r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 5d9435c884bf4a0777fdf4b57079ae09
7f04b9db47ffeec90ac6397416b7553e5336a550
fe77420ec3a11f547cf5172b68d30faa4fe0c13165ae305f0013b02914e61084
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FE77420EC3A11F547CF5172B68D30FAA4FE0C13165AE305F0013B02914E61084"
Last-Modified: Sat, 25 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17449
Expires: Sat, 25 Mar 2023 21:13:59 GMT
Date: Sat, 25 Mar 2023 16:23:10 GMT
Connection: keep-alive
dallasfanboys.com/cowboys-killer-aaron-rodgers-ready-to-quit-2/
217.21.94.7301 Moved Permanently 707 B URL HTTP/1.1 dallasfanboys.com/cowboys-killer-aaron-rodgers-ready-to-quit-2/
IP 217.21.94.7:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
GET /cowboys-killer-aaron-rodgers-ready-to-quit-2/ HTTP/1.1
Host: dallasfanboys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Sat, 25 Mar 2023 16:23:10 GMT
server: LiteSpeed
location: https://dallasfanboys.com/cowboys-killer-aaron-rodgers-ready-to-quit-2/
platform: hostinger
content-security-policy: upgrade-insecure-requests
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 13f90146df1d559743af6df15c29b77b
6dd24f60629c39f857e3c996084f4d515cf3f8d0
ea5975be17b9cd29c8770939eb5d63ce43c1c44ce9a3a4d04e1e79cd69b30d1c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EA5975BE17B9CD29C8770939EB5D63CE43C1C44CE9A3A4D04E1E79CD69B30D1C"
Last-Modified: Fri, 24 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12863
Expires: Sat, 25 Mar 2023 19:57:33 GMT
Date: Sat, 25 Mar 2023 16:23:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1313ee2f06606d09c45b06ff9e8e1001
285ca89d1d3ea45d35832bc6d9827f834b3bfe21
63463447d29550c3734f621be02ec85290fbdf4612f79f9fad7e94f7e066dcb0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63463447D29550C3734F621BE02EC85290FBDF4612F79F9FAD7E94F7E066DCB0"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7010
Expires: Sat, 25 Mar 2023 18:20:00 GMT
Date: Sat, 25 Mar 2023 16:23:10 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: vS7Tb3cLcCaYDCETVeaCI2tH3ccH5PCJO8/31U17LmRwhq9B3r7lYDMNUlLzqJ8nku1gaR8jTi8=
x-amz-request-id: 2P87JECB4RTBPK5R
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 25 Mar 2023 16:00:51 GMT
age: 1339
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 84db75194692d4afe13196bda6f22da8
4c1f49bc973a4917f146d93c8d598344edc021f6
a3bec66f95b3bdf1d310c726e8ed05f7b06c1901c62381a94582d581844d2c23
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Alert, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 25 Mar 2023 16:15:27 GMT
content-type: application/json
age: 463
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 25 Mar 2023 16:23:11 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, ETag, Content-Type, Cache-Control, Pragma, Alert, Last-Modified, Retry-After, Backoff, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 25 Mar 2023 16:17:24 GMT
age: 347
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 70300b32357c46f3448d567189b64cb3
6ba66a5cf63cdbfeaec59b936151cc812bac56df
5a2b4f9fc5ebaa8062058bf68eae75fc28e06c6ef6a0e79c3c761c1d92f81cb9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5A2B4F9FC5EBAA8062058BF68EAE75FC28E06C6EF6A0E79C3C761C1D92F81CB9"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10836
Expires: Sat, 25 Mar 2023 19:23:47 GMT
Date: Sat, 25 Mar 2023 16:23:11 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 4355291ec58b85ddde02c2446ecb2bb4
4ad43e10f82193f83e862e8a78f3e46de9490ac4
e32fd5635627751770ee13e8f77b14b2555163cfc2d7db98aa8edb5b4bae4d9a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:23:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash e6775cb573aaee995c89d41b6be93723
cad165485f34023136370b32999077f4928c68c5
c14056ae20c7cd552209571a3430df2711ec94a5f8ee42c1693a3bf2d04b30ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:23:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-242335785-1
142.250.74.40200 OK 45 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-242335785-1
IP 142.250.74.40:0
File type ASCII text, with very long lines (2206)
Hash 279aa9d91f8af289ed203cb24fed5ca0
886d050890b195689b87e4c4817d500d6fede38c
dba9a8c11a680f8904eb47e721839cbaedbce51b83b49ee00cad86f5169d2613
GET /gtag/js?id=UA-242335785-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 25 Mar 2023 16:23:11 GMT
expires: Sat, 25 Mar 2023 16:23:11 GMT
cache-control: private, max-age=900
last-modified: Sat, 25 Mar 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44780
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-N3MH4HK3WL
142.250.74.40200 OK 81 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-N3MH4HK3WL
IP 142.250.74.40:0
File type ASCII text, with very long lines (9455)
Hash 65124da4077a814167048b2a281f5cba
7e6868653f04260b216d2b3658953a0e48900955
3e5196d8367dbcd356f0cf72be4cdda172847107902f9b34aa5c38bd2d5d239f
GET /gtag/js?id=G-N3MH4HK3WL HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 25 Mar 2023 16:23:11 GMT
expires: Sat, 25 Mar 2023 16:23:11 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 81387
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
dallasfanboys.com/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.1.2
217.21.94.7200 OK 3.2 kB URL HTTP/2 dallasfanboys.com/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.1.2
IP 217.21.94.7:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (24702), with no line terminators
Hash c536c7b516c0f9a35edc19a5f753da49
7e02448991673db119ac03d769af42d5f4be9f12
413f1a3772c40907c16746af2631dde9018f21d9d8c706ada684ac035e38e153
GET /wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.1.2 HTTP/1.1
Host: dallasfanboys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/cowboys-killer-aaron-rodgers-ready-to-quit-2/
Cookie: PHPSESSID=5b7dfc3784512e21693819d0fd509288
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 16:23:11 GMT
content-type: text/css
last-modified: Sun, 19 Mar 2023 20:24:16 GMT
etag: "607e-64176f70-be21f99554c12285;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3196
date: Sat, 25 Mar 2023 16:23:11 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
dallasfanboys.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
217.21.94.7200 OK 11 kB URL HTTP/2 dallasfanboys.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 217.21.94.7:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (47826)
Hash ba5eac37229008eef8a48bb9c12da241
95a3100a0d65a7bd0ebeba66a7ef01146cf96a24
60a4012feb8a3fb3b7f5d411ee9241e12c9ef0e5b33f249aea1b1ad103a71c0f
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: dallasfanboys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/cowboys-killer-aaron-rodgers-ready-to-quit-2/
Cookie: PHPSESSID=5b7dfc3784512e21693819d0fd509288
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 16:23:11 GMT
content-type: text/css
last-modified: Tue, 21 Mar 2023 12:38:04 GMT
etag: "172a9-6419a52c-b695d42ae52b2c87;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11353
date: Sat, 25 Mar 2023 16:23:11 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
dallasfanboys.com/wp-includes/css/classic-themes.min.css?ver=1
217.21.94.7200 OK 217 B URL HTTP/2 dallasfanboys.com/wp-includes/css/classic-themes.min.css?ver=1
IP 217.21.94.7:0
ASN #47583 Hostinger International Limited
Hash 95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: dallasfanboys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/cowboys-killer-aaron-rodgers-ready-to-quit-2/
Cookie: PHPSESSID=5b7dfc3784512e21693819d0fd509288
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 16:23:11 GMT
content-type: text/css
last-modified: Tue, 21 Mar 2023 12:38:04 GMT
etag: "d9-6419a52c-20099d87fcd18637;;;"
accept-ranges: bytes
content-length: 217
date: Sat, 25 Mar 2023 16:23:11 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
dallasfanboys.com/wp-content/plugins/custom-facebook-feed/assets/css/cff-style.min.css?ver=4.1.6
217.21.94.7200 OK 3.1 kB URL HTTP/2 dallasfanboys.com/wp-content/plugins/custom-facebook-feed/assets/css/cff-style.min.css?ver=4.1.6
IP 217.21.94.7:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (17495), with no line terminators
Hash b7ea263606e497d8072df93388615be8
b98a953ab4c432a0fa27b26a979581f4fca4901a
eb6f62fd7d43d432688b93c34058af262cab1a07672183c6504c2c5a53a0985c
GET /wp-content/plugins/custom-facebook-feed/assets/css/cff-style.min.css?ver=4.1.6 HTTP/1.1
Host: dallasfanboys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/cowboys-killer-aaron-rodgers-ready-to-quit-2/
Cookie: PHPSESSID=5b7dfc3784512e21693819d0fd509288
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 16:23:11 GMT
content-type: text/css
last-modified: Fri, 27 Jan 2023 23:02:45 GMT
etag: "4457-63d45815-9018d09bf4252a28;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3106
date: Sat, 25 Mar 2023 16:23:11 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
dallasfanboys.com/wp-content/themes/jannah/assets/css/base.min.css?ver=5.4.10
217.21.94.7200 OK 8.0 kB URL HTTP/2 dallasfanboys.com/wp-content/themes/jannah/assets/css/base.min.css?ver=5.4.10
IP 217.21.94.7:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (41903)
Hash c6ebbaaf11e91376adf12fc2823e7162
3ed4056a9dc6c67ab11a90acfa076632958dc214
e92e6571e37c002f3ae841ddb6c4e968bf2945ec34cb6beec8e96890a47a363d
GET /wp-content/themes/jannah/assets/css/base.min.css?ver=5.4.10 HTTP/1.1
Host: dallasfanboys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/cowboys-killer-aaron-rodgers-ready-to-quit-2/
Cookie: PHPSESSID=5b7dfc3784512e21693819d0fd509288
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 16:23:11 GMT
content-type: text/css
last-modified: Thu, 22 Sep 2022 11:31:16 GMT
etag: "a3b0-632c4784-72a790d0e038ccb9;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7971
date: Sat, 25 Mar 2023 16:23:11 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 4355291ec58b85ddde02c2446ecb2bb4
4ad43e10f82193f83e862e8a78f3e46de9490ac4
e32fd5635627751770ee13e8f77b14b2555163cfc2d7db98aa8edb5b4bae4d9a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:23:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
35.167.94.179101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.167.94.179:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: P1Sn1h8lRJY455cCVPo+PA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: FhX8PGQHmRwlMXNhmNehtRgkXDk=
dallasfanboys.com/wp-content/themes/jannah/assets/css/style.min.css?ver=5.4.10
217.21.94.7200 OK 28 kB URL HTTP/2 dallasfanboys.com/wp-content/themes/jannah/assets/css/style.min.css?ver=5.4.10
IP 217.21.94.7:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (65536), with no line terminators
Hash 555cbb0f1ef789631d50e7602908ee24
46c89bc2636ca09dddf16ea6bf3f114c00412d1b
97fe04034129de6412055ec4961faa920c938136c02c939c411e7b74e5f0c3a7
GET /wp-content/themes/jannah/assets/css/style.min.css?ver=5.4.10 HTTP/1.1
Host: dallasfanboys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/cowboys-killer-aaron-rodgers-ready-to-quit-2/
Cookie: PHPSESSID=5b7dfc3784512e21693819d0fd509288
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 16:23:11 GMT
content-type: text/css
last-modified: Thu, 22 Sep 2022 11:31:16 GMT
etag: "2aca3-632c4784-ca20025740aa564e;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 27488
date: Sat, 25 Mar 2023 16:23:11 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
dallasfanboys.com/wp-content/themes/jannah/assets/css/widgets.min.css?ver=5.4.10
217.21.94.7200 OK 8.8 kB URL HTTP/2 dallasfanboys.com/wp-content/themes/jannah/assets/css/widgets.min.css?ver=5.4.10
IP 217.21.94.7:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (54141)
Hash 81d517e5151a4d8cfbf2e6e640038dee
90cc2c85ba6336400aa944aaa8bdebca846a4b0c
a786fdb890dd139a81fc75f7e1e2ae1a9a0b2f3c80f5670f1efdf24e67f92ec3
GET /wp-content/themes/jannah/assets/css/widgets.min.css?ver=5.4.10 HTTP/1.1
Host: dallasfanboys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/cowboys-killer-aaron-rodgers-ready-to-quit-2/
Cookie: PHPSESSID=5b7dfc3784512e21693819d0fd509288
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 16:23:11 GMT
content-type: text/css
last-modified: Thu, 22 Sep 2022 11:31:16 GMT
etag: "d37e-632c4784-9ac4873d3e298552;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8767
date: Sat, 25 Mar 2023 16:23:11 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
dallasfanboys.com/wp-content/themes/jannah/assets/css/helpers.min.css?ver=5.4.10
217.21.94.7200 OK 3.4 kB URL HTTP/2 dallasfanboys.com/wp-content/themes/jannah/assets/css/helpers.min.css?ver=5.4.10
IP 217.21.94.7:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (15223)
Hash 55709720c8923d165f562f95d1d88a74
b802033feaa0410d6a004f5aa2f1d621bb675f20
0d1fb62038b099c30a66ac72b395194f0ffc95ec462471cfab6dc5016e028cd7
GET /wp-content/themes/jannah/assets/css/helpers.min.css?ver=5.4.10 HTTP/1.1
Host: dallasfanboys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/cowboys-killer-aaron-rodgers-ready-to-quit-2/
Cookie: PHPSESSID=5b7dfc3784512e21693819d0fd509288
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 16:23:11 GMT
content-type: text/css
last-modified: Thu, 22 Sep 2022 11:31:16 GMT
etag: "3b78-632c4784-71bc336689dc9ab2;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3377
date: Sat, 25 Mar 2023 16:23:11 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
dallasfanboys.com/wp-content/themes/jannah/assets/css/fontawesome.css?ver=5.4.10
217.21.94.7200 OK 12 kB URL HTTP/2 dallasfanboys.com/wp-content/themes/jannah/assets/css/fontawesome.css?ver=5.4.10
IP 217.21.94.7:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (58661)
Hash f866e7e1588b5777a93f7cebaee5370d
ef8f2b030d937257d3878797c2d15d0690c61d5a
6061d0f355daaa03d5f7dc037bfd15f41176d33399a718a2c3bf49669457276e
