ac965c8642c4d1e47713965060fa2fc8f19088b1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
airbali.com/wp-content/cache/minify/7ccb5.js
103.147.154.42200 OK 4.0 kB URL HTTP/1.1 airbali.com/wp-content/cache/minify/7ccb5.js
IP 103.147.154.42:0
File type ASCII text, with very long lines (28424), with no line terminators
Hash 61023bae8909081e05eca45c50d1c8d9
30359b20b53d1cda48cb052855bf4c1dfb5c97a5
0c998fe565715ce19db0efa3f0f47f204b488bd02bc4ea48cb57f69bd9564a33
GET /wp-content/cache/minify/7ccb5.js HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/ertyuiolkjhg456kjhgdd/login.php
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 02:46:42 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 02 Jan 2023 13:25:59 GMT
Server: DomaiNesia
DN-Request-Id: e1d807f6d6b300a6344d722922bbcd14
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Cache-Control: max-age=2592000
Static-Cache-Status: BYPASS
Expires: Fri, 03 Feb 2023 02:46:42 GMT
Content-Encoding: gzip
airbali.com/wp-content/cache/minify/6d54b.js
103.147.154.42200 OK 18 kB URL HTTP/1.1 airbali.com/wp-content/cache/minify/6d54b.js
IP 103.147.154.42:0
File type Unicode text, UTF-8 text, with very long lines (4819)
Hash 80527413ade7cb2f82c09dc067f680b5
5f7810fb9aa138a2af30cb1302533cffd91b8981
3ecb9894e516476ea83ef44a8e5d905872485be682cb60ef88263cdf4b8eb898
GET /wp-content/cache/minify/6d54b.js HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/ertyuiolkjhg456kjhgdd/login.php
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 02:46:42 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 02 Jan 2023 13:25:59 GMT
Server: DomaiNesia
DN-Request-Id: 9083b32648282c0346ad51896b10682e
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Cache-Control: max-age=2592000
Static-Cache-Status: BYPASS
Expires: Fri, 03 Feb 2023 02:46:42 GMT
Content-Encoding: gzip
airbali.com/wp-content/cache/minify/f97d6.js
103.147.154.42200 OK 2.1 kB URL HTTP/1.1 airbali.com/wp-content/cache/minify/f97d6.js
IP 103.147.154.42:0
File type ASCII text, with very long lines (3723)
Hash 1b444463eaa5c280ef1f963085d4c939
0ada8a37e988515671f3ca39ee6eec09037dd090
47fe53b1405dee527ed491fd3a71abc9ac45c45329d13876c76e6f354733df9b
GET /wp-content/cache/minify/f97d6.js HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/ertyuiolkjhg456kjhgdd/login.php
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 02:46:42 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 02 Jan 2023 13:25:59 GMT
Server: DomaiNesia
DN-Request-Id: 3e479900f947bafa76a9d69d1c882de5
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Cache-Control: max-age=2592000
Static-Cache-Status: BYPASS
Expires: Fri, 03 Feb 2023 02:46:42 GMT
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash a00e7ffd9a6adb3c804c2d6ca564dfa8
e049f76dff0b3750645f8f5b5b11b62216ae800b
194e9eb437c9feff2b5b0cb449df0aedc3fe875748ef720ffde8e0d37b3ab10b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4326
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 02:46:44 GMT
Last-Modified: Wed, 04 Jan 2023 01:34:38 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 279
airbali.com/wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/icomoon.woff
103.147.154.42301 Moved Permanently 298 B URL HTTP/1.1 airbali.com/wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/icomoon.woff
IP 103.147.154.42:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8a3f53650cd521c2d9b3b53219d56df1
65c0b3a61d01589aeb4013960d5e73c56bccc910
ee3783f8b12c5ae1cf277241f7ca86848bfc74a9df1446c95a47e13b3eaeef58
GET /wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/icomoon.woff HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: http://airbali.com/wp-content/cache/minify/cb2f5.css
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://airbali.com/wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/icomoon.woff
Server: DomaiNesia
DN-Request-Id: a00357acf81d335af3225462ac538fc6
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Static-Cache-Status: MISS
Date: Wed, 04 Jan 2023 02:46:42 GMT
X-Page-Speed: DomaiNesia
Cache-Control: max-age=0, no-cache
airbali.com/wp-content/themes/Avada/includes/lib/assets/fonts/fontawesome/webfonts/fa-solid-900.woff2
103.147.154.42301 Moved Permanently 317 B URL HTTP/1.1 airbali.com/wp-content/themes/Avada/includes/lib/assets/fonts/fontawesome/webfonts/fa-solid-900.woff2
IP 103.147.154.42:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 57a302129eaffccbe0b0d0241807cb93
81e665ff9b6b3154ba80043bfa7727c0774d518c
6ec03c6f8e46f9158788aac75ac67a800aeae79a2241158b39738dd340133944
GET /wp-content/themes/Avada/includes/lib/assets/fonts/fontawesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: http://airbali.com/wp-content/cache/minify/cb2f5.css
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://airbali.com/wp-content/themes/Avada/includes/lib/assets/fonts/fontawesome/webfonts/fa-solid-900.woff2
Server: DomaiNesia
DN-Request-Id: 59df3c1ca8725b7a6f23d3fd179c9476
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Static-Cache-Status: MISS
Date: Wed, 04 Jan 2023 02:46:42 GMT
X-Page-Speed: DomaiNesia
Cache-Control: max-age=0, no-cache
airbali.com/wp-content/uploads/2020/07/AB-SGI-logo-170.jpg
103.147.154.42301 Moved Permanently 274 B URL HTTP/1.1 airbali.com/wp-content/uploads/2020/07/AB-SGI-logo-170.jpg
IP 103.147.154.42:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 5d30309851b0f1aa1b2e8b6e892cb28e
74da8c12d466a321df96394d4fcfe0b07cc2c8ad
23c574ba9f99820202d7fb121f1610657f3ce9eb4f5a2c36656f162b474bacab
