r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16263
Expires: Fri, 02 Dec 2022 08:27:31 GMT
Date: Fri, 02 Dec 2022 03:56:28 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0c748388899e8a8d3680355da2ea5020
903c620cd137613daafb0da0508c37b2f4a67212
39eab80e022a9a1732872d9926b0ace80f818ec5c535e36a18b539ea63786fb2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6278
Cache-Control: max-age=116362
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:56:28 GMT
Etag: "63888270-1d7"
Expires: Sat, 03 Dec 2022 12:15:50 GMT
Last-Modified: Thu, 01 Dec 2022 10:31:12 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
onairmicflags.com/wp-includes/pomo/wells/index.html
72.52.180.146302 Found 243 B URL HTTP/1.1 onairmicflags.com/wp-includes/pomo/wells/index.html
IP 72.52.180.146:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f1772d695b389d10f59b87cfe04b5527
8028b1da5b7db26930257a01425c2ee1caecc841
17e2710a0eeec0f915dd9935458da7eec371196758e6b894def0d5d5ebe74d1a
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/pomo/wells/index.html HTTP/1.1
Host: onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Fri, 02 Dec 2022 03:56:28 GMT
Server: Apache
Location: https://onairmicflags.com/wp-includes/pomo/wells/index.html
Cache-Control: max-age=600
Expires: Fri, 02 Dec 2022 04:06:28 GMT
Content-Length: 243
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 02 Dec 2022 03:18:10 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2298
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10528
Expires: Fri, 02 Dec 2022 06:51:56 GMT
Date: Fri, 02 Dec 2022 03:56:28 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: grQo7pelQbUr/a6vMChgzENdYmks+sKW8rsTlrxfxrsxWHfS2Ri0MTIpytHh1xXhC76BLc2N5hc=
x-amz-request-id: 3Z3ZR0SACY57YW9Q
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 02 Dec 2022 03:46:33 GMT
age: 595
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 03:56:28 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 02 Dec 2022 03:11:15 GMT
cache-control: public,max-age=3600
age: 2713
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1f88399f3fdd89dbb9ca1229cb67143a
325c9dbfd932cf9a6fb9fab2dd8e27083f55a9a3
831ecd45dcd2d5ae2ae86cd63ea5e94ecd85281b7e51054af5df9a6386fb8d79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6267
Cache-Control: max-age=111287
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:56:29 GMT
Etag: "63886ea9-1d7"
Expires: Sat, 03 Dec 2022 10:51:16 GMT
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.163.49.154101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.163.49.154:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: DI5hmBHWFu3aPd0Icrogyw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: uiyOotA6V2e9a6hIEtn0i4m+Wi8=
onairmicflags.com/wp-includes/pomo/wells/index.html
72.52.180.146301 Moved Permanently 0 B URL HTTP/2 onairmicflags.com/wp-includes/pomo/wells/index.html
IP 72.52.180.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/pomo/wells/index.html HTTP/1.1
Host: onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
location: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
vary: User-Agent
content-length: 0
content-type: text/html; charset=UTF-8
date: Fri, 02 Dec 2022 03:56:28 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15128
Expires: Fri, 02 Dec 2022 08:08:38 GMT
Date: Fri, 02 Dec 2022 03:56:30 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15128
Expires: Fri, 02 Dec 2022 08:08:38 GMT
Date: Fri, 02 Dec 2022 03:56:30 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15128
Expires: Fri, 02 Dec 2022 08:08:38 GMT
Date: Fri, 02 Dec 2022 03:56:30 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15128
Expires: Fri, 02 Dec 2022 08:08:38 GMT
Date: Fri, 02 Dec 2022 03:56:30 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15128
Expires: Fri, 02 Dec 2022 08:08:38 GMT
Date: Fri, 02 Dec 2022 03:56:30 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F092f8542-1ed2-47c2-82aa-d5ef970a77ca.png