GET /wp-content/themes/jannah/assets/css/fontawesome.css?ver=5.4.10 HTTP/1.1
Host: dallasfanboys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/cowboys-killer-aaron-rodgers-ready-to-quit-2/
Cookie: PHPSESSID=5b7dfc3784512e21693819d0fd509288
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 16:23:11 GMT
content-type: text/css
last-modified: Thu, 22 Sep 2022 11:31:16 GMT
etag: "e526-632c4784-75b36c805378c96f;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12003
date: Sat, 25 Mar 2023 16:23:11 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
dallasfanboys.com/wp-content/themes/jannah/assets/ilightbox/dark-skin/skin.css?ver=5.4.10
217.21.94.7200 OK 2.0 kB URL HTTP/2 dallasfanboys.com/wp-content/themes/jannah/assets/ilightbox/dark-skin/skin.css?ver=5.4.10
IP 217.21.94.7:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (4936), with CRLF line terminators
Hash 8db57072c1168ce80a32ece83aec653b
e4acc4700efb6fcf931ef42598bdd5b6b6690551
4d4578c3f75d0a47b581f3ec4b48450d6f4ca806bf592fdd85be7b7478a987b5
GET /wp-content/themes/jannah/assets/ilightbox/dark-skin/skin.css?ver=5.4.10 HTTP/1.1
Host: dallasfanboys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/cowboys-killer-aaron-rodgers-ready-to-quit-2/
Cookie: PHPSESSID=5b7dfc3784512e21693819d0fd509288
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 16:23:11 GMT
content-type: text/css
last-modified: Thu, 22 Sep 2022 11:31:16 GMT
etag: "2ef2-632c4784-8de80447668f1c51;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2036
date: Sat, 25 Mar 2023 16:23:11 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
dallasfanboys.com/wp-content/themes/jannah/assets/js/br-news.js?ver=5.4.10
217.21.94.7200 OK 1.8 kB URL HTTP/2 dallasfanboys.com/wp-content/themes/jannah/assets/js/br-news.js?ver=5.4.10
IP 217.21.94.7:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (4969)
Hash d40f6872b2048402b9dfba12b3f89622
4207e65ef1cc9b23bf5b8691a37323dfda979e57
ab5653f680290774a1b5e367feb74497d81ac0b7a1142c4dae39d38607b25a33
GET /wp-content/themes/jannah/assets/js/br-news.js?ver=5.4.10 HTTP/1.1
Host: dallasfanboys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/cowboys-killer-aaron-rodgers-ready-to-quit-2/
Cookie: PHPSESSID=5b7dfc3784512e21693819d0fd509288
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 16:23:12 GMT
content-type: application/x-javascript
last-modified: Thu, 22 Sep 2022 11:31:16 GMT
etag: "15da-632c4784-40eb10a45b6c6991;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1782
date: Sat, 25 Mar 2023 16:23:12 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
dallasfanboys.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
217.21.94.7200 OK 4.6 kB URL HTTP/2 dallasfanboys.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 217.21.94.7:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (15660)
Hash 4402e98c197d70e9bc78b1da062e658a
b1d2477c6b1dfa9283d79a0a3944098dde573f68
4e646c55a8c057d08458aed4f913f5ae713e1351aadc0bcdf947bc48fb6a73ed
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: dallasfanboys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/cowboys-killer-aaron-rodgers-ready-to-quit-2/
Cookie: PHPSESSID=5b7dfc3784512e21693819d0fd509288
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 16:23:12 GMT
content-type: application/x-javascript
last-modified: Tue, 21 Mar 2023 12:38:06 GMT
etag: "48b9-6419a52e-e9fb7444bd61db72;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4572
date: Sat, 25 Mar 2023 16:23:12 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
dallasfanboys.com/wp-content/uploads/2022/09/DF1.png
217.21.94.7200 OK 12 kB URL HTTP/2 dallasfanboys.com/wp-content/uploads/2022/09/DF1.png
IP 217.21.94.7:0
ASN #47583 Hostinger International Limited
File type PNG image data, 868 x 239, 8-bit/color RGBA, non-interlaced\012- data
Hash 39cdb1fe6f5230e133dffa5c9f7a744c
71da27cca8c643c9bb3b555de264d43da0808cab
612041a5b5b7fd5de8ac0ff70858745b4f39d8a7d0280666a5aa0d934236b273
GET /wp-content/uploads/2022/09/DF1.png HTTP/1.1
Host: dallasfanboys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/cowboys-killer-aaron-rodgers-ready-to-quit-2/
Cookie: PHPSESSID=5b7dfc3784512e21693819d0fd509288
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 16:23:12 GMT
content-type: image/png
last-modified: Thu, 22 Sep 2022 08:07:41 GMT
etag: "2d5e-632c17cd-395bad1c40f941c6;;;"
accept-ranges: bytes
content-length: 11614
date: Sat, 25 Mar 2023 16:23:12 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
dallasfanboys.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
217.21.94.7200 OK 4.0 kB URL HTTP/2 dallasfanboys.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 217.21.94.7:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (11126)
Hash 4116c2be947ecf205a0c7fc117ca55f0
0cd8efc9fe349d67a86b49d1e5582a9b21d05add
6b1970b536b88a18b0eb4fe138e677b9736294057660676507fabee57cb0462c
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: dallasfanboys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/cowboys-killer-aaron-rodgers-ready-to-quit-2/
Cookie: PHPSESSID=5b7dfc3784512e21693819d0fd509288
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 16:23:12 GMT
content-type: application/x-javascript
last-modified: Tue, 21 Mar 2023 12:38:06 GMT
etag: "2bd8-6419a52e-eb17595007ac1124;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3984
date: Sat, 25 Mar 2023 16:23:12 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
dallasfanboys.com/wp-content/themes/jannah/assets/js/single.min.js?ver=5.4.10
217.21.94.7200 OK 1.8 kB URL HTTP/2 dallasfanboys.com/wp-content/themes/jannah/assets/js/single.min.js?ver=5.4.10
IP 217.21.94.7:0
ASN #47583 Hostinger International Limited
File type HTML document, ASCII text, with very long lines (5548)
Hash 0f374e725be6f74298b4911852b69871
255de733519327cacacbc7a7e362c7082ef66d94
71d384f574ab50fddc938bdfac692a03a1b5fba9887878e61bfc622feec7ac0e
GET /wp-content/themes/jannah/assets/js/single.min.js?ver=5.4.10 HTTP/1.1
Host: dallasfanboys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/cowboys-killer-aaron-rodgers-ready-to-quit-2/
Cookie: PHPSESSID=5b7dfc3784512e21693819d0fd509288
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 16:23:12 GMT
content-type: application/x-javascript
last-modified: Thu, 22 Sep 2022 11:31:16 GMT
etag: "15ad-632c4784-c849960181be7de6;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1809
date: Sat, 25 Mar 2023 16:23:12 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
dallasfanboys.com/wp-includes/js/comment-reply.min.js?ver=6.1.1
217.21.94.7200 OK 1.2 kB URL HTTP/2 dallasfanboys.com/wp-includes/js/comment-reply.min.js?ver=6.1.1
IP 217.21.94.7:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (2946)
Hash c11d23b3224427726f34640bb8029c64
859f24c594ad17311a76998e46d1a44127916620
0f3b4d808a72af9b7fe905c3739cf4d9af2778b5276606eaaa2ad52a78205143
GET /wp-includes/js/comment-reply.min.js?ver=6.1.1 HTTP/1.1
Host: dallasfanboys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/cowboys-killer-aaron-rodgers-ready-to-quit-2/
Cookie: PHPSESSID=5b7dfc3784512e21693819d0fd509288
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 16:23:12 GMT
content-type: application/x-javascript
last-modified: Tue, 21 Mar 2023 12:38:05 GMT
etag: "ba5-6419a52d-a90ef2b65001ae7a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1229
date: Sat, 25 Mar 2023 16:23:12 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
dallasfanboys.com/wp-content/plugins/custom-facebook-feed/assets/js/cff-scripts.js?ver=4.1.6
217.21.94.7200 OK 15 kB URL HTTP/2 dallasfanboys.com/wp-content/plugins/custom-facebook-feed/assets/js/cff-scripts.js?ver=4.1.6
IP 217.21.94.7:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 text, with very long lines (4245)
Hash 4234d654b78eadd99381eec9587d41c9
5b93b19d6c4d822831f98b83987d432fc761b7d0
cdab49b1c1ce91ffa88b4d86c808d57205e9c10c4607d3f672be15228eafcb29
GET /wp-content/plugins/custom-facebook-feed/assets/js/cff-scripts.js?ver=4.1.6 HTTP/1.1
Host: dallasfanboys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/cowboys-killer-aaron-rodgers-ready-to-quit-2/
Cookie: PHPSESSID=5b7dfc3784512e21693819d0fd509288
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 16:23:12 GMT
content-type: application/x-javascript
last-modified: Fri, 27 Jan 2023 23:02:45 GMT
etag: "d543-63d45815-353e39e3f25287c3;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 15174
date: Sat, 25 Mar 2023 16:23:12 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
dallasfanboys.com/wp-content/themes/jannah/assets/js/desktop.min.js?ver=5.4.10
217.21.94.7200 OK 5.2 kB URL HTTP/2 dallasfanboys.com/wp-content/themes/jannah/assets/js/desktop.min.js?ver=5.4.10
IP 217.21.94.7:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (16791)
Hash 9c4ea9874cd7dbabc08370654856159f
75c95a6d071bf5c5ccd4936a30743432dde4491f
68bb4bf86e3a5149da59b2472b57d85d13f5a2e6db61111b2d31d330855f941a
GET /wp-content/themes/jannah/assets/js/desktop.min.js?ver=5.4.10 HTTP/1.1
Host: dallasfanboys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/cowboys-killer-aaron-rodgers-ready-to-quit-2/
Cookie: PHPSESSID=5b7dfc3784512e21693819d0fd509288
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 16:23:12 GMT
content-type: application/x-javascript
last-modified: Thu, 22 Sep 2022 11:31:16 GMT
etag: "4198-632c4784-5816817b00049797;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5192
date: Sat, 25 Mar 2023 16:23:12 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
dallasfanboys.com/wp-content/themes/jannah/assets/css/single.min.css?ver=5.4.10
217.21.94.7200 OK 7.3 kB URL HTTP/2 dallasfanboys.com/wp-content/themes/jannah/assets/css/single.min.css?ver=5.4.10
IP 217.21.94.7:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (40484)
Hash fe4b2c58a47b64ac6d3be1f6b3db71fc
7f135a8c9f7e0f7521602c9fd6d435c33ee9d0fc
a9227bbfab1aa754fbfad94a0452795236c486b9f54003e60e96d6fc47a66a7f
GET /wp-content/themes/jannah/assets/css/single.min.css?ver=5.4.10 HTTP/1.1
Host: dallasfanboys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/cowboys-killer-aaron-rodgers-ready-to-quit-2/
Cookie: PHPSESSID=5b7dfc3784512e21693819d0fd509288
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 16:23:12 GMT
content-type: text/css
last-modified: Thu, 22 Sep 2022 11:31:16 GMT
etag: "9e25-632c4784-8c7d725060a8ffd2;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7319
date: Sat, 25 Mar 2023 16:23:12 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
dallasfanboys.com/wp-content/plugins/page-links-to/dist/new-tab.js?ver=3.3.6
217.21.94.7200 OK 8.5 kB URL HTTP/2 dallasfanboys.com/wp-content/plugins/page-links-to/dist/new-tab.js?ver=3.3.6
IP 217.21.94.7:0
ASN #47583 Hostinger International Limited
File type Unicode text, UTF-8 text, with very long lines (24733), with no line terminators
Hash 783e50f1c7ff9308e6ee95142b7a24ce
80ea67303812e7eabe5b852710354139e0763236
006aad545cf7d3a18a2c757a20beb200dd45476800f5e20be4423e8f1632a1a6
GET /wp-content/plugins/page-links-to/dist/new-tab.js?ver=3.3.6 HTTP/1.1
Host: dallasfanboys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/cowboys-killer-aaron-rodgers-ready-to-quit-2/
Cookie: PHPSESSID=5b7dfc3784512e21693819d0fd509288
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 16:23:12 GMT
content-type: application/x-javascript
last-modified: Sun, 09 Oct 2022 08:59:08 GMT
etag: "609e-63428d5c-5b181702335b61ce;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8508
date: Sat, 25 Mar 2023 16:23:12 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
dallasfanboys.com/wp-content/themes/jannah/assets/js/scripts.min.js?ver=5.4.10
217.21.94.7200 OK 6.6 kB URL HTTP/2 dallasfanboys.com/wp-content/themes/jannah/assets/js/scripts.min.js?ver=5.4.10
IP 217.21.94.7:0
ASN #47583 Hostinger International Limited
File type HTML document, ASCII text, with very long lines (22472)
Hash 6d9e52c50252c32521bec3fa3ce3ada9
506f4e02ffbac8d3edc7d4fac8fdfc7c394b190a
a91def50c9fe8ede716e2e8f841ff43517932805fe6bd35a5b7131a8d6f4cb58
GET /wp-content/themes/jannah/assets/js/scripts.min.js?ver=5.4.10 HTTP/1.1
Host: dallasfanboys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/cowboys-killer-aaron-rodgers-ready-to-quit-2/
Cookie: PHPSESSID=5b7dfc3784512e21693819d0fd509288
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 16:23:12 GMT
content-type: application/x-javascript
last-modified: Thu, 22 Sep 2022 11:31:16 GMT
etag: "57c9-632c4784-1107d83b81076452;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6597
date: Sat, 25 Mar 2023 16:23:12 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
dallasfanboys.com/wp-content/themes/jannah/assets/js/live-search.js?ver=5.4.10
217.21.94.7200 OK 4.5 kB URL HTTP/2 dallasfanboys.com/wp-content/themes/jannah/assets/js/live-search.js?ver=5.4.10
IP 217.21.94.7:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (13532)
Hash af886f4f991d3603b1a4b21ec17ce5f7
39ef9cbd7542ad40cd1b3b4aeca5dd33ec2c6632
811959c18478fa2055bc310c9256f57a6e17b821e5d6bf4a7c7f30e4d464edeb
GET /wp-content/themes/jannah/assets/js/live-search.js?ver=5.4.10 HTTP/1.1
Host: dallasfanboys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/cowboys-killer-aaron-rodgers-ready-to-quit-2/
Cookie: PHPSESSID=5b7dfc3784512e21693819d0fd509288
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 16:23:12 GMT
content-type: application/x-javascript
last-modified: Thu, 22 Sep 2022 11:31:16 GMT
etag: "3909-632c4784-a02ea6e6ad457a32;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4454
date: Sat, 25 Mar 2023 16:23:12 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
dallasfanboys.com/wp-content/themes/jannah/assets/ilightbox/lightbox.js?ver=5.4.10
217.21.94.7200 OK 24 kB URL HTTP/2 dallasfanboys.com/wp-content/themes/jannah/assets/ilightbox/lightbox.js?ver=5.4.10