GET /wp-content/uploads/2020/07/AB-SGI-logo-170.jpg HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/ertyuiolkjhg456kjhgdd/login.php
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://airbali.com/wp-content/uploads/2020/07/AB-SGI-logo-170.jpg
Server: DomaiNesia
DN-Request-Id: f3997c651b258f1cd833d2c5a74919b3
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Static-Cache-Status: MISS
Date: Wed, 04 Jan 2023 02:46:42 GMT
X-Page-Speed: DomaiNesia
Cache-Control: max-age=0, no-cache
airbali.com/wp-content/uploads/2020/07/Logo-for-mobile.jpg
103.147.154.42301 Moved Permanently 274 B URL HTTP/1.1 airbali.com/wp-content/uploads/2020/07/Logo-for-mobile.jpg
IP 103.147.154.42:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 58633dc183c13efca1b4188119bfd772
64fb30fd41c81aa351ba3857aac4675b5726f1c6
f8730ac0462c9ec5842275d6a8e952a8a7ddcf5d0d622708e987d7fac3828fe1
GET /wp-content/uploads/2020/07/Logo-for-mobile.jpg HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/ertyuiolkjhg456kjhgdd/login.php
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://airbali.com/wp-content/uploads/2020/07/Logo-for-mobile.jpg
Server: DomaiNesia
DN-Request-Id: d47551feeeeea39bd120ed05426cf028
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Static-Cache-Status: MISS
Date: Wed, 04 Jan 2023 02:46:42 GMT
X-Page-Speed: DomaiNesia
Cache-Control: max-age=0, no-cache
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 18ee4ab258da703d01a2835dee1a19f0
3f8c62b74b9b00fc282ffcba383500b4237a7e9d
e2a6cf6d04188f3b33aa83b68f518c2e2e7656ad7c09c9e3b32ae9e6f720f68e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5788
Cache-Control: max-age=91964
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 02:46:44 GMT
Etag: "63b39634-117"
Expires: Thu, 05 Jan 2023 04:19:28 GMT
Last-Modified: Tue, 03 Jan 2023 02:43:00 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 279
airbali.com/wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/icomoon.woff
103.147.154.42200 OK 20 kB URL HTTP/2 airbali.com/wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/icomoon.woff
IP 103.147.154.42:0
File type Web Open Font Format, TrueType, length 19560, version 1.0\012- data
Hash 058faad55edf033eda55a2e719963f7b
131adbcab0318d115d8bc24baa7851ba3291bc49
be9cbd5f07dd141bdd7c3d8c09b52c6e283506072e37539d05dc4b9dcbb68e5b
GET /wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/icomoon.woff HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://airbali.com
Referer: http://airbali.com/
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 04 Jan 2023 02:46:42 GMT
content-type: font/woff
content-length: 19560
server: DomaiNesia
dn-request-id: a0f83517c43c7efcef8ca7cdaa3ce351
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
strict-transport-security: max-age=31536000; includeSubDomains; preload always
static-cache-status: STALE
expires: Fri, 03 Feb 2023 02:46:42 GMT
cache-control: max-age=2592000, s-maxage=10
accept-ranges: bytes
X-Firefox-Spdy: h2
airbali.com/wp-content/themes/Avada/includes/lib/assets/fonts/fontawesome/webfonts/fa-solid-900.woff2
103.147.154.42200 OK 76 kB URL HTTP/2 airbali.com/wp-content/themes/Avada/includes/lib/assets/fonts/fontawesome/webfonts/fa-solid-900.woff2
IP 103.147.154.42:0
File type Web Open Font Format (Version 2), TrueType, length 76100, version 330.-16253\012- data
Hash 7e3189cd01270f2d9b04d944021567dd
ac1c6bf03fc51c21226e60d35b96c77ddbc5e142
435b0f7d4b66f276c41a294d64e682a92224ef796e3ae0b723cf23ffaa64c0d6
GET /wp-content/themes/Avada/includes/lib/assets/fonts/fontawesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://airbali.com
Referer: http://airbali.com/
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 04 Jan 2023 02:46:42 GMT
content-type: font/woff2
content-length: 76100
server: DomaiNesia
dn-request-id: 63d267cba988d2ad4de3f3a654a0d65b
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
strict-transport-security: max-age=31536000; includeSubDomains; preload always
static-cache-status: STALE
expires: Fri, 03 Feb 2023 02:46:42 GMT
cache-control: max-age=2592000, s-maxage=10
accept-ranges: bytes
X-Firefox-Spdy: h2
airbali.com/wp-content/uploads/2020/07/AB-SGI-logo-170.jpg
103.147.154.42200 OK 12 kB URL HTTP/2 airbali.com/wp-content/uploads/2020/07/AB-SGI-logo-170.jpg
IP 103.147.154.42:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 340x71, components 3\012- data
Hash 1629382d4407d8b05b1ec3cf9bd005e0
f80cccda669f502fc0b2fb58823d5f68f6b72f86
bc2b774edc353e05c2c111fd5789a52080751b6c56f2c0f567c6655f90216fe2
GET /wp-content/uploads/2020/07/AB-SGI-logo-170.jpg HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://airbali.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 12154
last-modified: Wed, 15 Jul 2020 03:01:03 GMT
server: DomaiNesia
dn-request-id: daac1ffa3380f2a3474ec3ca39007597
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
strict-transport-security: max-age=31536000; includeSubDomains; preload always
static-cache-status: MISS
expires: Tue, 31 Jan 2023 22:54:23 GMT
accept-ranges: bytes
date: Sun, 01 Jan 2023 22:54:23 GMT
cache-control: max-age=2592000
etag: W/"PSA-Fik4LUQH2L"
X-Firefox-Spdy: h2
forms.hsforms.com/embed/v3/counters.gif?key=collected-forms-embed-js-form-bind&count=2
104.16.85.5200 OK 35 B URL HTTP/2 forms.hsforms.com/embed/v3/counters.gif?key=collected-forms-embed-js-form-bind&count=2
IP 104.16.85.5:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /embed/v3/counters.gif?key=collected-forms-embed-js-form-bind&count=2 HTTP/1.1