34.120.237.76200 OK 3.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F092f8542-1ed2-47c2-82aa-d5ef970a77ca.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 89e1a735e16f55c78fa75ae434294029
6c56f4015305eff04a99cec9758cd40bf4e5f704
26e8b042c0bbef2c7f93f77451563cf6e12af282251ef864652574be2b2c5b15
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F092f8542-1ed2-47c2-82aa-d5ef970a77ca.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3711
x-amzn-requestid: 68772438-16c4-40ab-a40e-860425d8301c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGyhHVsIAMFmsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e76-21d27db6708228002e738938;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:36:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JOCSKxy4WUDbS22Gd9BlyN1gmcDsDNlNWnT57KITGlNwfOe_Iaco9g==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:48:59 GMT
age: 22051
etag: "6c56f4015305eff04a99cec9758cd40bf4e5f704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa07af64d-c287-4b0a-9677-9a1000422afc.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa07af64d-c287-4b0a-9677-9a1000422afc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 498ab4412ed5cf977bc23e4e870894b0
23753fe8af09ec8ffa10eed4d201a71833885c99
036042656f15e42b4d1537c45f5b8e7190c70305fa9a69c1287c6739ad0b7122
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa07af64d-c287-4b0a-9677-9a1000422afc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7334
x-amzn-requestid: a6b8b420-8394-496b-8be8-26dee52e3887
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoHJOoAMF75g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-0b38d07f518c8b3134457df2;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 17nFm7AQdmRYS_af-EJ4XBVw8l3YudcphlpcZMveuVjvjhhYdkAQsw==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 22:33:10 GMT
age: 19400
etag: "23753fe8af09ec8ffa10eed4d201a71833885c99"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d147ccb10bda82b153a596c3c967cd6a
ffd0763f997e71a8c1458523fc17cafe8849dfdf
1cfeb90a4ba027195f903d938d4a0aac418a1c2f0b52215ec023263f15905971
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7591
x-amzn-requestid: e179862e-f840-4e50-a9dc-09f325479b9a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGgMFRZIAMFl7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e01-676a1571459f2d83488f2765;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: oB5K_ZCWWwCltMx8FQSjDdXRMzSTSyRLSYSLAooQXuCrUxadLUiWkA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 22:08:56 GMT
etag: "ffd0763f997e71a8c1458523fc17cafe8849dfdf"
content-type: image/jpeg
age: 20854
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F356e23df-cb76-452a-b299-da5410086837.png
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F356e23df-cb76-452a-b299-da5410086837.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 82ea44d6cb116fb1f5752ce9bb87e345
f799dfd89a4f5a452dc837b8616549f578fb4184
e9087e7fce332289d67d4d5646d0233c2f2d871cc88dc1c51d5ea1e9f2fb5abd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F356e23df-cb76-452a-b299-da5410086837.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15495
x-amzn-requestid: 977cdbce-3a9c-4006-a5a1-5c4c82bd4a94
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfHDIFxzIAMFzEw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891ee0-4b2cb3a16ca745537a8caf8c;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:38:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: nwKxQKsw8g5zCzfMFu_XpOac5rhImez29TKrycGJzozZyHTzoCHASw==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 22:20:06 GMT
age: 20184
etag: "f799dfd89a4f5a452dc837b8616549f578fb4184"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
34.120.237.76200 OK 2.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b47431190f34eccf0a6efb98e2a32b7d
9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704
08d3b6be354cafb70c20e6865788cb375adbf88d47711651fe1a3b855094daf2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2942