IP 217.21.94.7:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (2026)
Hash dc013965bb5fcb0d13ba9c897c0557d3
d5379b958a82cb958221832453e66a6900b26462
37aeff78d42769ecf3c544cb7cd65a26046540809060a2db25c53be0991f30a4
GET /wp-content/themes/jannah/assets/ilightbox/lightbox.js?ver=5.4.10 HTTP/1.1
Host: dallasfanboys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/cowboys-killer-aaron-rodgers-ready-to-quit-2/
Cookie: PHPSESSID=5b7dfc3784512e21693819d0fd509288
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 16:23:12 GMT
content-type: application/x-javascript
last-modified: Thu, 22 Sep 2022 11:31:16 GMT
etag: "13e0f-632c4784-c02336b46c65148d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 24142
date: Sat, 25 Mar 2023 16:23:12 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
dallasfanboys.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
217.21.94.7200 OK 30 kB URL HTTP/2 dallasfanboys.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 217.21.94.7:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (65447)
Hash cdbbc979b5a5de31a3ac8296e0ef489e
b83000eb74956c3404fb58c87e95aed5bab2ed19
48a6489945365cddb4c75af60f1e6a8a15d6598a1596ef18eb1b4aaad33e96f3
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: dallasfanboys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/cowboys-killer-aaron-rodgers-ready-to-quit-2/
Cookie: PHPSESSID=5b7dfc3784512e21693819d0fd509288
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 16:23:12 GMT
content-type: application/x-javascript
last-modified: Tue, 21 Mar 2023 12:38:06 GMT
etag: "15e54-6419a52e-7accbaf5bb6b41a1;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30075
date: Sat, 25 Mar 2023 16:23:12 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
dallasfanboys.com/wp-content/uploads/2022/09/miach-390x220.jpg
217.21.94.7200 OK 29 kB URL HTTP/2 dallasfanboys.com/wp-content/uploads/2022/09/miach-390x220.jpg
IP 217.21.94.7:0
ASN #47583 Hostinger International Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 390x220, components 3\012- data
Hash 18b7cf25710dce912486520c40368c5b
81b44414414d4c0f1389872e933198d6e38bc528
e3cc932f6a5865ecde2a8b0255605b34035acb464e4521152a4e15857d775b03
GET /wp-content/uploads/2022/09/miach-390x220.jpg HTTP/1.1
Host: dallasfanboys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/cowboys-killer-aaron-rodgers-ready-to-quit-2/
Cookie: PHPSESSID=5b7dfc3784512e21693819d0fd509288
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Apr 2023 16:23:12 GMT
content-type: image/jpeg
last-modified: Tue, 27 Sep 2022 16:00:49 GMT
etag: "7305-63331e31-ad96d07e7650dfce;;;"
accept-ranges: bytes
content-length: 29445
date: Sat, 25 Mar 2023 16:23:12 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d144ffeb38961188c1c558c87db58020
750e3f325c4e71491ba9b2df4b11bf11b1d39870
ad8653859638c9e0386d2932fce39e0cf4ea1ebb9007b90777554f58b3d9101e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AD8653859638C9E0386D2932FCE39E0CF4EA1EBB9007B90777554F58B3D9101E"
Last-Modified: Fri, 24 Mar 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8711
Expires: Sat, 25 Mar 2023 18:48:23 GMT
Date: Sat, 25 Mar 2023 16:23:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash d144ffeb38961188c1c558c87db58020
750e3f325c4e71491ba9b2df4b11bf11b1d39870
ad8653859638c9e0386d2932fce39e0cf4ea1ebb9007b90777554f58b3d9101e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AD8653859638C9E0386D2932FCE39E0CF4EA1EBB9007B90777554F58B3D9101E"
Last-Modified: Fri, 24 Mar 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 25 Mar 2023 22:23:12 GMT
Date: Sat, 25 Mar 2023 16:23:12 GMT
Connection: keep-alive
specificunfortunatelyultimately.com/53/31/53/5331538d4e08a51f0c36692badbabf53.js
173.233.137.36200 OK 13 kB URL HTTP/1.1 specificunfortunatelyultimately.com/53/31/53/5331538d4e08a51f0c36692badbabf53.js
IP 173.233.137.36:0
File type ASCII text, with very long lines (37122), with no line terminators
Hash 788a370bd649bf7cd544e36ea008c576
5fbc7891ef648c3c4f6fcbc334b5e48dd651f9ac
a3437127d2359e59f21cf80496fe3a7c63ec716aaaee2e17359c5b8e79c01333
Analyzer Verdict Alert quad9 Sinkholed
GET /53/31/53/5331538d4e08a51f0c36692badbabf53.js HTTP/1.1
Host: specificunfortunatelyultimately.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 25 Mar 2023 16:23:12 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 59b04a1c430cea7df0c38afca7fb3de6
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
specificunfortunatelyultimately.com/cd/26/52/cd2652b6cf04f14e2291430ba51281ca.js
173.233.137.36200 OK 21 kB URL HTTP/1.1 specificunfortunatelyultimately.com/cd/26/52/cd2652b6cf04f14e2291430ba51281ca.js
IP 173.233.137.36:0
File type HTML document, ASCII text, with very long lines (60155)
Hash 02ec882f74f6d82fef315ba1c8d6b264
405748e2a6fd8eb4470489d3d39c5993c0d05cc7
af110385d90e1abed494ef9eca97a474f3a14e8ac05fd5c19a7d8cd53689b24f
Analyzer Verdict Alert quad9 Sinkholed
GET /cd/26/52/cd2652b6cf04f14e2291430ba51281ca.js HTTP/1.1
Host: specificunfortunatelyultimately.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 25 Mar 2023 16:23:12 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: 4b4e7ab587d59b22ad7bcd2439afc363_ebt1099=0; expires=Tue, 28 Mar 2023 16:23:12 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 6fcc03600c79e5a5f6e38a3de4ac7949
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
specificunfortunatelyultimately.com/c161b9bde681a227cfe9c145c2f8e5b9/invoke.js
173.233.137.36200 OK 9.8 kB URL HTTP/1.1 specificunfortunatelyultimately.com/c161b9bde681a227cfe9c145c2f8e5b9/invoke.js
IP 173.233.137.36:0
File type exported SGML document, ASCII text, with very long lines (26976), with no line terminators
Hash 16fda8298e88f31f049ef55b5636f16a
6b9a88e94438362e2c46b006e14d3b56f1a53604
ef20bf2b7e15eaba7367044d432dda538b53713731ba444ecfc0f8645ba77153
Analyzer Verdict Alert quad9 Sinkholed
GET /c161b9bde681a227cfe9c145c2f8e5b9/invoke.js HTTP/1.1
Host: specificunfortunatelyultimately.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 25 Mar 2023 16:23:12 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 246f9a6110d565c76ce4c7cbbedde6d8
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash 6214e0549d3b14d95cd87888e48051d3
cd85501c9ad1f9daef05290d254a3f34c80efbcc
1af23655407dd3fd30ccb0ae0ae9b83c69c8db6618af632105a68a0165579437
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=92818
Date: Sat, 25 Mar 2023 16:23:12 GMT
Etag: "641dd04e-1d7"
Expires: Sun, 26 Mar 2023 18:10:10 GMT
Last-Modified: Fri, 24 Mar 2023 16:31:10 GMT
Server: ECAcc (nya/79F3)
X-Cache: Miss from cloudfront
Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: LCVz7EUdL4-vZbuWvtX1n2TGfnOMt_VRSgx-t1InrO4zT-Iq0eu2Uw==
Age: 5940
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash 6214e0549d3b14d95cd87888e48051d3
cd85501c9ad1f9daef05290d254a3f34c80efbcc
1af23655407dd3fd30ccb0ae0ae9b83c69c8db6618af632105a68a0165579437
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 25 Mar 2023 16:23:12 GMT
Last-Modified: Sat, 25 Mar 2023 14:46:06 GMT
Server: ECAcc (nya/788E)
X-Cache: Miss from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: VLJEn2UWs9ydLk0gLex-mE-Wd_56esuXAdx3TvEO8DKj5x5ZaFIXqQ==
Age: 5826
simplewebanalysis.com/stats
18.194.180.164200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 18.194.180.164:0
File type ASCII text, with no line terminators
Hash bc82420765e49e8937835b00aa3c6234
a431d978aab5f40b124925f9445a56ae27443c3f
6fd7ae8622b04e3c2a1741e0a2fb499e0becdb19afd2f4380e600ed361407f86
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dallasfanboys.com
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:23:12 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://dallasfanboys.com
access-control-allow-credentials: true
set-cookie: uid_id2=107604f3-ad2d-4d58-9d14-f2a95d8db6a8:2:1; expires=Tue, 22 Mar 2033 16:23:12 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
simplewebanalysis.com/stats
18.194.180.164200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 18.194.180.164:0
File type ASCII text, with no line terminators
Hash 6283a2ec62625c333d732e2d8cc05d40
b275544fd7b903b0a564fdc423ef7087a4aba16f
1ceaf952dd7e331eced1e39a2b869393539089b353bb2525a8ce35a9d61ac8d0
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dallasfanboys.com
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:23:12 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://dallasfanboys.com
access-control-allow-credentials: true
set-cookie: uid_id2=a6516714-dd50-4fcc-8c08-f96391bd1ebd:3:1; expires=Tue, 22 Mar 2033 16:23:12 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
simplewebanalysis.com/stats
18.194.180.164200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 18.194.180.164:0
File type ASCII text, with no line terminators
Hash 98dbd190232298b6990c5b8e9ad22b16
0959b66280cedaa4573d2fc4debcb9c157672349
707309cb5928f141bb28158212b6152238a48ddb5db6c6a8dc7687884c20c5c6
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dallasfanboys.com
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:23:12 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://dallasfanboys.com
access-control-allow-credentials: true
set-cookie: uid_id2=b28a4333-03e1-4d19-936c-0fdb1f6c1835:3:1; expires=Tue, 22 Mar 2033 16:23:12 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 474fd4fd7f98d2d3290c2687d47b5247
fcc1147184f88e552e8fec8ff1b851df56548620
19b1caca844a0abd138f2c27ee59035f293a4fd75164c713959cdccac9de2463
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "19B1CACA844A0ABD138F2C27EE59035F293A4FD75164C713959CDCCAC9DE2463"
Last-Modified: Fri, 24 Mar 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16743
Expires: Sat, 25 Mar 2023 21:02:15 GMT
Date: Sat, 25 Mar 2023 16:23:12 GMT
Connection: keep-alive
s.w.org/images/core/emoji/14.0.0/svg/1f62e.svg
192.0.77.48200 OK 341 B URL HTTP/2 s.w.org/images/core/emoji/14.0.0/svg/1f62e.svg
IP 192.0.77.48:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (341), with no line terminators
Hash 2312e90b9fc75749149a200817b952f2
0ed7e036a3ca2062ea3e9f1d4eea93e9053db9d0
4050b8f2a75f5e63a120d6337befbf184490bb39498d3fb66f70f15d4a921691
GET /images/core/emoji/14.0.0/svg/1f62e.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 25 Mar 2023 16:23:12 GMT
content-type: image/svg+xml
content-length: 341
last-modified: Tue, 12 Apr 2022 03:53:43 GMT
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 2
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
s.w.org/images/core/emoji/14.0.0/svg/1f6a8.svg
192.0.77.48200 OK 1.1 kB URL HTTP/2 s.w.org/images/core/emoji/14.0.0/svg/1f6a8.svg
IP 192.0.77.48:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1108), with no line terminators
Hash b56e4108808ff9e886c75a135ccdb784
6e0b4fb5fc4b151408d021fe25d75b8545fcde23
5ed681717a4679f291aa6076a88951cc5dea77f2e85ad52009f35c9eca5662e0
GET /images/core/emoji/14.0.0/svg/1f6a8.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 25 Mar 2023 16:23:12 GMT
content-type: image/svg+xml
content-length: 1108
last-modified: Tue, 12 Apr 2022 03:47:50 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 2
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
s.w.org/images/core/emoji/14.0.0/svg/1f525.svg
192.0.77.48200 OK 822 B URL HTTP/2 s.w.org/images/core/emoji/14.0.0/svg/1f525.svg
IP 192.0.77.48:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (822), with no line terminators
Hash 67069a13e006345ce28ecc581f2ed162
fc3cdd9222c027f1b41f9b3d872a31f263e8d6f2
4fa646a4dbc10513ddeb70561789483638faf456e15186f4eb7291c5c455cbb6
GET /images/core/emoji/14.0.0/svg/1f525.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 25 Mar 2023 16:23:12 GMT
content-type: image/svg+xml
content-length: 822
last-modified: Tue, 12 Apr 2022 03:47:50 GMT
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 2
x-content-type-options: nosniff
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 6d24a90600d06d65f6275b2908fa1b7f
7266ec5280c0a9d8a8c6e9bea56776a4a2d31a7f
d8533764fb8758520b0669f1452f1fb45cc5100264d77a2e32bd4fdda905bc00
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D8533764FB8758520B0669F1452F1FB45CC5100264D77A2E32BD4FDDA905BC00"
Last-Modified: Fri, 24 Mar 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5256
Expires: Sat, 25 Mar 2023 17:50:49 GMT
Date: Sat, 25 Mar 2023 16:23:13 GMT
Connection: keep-alive
cdn.vox-cdn.com/thumbor/KUchZTw8kFIZxD1SeGuEnSHbt88=/0x0:3000x2000/1200x800/filters:focal(1411x216:1891x696)/cdn.vox-cdn.com/uploads/chorus_image/image/71406314/1359882138.0.jpg
199.232.196.124200 OK 149 kB URL HTTP/2 cdn.vox-cdn.com/thumbor/KUchZTw8kFIZxD1SeGuEnSHbt88=/0x0:3000x2000/1200x800/filters:focal(1411x216:1891x696)/cdn.vox-cdn.com/uploads/chorus_image/image/71406314/1359882138.0.jpg
IP 199.232.196.124:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1200x800, components 3\012- data
Size 149 kB (149213 bytes)
Hash 053fd24ce7176c8cb4f421b5dd4ec36d
a1480974c19b42aa1f2f6ff4a9124d661734dc89
17918eaeb3e21db3f9cc3bf338b0594347a1fce84f83afb36a3d9055bd62bf7c
GET /thumbor/KUchZTw8kFIZxD1SeGuEnSHbt88=/0x0:3000x2000/1200x800/filters:focal(1411x216:1891x696)/cdn.vox-cdn.com/uploads/chorus_image/image/71406314/1359882138.0.jpg HTTP/1.1
Host: cdn.vox-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
expires: Tue, 15 Mar 2033 04:36:16 GMT
server: Thumbor/6.7.0
etag: "a1480974c19b42aa1f2f6ff4a9124d661734dc89"
cache-control: max-age=315576000,public
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 25 Mar 2023 16:23:12 GMT
age: 863217
x-served-by: cache-iad-kcgs7200165-IAD, cache-bma1681-BMA
x-cache: HIT, HIT
x-cache-hits: 13, 1
x-timer: S1679761393.990805,VS0,VE2
access-control-allow-origin: *
strict-transport-security: max-age=31536000
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 149213
X-Firefox-Spdy: h2