Host: forms.hsforms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://airbali.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 04 Jan 2023 02:46:44 GMT
content-type: image/gif
content-length: 35
x-trace: 2B30D9BD342C74340BEBFFFAB82ADB041596961581000000000000000000
cache-control: max-age=0, no-cache, no-store
vary: origin
x-hubspot-correlation-id: 35f5b3d3-be44-4e72-b5fd-bb6a8515e9e8
access-control-allow-credentials: false
access-control-expose-headers: X-Origin-Hublet
x-robots-tag: none
cf-cache-status: DYNAMIC
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7840a5401bdeb4ff-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 18ee4ab258da703d01a2835dee1a19f0
3f8c62b74b9b00fc282ffcba383500b4237a7e9d
e2a6cf6d04188f3b33aa83b68f518c2e2e7656ad7c09c9e3b32ae9e6f720f68e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5788
Cache-Control: max-age=91964
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 02:46:44 GMT
Etag: "63b39634-117"
Expires: Thu, 05 Jan 2023 04:19:28 GMT
Last-Modified: Tue, 03 Jan 2023 02:43:00 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 279
airbali.com/wp-content/uploads/2020/07/Logo-for-mobile.jpg
103.147.154.42200 OK 13 kB URL HTTP/2 airbali.com/wp-content/uploads/2020/07/Logo-for-mobile.jpg
IP 103.147.154.42:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 340x142, components 3\012- data
Hash a4bf916edd966bd24b0b315e54ca435c
049436e9912075d89cb4eb144c1fb3dc1196fffc
a5dce84ee1a4bbb50d22c9d3d8e7fc90919eceb48e9e4bf19574d48a7a630532
GET /wp-content/uploads/2020/07/Logo-for-mobile.jpg HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://airbali.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 12808
last-modified: Fri, 31 Jul 2020 11:36:49 GMT
server: DomaiNesia
dn-request-id: f8caef4cf3b6d56a704e931b23438728
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
strict-transport-security: max-age=31536000; includeSubDomains; preload always
static-cache-status: MISS
expires: Mon, 30 Jan 2023 01:03:56 GMT
accept-ranges: bytes
date: Sat, 31 Dec 2022 01:03:56 GMT
cache-control: max-age=2592000
etag: W/"PSA-pL-Rbt2Wa9"
X-Firefox-Spdy: h2
airbali.com/wp-content/themes/Avada/includes/lib/assets/fonts/fontawesome/webfonts/fa-solid-900.woff
103.147.154.42301 Moved Permanently 316 B URL HTTP/1.1 airbali.com/wp-content/themes/Avada/includes/lib/assets/fonts/fontawesome/webfonts/fa-solid-900.woff
IP 103.147.154.42:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash bb142c5029884d125a2a940b0505534a
2068d4460fddca150a3333a12aff8253976375c4
b85361d43186c665efd77ed41df6723cd4309004cf76e2b47d33bff21c7aa4ab
GET /wp-content/themes/Avada/includes/lib/assets/fonts/fontawesome/webfonts/fa-solid-900.woff HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: http://airbali.com/wp-content/cache/minify/cb2f5.css
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://airbali.com/wp-content/themes/Avada/includes/lib/assets/fonts/fontawesome/webfonts/fa-solid-900.woff
Server: DomaiNesia
DN-Request-Id: 2f44618aa48c322710dd77ccd241fe19
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Static-Cache-Status: MISS
Date: Wed, 04 Jan 2023 02:46:42 GMT
X-Page-Speed: DomaiNesia
Cache-Control: max-age=0, no-cache
airbali.com/wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/icomoon.ttf
103.147.154.42301 Moved Permanently 297 B URL HTTP/1.1 airbali.com/wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/icomoon.ttf
IP 103.147.154.42:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 7a707ae3ed601e5fe013d4197c2b2d0f
38eb62b858db9de6ad63e44dc31731ce39acd752
c80eb0cd27413a95db0368bd93cb627c5f6886b20422a1c524c28bc1e3ff13fe
GET /wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/icomoon.ttf HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://airbali.com/wp-content/cache/minify/cb2f5.css
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://airbali.com/wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/icomoon.ttf
Server: DomaiNesia
DN-Request-Id: bda4c60aa6546fd2073cb2494649bdb8
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: strict-origin-when-cross-origin
Content-Security-Policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload always
Static-Cache-Status: MISS
Date: Wed, 04 Jan 2023 02:46:42 GMT
X-Page-Speed: DomaiNesia
Cache-Control: max-age=0, no-cache
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash d36e9f9fb364f409833180a0f3b0f68d
3216eba49ba7d4cba4075f6f85ccba1ad7c0a107
67a88a762ae2c3b0b61f03ffdaaa90dcea85c991bd06b728d5c64ccaa8824b79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2490
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 02:46:44 GMT
Etag: "63b46097-117"
Last-Modified: Wed, 04 Jan 2023 02:05:14 GMT
Server: ECS (amb/6B95)
X-Cache: HIT
Content-Length: 279
airbali.com/wp-content/themes/Avada/includes/lib/assets/fonts/fontawesome/webfonts/fa-solid-900.woff
103.147.154.42200 OK 99 kB URL HTTP/2 airbali.com/wp-content/themes/Avada/includes/lib/assets/fonts/fontawesome/webfonts/fa-solid-900.woff
IP 103.147.154.42:0
File type Web Open Font Format, TrueType, length 98996, version 330.-16253\012- data
Hash 9533f349d17353dd3d8180a046d20dc3
d3c730f9d04f4b089467196c043802968ffbc0f6
81c73db56db2f5ceeae3c577b3ff6965b771813b0601f08466c6eb1424b24cc1
GET /wp-content/themes/Avada/includes/lib/assets/fonts/fontawesome/webfonts/fa-solid-900.woff HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://airbali.com
Referer: http://airbali.com/
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 04 Jan 2023 02:46:43 GMT