x-amzn-requestid: ed26679f-cd56-477f-9914-f9afbcaaeea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoGFYoAMFWgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-4ec6bebe21656d5026456994;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Fw6nrporwF27NW0-vXpaolW79nDXLF2RyS-lqhhp1osHt7q98VpI3g==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:34:47 GMT
age: 22903
etag: "9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b986f9fcbeca91ed5c8d58fbfaf47d19
6e6c8bd2bce144cc4da1cd7be375b046b60dca79
07a8938d2841f8c13bd646f4e79e41e46acd6463aa019cd70871b3741f12bb4f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 03:56:30 GMT
content-type: image/jpeg
content-length: 6174
x-amzn-requestid: 9fc249f5-06e3-40f5-9e87-3da4238b63f0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZ0QvF-QoAMF-dA=
x-content-type-options: nosniff
etag: "6e6c8bd2bce144cc4da1cd7be375b046b60dca79"
x-amzn-trace-id: Root=1-638700d1-7f3c2d381a521eb541f22f01;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 07:05:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: VsLCjGoZpPd2VvFuiS4ZtRD2QqQJSh77z-wkWfvB_L3BeUXcLXDamQ==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-includes/pomo/wells/index.html
72.52.180.146404 Not Found 21 kB URL HTTP/2 www.onairmicflags.com/wp-includes/pomo/wells/index.html
IP 72.52.180.146:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (26347), with CRLF, LF line terminators
Hash 55101812bbb92e911a701b6b5e51910c
616ac4a98562497d276f199f6e56b91391cb24d8
f5d5910c92e933916f89b52d79d277869b27cd3b9490f553d3295c38fa959a8a
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/pomo/wells/index.html HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://www.onairmicflags.com/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 21280
content-type: text/html; charset=UTF-8
date: Fri, 02 Dec 2022 03:56:30 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8cd876589951719c94a6d49d1494bdbd
01600c8bb95fac543696e509b3e452b90d844572
e03942321526a2303220b1abd51f82f1d4cf80e0dd22a2582cf809b8bd729521
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:56:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9017551118f933b99e215c8a4a8cfe15
3c7477adccaaa4deb8e14c69059e7e8b4622a54d
b1f47d3a19df0772e3976ffd2580889d5cefc310c34a94d6284260269b0126f1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5684
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:56:31 GMT
Etag: "6388011f-1d7"
Last-Modified: Fri, 02 Dec 2022 02:21:47 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
www.paypalobjects.com/webstatic/en_US/i/buttons/cc-badges-ppmcvdam.png
151.101.194.133200 OK 15 kB URL HTTP/2 www.paypalobjects.com/webstatic/en_US/i/buttons/cc-badges-ppmcvdam.png
IP 151.101.194.133:0
File type PNG image data, 316 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash 759a0df024c6ebc5a9359ddd5517a0db
614ccde411416b5936363f1f6cf4e463f8d6dcf2
b19a7b8e5abb1c7d72201ef6652a594359d29fe429336f939edd16559ff55805
GET /webstatic/en_US/i/buttons/cc-badges-ppmcvdam.png HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: s-maxage=31536000, public,max-age=3600
content-type: image/png
dc: ccg11-origin-www-1.paypal.com
etag: "y7YBC/WzLUozYGhAvZy3buMEniGNu52zvevLgKRSmAw"
fastly-io-info: ifsz=15330 idim=316x40 ifmt=png ofsz=14597 odim=316x40 ofmt=png
fastly-stats: io=1
paypal-debug-id: 19c92130a7d31
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-000000000000000000019c92130a7d31-87f3eb7aaf4a6f55-01
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 02 Dec 2022 03:56:31 GMT
x-served-by: cache-sjc10027-SJC, cache-bma1679-BMA
x-cache: HIT, HIT
x-cache-hits: 18844, 1
x-timer: S1669953391.495457,VS0,VE1
x-content-type-options: nosniff
strict-transport-security: max-age=31557600
content-length: 14597
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-135434678-1
142.250.74.40200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-135434678-1
IP 142.250.74.40:0
File type ASCII text, with very long lines (1921)
Hash 08a5f7f9ac35082694c5b5004903255f
2b63988d2b6f44fd13d49b998a5ab35963d58a33