prosecutorkettle.com/pixel/purst?dl=0&th=0&sc=0&rs=1942&rd=1942&fd=756&bv=22.10.v.9&tmpl=70
192.243.59.12200 OK 0 B URL HTTP/1.1 prosecutorkettle.com/pixel/purst?dl=0&th=0&sc=0&rs=1942&rd=1942&fd=756&bv=22.10.v.9&tmpl=70
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/purst?dl=0&th=0&sc=0&rs=1942&rd=1942&fd=756&bv=22.10.v.9&tmpl=70 HTTP/1.1
Host: prosecutorkettle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Sat, 25 Mar 2023 16:23:13 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13960
Expires: Sat, 25 Mar 2023 20:15:53 GMT
Date: Sat, 25 Mar 2023 16:23:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13960
Expires: Sat, 25 Mar 2023 20:15:53 GMT
Date: Sat, 25 Mar 2023 16:23:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13960
Expires: Sat, 25 Mar 2023 20:15:53 GMT
Date: Sat, 25 Mar 2023 16:23:13 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca67e232-d39a-48ac-a0be-316741df0c53.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca67e232-d39a-48ac-a0be-316741df0c53.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aecd210f66f83c73c3450d047ae7448a
d68861e96e12e8a3f293dbae8b687f05b6e15afb
22b69c41c56e5538d91f824d5dc2e63ab5563f99ae8e429c9166f4b397cacd0e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca67e232-d39a-48ac-a0be-316741df0c53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5296
x-amzn-requestid: 11fdf0c8-244c-4cd5-bfa7-4c77d777174f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTiuzEqkIAMFXOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e17f8-5c241d63598dbf595b54ead5;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:36:56 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: b1KWFmKdRQ4DU0v5JmC7AJatpv2B5FAHKVWL7pFiyh13fqYDA5qydA==
via: 1.1 b5695e36d7fbc522ece27885d73757ae.cloudfront.net (CloudFront), 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:40:28 GMT
age: 67365
etag: "d68861e96e12e8a3f293dbae8b687f05b6e15afb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdaf1038f-e1d8-41a0-a039-85a85d278271.jpeg
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdaf1038f-e1d8-41a0-a039-85a85d278271.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 02e0767e0c72d95e30337ad42f5d15b3
79aa21ca35c9d98ea7d0713d219e9b67083bdc05
7991a0c4d409cca49259cb626d0de39684635f14fad72e074b303235026673a9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdaf1038f-e1d8-41a0-a039-85a85d278271.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 6511
x-amzn-requestid: 38d33f4d-2b85-4666-b778-04f4b4dfdf10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTihSFIdIAMFRjA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e17a1-036a28e75189d05209396933;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:35:29 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: eYAgUDZFGkaskq0A77VgX54hvvjtQtClrFyED3COkankS76uD7hTAQ==
via: 1.1 53ee82a7eb57de316cba44c26680b4a6.cloudfront.net (CloudFront), 1.1 1ec2938341958d70d56193d709c89dee.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:40:28 GMT
age: 67365
etag: "79aa21ca35c9d98ea7d0713d219e9b67083bdc05"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
34.120.237.76200 OK 4.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 85351059b67b0a42eda7e69a31b3b4b4
b798268806dc2f79f033e5872676019faf0e0cc1
86e163b7159b197d6358ab01333ac6da221de0ebe1c5da8d5cef2977d38625fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4000
x-amzn-requestid: 68dc01d7-3eed-48f6-8532-8efaa96cc1ec
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJpraEqyoAMFgNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a2315-3852cc8961365a560d1fa02f;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:35:17 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Ncagzm12kJaHQtYhhjUUhcfXVfbwMdonoNYqpK-QXEmLfyyENgFnFA==
via: 1.1 288c777a01e22425da9494dad7a69734.cloudfront.net (CloudFront), 1.1 42ef990e439ae115ff739f04e3945234.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 08:51:06 GMT
age: 27127
etag: "b798268806dc2f79f033e5872676019faf0e0cc1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af2ab94-b5c3-4517-b9d7-97ddb369f62d.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af2ab94-b5c3-4517-b9d7-97ddb369f62d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5773974a7341690f006b052ad02c94db
1b11316c952e2195da1646dd94671669e7e3bc2b
a06b72138745500cacc919fea29536ebd4188a1c483f6123e3402458e299f16a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af2ab94-b5c3-4517-b9d7-97ddb369f62d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7800
x-amzn-requestid: bad99b1e-3923-4de9-8bea-4dd04e96f7cd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTigfFGcIAMFdBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e179c-0826b92d4c4af16553503600;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:35:24 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 9AGLmjvUSTKIsYIWECOR8QwdF4PP1tP1TweUm0VYvxQ0qskqj3YuLA==
via: 1.1 3698a5f586d9ecca74d570e41f4c8516.cloudfront.net (CloudFront), 1.1 995664ee945c06fc706b5cb8e0e650dc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:40:18 GMT
age: 67375
etag: "1b11316c952e2195da1646dd94671669e7e3bc2b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bda2583-e595-45ff-852f-d4b6bd713109.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bda2583-e595-45ff-852f-d4b6bd713109.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 73f9697594d173d623b331b5c35eab8d
6323f751f6b7517f062a0442480f672086ea02a1
116cb71658b31e87f19c390b242c684f6505cc8edf90b7fc934ac726fc7ddd18
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bda2583-e595-45ff-852f-d4b6bd713109.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8635
x-amzn-requestid: fc715b03-f48f-4300-b752-ab157a684f08
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTihcETyIAMFhYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e17a2-68f685ec0f50dae026ea3f64;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:35:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: ogff88YPb_ia9BPyBI0afIy9cWym7eDnXHKykpTS3NVG4EY_SUENDA==
via: 1.1 ba490acb2ea716cd57876286ed686786.cloudfront.net (CloudFront), 1.1 aa623e134417515bd2496cb01d5e5626.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:40:28 GMT
etag: "6323f751f6b7517f062a0442480f672086ea02a1"
content-type: image/jpeg
age: 67365
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
dallasfanboys.com/cowboys-killer-aaron-rodgers-ready-to-quit-2/
217.21.94.7200 OK 61 kB URL HTTP/2 dallasfanboys.com/cowboys-killer-aaron-rodgers-ready-to-quit-2/
IP 217.21.94.7:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (21606), with CRLF, LF line terminators
Hash a0a3b167011c72e49d72dc832a25a2be
d119f70f5c52ef8d529b5397780fba58bc130b92
0f87bbbccf904c6b7eb86f1d1753b2188e510356a115dba94d570eb92cb9d197
GET /cowboys-killer-aaron-rodgers-ready-to-quit-2/ HTTP/1.1
Host: dallasfanboys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
x-powered-by: PHP/7.4.33
set-cookie: PHPSESSID=5b7dfc3784512e21693819d0fd509288; path=/; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=UTF-8
x-pingback: https://dallasfanboys.com/xmlrpc.php
link: <https://dallasfanboys.com/wp-json/>; rel="https://api.w.org/", <https://dallasfanboys.com/wp-json/wp/v2/posts/1081>; rel="alternate"; type="application/json", <https://dallasfanboys.com/?p=1081>; rel=shortlink
content-encoding: br
vary: Accept-Encoding
date: Sat, 25 Mar 2023 16:23:11 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6f9abe8-74dc-41f6-984c-4a9e53a6198a.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6f9abe8-74dc-41f6-984c-4a9e53a6198a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dd191e3a122d6e31f81e6e9d434c58d6
aec88022970c93289434f8097e4a663da33e5271
1f00c901ef479637ec703d7924526a970cb13dd2635b2bbb68b285df9d98e011
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6f9abe8-74dc-41f6-984c-4a9e53a6198a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6185
x-amzn-requestid: 223de50b-9a7e-4ac7-9305-336658eec4ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTiwYHoLoAMFXtg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e1802-226bd8524ade75234053ff50;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:37:06 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: tMnTFkK-AtSlEsQskvoxwwCjddndz5GBLHiV5RHi3QumyL6MVC9ovg==
via: 1.1 3698a5f586d9ecca74d570e41f4c8516.cloudfront.net (CloudFront), 1.1 34f8ef0e4c880df0650a814412a26ea6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:40:28 GMT
age: 67365
etag: "aec88022970c93289434f8097e4a663da33e5271"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-H339TL02PN>m=45je33m0&_p=1646429032&gdid=dZTNiMT&cid=63770977.1679761406&ul=en-us&sr=1280x1024&_s=1&sid=1679761405&sct=1&seg=0&dl=https%3A%2F%2Fdallasfanboys.com%2Fcowboys-killer-aaron-rodgers-ready-to-quit-2%2F&dt=Cowboys%20Killer%20Aaron%20Rodgers%3A%20Ready%20to%20Quit%3F%20-%20Dallas%20Fanboys&en=page_view&_fv=1&_ss=1&_ee=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-H339TL02PN>m=45je33m0&_p=1646429032&gdid=dZTNiMT&cid=63770977.1679761406&ul=en-us&sr=1280x1024&_s=1&sid=1679761405&sct=1&seg=0&dl=https%3A%2F%2Fdallasfanboys.com%2Fcowboys-killer-aaron-rodgers-ready-to-quit-2%2F&dt=Cowboys%20Killer%20Aaron%20Rodgers%3A%20Ready%20to%20Quit%3F%20-%20Dallas%20Fanboys&en=page_view&_fv=1&_ss=1&_ee=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-H339TL02PN>m=45je33m0&_p=1646429032&gdid=dZTNiMT&cid=63770977.1679761406&ul=en-us&sr=1280x1024&_s=1&sid=1679761405&sct=1&seg=0&dl=https%3A%2F%2Fdallasfanboys.com%2Fcowboys-killer-aaron-rodgers-ready-to-quit-2%2F&dt=Cowboys%20Killer%20Aaron%20Rodgers%3A%20Ready%20to%20Quit%3F%20-%20Dallas%20Fanboys&en=page_view&_fv=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dallasfanboys.com
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: https://dallasfanboys.com
date: Sat, 25 Mar 2023 16:23:13 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-2ZQLMXKXCL>m=45je33m0&_p=1646429032&gdid=dZTNiMT&cid=63770977.1679761406&ul=en-us&sr=1280x1024&_s=1&sid=1679761405&sct=1&seg=0&dl=https%3A%2F%2Fdallasfanboys.com%2Fcowboys-killer-aaron-rodgers-ready-to-quit-2%2F&dt=Cowboys%20Killer%20Aaron%20Rodgers%3A%20Ready%20to%20Quit%3F%20-%20Dallas%20Fanboys&en=page_view&_fv=1&_ss=1&_ee=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-2ZQLMXKXCL>m=45je33m0&_p=1646429032&gdid=dZTNiMT&cid=63770977.1679761406&ul=en-us&sr=1280x1024&_s=1&sid=1679761405&sct=1&seg=0&dl=https%3A%2F%2Fdallasfanboys.com%2Fcowboys-killer-aaron-rodgers-ready-to-quit-2%2F&dt=Cowboys%20Killer%20Aaron%20Rodgers%3A%20Ready%20to%20Quit%3F%20-%20Dallas%20Fanboys&en=page_view&_fv=1&_ss=1&_ee=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-2ZQLMXKXCL>m=45je33m0&_p=1646429032&gdid=dZTNiMT&cid=63770977.1679761406&ul=en-us&sr=1280x1024&_s=1&sid=1679761405&sct=1&seg=0&dl=https%3A%2F%2Fdallasfanboys.com%2Fcowboys-killer-aaron-rodgers-ready-to-quit-2%2F&dt=Cowboys%20Killer%20Aaron%20Rodgers%3A%20Ready%20to%20Quit%3F%20-%20Dallas%20Fanboys&en=page_view&_fv=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dallasfanboys.com
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: https://dallasfanboys.com
date: Sat, 25 Mar 2023 16:23:13 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2023q1
151.101.2.133200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2023q1
IP 151.101.2.133:0
Hash a559c102358f6540d26f9c62823c1362
ae6a6b93d510684573303b54e119da92be587add
1e574410e0e6a28b3641b54513dc4acf6175b1f5ba0debc0633570b64d084424
POST /ca/gsatlasr3dvtlsca2023q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1462
Content-Type: application/ocsp-response
Etag: "2ADDDAF17DD32E9E4B5C95A9ADE71C9A4E7F3E7F"
Expires: Sun, 26 Mar 2023 04:00:00 UTC
Last-Modified: Sat, 25 Mar 2023 16:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
Accept-Ranges: bytes
Date: Sat, 25 Mar 2023 16:23:13 GMT
Via: 1.1 varnish
Age: 0
X-Served-By: cache-bma1661-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1679761393.061533,VS0,VE75
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 285d29ce7af1b559c0c39d9009630852
655180b1385a8ab14a7f3fb7c045168113ce7403
d5cc1d967ce416f3464bca4d96d75badb17301141f6a3f6cba8a05260c4ed7e0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D5CC1D967CE416F3464BCA4D96D75BADB17301141F6A3F6CBA8A05260C4ED7E0"
Last-Modified: Sat, 25 Mar 2023 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6261
Expires: Sat, 25 Mar 2023 18:07:34 GMT
Date: Sat, 25 Mar 2023 16:23:13 GMT
Connection: keep-alive
weepingpretext.com/7f/62/94/7f629424d4a6abe55cb453c13d501745.js
192.243.61.227200 OK 29 kB URL HTTP/1.1 weepingpretext.com/7f/62/94/7f629424d4a6abe55cb453c13d501745.js
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (65536), with no line terminators
Hash d1b6d5955bc171383d277b7aca718f50
4e57125b7407a108f145baa3d014ae3021cc0a13
a7ca9763060df88f2c7fb60518fdc7c6c3642716d658fb47a9681b870027197c
GET /7f/62/94/7f629424d4a6abe55cb453c13d501745.js HTTP/1.1
Host: weepingpretext.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 25 Mar 2023 16:23:13 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: fc44f2dd88516ed7c5fcdb8e568b41f8
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash a24c92f7ea9fac9d1797caaa8bf81934
91cb0c101332a488a63dcbb415484ff6d498faee
a73cb561b0d7d06bff96a87559fcbbda6816fe77e2cf83204e6cd73c831890a5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A73CB561B0D7D06BFF96A87559FCBBDA6816FE77E2CF83204E6CD73C831890A5"
Last-Modified: Fri, 24 Mar 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11229
Expires: Sat, 25 Mar 2023 19:30:22 GMT
Date: Sat, 25 Mar 2023 16:23:13 GMT
Connection: keep-alive