content-type: font/woff
content-length: 98996
server: DomaiNesia
dn-request-id: af035fb26bc94a3d46588483a22fcb87
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
strict-transport-security: max-age=31536000; includeSubDomains; preload always
static-cache-status: MISS
expires: Fri, 03 Feb 2023 02:46:43 GMT
cache-control: max-age=2592000, s-maxage=10
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash d36e9f9fb364f409833180a0f3b0f68d
3216eba49ba7d4cba4075f6f85ccba1ad7c0a107
67a88a762ae2c3b0b61f03ffdaaa90dcea85c991bd06b728d5c64ccaa8824b79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2491
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 02:46:45 GMT
Last-Modified: Wed, 04 Jan 2023 02:05:14 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 279
www.gstatic.com/recaptcha/releases/5qcenVbrhOy8zihcc2aHOWD4/recaptcha__en.js
216.58.207.227200 OK 165 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/5qcenVbrhOy8zihcc2aHOWD4/recaptcha__en.js
IP 216.58.207.227:0
File type ASCII text, with very long lines (658)
Size 165 kB (164706 bytes)
Hash 0b7fccb24ee065a01fdde10928c03c3f
9b198014f81844820588c202cc24bf5e03bf3dd7
68756de8f0d6742525ddaca56ab350e34d822777e86939fea27eb704ae013280
GET /recaptcha/releases/5qcenVbrhOy8zihcc2aHOWD4/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://airbali.com/
Origin: http://airbali.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 164706
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 31 Dec 2022 02:17:53 GMT
expires: Sun, 31 Dec 2023 02:17:53 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 15 Dec 2022 05:24:10 GMT
content-type: text/javascript
age: 347332
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://airbali.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Wed, 04 Jan 2023 02:41:11 GMT
expires: Wed, 04 Jan 2023 04:41:11 GMT
cache-control: public, max-age=7200
age: 334
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
api.hubapi.com/hs-script-loader-public/v1/config/pixel/json?portalId=2926470
104.17.202.204200 OK 393 B URL HTTP/2 api.hubapi.com/hs-script-loader-public/v1/config/pixel/json?portalId=2926470
IP 104.17.202.204:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 449ce1e640860ba5837b803117506ba4
3490fe6b73afe6b0ffa4f7a67cdae7501870c198
a0c1966bf88c4fc0375a37a227b94694873a7dadda28db4cdccc078d89ec9c04
GET /hs-script-loader-public/v1/config/pixel/json?portalId=2926470 HTTP/1.1
Host: api.hubapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://airbali.com/
Origin: http://airbali.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 04 Jan 2023 02:46:45 GMT
content-type: application/json;charset=utf-8
cf-ray: 7840a5428cadb4ff-OSL
access-control-allow-origin: http://airbali.com
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: origin, Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-max-age: 180
x-hubspot-correlation-id: cbdf81a0-9abc-48c4-b266-95abdb149a6d
x-trace: 2BC69C8006EF9E62219F01C2BA200DD1414183D81D000000000000000000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s59MGnV%2FiXT5bnWlJsOyTcYZOZI1jQ3QMCDlUqn%2BTExq%2FqnC470746KdKPv0UODSwlB4NQROlw%2BHHEOFqtKkTr6HR1q58de0t47A0zoHRyvpBNaOifgjbKu%2BM%2BPdXgPV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/5qcenVbrhOy8zihcc2aHOWD4/styles__ltr.css
216.58.207.227200 OK 24 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/5qcenVbrhOy8zihcc2aHOWD4/styles__ltr.css
IP 216.58.207.227:0
File type ASCII text, with very long lines (52913), with no line terminators
Hash f4bb161deae4e93f1a82e52f82ea2af9
74cd72b02999ea35cde6dd6c1d58ca9aec94da07
3330fe65fd8dbe742211f1609fbfe70b3b94434ad5639223942d921f085ea589
GET /recaptcha/releases/5qcenVbrhOy8zihcc2aHOWD4/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24262
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 31 Dec 2022 07:49:35 GMT
expires: Sun, 31 Dec 2023 07:49:35 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 15 Dec 2022 05:24:10 GMT
content-type: text/css
age: 327430
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/5qcenVbrhOy8zihcc2aHOWD4/recaptcha__en.js
216.58.207.227200 OK 165 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/5qcenVbrhOy8zihcc2aHOWD4/recaptcha__en.js
IP 216.58.207.227:0
File type ASCII text, with very long lines (658)
Size 165 kB (164706 bytes)
Hash 0b7fccb24ee065a01fdde10928c03c3f
9b198014f81844820588c202cc24bf5e03bf3dd7
68756de8f0d6742525ddaca56ab350e34d822777e86939fea27eb704ae013280
GET /recaptcha/releases/5qcenVbrhOy8zihcc2aHOWD4/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 164706
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 31 Dec 2022 02:17:53 GMT
expires: Sun, 31 Dec 2023 02:17:53 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 15 Dec 2022 05:24:10 GMT
content-type: text/javascript
age: 347332
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
airbali.com/wp-content/uploads/2020/02/cropped-logo512-192x192.png
103.147.154.42200 OK 27 kB URL HTTP/2 airbali.com/wp-content/uploads/2020/02/cropped-logo512-192x192.png
IP 103.147.154.42:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash a2de2a954ab93c6ae0024dbaaf24602a
4d54092af79503007ac95a25b357e3d9b5dc2776
3456f66fb19d460b4fa1ff6ec0ac2f0e6dcc7cbb9b3f69dbe692bee7980ad17d
GET /wp-content/uploads/2020/02/cropped-logo512-192x192.png HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://airbali.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 26741
last-modified: Fri, 14 Feb 2020 16:11:55 GMT
server: DomaiNesia
dn-request-id: 40af2ec100c10b21e7bb7a607e5211e2
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
strict-transport-security: max-age=31536000; includeSubDomains; preload always
static-cache-status: MISS
expires: Fri, 20 Jan 2023 05:46:33 GMT
accept-ranges: bytes
date: Wed, 21 Dec 2022 05:46:33 GMT
cache-control: max-age=2592000
etag: W/"PSA-ot4qlUq5PG"
X-Firefox-Spdy: h2
airbali.com/wp-content/uploads/2020/02/cropped-logo512-32x32.png
103.147.154.42200 OK 2.1 kB URL HTTP/2 airbali.com/wp-content/uploads/2020/02/cropped-logo512-32x32.png
IP 103.147.154.42:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash a206318adc013d372a52f01626cacf78
6408f6456e473232626afcc1d76bf42599dea123
2baa08773a93d540fda15fd2a69e2bb64a5b7a5ee77775142f8e4cad0240d108
GET /wp-content/uploads/2020/02/cropped-logo512-32x32.png HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://airbali.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2110
last-modified: Fri, 14 Feb 2020 16:11:55 GMT
server: DomaiNesia
dn-request-id: 2f59b796bd129c6b4b7407633a8da4f9
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
strict-transport-security: max-age=31536000; includeSubDomains; preload always
static-cache-status: MISS
expires: Fri, 20 Jan 2023 05:46:33 GMT
accept-ranges: bytes
date: Wed, 21 Dec 2022 05:46:33 GMT
cache-control: max-age=2592000
etag: W/"PSA-ogYxitwBPT"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 29 Dec 2022 21:48:03 GMT
expires: Fri, 29 Dec 2023 21:48:03 GMT
cache-control: public, max-age=31536000
age: 449922
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 29 Dec 2022 16:40:43 GMT
expires: Fri, 29 Dec 2023 16:40:43 GMT
cache-control: public, max-age=31536000
age: 468362
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
js.hs-analytics.net/analytics/1672800300000/2926470.js
104.17.70.176200 OK 20 kB URL HTTP/2 js.hs-analytics.net/analytics/1672800300000/2926470.js
IP 104.17.70.176:0
File type ASCII text, with very long lines (64572)
Hash 1a283e8e81afa92c3077a830402d33d5
3331f33d8edcdcd09f7ff2e8919956da2b7804d4
039ce7050b6edea4659c9ef8f874a30acd4e3f1c8b2ff60c073f2f6ab80af9d7
GET /analytics/1672800300000/2926470.js HTTP/1.1
Host: js.hs-analytics.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://airbali.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 04 Jan 2023 02:46:45 GMT
content-type: text/javascript
x-amz-id-2: UduQhSN/oMA4+W+jS0g/GRwHRk9BHEIVFvC9HIMWf6ib1Sy/z9ySMcaxbPRAOFGtsjEF/rn+tRA=
x-amz-request-id: Y7D6NZVXHY8751TP
last-modified: Thu, 01 Dec 2022 14:09:16 GMT
etag: W/"5fabaa4d3b03f7710d354c2b304d07bc"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: null
access-control-allow-credentials: false
vary: origin, Accept-Encoding
expires: Wed, 04 Jan 2023 02:51:45 GMT
cf-cache-status: MISS
server: cloudflare
cf-ray: 7840a5442c481c0a-OSL
content-encoding: br
X-Firefox-Spdy: h2
airbali.com/wp-content/themes/Avada/includes/lib/assets/fonts/fontawesome/webfonts/fa-solid-900.ttf
103.147.154.42200 OK 97 kB URL HTTP/2 airbali.com/wp-content/themes/Avada/includes/lib/assets/fonts/fontawesome/webfonts/fa-solid-900.ttf
IP 103.147.154.42:0
File type TrueType Font data, 13 tables, 1st "FFTM", 28 names, Macintosh\012- data
Hash 82d6d2e4e78578029b36ff4d9363d330
dae1a9363a11a9f966b223f6e70b719712c407d7
8712e2ec24cc28782719bea34acea42603493ba042fc7094bbda63130f89758f
GET /wp-content/themes/Avada/includes/lib/assets/fonts/fontawesome/webfonts/fa-solid-900.ttf HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://airbali.com
Referer: http://airbali.com/
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 04 Jan 2023 02:46:43 GMT
content-type: font/ttf
vary: Accept-Encoding
server: DomaiNesia
dn-request-id: 11da30051c5734dd256701b34ccc6b2c
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
strict-transport-security: max-age=31536000; includeSubDomains; preload always
static-cache-status: MISS
expires: Fri, 03 Feb 2023 02:46:43 GMT
content-encoding: br
cache-control: max-age=2592000, s-maxage=10
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 57793b7a3f10d414a87f8ba799d318b0
7ff9b591cbaa496acc83302ec4bcc80b1ff469f1
f6bc3efc61d88fc9a03f7a13718b4947e80e1155e9940232539463e58b517184
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5077
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 02:46:46 GMT
Last-Modified: Wed, 04 Jan 2023 01:22:09 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash 8b26cd4609e2025e51e90573a0fbd6f7
efc2006ae5297ad5ae5e064188b9fba73f6b868f
e288b6a1e220f5fb781cfbb0b739b36c6acfdceccff8f0278fc151c241b0b50b
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://airbali.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: lQTPxb3QKNOJVAsN6SZiyX2M2AQuh1YZCROuddwNYPu6hhI6uUOOKbvdJVzN/fKhgucuU/EY5F9QtVxx32S40w==
content-length: 27298
x-fb-trip-id: 1904183273
date: Wed, 04 Jan 2023 02:46:46 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 57793b7a3f10d414a87f8ba799d318b0
7ff9b591cbaa496acc83302ec4bcc80b1ff469f1
f6bc3efc61d88fc9a03f7a13718b4947e80e1155e9940232539463e58b517184
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5077
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 02:46:46 GMT
Last-Modified: Wed, 04 Jan 2023 01:22:09 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