weepingpretext.com/watch.1648073987445.js?key=c161b9bde681a227cfe9c145c2f8e5b9&kw=%5B%22cowboys%22%2C%22killer%22%2C%22aaron%22%2C%22rodgers%22%2C%22ready%22%2C%22to%22%2C%22quit%22%2C%22-%22%2C%22dallas%22%2C%22fanboys%22%5D&refer=https%3A%2F%2Fdallasfanboys.com%2Fcowboys-killer-aaron-rodgers-ready-to-quit-2%2F&tz=0&dev=e&res=12.1055&uuid=a6516714-dd50-4fcc-8c08-f96391bd1ebd%3A3%3A1
192.243.61.227307 Temporary Redirect 0 B URL HTTP/1.1 weepingpretext.com/watch.1648073987445.js?key=c161b9bde681a227cfe9c145c2f8e5b9&kw=%5B%22cowboys%22%2C%22killer%22%2C%22aaron%22%2C%22rodgers%22%2C%22ready%22%2C%22to%22%2C%22quit%22%2C%22-%22%2C%22dallas%22%2C%22fanboys%22%5D&refer=https%3A%2F%2Fdallasfanboys.com%2Fcowboys-killer-aaron-rodgers-ready-to-quit-2%2F&tz=0&dev=e&res=12.1055&uuid=a6516714-dd50-4fcc-8c08-f96391bd1ebd%3A3%3A1
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /watch.1648073987445.js?key=c161b9bde681a227cfe9c145c2f8e5b9&kw=%5B%22cowboys%22%2C%22killer%22%2C%22aaron%22%2C%22rodgers%22%2C%22ready%22%2C%22to%22%2C%22quit%22%2C%22-%22%2C%22dallas%22%2C%22fanboys%22%5D&refer=https%3A%2F%2Fdallasfanboys.com%2Fcowboys-killer-aaron-rodgers-ready-to-quit-2%2F&tz=0&dev=e&res=12.1055&uuid=a6516714-dd50-4fcc-8c08-f96391bd1ebd%3A3%3A1 HTTP/1.1
Host: weepingpretext.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dallasfanboys.com
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Sat, 25 Mar 2023 16:23:13 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://dallasfanboys.com
Access-Control-Allow-Origin: https://dallasfanboys.com
Access-Control-Allow-Credentials: true
Location: https://weepingpretext.com/watch.1648073987445.js?key=c161b9bde681a227cfe9c145c2f8e5b9&kw=%5B%22cowboys%22%2C%22killer%22%2C%22aaron%22%2C%22rodgers%22%2C%22ready%22%2C%22to%22%2C%22quit%22%2C%22-%22%2C%22dallas%22%2C%22fanboys%22%5D&refer=https%3A%2F%2Fdallasfanboys.com%2Fcowboys-killer-aaron-rodgers-ready-to-quit-2%2F&tz=0&dev=e&res=12.1055&uuid=a6516714-dd50-4fcc-8c08-f96391bd1ebd%3A3%3A1&shu=13d035719a2375613568c5070b32e85469ce6cbed17137d5eb8d3b7708e68eb530740fcbeb4a93a52b39b92b6a1f16070488535ff3eb1ec2226268d0a70e403b6610b3f91b0e678d24f3248a85384bb3dcd3ea57&pst=1679761453&rmtc=t
Set-Cookie: u_pl=17633716; expires=Sun, 26 Mar 2023 16:23:13 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNzYzMzcxNiwiayI6ImMxNjFiOWJkZTY4MWEyMjdjZmU5YzE0NWMyZjhlNWI5Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxOTcwNTkzLCJwaWQiOjQzOTA0OSwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoxOSwiYWlkIjo1LCJwdCI6NCwicGsiOiJ2YTh6cG1hcWgiLCJjcGtzIjp7ICIyOCI6IjdmNjI5NDI0ZDRhNmFiZTU1Y2I0NTNjMTNkNTAxNzQ1In0sInQiOjF9LCJ1Ijp7InUiOjEsImF1IjoxLCJkIjp7ImlkIjo5MDc1MzQ1NywiaWRzIjoiIiwiaWMiOmZhbHNlLCJuIjoiRGVza3RvcCxFbXVsYXRvciIsInYiOiJVbmtub3duIiwibSI6IlVua25vd24iLCJmIjoxLCJmbiI6IkRlc2t0b3AiLCJvaWQiOjM4OTE0LCJvbiI6IldpbmRvd3MiLCJvdiI6IjEwLjAiLCJiaWQiOjEyMDYyNSwiYm4iOiJGaXJlZm94IiwiYnYiOiIxMDUuMCIsInd2IjpmYWxzZSwiZSI6dHJ1ZSwiYWIiOmZhbHNlfSwiYyI6eyJpZCI6MTYyLCJjIjoiTk8iLCJuIjoiTm9yd2F5In0sImEiOmZhbHNlLCJjciI6eyJuIjoiQmxpeCBTb2x1dGlvbnMifSwieGYiOiIiLCJpeGYiOmZhbHNlLCJpZ3hmIjpmYWxzZSwidXAiOnRydWUsInIiOiJodHRwczovL2RhbGxhc2ZhbmJveXMuY29tL2Nvd2JveXMta2lsbGVyLWFhcm9uLXJvZGdlcnMtcmVhZHktdG8tcXVpdC0yLyJ9fQ.FhLTfTOAyhaEWL9dOgRfP8HfTvOjjey8C7QQObT-kZk; expires=Sat, 25 Mar 2023 16:24:13 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 3097b154c0280eb6e45f81f5259ba710
Strict-Transport-Security: max-age=0; includeSubdomains
banquetunarmedgrater.com/advertisers.js
192.243.59.12200 OK 0 B URL HTTP/1.1 banquetunarmedgrater.com/advertisers.js
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /advertisers.js HTTP/1.1
Host: banquetunarmedgrater.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Sat, 25 Mar 2023 16:23:13 GMT
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a5fb217474ee23672a864583ae8c6f96
Strict-Transport-Security: max-age=0; includeSubdomains
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 45797d737cab604e4dd8f7a27ae91202
ed3f471554f9b6c6950d6b5126ba95458e453f47
c561eee8a16cc7b8472fbc9e3412ad284146eae08467daaadb13e88764e513b6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C561EEE8A16CC7B8472FBC9E3412AD284146EAE08467DAAADB13E88764E513B6"
Last-Modified: Fri, 24 Mar 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11150
Expires: Sat, 25 Mar 2023 19:29:03 GMT
Date: Sat, 25 Mar 2023 16:23:13 GMT
Connection: keep-alive
weepingpretext.com/watch.1648073987445.js?key=c161b9bde681a227cfe9c145c2f8e5b9&kw=%5B%22cowboys%22%2C%22killer%22%2C%22aaron%22%2C%22rodgers%22%2C%22ready%22%2C%22to%22%2C%22quit%22%2C%22-%22%2C%22dallas%22%2C%22fanboys%22%5D&refer=https%3A%2F%2Fdallasfanboys.com%2Fcowboys-killer-aaron-rodgers-ready-to-quit-2%2F&tz=0&dev=e&res=12.1055&uuid=a6516714-dd50-4fcc-8c08-f96391bd1ebd%3A3%3A1&shu=13d035719a2375613568c5070b32e85469ce6cbed17137d5eb8d3b7708e68eb530740fcbeb4a93a52b39b92b6a1f16070488535ff3eb1ec2226268d0a70e403b6610b3f91b0e678d24f3248a85384bb3dcd3ea57&pst=1679761453&rmtc=t
192.243.61.227200 OK 2.1 kB URL HTTP/1.1 weepingpretext.com/watch.1648073987445.js?key=c161b9bde681a227cfe9c145c2f8e5b9&kw=%5B%22cowboys%22%2C%22killer%22%2C%22aaron%22%2C%22rodgers%22%2C%22ready%22%2C%22to%22%2C%22quit%22%2C%22-%22%2C%22dallas%22%2C%22fanboys%22%5D&refer=https%3A%2F%2Fdallasfanboys.com%2Fcowboys-killer-aaron-rodgers-ready-to-quit-2%2F&tz=0&dev=e&res=12.1055&uuid=a6516714-dd50-4fcc-8c08-f96391bd1ebd%3A3%3A1&shu=13d035719a2375613568c5070b32e85469ce6cbed17137d5eb8d3b7708e68eb530740fcbeb4a93a52b39b92b6a1f16070488535ff3eb1ec2226268d0a70e403b6610b3f91b0e678d24f3248a85384bb3dcd3ea57&pst=1679761453&rmtc=t
IP 192.243.61.227:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document, ASCII text, with very long lines (2547)
Hash 82527225b1364874d44f1628bae5fc2c
4077b134a690b58ea603024d0843f4cf250a92cf
bd8aab2ca2120ef2259d9911c305fb597cc28256cffafaa7a6e35377a61432cd
GET /watch.1648073987445.js?key=c161b9bde681a227cfe9c145c2f8e5b9&kw=%5B%22cowboys%22%2C%22killer%22%2C%22aaron%22%2C%22rodgers%22%2C%22ready%22%2C%22to%22%2C%22quit%22%2C%22-%22%2C%22dallas%22%2C%22fanboys%22%5D&refer=https%3A%2F%2Fdallasfanboys.com%2Fcowboys-killer-aaron-rodgers-ready-to-quit-2%2F&tz=0&dev=e&res=12.1055&uuid=a6516714-dd50-4fcc-8c08-f96391bd1ebd%3A3%3A1&shu=13d035719a2375613568c5070b32e85469ce6cbed17137d5eb8d3b7708e68eb530740fcbeb4a93a52b39b92b6a1f16070488535ff3eb1ec2226268d0a70e403b6610b3f91b0e678d24f3248a85384bb3dcd3ea57&pst=1679761453&rmtc=t HTTP/1.1
Host: weepingpretext.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dallasfanboys.com
Referer: https://dallasfanboys.com/
Connection: keep-alive
Cookie: u_pl=17633716; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNzYzMzcxNiwiayI6ImMxNjFiOWJkZTY4MWEyMjdjZmU5YzE0NWMyZjhlNWI5Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxOTcwNTkzLCJwaWQiOjQzOTA0OSwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoxOSwiYWlkIjo1LCJwdCI6NCwicGsiOiJ2YTh6cG1hcWgiLCJjcGtzIjp7ICIyOCI6IjdmNjI5NDI0ZDRhNmFiZTU1Y2I0NTNjMTNkNTAxNzQ1In0sInQiOjF9LCJ1Ijp7InUiOjEsImF1IjoxLCJkIjp7ImlkIjo5MDc1MzQ1NywiaWRzIjoiIiwiaWMiOmZhbHNlLCJuIjoiRGVza3RvcCxFbXVsYXRvciIsInYiOiJVbmtub3duIiwibSI6IlVua25vd24iLCJmIjoxLCJmbiI6IkRlc2t0b3AiLCJvaWQiOjM4OTE0LCJvbiI6IldpbmRvd3MiLCJvdiI6IjEwLjAiLCJiaWQiOjEyMDYyNSwiYm4iOiJGaXJlZm94IiwiYnYiOiIxMDUuMCIsInd2IjpmYWxzZSwiZSI6dHJ1ZSwiYWIiOmZhbHNlfSwiYyI6eyJpZCI6MTYyLCJjIjoiTk8iLCJuIjoiTm9yd2F5In0sImEiOmZhbHNlLCJjciI6eyJuIjoiQmxpeCBTb2x1dGlvbnMifSwieGYiOiIiLCJpeGYiOmZhbHNlLCJpZ3hmIjpmYWxzZSwidXAiOnRydWUsInIiOiJodHRwczovL2RhbGxhc2ZhbmJveXMuY29tL2Nvd2JveXMta2lsbGVyLWFhcm9uLXJvZGdlcnMtcmVhZHktdG8tcXVpdC0yLyJ9fQ.FhLTfTOAyhaEWL9dOgRfP8HfTvOjjey8C7QQObT-kZk
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 25 Mar 2023 16:23:13 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://dallasfanboys.com
Access-Control-Allow-Origin: https://dallasfanboys.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=a6516714-dd50-4fcc-8c08-f96391bd1ebd:3:1; expires=Sat, 01 Apr 2023 16:23:13 GMT; secure; SameSite=None
pdhtkv=true; expires=Sun, 26 Mar 2023 16:23:13 GMT; secure; SameSite=None
uncs=1; expires=Sun, 26 Mar 2023 16:23:13 GMT; secure; SameSite=None
pdhtkv5=true; expires=Sun, 26 Mar 2023 16:23:13 GMT; secure; SameSite=None
uncs5=1; expires=Sun, 26 Mar 2023 16:23:13 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1f9b69e1ccbe6decb6d029c868220b14
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
hoaxbasesalad.com/sbar.json?key=5331538d4e08a51f0c36692badbabf53
173.233.137.52200 OK 4.3 kB URL HTTP/1.1 hoaxbasesalad.com/sbar.json?key=5331538d4e08a51f0c36692badbabf53
IP 173.233.137.52:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (6142), with no line terminators
Hash 0d25a4e1e8e5a8badecab2423a12308b
b133b014a74fe851d432358eccb9410ae4da1288
ba09d429d9822cd97d1612a292ac3f852cfab2c573de63deb300462693fe9ab5
Analyzer Verdict Alert quad9 Sinkholed
GET /sbar.json?key=5331538d4e08a51f0c36692badbabf53 HTTP/1.1
Host: hoaxbasesalad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dallasfanboys.com
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 25 Mar 2023 16:23:13 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://dallasfanboys.com
Access-Control-Allow-Origin: https://dallasfanboys.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=17797019; expires=Sun, 26 Mar 2023 16:23:13 GMT; secure; SameSite=None
pdhtkv=true; expires=Sun, 26 Mar 2023 16:23:13 GMT; secure; SameSite=None
uncs=1; expires=Sun, 26 Mar 2023 16:23:13 GMT; secure; SameSite=None
pdhtkv29=true; expires=Sun, 26 Mar 2023 16:23:13 GMT; secure; SameSite=None
uncs29=1; expires=Sun, 26 Mar 2023 16:23:13 GMT; secure; SameSite=None
slec5331538d4e08a51f0c36692badbabf53=[3952979]; expires=Sat, 25 Mar 2023 16:23:18 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 9135055cffc06fc872b9160be0a0dd01
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash a88005adde3bf831fd9e38a6f5d6a7d4
9301a269f46fa107948b4f7acd7fdaa4176405e4
fdbc475f054d08beba7aa1fb49422fa5491e8d68bac28064554d4df40ee90cd0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FDBC475F054D08BEBA7AA1FB49422FA5491E8D68BAC28064554D4DF40EE90CD0"
Last-Modified: Sat, 25 Mar 2023 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4985
Expires: Sat, 25 Mar 2023 17:46:18 GMT
Date: Sat, 25 Mar 2023 16:23:13 GMT
Connection: keep-alive
tournamentsevenhung.com/pixel/purst?dl=0&th=0&sc=0&rs=2791&rd=2791&fd=652&bv=22.10.v.10&tmpl=136
192.243.59.12200 OK 0 B URL HTTP/1.1 tournamentsevenhung.com/pixel/purst?dl=0&th=0&sc=0&rs=2791&rd=2791&fd=652&bv=22.10.v.10&tmpl=136
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/purst?dl=0&th=0&sc=0&rs=2791&rd=2791&fd=652&bv=22.10.v.10&tmpl=136 HTTP/1.1
Host: tournamentsevenhung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Sat, 25 Mar 2023 16:23:13 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash eef4409d0ad90e2899e538028bd3fa76
2d6edd13cbd2d201ef921fc33c053aec8f8b740c
61eef3a534769ac291c82d37206b392dea96af36a38e9d7da4cf0fb2d5d2342d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:23:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash eef4409d0ad90e2899e538028bd3fa76
2d6edd13cbd2d201ef921fc33c053aec8f8b740c
61eef3a534769ac291c82d37206b392dea96af36a38e9d7da4cf0fb2d5d2342d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:23:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.142200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.142:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sat, 25 Mar 2023 16:05:11 GMT
expires: Sat, 25 Mar 2023 18:05:11 GMT
cache-control: public, max-age=7200
age: 1082
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash fae1909661b247d9b9cd52a112504080
98b1ca782d56f019963c239216e66b9d2ec4ebdc
a466ff86c64078f7e01eaeca1ff547c37940045c2aa9f077343f68df5dcf5789
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3073
Cache-Control: max-age=98187
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:23:13 GMT
Etag: "641df07b-1d7"
Expires: Sun, 26 Mar 2023 19:39:40 GMT
Last-Modified: Fri, 24 Mar 2023 18:48:27 GMT
Server: ECAcc (ska/F756)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 9b762efe5751eb25cd26ca67ad6dcf22
661f1247ecc842236957d05747967ec4f20835a2
c51c54e54ffc33cc7643bb0a64da2265f93efaf38838351ec0f2a2fe102efa2e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:23:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 5716bd17f0cc1d649bcba4a6400ad0fa
752def7b1cf7d2f2e8213b28cb17f93e1015d333
ef78bd37975cc2a43c78562c8fcd9977f92a2ef525b87cfcef89f114f28eac3b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:23:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64347)
Hash 7fc8bce5d342b4898e6c82cc61313763
4aa4da15b55d59fc1a3a640a443cbde675d5e407
e456006ad9bc83651e868be3c53fa3fe93247a23b4fedf3b8c836fdf2c0c7de2
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
origin-agent-cluster: ?0
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: EPNDseaujn+sHRlH3G7J+33CwneiIT7o9vvJpbQAE96U583MjEtkiCxdKoSJTTdukKHvdbrWpxPTZDkvEWKuRQ==
content-length: 27907
x-fb-trip-id: 1904183273
date: Sat, 25 Mar 2023 16:23:13 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/472706721/?random=1679761405839&cv=11&fst=1679761405839&bg=ffffff&guid=ON&async=1>m=45je33m0&u_w=1280&u_h=1024&url=https%3A%2F%2Fdallasfanboys.com%2Fcowboys-killer-aaron-rodgers-ready-to-quit-2%2F&hn=www.googleadservices.com&frm=0&tiba=Cowboys%20Killer%20Aaron%20Rodgers%3A%20Ready%20to%20Quit%3F%20-%20Dallas%20Fanboys&did=dZTNiMT&gdid=dZTNiMT&auid=1827788002.1679761406&data=event%3Dgtag.config&rfmt=3&fmt=4
142.250.74.66200 OK 1.3 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/472706721/?random=1679761405839&cv=11&fst=1679761405839&bg=ffffff&guid=ON&async=1>m=45je33m0&u_w=1280&u_h=1024&url=https%3A%2F%2Fdallasfanboys.com%2Fcowboys-killer-aaron-rodgers-ready-to-quit-2%2F&hn=www.googleadservices.com&frm=0&tiba=Cowboys%20Killer%20Aaron%20Rodgers%3A%20Ready%20to%20Quit%3F%20-%20Dallas%20Fanboys&did=dZTNiMT&gdid=dZTNiMT&auid=1827788002.1679761406&data=event%3Dgtag.config&rfmt=3&fmt=4