www.facebook.com/tr/?id=1814908488810782&ev=PageView&dl=http%3A%2F%2Fairbali.com%2Fertyuiolkjhg456kjhgdd%2Flogin.php&rl=&if=false&ts=1672800397281&sw=1280&sh=1024&ud[external_id]=531d9da83320423afb453a55751460f3&v=2.9.90&r=stable&a=tmhubspot&ec=0&o=30&fbp=fb.1.1672800397279.1795005246&it=1672800396993&coo=false&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1814908488810782&ev=PageView&dl=http%3A%2F%2Fairbali.com%2Fertyuiolkjhg456kjhgdd%2Flogin.php&rl=&if=false&ts=1672800397281&sw=1280&sh=1024&ud[external_id]=531d9da83320423afb453a55751460f3&v=2.9.90&r=stable&a=tmhubspot&ec=0&o=30&fbp=fb.1.1672800397279.1795005246&it=1672800396993&coo=false&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1814908488810782&ev=PageView&dl=http%3A%2F%2Fairbali.com%2Fertyuiolkjhg456kjhgdd%2Flogin.php&rl=&if=false&ts=1672800397281&sw=1280&sh=1024&ud[external_id]=531d9da83320423afb453a55751460f3&v=2.9.90&r=stable&a=tmhubspot&ec=0&o=30&fbp=fb.1.1672800397279.1795005246&it=1672800396993&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://airbali.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Wed, 04 Jan 2023 02:46:46 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 159c5fa00014a4e657cf013622520763
6c80abbb30c00f1ef676177c9f2b252ed557d925
9e5e447dd4bffb6de8bbc8c44b964d189aecfc4ef6e64883ad95555f84a1734b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1348
Cache-Control: max-age=135387
Content-Type: application/ocsp-response
Date: Wed, 04 Jan 2023 02:46:47 GMT
Etag: "63b4512e-116"
Expires: Thu, 05 Jan 2023 16:23:14 GMT
Last-Modified: Tue, 03 Jan 2023 16:00:46 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 278
cdn2.hubspot.net/hubfs/2926470/lead-flow-images/heli%20uluwatu.png
104.17.243.204200 OK 318 kB URL HTTP/2 cdn2.hubspot.net/hubfs/2926470/lead-flow-images/heli%20uluwatu.png
IP 104.17.243.204:0
File type RIFF (little-endian) data, Web/P image\012- data
Size 318 kB (318290 bytes)
Hash e2b44bfa24f438bfcc6f6cccbf57a398
a256b21ccadbc2c8360e06e6f8fca781cf29f32b
06ef21780eead04439e2255ebf86dab9a5b6c0dcd99a3850a7a69e71448bb794
GET /hubfs/2926470/lead-flow-images/heli%20uluwatu.png HTTP/1.1
Host: cdn2.hubspot.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://airbali.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 04 Jan 2023 02:46:47 GMT
content-type: image/webp
content-length: 318290
cf-ray: 7840a5501836b511-OSL
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=1814400, max-age=1209600, stale-while-revalidate=900
content-disposition: inline; filename="heli%20uluwatu.webp"
etag: "6da768c4d204c6bb18de8b154541a5c0"
last-modified: Fri, 26 Jan 2018 14:24:55 GMT
vary: Accept, Accept-Encoding
via: 1.1 91cef70333c823b40a7fc775c574985a.cloudfront.net (CloudFront)
cf-cache-status: HIT
access-control-allow-methods: GET
cache-tag: F-5543487445,FD-5543972758,PCHJ8,FLS
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=423621
edge-cache-tag: F-5543487445,FD-5543972758,PCHJ8,FLS
x-amz-cf-id: 1980AE_08435bVoFAV-hKJiaQjmtW_A4Fp-xRecz-xZ1tnVYep15VA==
x-amz-cf-pop: HEL51-P2
x-amz-id-2: yx8Mp6xmL5DOC/JEYgGVO7r+TlDfgjoof76GDd8Ep+TdThY+KiqTPQBg4SpBtWP6oRfpjmJV6fs=
x-amz-meta-cache-tag: F-5543487445,FD-5543972758,PCHJ8,FLS
x-amz-request-id: 6CYVA2XS8CB9EW1X
x-amz-version-id: QQF3Uqbmt7vLgs8avlzQ5kUJOyE_uGlE
x-cache: RefreshHit from cloudfront
x-hs-cf-lambda: us-east-1.enforceAclForReadsProd 15
x-hs-cf-lambda-enforce: us-east-1.enforceAclForReadsProd 15
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FFfLbbBnkSB6oEzWbG%2FsBj2DulXf9ryU84ZBaJvYjP4w2rVzCSXzm2kctbOKB8cQE4RFdjsP2uf1nRyivzbklkNO6mIVE2GrEocifQbnF%2B6vYwwVddVLpdIWNQ4d3iIP8ok%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
X-Firefox-Spdy: h2
forms.hubspot.com/collected-forms/v1/config/json?portalId=2926470&utk=
104.19.155.83200 OK 0 B URL HTTP/2 forms.hubspot.com/collected-forms/v1/config/json?portalId=2926470&utk=
IP 104.19.155.83:0
GET /collected-forms/v1/config/json?portalId=2926470&utk= HTTP/1.1
Host: forms.hubspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://airbali.com/
Origin: http://airbali.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 04 Jan 2023 02:46:44 GMT
content-type: application/json;charset=utf-8
vary: origin
x-hubspot-correlation-id: 8fce2f8d-dd26-403f-8e39-9a9855b86eb8
access-control-allow-credentials: false
access-control-allow-origin: http://airbali.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: *
access-control-max-age: 180
x-robots-tag: none
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=BVDQ3wq9EnBesKOl1WZm1_HywAfhtv5DxeZU3bhD1uc-1672800404-0-AVXYzOswNrzu/05m/4LzZkM3FtkY8ytjBEKqGUf19IAU/tJk1yF2zeS/s0zfmaNPyR2ad/jZIcM2H3JtA8eJX9I=; path=/; expires=Wed, 04-Jan-23 03:16:44 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZhwcyVLFoUsNjh8y8dcXRd%2B8uS5YhYLrwMhItkI4EyGs6aajCEewkm4YkS163FNhjwVzKQZfLm7kbStzefxjuAlWAdy4xXDxGBH76wUjWaPOijIcGnMMhb%2BkJzK3yGxeCOlq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7840a53dcb2f0b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
js.hscollectedforms.net/collectedforms.js
104.17.129.171200 OK 0 B URL HTTP/2 js.hscollectedforms.net/collectedforms.js
IP 104.17.129.171:0
GET /collectedforms.js HTTP/1.1
Host: js.hscollectedforms.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://airbali.com/
Origin: http://airbali.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 04 Jan 2023 02:46:43 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Wed, 07 Dec 2022 02:49:13 UTC
x-amz-server-side-encryption: AES256
x-amz-version-id: SN4HXBautbT5xHa4DdPckLpyluwLE8QR
etag: W/"349cabd549e2249f8fb6ac3ac6f08e00"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b77313059f3d50280ced20238b151620.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: i0Pw6zz4Zw9lVmWahESnK5UCdrm0VmLjCXqiSZOc29-kK83wZidmzA==
cache-control: s-maxage=600, max-age=300
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=collected-forms-embed-js/static-1.312/bundles/project.js&cfRay=7840a53a9a6d0b61-IAD
x-hs-target-asset: collected-forms-embed-js/static-1.312/bundles/project.js
access-control-allow-origin: *
x-hs-cache-status: HIT
cache-tag: staticjsapp-collected-forms-embed-js-web-prod,staticjsapp-prod
cf-cache-status: MISS
server: cloudflare
cf-ray: 7840a53a9a6d0b61-OSL
content-encoding: br
X-Firefox-Spdy: h2
forms.hubspot.com/lead-flows-config/v1/config/json?portalId=2926470&utk=531d9da83320423afb453a55751460f3&__hstc=121269975.531d9da83320423afb453a55751460f3.1672800396617.1672800396617.1672800396617.1&__hssc=121269975.1.1672800396617¤tUrl=http%3A%2F%2Fairbali.com%2Fertyuiolkjhg456kjhgdd%2Flogin.php
104.19.155.83200 OK 0 B URL HTTP/2 forms.hubspot.com/lead-flows-config/v1/config/json?portalId=2926470&utk=531d9da83320423afb453a55751460f3&__hstc=121269975.531d9da83320423afb453a55751460f3.1672800396617.1672800396617.1672800396617.1&__hssc=121269975.1.1672800396617¤tUrl=http%3A%2F%2Fairbali.com%2Fertyuiolkjhg456kjhgdd%2Flogin.php
IP 104.19.155.83:0
GET /lead-flows-config/v1/config/json?portalId=2926470&utk=531d9da83320423afb453a55751460f3&__hstc=121269975.531d9da83320423afb453a55751460f3.1672800396617.1672800396617.1672800396617.1&__hssc=121269975.1.1672800396617¤tUrl=http%3A%2F%2Fairbali.com%2Fertyuiolkjhg456kjhgdd%2Flogin.php HTTP/1.1
Host: forms.hubspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://airbali.com/
Origin: http://airbali.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 04 Jan 2023 02:46:46 GMT
content-type: application/json;charset=utf-8
vary: origin
x-hubspot-correlation-id: 8d5c3aaf-9e1f-4ada-bae2-392c4b792ed1
access-control-allow-credentials: false
access-control-allow-origin: http://airbali.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Accept, Accept-Charset, Accept-Encoding, Accept-Language, Content-Type, Host, Origin, Referer, User-Agent
access-control-max-age: 180
cache-control: max-age=0, no-cache, no-store
x-robots-tag: none
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=AacihlrRKfhtyehWsRbDrcEWojwbR4lWWmYHUgR6Rzs-1672800406-0-AV/3lm7RM57cXNo/BSvbi477A2mgUlQbfiiU+1awgadjbTjiLjRmRP2p50fbKVhCLa7D1RyDCGg6CiOMFqzMCfI=; path=/; expires=Wed, 04-Jan-23 03:16:46 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=v0Td84GMpQOiiKhQjrJRmbg5pugEzbypfgosi822nkhJhr0%2FOBX0Z9pAvS7uNtanTN17UF4j8k65ePCPV4v5KNXR9C%2FmbB%2FBYRBKB%2BuPaNIdLmBX6RUrC5%2BO1j%2F8z8E27gEL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7840a548adf60b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
airbali.com/wp-json/contact-form-7/v1/contact-forms/24/refill?_locale=user
103.147.154.42200 OK 0 B URL HTTP/2 airbali.com/wp-json/contact-form-7/v1/contact-forms/24/refill?_locale=user
IP 103.147.154.42:0
OPTIONS /wp-json/contact-form-7/v1/contact-forms/24/refill?_locale=user HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-wp-nonce
Referer: http://airbali.com/
Origin: http://airbali.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 04 Jan 2023 02:46:44 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
x-robots-tag: noindex
link: <https://airbali.com/wp-json/>; rel="https://api.w.org/"
access-control-expose-headers: X-WP-Total, X-WP-TotalPages, Link
access-control-allow-headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type
allow: GET
access-control-allow-origin: http://airbali.com
access-control-allow-methods: OPTIONS, GET, POST, PUT, PATCH, DELETE
access-control-allow-credentials: true
server: DomaiNesia
dn-request-id: 61451787aa2d7611b30338c9172e5277
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
strict-transport-security: max-age=31536000; includeSubDomains; preload always
content-encoding: br
X-Firefox-Spdy: h2
airbali.com/wp-json/contact-form-7/v1/contact-forms/24/refill?_locale=user
103.147.154.42200 OK 0 B URL HTTP/2 airbali.com/wp-json/contact-form-7/v1/contact-forms/24/refill?_locale=user
IP 103.147.154.42:0
GET /wp-json/contact-form-7/v1/contact-forms/24/refill?_locale=user HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, */*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://airbali.com/
X-WP-Nonce: 85a87693bf
Origin: http://airbali.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 04 Jan 2023 02:46:45 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
x-robots-tag: noindex
link: <https://airbali.com/wp-json/>; rel="https://api.w.org/"
access-control-expose-headers: X-WP-Total, X-WP-TotalPages, Link
access-control-allow-headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type
x-wp-nonce: 85a87693bf
allow: GET
access-control-allow-origin: http://airbali.com
access-control-allow-methods: OPTIONS, GET, POST, PUT, PATCH, DELETE
access-control-allow-credentials: true
server: DomaiNesia
dn-request-id: 1d149ef020e3e75811a9c687bb2dea5e
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
strict-transport-security: max-age=31536000; includeSubDomains; preload always
dynamic-cache-status: EXPIRED
content-encoding: br
X-Firefox-Spdy: h2
js.hsadspixel.net/fb.js
104.17.114.176200 OK 0 B IP 104.17.114.176:0
GET /fb.js HTTP/1.1
Host: js.hsadspixel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://airbali.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 04 Jan 2023 02:46:43 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Tue, 03 Jan 2023 01:54:30 UTC
etag: W/"83a5a8783c71c1074cc34ecd8c8615de"
x-amz-server-side-encryption: AES256
x-amz-version-id: Pzk5Y6yW4FTLubLBTP3MgGAHjRxytAJ0