IP 142.250.74.66:0
File type ASCII text, with very long lines (2745), with no line terminators
Hash 778c01de15e07f77a488a93c7cb787e4
2cfbb6481bbb26126cc54ad54d51fc94ecf6a0ba
6dbb7ca36aa2ca5aa927ef11caea25789bfe072b8a9bc475f162f319b4d84eae
GET /pagead/viewthroughconversion/472706721/?random=1679761405839&cv=11&fst=1679761405839&bg=ffffff&guid=ON&async=1>m=45je33m0&u_w=1280&u_h=1024&url=https%3A%2F%2Fdallasfanboys.com%2Fcowboys-killer-aaron-rodgers-ready-to-quit-2%2F&hn=www.googleadservices.com&frm=0&tiba=Cowboys%20Killer%20Aaron%20Rodgers%3A%20Ready%20to%20Quit%3F%20-%20Dallas%20Fanboys&did=dZTNiMT&gdid=dZTNiMT&auid=1827788002.1679761406&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 25 Mar 2023 16:23:13 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1269
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 25-Mar-2023 16:38:13 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 3a85d9c2de0b1015b62c81a1ab7fe625
389c7fe2d0d53ff607a3fd8e27283c8f1cb3a238
717fa1c4098bd6e282c24452a39aafc0b436941b2f398ef0086960effcc3f2ca
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:23:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-1926948041615262&host=ca-host-pub-2644536267352236
172.217.21.162200 OK 49 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-1926948041615262&host=ca-host-pub-2644536267352236
IP 172.217.21.162:0
File type ASCII text, with very long lines (3599)
Hash adfda0e79f3f2d1db6301e866574991e
e182e0fafe6419d792cd9ff77af2776fff81ea44
26a8ea1fd3471cfea8bc3ae2a68c8efa7a61cece39e3f233c7fb11c5a2785d48
GET /pagead/js/adsbygoogle.js?client=ca-pub-1926948041615262&host=ca-host-pub-2644536267352236 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dallasfanboys.com
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sat, 25 Mar 2023 16:23:13 GMT
expires: Sat, 25 Mar 2023 16:23:13 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 14027645688771650384
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 48870
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/bi/e8/c2/71/e8c27167b4eb371679152b1f23f10008/1665054881.gif
45.133.44.10200 OK 225 kB URL HTTP/2 cdn.cloudimagesb.com/bi/e8/c2/71/e8c27167b4eb371679152b1f23f10008/1665054881.gif
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type GIF image data, version 89a, 300 x 250\012- data
Size 225 kB (225331 bytes)
Hash f275167aa3d7efa54562d4e11436dc4f
0602cd9af92e81048584a1b07d4570e25ce2f5c0
75ea98a48084f8977f5ca405313b9aa76ddf5484ebddb6a90a218ff7e26d6c99
GET /bi/e8/c2/71/e8c27167b4eb371679152b1f23f10008/1665054881.gif HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:23:13 GMT
content-type: image/gif
content-length: 225331
server: nginx/1.17.6
last-modified: Thu, 06 Oct 2022 11:14:49 GMT
etag: "633eb8a9-37033"
expires: Mon, 27 Mar 2023 16:23:13 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/636276129/?random=1679761405919&cv=11&fst=1679761405919&bg=ffffff&guid=ON&async=1>m=45je33m0&u_w=1280&u_h=1024&url=https%3A%2F%2Fdallasfanboys.com%2Fcowboys-killer-aaron-rodgers-ready-to-quit-2%2F&hn=www.googleadservices.com&frm=0&tiba=Cowboys%20Killer%20Aaron%20Rodgers%3A%20Ready%20to%20Quit%3F%20-%20Dallas%20Fanboys&did=dZTNiMT&gdid=dZTNiMT&auid=1827788002.1679761406&data=event%3Dgtag.config&rfmt=3&fmt=4
142.250.74.66200 OK 1.3 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/636276129/?random=1679761405919&cv=11&fst=1679761405919&bg=ffffff&guid=ON&async=1>m=45je33m0&u_w=1280&u_h=1024&url=https%3A%2F%2Fdallasfanboys.com%2Fcowboys-killer-aaron-rodgers-ready-to-quit-2%2F&hn=www.googleadservices.com&frm=0&tiba=Cowboys%20Killer%20Aaron%20Rodgers%3A%20Ready%20to%20Quit%3F%20-%20Dallas%20Fanboys&did=dZTNiMT&gdid=dZTNiMT&auid=1827788002.1679761406&data=event%3Dgtag.config&rfmt=3&fmt=4
IP 142.250.74.66:0
File type ASCII text, with very long lines (2743), with no line terminators
Hash 5ba663467d53f54a1efa23e5ecedeec8
3775d91fcc7cd3225f58ff53750ac434fd50948c
4de8eebae6b274784b75a27ac7d5e2d363484d14ff57e6216a80ed3c08df55f3
GET /pagead/viewthroughconversion/636276129/?random=1679761405919&cv=11&fst=1679761405919&bg=ffffff&guid=ON&async=1>m=45je33m0&u_w=1280&u_h=1024&url=https%3A%2F%2Fdallasfanboys.com%2Fcowboys-killer-aaron-rodgers-ready-to-quit-2%2F&hn=www.googleadservices.com&frm=0&tiba=Cowboys%20Killer%20Aaron%20Rodgers%3A%20Ready%20to%20Quit%3F%20-%20Dallas%20Fanboys&did=dZTNiMT&gdid=dZTNiMT&auid=1827788002.1679761406&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 25 Mar 2023 16:23:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1270
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 25-Mar-2023 16:38:14 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/webfont/1/webfont.js
142.250.74.42200 OK 5.4 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/webfont/1/webfont.js
IP 142.250.74.42:0
File type ASCII text, with very long lines (2134)
Hash 30ca3165d143baf2835023bfcf463450
62c662c0873b79a314c040fef28dcd29abb14480
4f405d00e8ced09d5826e3e070b7e4d3f3556f856ca790b0b4a2c2eaaf58d33b
GET /ajax/libs/webfont/1/webfont.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 5437
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Mar 2023 18:05:11 GMT
expires: Thu, 21 Mar 2024 18:05:11 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 253083
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/636276129/?random=1679761405925&cv=11&fst=1679761405925&fmt=3&bg=ffffff&guid=ON&async=1>m=45je33m0&u_w=1280&u_h=1024&url=https%3A%2F%2Fdallasfanboys.com%2Fcowboys-killer-aaron-rodgers-ready-to-quit-2%2F&label=HnEoCMjbpvUDEKGbs68C&hn=www.google.com&frm=0&tiba=Cowboys%20Killer%20Aaron%20Rodgers%3A%20Ready%20to%20Quit%3F%20-%20Dallas%20Fanboys&did=dZTNiMT&gdid=dZTNiMT&auid=1827788002.1679761406&data=event%3Dconversion&gcp=1&ct_cookie_present=1
142.250.74.66200 OK 42 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/636276129/?random=1679761405925&cv=11&fst=1679761405925&fmt=3&bg=ffffff&guid=ON&async=1>m=45je33m0&u_w=1280&u_h=1024&url=https%3A%2F%2Fdallasfanboys.com%2Fcowboys-killer-aaron-rodgers-ready-to-quit-2%2F&label=HnEoCMjbpvUDEKGbs68C&hn=www.google.com&frm=0&tiba=Cowboys%20Killer%20Aaron%20Rodgers%3A%20Ready%20to%20Quit%3F%20-%20Dallas%20Fanboys&did=dZTNiMT&gdid=dZTNiMT&auid=1827788002.1679761406&data=event%3Dconversion&gcp=1&ct_cookie_present=1
IP 142.250.74.66:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/viewthroughconversion/636276129/?random=1679761405925&cv=11&fst=1679761405925&fmt=3&bg=ffffff&guid=ON&async=1>m=45je33m0&u_w=1280&u_h=1024&url=https%3A%2F%2Fdallasfanboys.com%2Fcowboys-killer-aaron-rodgers-ready-to-quit-2%2F&label=HnEoCMjbpvUDEKGbs68C&hn=www.google.com&frm=0&tiba=Cowboys%20Killer%20Aaron%20Rodgers%3A%20Ready%20to%20Quit%3F%20-%20Dallas%20Fanboys&did=dZTNiMT&gdid=dZTNiMT&auid=1827788002.1679761406&data=event%3Dconversion&gcp=1&ct_cookie_present=1 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 25 Mar 2023 16:23:13 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 25-Mar-2023 16:38:13 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 8f1bc8bd989c1c7ce4976d567e7da88e
66caa00fa7a0c349b1adf802dd2d42a1f98d7f85
0e1762bae095e1d575090c493a46317e422dd5d31e6666cb5934ae37ce1eaf6c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E1762BAE095E1D575090C493A46317E422DD5D31E6666CB5934AE37CE1EAF6C"
Last-Modified: Thu, 23 Mar 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11352
Expires: Sat, 25 Mar 2023 19:32:26 GMT
Date: Sat, 25 Mar 2023 16:23:14 GMT
Connection: keep-alive
hoaxbasesalad.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSQWgkRReu3j%2B%2FIHuQVS8edPuoIJPu6elkxhUW13UlmE2ym5Wcq7qqJ2Wqu5qq7ulJ8BBdkAUPjjfBS883yYboIhs8izLxIgHB9iA5mKtXF2EvepCZDAQfVL336nuH7%2FtefTIszoiHgp6u3dY7Uik6HzY899UNmXJdWnflnut7De%2BauyHThdY1tz%2B5TO8N3wsb3mvuuyLa0vNNz%2Fc83%2FPdW9KIWPfnpyhk9qjjNzpeo9Vs%2BGELffPf3hYOLHXAe2fkeUhe%2F3%2FzpyPIaIw0eXxT2K1cZ6%2B%2FkxSK5tqgxw%2FeT7dSXaZILsrYOIjTg9k0tK0J%2BeISdHowUwDd25soAJM1cX7zwdKDGU2w3v45U6YgUjB%2BGWVvDKHGkHSMSN%2BH5L8QIOJYWUWaPFzRpqTb5yidoDWZe%2FoXZFmTud9fRJp8c0PJvruuVZFLnVr04wqyP4bsjpEVx8h3HMjyGFH%2BMST%2Fmcw%2FXUaa7K1apSF5NVUv5RgyHkOJAah1UEyOdFDEDorMQcJPXRp2Ys9bjFkcBO1WFEVBEEVhe4GHPGi1Yw9FNKE3QJ4NEKkBIrOLzOxiSw5gih9gNytY7sDmNXHu7KLHK5SCoLQEJSUoJUGZE5S9ap8r27TVQ65swfxZbs5yUI103h3SfZ13RUqG2Rm5MvHFee6zL7ElTt0wCPwwaPOW8No09GMvChYWOk1GOaMsDgNYWUHaS1OpO7Imr1wZIpM1eebbZ8HoMaw6RiRfAC1eBi1Hi00PdHPUanvYSY84VYramKZMb9tGpBNwXSHL55BvO0N1Rl6aLunNO%2BsQ0cn108O%2F%2F1Cf3kRkKmSmwgfyR4KuejC6q0uyd1eXlhytZrlM5A6dLHA9p7mY%2B%2Bo9sV1qw5du2sHhW9EEmJSP7gmbL9OUy7Rrydc3JOfC3NImEuS7Jbsh2FphN28UJi2y5bW3by0lmRHWSp2OQWVNyEcfIpI1ueyk08%2Fp9s8gzRimqJAUJ2QWkPoYUbYLm51cf8xu108O%2F4HVBEZdzLDMQVlUI9NkF49KEihx0VNWwYoLE5g4%2Bf7Pc2xoH6BrHND8PtKkQs9U6KkKVA1gi%2F%2BN8sycXP81mAaYckZMGWePKaM%2BPzfXylNXhLEXC68pWNxh8SL1eCdudRjt%2BGKRhdRHbmt%2B9eqTfwEAAP%2F%2FAQAA%2F%2F%2F3gdzSdAQAAA%3D%3D
173.233.137.52200 OK 7 B URL HTTP/1.1 hoaxbasesalad.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSQWgkRReu3j%2B%2FIHuQVS8edPuoIJPu6elkxhUW13UlmE2ym5Wcq7qqJ2Wqu5qq7ulJ8BBdkAUPjjfBS883yYboIhs8izLxIgHB9iA5mKtXF2EvepCZDAQfVL336nuH7%2FtefTIszoiHgp6u3dY7Uik6HzY899UNmXJdWnflnut7De%2BauyHThdY1tz%2B5TO8N3wsb3mvuuyLa0vNNz%2Fc83%2FPdW9KIWPfnpyhk9qjjNzpeo9Vs%2BGELffPf3hYOLHXAe2fkeUhe%2F3%2FzpyPIaIw0eXxT2K1cZ6%2B%2FkxSK5tqgxw%2FeT7dSXaZILsrYOIjTg9k0tK0J%2BeISdHowUwDd25soAJM1cX7zwdKDGU2w3v45U6YgUjB%2BGWVvDKHGkHSMSN%2BH5L8QIOJYWUWaPFzRpqTb5yidoDWZe%2FoXZFmTud9fRJp8c0PJvruuVZFLnVr04wqyP4bsjpEVx8h3HMjyGFH%2BMST%2Fmcw%2FXUaa7K1apSF5NVUv5RgyHkOJAah1UEyOdFDEDorMQcJPXRp2Ys9bjFkcBO1WFEVBEEVhe4GHPGi1Yw9FNKE3QJ4NEKkBIrOLzOxiSw5gih9gNytY7sDmNXHu7KLHK5SCoLQEJSUoJUGZE5S9ap8r27TVQ65swfxZbs5yUI103h3SfZ13RUqG2Rm5MvHFee6zL7ElTt0wCPwwaPOW8No09GMvChYWOk1GOaMsDgNYWUHaS1OpO7Imr1wZIpM1eebbZ8HoMaw6RiRfAC1eBi1Hi00PdHPUanvYSY84VYramKZMb9tGpBNwXSHL55BvO0N1Rl6aLunNO%2BsQ0cn108O%2F%2F1Cf3kRkKmSmwgfyR4KuejC6q0uyd1eXlhytZrlM5A6dLHA9p7mY%2B%2Bo9sV1qw5du2sHhW9EEmJSP7gmbL9OUy7Rrydc3JOfC3NImEuS7Jbsh2FphN28UJi2y5bW3by0lmRHWSp2OQWVNyEcfIpI1ueyk08%2Fp9s8gzRimqJAUJ2QWkPoYUbYLm51cf8xu108O%2F4HVBEZdzLDMQVlUI9NkF49KEihx0VNWwYoLE5g4%2Bf7Pc2xoH6BrHND8PtKkQs9U6KkKVA1gi%2F%2BN8sycXP81mAaYckZMGWePKaM%2BPzfXylNXhLEXC68pWNxh8SL1eCdudRjt%2BGKRhdRHbmt%2B9eqTfwEAAP%2F%2FAQAA%2F%2F%2F3gdzSdAQAAA%3D%3D
IP 173.233.137.52:0
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSQWgkRReu3j%2B%2FIHuQVS8edPuoIJPu6elkxhUW13UlmE2ym5Wcq7qqJ2Wqu5qq7ulJ8BBdkAUPjjfBS883yYboIhs8izLxIgHB9iA5mKtXF2EvepCZDAQfVL336nuH7%2FtefTIszoiHgp6u3dY7Uik6HzY899UNmXJdWnflnut7De%2BauyHThdY1tz%2B5TO8N3wsb3mvuuyLa0vNNz%2Fc83%2FPdW9KIWPfnpyhk9qjjNzpeo9Vs%2BGELffPf3hYOLHXAe2fkeUhe%2F3%2FzpyPIaIw0eXxT2K1cZ6%2B%2FkxSK5tqgxw%2FeT7dSXaZILsrYOIjTg9k0tK0J%2BeISdHowUwDd25soAJM1cX7zwdKDGU2w3v45U6YgUjB%2BGWVvDKHGkHSMSN%2BH5L8QIOJYWUWaPFzRpqTb5yidoDWZe%2FoXZFmTud9fRJp8c0PJvruuVZFLnVr04wqyP4bsjpEVx8h3HMjyGFH%2BMST%2Fmcw%2FXUaa7K1apSF5NVUv5RgyHkOJAah1UEyOdFDEDorMQcJPXRp2Ys9bjFkcBO1WFEVBEEVhe4GHPGi1Yw9FNKE3QJ4NEKkBIrOLzOxiSw5gih9gNytY7sDmNXHu7KLHK5SCoLQEJSUoJUGZE5S9ap8r27TVQ65swfxZbs5yUI103h3SfZ13RUqG2Rm5MvHFee6zL7ElTt0wCPwwaPOW8No09GMvChYWOk1GOaMsDgNYWUHaS1OpO7Imr1wZIpM1eebbZ8HoMaw6RiRfAC1eBi1Hi00PdHPUanvYSY84VYramKZMb9tGpBNwXSHL55BvO0N1Rl6aLunNO%2BsQ0cn108O%2F%2F1Cf3kRkKmSmwgfyR4KuejC6q0uyd1eXlhytZrlM5A6dLHA9p7mY%2B%2Bo9sV1qw5du2sHhW9EEmJSP7gmbL9OUy7Rrydc3JOfC3NImEuS7Jbsh2FphN28UJi2y5bW3by0lmRHWSp2OQWVNyEcfIpI1ueyk08%2Fp9s8gzRimqJAUJ2QWkPoYUbYLm51cf8xu108O%2F4HVBEZdzLDMQVlUI9NkF49KEihx0VNWwYoLE5g4%2Bf7Pc2xoH6BrHND8PtKkQs9U6KkKVA1gi%2F%2BN8sycXP81mAaYckZMGWePKaM%2BPzfXylNXhLEXC68pWNxh8SL1eCdudRjt%2BGKRhdRHbmt%2B9eqTfwEAAP%2F%2FAQAA%2F%2F%2F3gdzSdAQAAA%3D%3D HTTP/1.1
Host: hoaxbasesalad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/
Cookie: u_pl=17797019; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 25 Mar 2023 16:23:14 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 43d353a5762d1db1be62005c19f42eae
Strict-Transport-Security: max-age=0; includeSubdomains
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash fae1909661b247d9b9cd52a112504080
98b1ca782d56f019963c239216e66b9d2ec4ebdc
a466ff86c64078f7e01eaeca1ff547c37940045c2aa9f077343f68df5dcf5789
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2065
Cache-Control: max-age=97178
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:23:14 GMT
Etag: "641df07b-1d7"
Expires: Sun, 26 Mar 2023 19:22:52 GMT
Last-Modified: Fri, 24 Mar 2023 18:48:27 GMT
Server: ECAcc (ska/F6AF)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash eef4409d0ad90e2899e538028bd3fa76
2d6edd13cbd2d201ef921fc33c053aec8f8b740c
61eef3a534769ac291c82d37206b392dea96af36a38e9d7da4cf0fb2d5d2342d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:23:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash eef4409d0ad90e2899e538028bd3fa76
2d6edd13cbd2d201ef921fc33c053aec8f8b740c
61eef3a534769ac291c82d37206b392dea96af36a38e9d7da4cf0fb2d5d2342d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:23:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.barscreative1.com/sb/au/5e/2f/d4/5e2fd4b3d4c51bdf7b2952c27a9795ef/1652872195.html
45.133.44.3200 OK 955 B URL HTTP/2 cdn.barscreative1.com/sb/au/5e/2f/d4/5e2fd4b3d4c51bdf7b2952c27a9795ef/1652872195.html
IP 45.133.44.3:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document text\012- HTML document, ASCII text
Hash 3311b451b6e90781dab5ae61a1e4f65d
940e4700d9c5fbf74f8c15dcf10c28661e34cf2c
3def788280ca0f9ba09e050e3f3bfba82e5268fe2104f1c02a8f265c12774023
GET /sb/au/5e/2f/d4/5e2fd4b3d4c51bdf7b2952c27a9795ef/1652872195.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dallasfanboys.com
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:23:14 GMT
content-type: text/html; charset=utf-8
content-length: 955
server: nginx/1.17.6
last-modified: Wed, 18 May 2022 11:09:59 GMT
etag: "6284d407-3bb"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
expires: Sat, 25 Mar 2023 17:23:14 GMT
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 3a85d9c2de0b1015b62c81a1ab7fe625
389c7fe2d0d53ff607a3fd8e27283c8f1cb3a238
717fa1c4098bd6e282c24452a39aafc0b436941b2f398ef0086960effcc3f2ca
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:23:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash f0f306ea49f1bd3f358f7579513e7377
c2845c696f6685a211bc040895d28ebf23fa1bc0
cda7588d5040ef3c8e83955838618a0ed0a6ee242d24abf5af697b2289fc8bdb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:23:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/pagead/1p-user-list/636276129/?random=1679761405919&cv=11&fst=1679760000000&bg=ffffff&guid=ON&async=1>m=45je33m0&u_w=1280&u_h=1024&url=https%3A%2F%2Fdallasfanboys.com%2Fcowboys-killer-aaron-rodgers-ready-to-quit-2%2F&frm=0&tiba=Cowboys%20Killer%20Aaron%20Rodgers%3A%20Ready%20to%20Quit%3F%20-%20Dallas%20Fanboys&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=697549368&rmt_tld=0&ipr=y
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/636276129/?random=1679761405919&cv=11&fst=1679760000000&bg=ffffff&guid=ON&async=1>m=45je33m0&u_w=1280&u_h=1024&url=https%3A%2F%2Fdallasfanboys.com%2Fcowboys-killer-aaron-rodgers-ready-to-quit-2%2F&frm=0&tiba=Cowboys%20Killer%20Aaron%20Rodgers%3A%20Ready%20to%20Quit%3F%20-%20Dallas%20Fanboys&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=697549368&rmt_tld=0&ipr=y
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/636276129/?random=1679761405919&cv=11&fst=1679760000000&bg=ffffff&guid=ON&async=1>m=45je33m0&u_w=1280&u_h=1024&url=https%3A%2F%2Fdallasfanboys.com%2Fcowboys-killer-aaron-rodgers-ready-to-quit-2%2F&frm=0&tiba=Cowboys%20Killer%20Aaron%20Rodgers%3A%20Ready%20to%20Quit%3F%20-%20Dallas%20Fanboys&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=697549368&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 25 Mar 2023 16:23:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/472706721/?random=1679761405839&cv=11&fst=1679760000000&bg=ffffff&guid=ON&async=1>m=45je33m0&u_w=1280&u_h=1024&url=https%3A%2F%2Fdallasfanboys.com%2Fcowboys-killer-aaron-rodgers-ready-to-quit-2%2F&frm=0&tiba=Cowboys%20Killer%20Aaron%20Rodgers%3A%20Ready%20to%20Quit%3F%20-%20Dallas%20Fanboys&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2039157317&rmt_tld=0&ipr=y
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/472706721/?random=1679761405839&cv=11&fst=1679760000000&bg=ffffff&guid=ON&async=1>m=45je33m0&u_w=1280&u_h=1024&url=https%3A%2F%2Fdallasfanboys.com%2Fcowboys-killer-aaron-rodgers-ready-to-quit-2%2F&frm=0&tiba=Cowboys%20Killer%20Aaron%20Rodgers%3A%20Ready%20to%20Quit%3F%20-%20Dallas%20Fanboys&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2039157317&rmt_tld=0&ipr=y
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/472706721/?random=1679761405839&cv=11&fst=1679760000000&bg=ffffff&guid=ON&async=1>m=45je33m0&u_w=1280&u_h=1024&url=https%3A%2F%2Fdallasfanboys.com%2Fcowboys-killer-aaron-rodgers-ready-to-quit-2%2F&frm=0&tiba=Cowboys%20Killer%20Aaron%20Rodgers%3A%20Ready%20to%20Quit%3F%20-%20Dallas%20Fanboys&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2039157317&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 25 Mar 2023 16:23:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 248b003a4a6dda3d2c481cfd45e49176
ae6e1dbc704dbe302549888e545689eb88e83bb9
14df223924711cca8488c64942b656023cb6e69cb83863ccd0f9cdb8ac4682fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:23:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 248b003a4a6dda3d2c481cfd45e49176
ae6e1dbc704dbe302549888e545689eb88e83bb9
14df223924711cca8488c64942b656023cb6e69cb83863ccd0f9cdb8ac4682fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:23:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-user-list/472706721/?random=1679761405839&cv=11&fst=1679760000000&bg=ffffff&guid=ON&async=1>m=45je33m0&u_w=1280&u_h=1024&url=https%3A%2F%2Fdallasfanboys.com%2Fcowboys-killer-aaron-rodgers-ready-to-quit-2%2F&frm=0&tiba=Cowboys%20Killer%20Aaron%20Rodgers%3A%20Ready%20to%20Quit%3F%20-%20Dallas%20Fanboys&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2039157317&rmt_tld=1&ipr=y
216.58.207.227200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/472706721/?random=1679761405839&cv=11&fst=1679760000000&bg=ffffff&guid=ON&async=1>m=45je33m0&u_w=1280&u_h=1024&url=https%3A%2F%2Fdallasfanboys.com%2Fcowboys-killer-aaron-rodgers-ready-to-quit-2%2F&frm=0&tiba=Cowboys%20Killer%20Aaron%20Rodgers%3A%20Ready%20to%20Quit%3F%20-%20Dallas%20Fanboys&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2039157317&rmt_tld=1&ipr=y
IP 216.58.207.227:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/472706721/?random=1679761405839&cv=11&fst=1679760000000&bg=ffffff&guid=ON&async=1>m=45je33m0&u_w=1280&u_h=1024&url=https%3A%2F%2Fdallasfanboys.com%2Fcowboys-killer-aaron-rodgers-ready-to-quit-2%2F&frm=0&tiba=Cowboys%20Killer%20Aaron%20Rodgers%3A%20Ready%20to%20Quit%3F%20-%20Dallas%20Fanboys&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=2039157317&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 25 Mar 2023 16:23:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/636276129/?random=1679761405919&cv=11&fst=1679760000000&bg=ffffff&guid=ON&async=1>m=45je33m0&u_w=1280&u_h=1024&url=https%3A%2F%2Fdallasfanboys.com%2Fcowboys-killer-aaron-rodgers-ready-to-quit-2%2F&frm=0&tiba=Cowboys%20Killer%20Aaron%20Rodgers%3A%20Ready%20to%20Quit%3F%20-%20Dallas%20Fanboys&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=697549368&rmt_tld=1&ipr=y
216.58.207.227200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/636276129/?random=1679761405919&cv=11&fst=1679760000000&bg=ffffff&guid=ON&async=1>m=45je33m0&u_w=1280&u_h=1024&url=https%3A%2F%2Fdallasfanboys.com%2Fcowboys-killer-aaron-rodgers-ready-to-quit-2%2F&frm=0&tiba=Cowboys%20Killer%20Aaron%20Rodgers%3A%20Ready%20to%20Quit%3F%20-%20Dallas%20Fanboys&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=697549368&rmt_tld=1&ipr=y
IP 216.58.207.227:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/636276129/?random=1679761405919&cv=11&fst=1679760000000&bg=ffffff&guid=ON&async=1>m=45je33m0&u_w=1280&u_h=1024&url=https%3A%2F%2Fdallasfanboys.com%2Fcowboys-killer-aaron-rodgers-ready-to-quit-2%2F&frm=0&tiba=Cowboys%20Killer%20Aaron%20Rodgers%3A%20Ready%20to%20Quit%3F%20-%20Dallas%20Fanboys&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=697549368&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 25 Mar 2023 16:23:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash ef8608ef03d2e48c9cd6b665e8b3a946
894e7d4897dabb155138a7cbad323943c0c95122
b1a0d70bdae876e192cb4b9ba7c7f8fb7064ef3796a5d48e14c7b014789f63c8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:23:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash ce6948c57f579a85042a4388c45514d6
4b3002c036034ef0cb8d9eb73b7bf7f561862b99
85e655e198ac1724ffca7bf4efc4f98de8c436cebf41ed665cc397fbb02a243a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:23:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 111 kB IP 216.58.211.3:0
File type gzip compressed data, from Unix\012- data
Size 111 kB (110670 bytes)
Hash 85a6ed1cf60ee59e5a9ed14aa236f0e3
7792ef415a4d0804d2abc923db03362bda5653b9
0c815c0566c20bec6d4b7d084a5033d9ebcb86d99a4f25b5a172dc83af1663af
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:23:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/chivo/v18/va9I4kzIxd1KFrBoQeM.woff2
216.58.207.227200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/chivo/v18/va9I4kzIxd1KFrBoQeM.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 31216, version 1.0\012- data
Hash 9d57cf636bfec7981ca5ce494303afd5
442c8d98b87190d0937dfba2e55b500bfc8a95d8
64aa7a01c38e5f51aa6b7cd48decf2bd9ef228857df6ff47b0f58b38c1bdfc30
GET /s/chivo/v18/va9I4kzIxd1KFrBoQeM.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dallasfanboys.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31216
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:30:21 GMT
expires: Sat, 23 Mar 2024 10:30:21 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 17 Nov 2022 15:51:07 GMT
content-type: font/woff2
age: 107573
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash ce6948c57f579a85042a4388c45514d6
4b3002c036034ef0cb8d9eb73b7bf7f561862b99
85e655e198ac1724ffca7bf4efc4f98de8c436cebf41ed665cc397fbb02a243a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:23:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.cloudimagesb.com/si/e3/38/1c/e3381c2969587380b30458753c6349d5/1674361501.png
45.133.44.10200 OK 12 kB URL HTTP/2 cdn.cloudimagesb.com/si/e3/38/1c/e3381c2969587380b30458753c6349d5/1674361501.png
IP 45.133.44.10:0
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash c07f1baac701b672939b359081f813c7
d38ffbae259aae1e8ad3b38959339bb29da9b69f
85bc8e3de3651f6f03dc381ea4bbaff350d8973c37f598582838677817bf1826
GET /si/e3/38/1c/e3381c2969587380b30458753c6349d5/1674361501.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:23:14 GMT
content-type: image/png
content-length: 12186
server: nginx/1.17.6
last-modified: Sun, 22 Jan 2023 04:25:10 GMT
etag: "63ccbaa6-2f9a"
expires: Mon, 27 Mar 2023 16:23:14 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash f0f306ea49f1bd3f358f7579513e7377
c2845c696f6685a211bc040895d28ebf23fa1bc0
cda7588d5040ef3c8e83955838618a0ed0a6ee242d24abf5af697b2289fc8bdb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:23:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=dallasfanboys.com
142.250.74.34200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=dallasfanboys.com
IP 142.250.74.34:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=dallasfanboys.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 25 Mar 2023 16:23:14 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=dallasfanboys.com
142.250.74.34200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=dallasfanboys.com
IP 142.250.74.34:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=dallasfanboys.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 25 Mar 2023 16:23:14 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1123364915082944&ev=PageView&dl=https%3A%2F%2Fdallasfanboys.com%2Fcowboys-killer-aaron-rodgers-ready-to-quit-2%2F&rl=&if=false&ts=1679761407751&sw=1280&sh=1024&v=2.9.100&r=stable&a=wordpress-6.1.1-3.0.8&ec=0&o=30&cs_est=true&fbp=fb.1.1679761407750.1880278118&it=1679761407441&coo=false&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1123364915082944&ev=PageView&dl=https%3A%2F%2Fdallasfanboys.com%2Fcowboys-killer-aaron-rodgers-ready-to-quit-2%2F&rl=&if=false&ts=1679761407751&sw=1280&sh=1024&v=2.9.100&r=stable&a=wordpress-6.1.1-3.0.8&ec=0&o=30&cs_est=true&fbp=fb.1.1679761407750.1880278118&it=1679761407441&coo=false&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1123364915082944&ev=PageView&dl=https%3A%2F%2Fdallasfanboys.com%2Fcowboys-killer-aaron-rodgers-ready-to-quit-2%2F&rl=&if=false&ts=1679761407751&sw=1280&sh=1024&v=2.9.100&r=stable&a=wordpress-6.1.1-3.0.8&ec=0&o=30&cs_est=true&fbp=fb.1.1679761407750.1880278118&it=1679761407441&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 25 Mar 2023 16:23:14 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash a3bb632b19e8593edf3bc8edd8988aea
a003467155f24c2636eb7704d23ba3ae069ba23b
d20e64937f9efc1a8a62bebb0036f4b0259b00dfc1a958b6b2a0c08dafc0f2f3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:23:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=dallasfanboys.com&callback=_gfp_s_&client=ca-pub-1926948041615262
216.58.207.226200 OK 254 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=dallasfanboys.com&callback=_gfp_s_&client=ca-pub-1926948041615262
IP 216.58.207.226:0
File type ASCII text, with very long lines (401), with no line terminators
Hash 955a5b6af6d65ee8fec383b9d92387ca
aa8d1164776700874e47b5c913288c8985c1d665
2eefcf0da81926cfeeecf2d55d97614815145f93ebf1edd3ba39d3e0b3e5daef
GET /gampad/cookie.js?domain=dallasfanboys.com&callback=_gfp_s_&client=ca-pub-1926948041615262 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sat, 25 Mar 2023 16:23:14 GMT
server: cafe
cache-control: private
content-length: 254
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 9211052ef1bbc2fb3ff962abc8255c84
8710df14581fd8ddcb77bb70994eda60906200a7
7dc5595fcaaeb86b0c23cd0c43242c435213f697063c64c5b273b782a50bf918
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:23:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
hoaxbasesalad.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSQWgkRReu3j%2B%2FIHuQVS8edPuoIJPu6ZlkxhWCMUaC2SS7Wcm5uqp6Uqa6q6nqnp4ED9EFWfDgeBO89HyTbIgussGzKBMvEhBsD5KDuXp1EfaiB5nJQPBB1Xuvvnf4vu%2FVJ4P8gnjI6fnGbb0nlaKzzZrnvrolE64L667dc32v5t1yt2Qy17jl9saX6b7he82a95r7rmA7erbu%2BZ7ne767LI2IdG92gkKmj9p%2Bre3VGvWa32ygZ%2F7b29yBpQ5494I8D8mr%2F2%2F%2FdALJRkjix0vC7mQ6ff2dOFc00wZdfvR%2BspPoIkF8VUbGQZQcTaehbUXIF9egk6OpAujuwVgBQlkR5zcfYXI0pYmwe3jJNFQQCUJ%2BHUV3BKFGkHQEpu9D8l8IwDjW1pHED9e0KejuJUrHaEVmnv4FWVRk5vcXkcTfLCrZcze1yjOpE4teVEL2RpCdEdL8FNmeA1mcgmUfQ%2FKfyezTVSTxwbpVGpKXE%2FVSjiCjEZTog1oH%2BfhIB3nkIE8dxPzcpc125HnzURgFQavBGAsCxpqtOd7kQaMVecjZmF4fWdoHU30ws4%2FU7GNH9mHyH2C3S1juwGYVce7so8tLFIKgsAQFJSgkQZERFN3ykCtbt%2BVDrmwe%2BtNcn%2BagHOqsM6CHOuuIhAzSC3Jj7Ivz3GdfYkecu80g8JtBizeE16JNP%2FJYMDfXroeUhzSMmgGsLCHttYnUPVmRV24MkMqKPPPtswjpKaw6BZMvgOYvgxbD%2BboHuj1stDzsJSecKkVtRJNQ79oa0zG4LpFmM8h2nYG6IC9NlvTmnU0IdrZwfvz3H%2BrTJTBTIjUlPpA%2FEnTUg%2BFdXZCDu7qw5GQ9zWQs9%2Bh4gZsZzcTMV%2B%2BJ3UIbvrJk%2B8dvsTEwLh%2FdEzZbpQmXSceSrxcl58Isa8ME%2BW7FbolwI7fbi7lJ8nR14%2B3llTg1wlqpkxGorAj56EMwWZHrTjL5nG7vAtKMYPIScX5GpgGpT8HSfdj0bOFxeLt6cvwPrCYw6momTB0UeTk09fDqUUkCJa56Gpaw4sqEUJx9%2F%2BclNrAP0DEOaHYfSVyia0p0VQmq%2BrD5%2F4ZZas4Wfg0mgVA5w1AZ5yBURn1%2Baa6V527Tb4hW2JpnnIeCcX%2B%2BHrQCz6tz3phvC7%2BNzFb85s0n%2FwIAAP%2F%2FAQAA%2F%2F%2FjiVI0dAQAAA%3D%3D