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 dfc1931cc62ecd4133c2b9bdae1bb476.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: ybyUcZUzd6kPOuUOZLLRSKr2x6juyIB0Kfo00w15BapCXajMg3e_yg==
cache-control: max-age=600
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=adsscriptloaderstatic/static-1.304/bundles/pixels-release.js&cfRay=783c48e89f3609b1-IAD
x-hs-target-asset: adsscriptloaderstatic/static-1.304/bundles/pixels-release.js
x-hs-cache-status: HIT
cache-tag: staticjsapp-AdsScriptLoaderCloudflare-web-prod,staticjsapp-prod
cf-cache-status: HIT
age: 46
server: cloudflare
cf-ray: 7840a53abfa3b51e-OSL
content-encoding: br
X-Firefox-Spdy: h2
js.hs-scripts.com/2926470.js?integration=WordPress
104.17.212.204200 OK 0 B URL HTTP/2 js.hs-scripts.com/2926470.js?integration=WordPress
IP 104.17.212.204:0
GET /2926470.js?integration=WordPress HTTP/1.1
Host: js.hs-scripts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://airbali.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 04 Jan 2023 02:46:42 GMT
content-type: application/javascript;charset=utf-8
x-trace: 2B7B7F401FBF24629A95BF3D1BA572F42E35CCC541000000000000000000
cache-control: public, max-age=60
vary: origin, Accept-Encoding
x-hubspot-correlation-id: bbeca045-5820-4a61-ba2d-558a12b4fc5a
access-control-allow-credentials: true
access-control-max-age: 3600
access-control-allow-origin: http://airbali.com
last-modified: Tue, 03 Jan 2023 21:40:51 GMT
cf-cache-status: EXPIRED
expires: Wed, 04 Jan 2023 02:47:42 GMT
server: cloudflare
cf-ray: 7840a531ae0db503-OSL
content-encoding: br
X-Firefox-Spdy: h2
js.hsleadflows.net/leadflows.js
104.17.234.204200 OK 0 B URL HTTP/2 js.hsleadflows.net/leadflows.js
IP 104.17.234.204:0
GET /leadflows.js HTTP/1.1
Host: js.hsleadflows.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://airbali.com/
Origin: http://airbali.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 04 Jan 2023 02:46:44 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Thu, 17 Nov 2022 02:20:30 UTC
etag: W/"74fae7dd863591ed0e85827bc178f500"
x-amz-server-side-encryption: AES256
x-amz-version-id: WdFozKBx4SUx.lzBGe8mkR8wgVUrEMev
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Miss from cloudfront
via: 1.1 c3d335addde48969fafe25d4064cee80.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: qyVLn6qP3V8XPml5i374KeLuc9GbJi2MM0i3rUIILsRrG5pjiSuh8A==
cache-control: s-maxage=86400, max-age=0
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=lead-flows-js/static-1.1120/bundle/main/lead-flows-release.js&cfRay=7840a53a9a7ab4fa-IAD
x-hs-target-asset: lead-flows-js/static-1.1120/bundle/main/lead-flows-release.js
x-hs-cache-status: MISS
cache-tag: staticjsapp-lead-flows-cloudflare-web-prod,staticjsapp-prod
cf-cache-status: MISS
server: cloudflare
cf-ray: 7840a53a9a7ab4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
js.hs-banner.com/v2/2926470/banner.js
172.64.154.85200 OK 0 B URL HTTP/2 js.hs-banner.com/v2/2926470/banner.js
IP 172.64.154.85:0
GET /v2/2926470/banner.js HTTP/1.1
Host: js.hs-banner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://airbali.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 04 Jan 2023 02:46:44 GMT
content-type: text/javascript; charset=UTF-8
x-amz-id-2: gsoDtxFVpH7D/EI81nDDQVE+5f+WLsFDJaCux3PBQzD4vpUA+I0Qd+/FizKnv0hJH17F814zssQ=
x-amz-request-id: AA9JGPSRHSQKNJNT
last-modified: Thu, 08 Dec 2022 20:47:19 GMT
etag: W/"543901286e369da4f589e9f1cb4f467d"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: DCinqARypLVYBuZMSmOywq3IE.DFfxCA
access-control-allow-origin: http://airbali.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
vary: origin, Accept-Encoding
expires: Wed, 04 Jan 2023 02:51:44 GMT
cf-cache-status: MISS
server: cloudflare
cf-ray: 7840a53abef1b512-OSL
content-encoding: br
X-Firefox-Spdy: h2
airbali.com/wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/icomoon.ttf
103.147.154.42200 OK 0 B URL HTTP/2 airbali.com/wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/icomoon.ttf
IP 103.147.154.42:0
GET /wp-content/themes/Avada/includes/lib/assets/fonts/icomoon/icomoon.ttf HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://airbali.com
Referer: http://airbali.com/
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 04 Jan 2023 02:46:43 GMT
content-type: font/ttf
vary: Accept-Encoding
server: DomaiNesia
dn-request-id: 90064630eecc6014b6934ed62e05590e
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
strict-transport-security: max-age=31536000; includeSubDomains; preload always
static-cache-status: MISS
expires: Fri, 03 Feb 2023 02:46:43 GMT
content-encoding: br
cache-control: max-age=2592000, s-maxage=10
X-Firefox-Spdy: h2
airbali.com/wp-content/uploads/2020/02/logo512.png
103.147.154.42200 OK 0 B URL HTTP/2 airbali.com/wp-content/uploads/2020/02/logo512.png
IP 103.147.154.42:0
GET /wp-content/uploads/2020/02/logo512.png HTTP/1.1
Host: airbali.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://airbali.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 120104
last-modified: Fri, 14 Feb 2020 16:10:27 GMT
server: DomaiNesia
dn-request-id: b3d6e8a9e081617bfe3df4c36de33fe1
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src * data: 'unsafe-eval' 'unsafe-inline'
strict-transport-security: max-age=31536000; includeSubDomains; preload always
static-cache-status: MISS
expires: Fri, 20 Jan 2023 05:27:42 GMT
accept-ranges: bytes
date: Wed, 21 Dec 2022 05:27:42 GMT
cache-control: max-age=2592000
etag: W/"PSA-IATa1Wiyt9"
X-Firefox-Spdy: h2