173.233.137.52200 OK 7 B URL HTTP/1.1 hoaxbasesalad.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSQWgkRReu3j%2B%2FIHuQVS8edPuoIJPu6ZlkxhWCMUaC2SS7Wcm5uqp6Uqa6q6nqnp4ED9EFWfDgeBO89HyTbIgussGzKBMvEhBsD5KDuXp1EfaiB5nJQPBB1Xuvvnf4vu%2FVJ4P8gnjI6fnGbb0nlaKzzZrnvrolE64L667dc32v5t1yt2Qy17jl9saX6b7he82a95r7rmA7erbu%2BZ7ne767LI2IdG92gkKmj9p%2Bre3VGvWa32ygZ%2F7b29yBpQ5494I8D8mr%2F2%2F%2FdALJRkjix0vC7mQ6ff2dOFc00wZdfvR%2BspPoIkF8VUbGQZQcTaehbUXIF9egk6OpAujuwVgBQlkR5zcfYXI0pYmwe3jJNFQQCUJ%2BHUV3BKFGkHQEpu9D8l8IwDjW1pHED9e0KejuJUrHaEVmnv4FWVRk5vcXkcTfLCrZcze1yjOpE4teVEL2RpCdEdL8FNmeA1mcgmUfQ%2FKfyezTVSTxwbpVGpKXE%2FVSjiCjEZTog1oH%2BfhIB3nkIE8dxPzcpc125HnzURgFQavBGAsCxpqtOd7kQaMVecjZmF4fWdoHU30ws4%2FU7GNH9mHyH2C3S1juwGYVce7so8tLFIKgsAQFJSgkQZERFN3ykCtbt%2BVDrmwe%2BtNcn%2BagHOqsM6CHOuuIhAzSC3Jj7Ivz3GdfYkecu80g8JtBizeE16JNP%2FJYMDfXroeUhzSMmgGsLCHttYnUPVmRV24MkMqKPPPtswjpKaw6BZMvgOYvgxbD%2BboHuj1stDzsJSecKkVtRJNQ79oa0zG4LpFmM8h2nYG6IC9NlvTmnU0IdrZwfvz3H%2BrTJTBTIjUlPpA%2FEnTUg%2BFdXZCDu7qw5GQ9zWQs9%2Bh4gZsZzcTMV%2B%2BJ3UIbvrJk%2B8dvsTEwLh%2FdEzZbpQmXSceSrxcl58Isa8ME%2BW7FbolwI7fbi7lJ8nR14%2B3llTg1wlqpkxGorAj56EMwWZHrTjL5nG7vAtKMYPIScX5GpgGpT8HSfdj0bOFxeLt6cvwPrCYw6momTB0UeTk09fDqUUkCJa56Gpaw4sqEUJx9%2F%2BclNrAP0DEOaHYfSVyia0p0VQmq%2BrD5%2F4ZZas4Wfg0mgVA5w1AZ5yBURn1%2Baa6V527Tb4hW2JpnnIeCcX%2B%2BHrQCz6tz3phvC7%2BNzFb85s0n%2FwIAAP%2F%2FAQAA%2F%2F%2FjiVI0dAQAAA%3D%3D
IP 173.233.137.52:0
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSQWgkRReu3j%2B%2FIHuQVS8edPuoIJPu6ZlkxhWCMUaC2SS7Wcm5uqp6Uqa6q6nqnp4ED9EFWfDgeBO89HyTbIgussGzKBMvEhBsD5KDuXp1EfaiB5nJQPBB1Xuvvnf4vu%2FVJ4P8gnjI6fnGbb0nlaKzzZrnvrolE64L667dc32v5t1yt2Qy17jl9saX6b7he82a95r7rmA7erbu%2BZ7ne767LI2IdG92gkKmj9p%2Bre3VGvWa32ygZ%2F7b29yBpQ5494I8D8mr%2F2%2F%2FdALJRkjix0vC7mQ6ff2dOFc00wZdfvR%2BspPoIkF8VUbGQZQcTaehbUXIF9egk6OpAujuwVgBQlkR5zcfYXI0pYmwe3jJNFQQCUJ%2BHUV3BKFGkHQEpu9D8l8IwDjW1pHED9e0KejuJUrHaEVmnv4FWVRk5vcXkcTfLCrZcze1yjOpE4teVEL2RpCdEdL8FNmeA1mcgmUfQ%2FKfyezTVSTxwbpVGpKXE%2FVSjiCjEZTog1oH%2BfhIB3nkIE8dxPzcpc125HnzURgFQavBGAsCxpqtOd7kQaMVecjZmF4fWdoHU30ws4%2FU7GNH9mHyH2C3S1juwGYVce7so8tLFIKgsAQFJSgkQZERFN3ykCtbt%2BVDrmwe%2BtNcn%2BagHOqsM6CHOuuIhAzSC3Jj7Ivz3GdfYkecu80g8JtBizeE16JNP%2FJYMDfXroeUhzSMmgGsLCHttYnUPVmRV24MkMqKPPPtswjpKaw6BZMvgOYvgxbD%2BboHuj1stDzsJSecKkVtRJNQ79oa0zG4LpFmM8h2nYG6IC9NlvTmnU0IdrZwfvz3H%2BrTJTBTIjUlPpA%2FEnTUg%2BFdXZCDu7qw5GQ9zWQs9%2Bh4gZsZzcTMV%2B%2BJ3UIbvrJk%2B8dvsTEwLh%2FdEzZbpQmXSceSrxcl58Isa8ME%2BW7FbolwI7fbi7lJ8nR14%2B3llTg1wlqpkxGorAj56EMwWZHrTjL5nG7vAtKMYPIScX5GpgGpT8HSfdj0bOFxeLt6cvwPrCYw6momTB0UeTk09fDqUUkCJa56Gpaw4sqEUJx9%2F%2BclNrAP0DEOaHYfSVyia0p0VQmq%2BrD5%2F4ZZas4Wfg0mgVA5w1AZ5yBURn1%2Baa6V527Tb4hW2JpnnIeCcX%2B%2BHrQCz6tz3phvC7%2BNzFb85s0n%2FwIAAP%2F%2FAQAA%2F%2F%2FjiVI0dAQAAA%3D%3D HTTP/1.1
Host: hoaxbasesalad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/
Cookie: u_pl=17797019; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 25 Mar 2023 16:23:14 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 4a5093fd1b194b0aee84ded63daef3a8
Strict-Transport-Security: max-age=0; includeSubdomains
hoaxbasesalad.com/pixel/sbs?c=1
173.233.137.52200 OK 0 B URL HTTP/1.1 hoaxbasesalad.com/pixel/sbs?c=1
IP 173.233.137.52:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbs?c=1 HTTP/1.1
Host: hoaxbasesalad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/
Cookie: u_pl=17797019; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 25 Mar 2023 16:23:14 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash c4edba3edebc04e8a6d986d114679aff
45e3d34472d5e6223c5cdc74037359a183bbffd3
27fd9b4a89436e76a924e69cf4cd913e14aff5e4ec050dcbb49274cd4118482b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "27FD9B4A89436E76A924E69CF4CD913E14AFF5E4EC050DCBB49274CD4118482B"
Last-Modified: Fri, 24 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11517
Expires: Sat, 25 Mar 2023 19:35:12 GMT
Date: Sat, 25 Mar 2023 16:23:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash c4edba3edebc04e8a6d986d114679aff
45e3d34472d5e6223c5cdc74037359a183bbffd3
27fd9b4a89436e76a924e69cf4cd913e14aff5e4ec050dcbb49274cd4118482b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "27FD9B4A89436E76A924E69CF4CD913E14AFF5E4EC050DCBB49274CD4118482B"
Last-Modified: Fri, 24 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11517
Expires: Sat, 25 Mar 2023 19:35:12 GMT
Date: Sat, 25 Mar 2023 16:23:15 GMT
Connection: keep-alive
cdn.creative-bars1.com/sb/notifications/software/us/ios/desk-new-big/SFUIText-Regular.woff
172.64.166.9200 OK 73 kB URL HTTP/2 cdn.creative-bars1.com/sb/notifications/software/us/ios/desk-new-big/SFUIText-Regular.woff
IP 172.64.166.9:0
File type Web Open Font Format, TrueType, length 72696, version 11.0\012- data
Hash 53d97caea7ef8a12beab745fcc5744e1
b8c70e4f67957e4f2cb809a58d84c773a3bde6d0
542772868e28df6d786b6f00f9dec929cba214d928cb013b32588485b46f8715
GET /sb/notifications/software/us/ios/desk-new-big/SFUIText-Regular.woff HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://dallasfanboys.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:23:15 GMT
content-type: application/font-woff
content-length: 72696
last-modified: Wed, 17 Feb 2021 11:42:38 GMT
etag: "602d012e-11bf8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hxo0H9uuk8vK3TISOellYMpYHPrWcsVGVSE4vk79BE7m3qJxXFpXot6vxzv4GxLzcSjgxj89N8NK2AV9BbBYoAGUgGscRKc2Qj7lgUrFdsI1xgR0y4Wlw2rK4PgeEKoOkbdKxqWAv7ax"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad87f4d2c297731-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
unseenreport.com/pxf.gif?uuid=b28a4333-03e1-4d19-936c-0fdb1f6c1835&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=cd2652b6cf04f14e2291430ba51281ca&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=16
192.243.61.225200 OK 1 B URL HTTP/1.1 unseenreport.com/pxf.gif?uuid=b28a4333-03e1-4d19-936c-0fdb1f6c1835&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=cd2652b6cf04f14e2291430ba51281ca&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=16
IP 192.243.61.225:0
ASN #39572 DataWeb Global Group B.V.
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=b28a4333-03e1-4d19-936c-0fdb1f6c1835&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=cd2652b6cf04f14e2291430ba51281ca&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=16 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 25 Mar 2023 16:23:15 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1e34c365c3babea3ed5369f3bf0e8359
Strict-Transport-Security: max-age=0; includeSubdomains
unseenreport.com/pxf.gif?uuid=b28a4333-03e1-4d19-936c-0fdb1f6c1835&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=7f629424d4a6abe55cb453c13d501745&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=16
192.243.61.225200 OK 1 B URL HTTP/1.1 unseenreport.com/pxf.gif?uuid=b28a4333-03e1-4d19-936c-0fdb1f6c1835&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=7f629424d4a6abe55cb453c13d501745&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=16
IP 192.243.61.225:0
ASN #39572 DataWeb Global Group B.V.
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=b28a4333-03e1-4d19-936c-0fdb1f6c1835&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=7f629424d4a6abe55cb453c13d501745&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=16 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 25 Mar 2023 16:23:15 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a91de11277fd4819937f96ecdb9dd662
Strict-Transport-Security: max-age=0; includeSubdomains
unseenreport.com/pxf.gif?uuid=b28a4333-03e1-4d19-936c-0fdb1f6c1835&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=5331538d4e08a51f0c36692badbabf53&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=16
192.243.61.225200 OK 1 B URL HTTP/1.1 unseenreport.com/pxf.gif?uuid=b28a4333-03e1-4d19-936c-0fdb1f6c1835&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=5331538d4e08a51f0c36692badbabf53&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=16
IP 192.243.61.225:0
ASN #39572 DataWeb Global Group B.V.
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert quad9 Sinkholed
GET /pxf.gif?uuid=b28a4333-03e1-4d19-936c-0fdb1f6c1835&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.1055&b_frame=0&pk=5331538d4e08a51f0c36692badbabf53&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=16 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Sat, 25 Mar 2023 16:23:15 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 3ed8cc68167ede6df629d971b215d81e
Strict-Transport-Security: max-age=0; includeSubdomains
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 1faaa6e2a96df65e726bea8a873f5a1d
11b1d41aecbf8830cef3bb3d79667c3ae14fb7e5
ca8c2aeb31c285308a18a4eb8680fb9a1f52d26a61f83e2ca4a83b921aa49552
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 16:23:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
142.250.74.65200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 142.250.74.65:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Sat, 25 Mar 2023 16:23:15 GMT
expires: Sat, 25 Mar 2023 16:23:15 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
142.250.74.65200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP 142.250.74.65:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Mar 2023 02:02:12 GMT
expires: Fri, 22 Mar 2024 02:02:12 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
vary: Accept-Encoding
age: 224463
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css?ver=6.1.1
104.18.11.207200 OK 0 B URL HTTP/2 maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css?ver=6.1.1
IP 104.18.11.207:0
GET /font-awesome/4.7.0/css/font-awesome.min.css?ver=6.1.1 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:23:11 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"269550530cc127b6aa5a35925a7de6ce"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 08/20/2022 02:30:56
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 601
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 7ac5940fedf45440127c4798515ec440
cdn-cache: HIT
cf-cache-status: HIT
age: 11219892
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7ad87f3aecf11c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
friendshipmale.com/sfp.js
104.21.234.92200 OK 0 B URL HTTP/2 friendshipmale.com/sfp.js
IP 104.21.234.92:0
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:23:12 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: ac64335540dae08d9cf44277f9a25eac
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Sat, 25 Mar 2023 16:23:12 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KmO9L%2B81XoUnIuWcC1QtJ%2Bq01iU88dgpOwK%2BV5lp3PAiYISoUJ3ZkWesaUN6AXV%2BHc%2BoOcX3hVHhwhXZeyJojcqhMK5A9CzQoxMOeoVhC6xI%2FOfj9YSPXLz%2FWdKAi1ZkIfEZNjQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad87f406a65dca7-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Chivo%7CChivo:800,regular&subset=latin,latin&display=swap
172.217.21.170200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Chivo%7CChivo:800,regular&subset=latin,latin&display=swap
IP 172.217.21.170:0
GET /css?family=Chivo%7CChivo:800,regular&subset=latin,latin&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 25 Mar 2023 16:23:14 GMT
date: Sat, 25 Mar 2023 16:23:14 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/notifications/software/us/ios/desk-new-big/css/animate.css
172.64.166.9200 OK 0 B URL HTTP/2 cdn.creative-bars1.com/sb/notifications/software/us/ios/desk-new-big/css/animate.css
IP 172.64.166.9:0
GET /sb/notifications/software/us/ios/desk-new-big/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dallasfanboys.com
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:23:14 GMT
content-type: text/css
last-modified: Wed, 17 Feb 2021 11:44:02 GMT
etag: W/"602d0182-1358d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=36UVHrp38e7jth7cKT7TszdKLDwZ2IHrLCtxICRn4LWmEnMSrDSdd2z6mBLS2MTz2TpZUucn1uV8FOyfEB2rILNrfwiqjVg28ftr8XDIBmc0dweeoYerB1VBG6ELFn5m4fJ5Z6SLBwCE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad87f4a4f147731-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/notifications/software/us/ios/desk-new-big/css/style.css
172.64.166.9200 OK 0 B URL HTTP/2 cdn.creative-bars1.com/sb/notifications/software/us/ios/desk-new-big/css/style.css
IP 172.64.166.9:0
GET /sb/notifications/software/us/ios/desk-new-big/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dallasfanboys.com
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:23:14 GMT
content-type: text/css
last-modified: Thu, 23 Sep 2021 12:16:53 GMT
etag: W/"614c7035-145e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KGRA%2BzuqcuGqpzSNsxjAtE1w6eizm7FS%2BtRmAqKAuq7WV%2BxoAclPD1p1PYCinNcG7lXJTwcRwisc3XqRo2zcWe%2FMdxeQ%2FDv3AWSDs6Yfea5TOn%2FfXK3W%2Bz1HeecqA2S9kgIY0z%2BlazXB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad87f4a4f2d7731-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/notifications/software/us/ios/desk-new-big/js/script.js
172.64.166.9200 OK 0 B URL HTTP/2 cdn.creative-bars1.com/sb/notifications/software/us/ios/desk-new-big/js/script.js
IP 172.64.166.9:0
GET /sb/notifications/software/us/ios/desk-new-big/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dallasfanboys.com
Connection: keep-alive
Referer: https://dallasfanboys.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Mar 2023 16:23:14 GMT
content-type: application/javascript
last-modified: Wed, 17 Feb 2021 11:44:05 GMT
etag: W/"602d0185-183"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YXhS%2F3anYj4JDzDGEH6IX3JcdCPBDWc5GPAvqLIwLc39LsWzKjnePGV%2Fk9xO1URwoqNKZjVJQpR29FH%2Fp5YUNdZDygiE23WOf5%2FnGS6r2oMsgHo7bUSIM0t5oKS7lyXAf66vQT%2FAmBrn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ad87f4a4f237731-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2