97c152db61c57193ae1081a0da418f4a2f69c2f940d5bb8a173dc02b148cfb43
GET /gtag/js?id=UA-135434678-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 02 Dec 2022 03:56:31 GMT
expires: Fri, 02 Dec 2022 03:56:31 GMT
cache-control: private, max-age=900
last-modified: Fri, 02 Dec 2022 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43566
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.7.5
72.52.180.146200 OK 2.0 kB URL HTTP/2 www.onairmicflags.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.7.5
IP 72.52.180.146:0
File type ASCII text, with very long lines (10435), with no line terminators
Hash 38b1f483d4bf6b1548990385c8673746
1668edb02c5170be308368292a4c12033d0a42f4
98138d83d7cb12e99802ba034b400a67e0d7b6e378d8bcd1b4d9f4fe44ce1111
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.7.5 HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 29 Nov 2022 14:24:26 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:31 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1962
content-type: text/css
date: Fri, 02 Dec 2022 03:56:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.1
72.52.180.146200 OK 3.3 kB URL HTTP/2 www.onairmicflags.com/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.1
IP 72.52.180.146:0
File type ASCII text, with very long lines (21597)
Hash d7ece14f39cf3d91467cf08eb9db77d0
6a521873f80dfb838f8351d3a99a0369e827895f
7c3eb69a15fa684ac262647ce64031c612f4ed9c9dba32e3e8e455ea145271b0
GET /wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.1 HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 29 Nov 2022 14:24:25 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:31 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3295
content-type: text/css
date: Fri, 02 Dec 2022 03:56:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-content/plugins/customer-reviews-woocommerce/css/frontend.css?ver=5.9.0
72.52.180.146200 OK 9.6 kB URL HTTP/2 www.onairmicflags.com/wp-content/plugins/customer-reviews-woocommerce/css/frontend.css?ver=5.9.0
IP 72.52.180.146:0
Hash 224dd9bb939761715b9347680f3e8187
9ecb0d3d035767e9b24bd5dcb5c5290c20f5d9b1
a602155e520bdf39f0e92aa4c9906929222bf09742820506f69d1eec8c01ea5c
GET /wp-content/plugins/customer-reviews-woocommerce/css/frontend.css?ver=5.9.0 HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 29 Nov 2022 14:24:21 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:31 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 9558
content-type: text/css
date: Fri, 02 Dec 2022 03:56:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
72.52.180.146200 OK 12 kB URL HTTP/2 www.onairmicflags.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 72.52.180.146:0
File type ASCII text, with very long lines (47826)
Hash 8fa87dd23394a22621248ec378d2af59
9305bc637a89b1700d7f56a19a80bd32b0feb2f7
c162f7de24fa2d4e93e0da254ef287ff72f4a3e03f42443265097968351388dc
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 29 Nov 2022 14:20:51 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:31 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 12518
content-type: text/css
date: Fri, 02 Dec 2022 03:56:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-content/plugins/woocommerce-products-filter/js/icheck/skins/flat/blue.css?ver=1.3.0
72.52.180.146200 OK 447 B URL HTTP/2 www.onairmicflags.com/wp-content/plugins/woocommerce-products-filter/js/icheck/skins/flat/blue.css?ver=1.3.0
IP 72.52.180.146:0
Hash 7ae40fa3b25b8642220f1160a5e972c7
2c018f28673641dc54b4754719ce24df13cfee4b
5ae3e1a2010671ee5196494f416bea9583942fb46a19f9249117ae3f2987bce2
GET /wp-content/plugins/woocommerce-products-filter/js/icheck/skins/flat/blue.css?ver=1.3.0 HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Sep 2022 16:55:35 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:31 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 447
content-type: text/css
date: Fri, 02 Dec 2022 03:56:31 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 188c50963e7939b1f26a31dbcb8c8200
859416e6148ea6618584e53604efcf072bb989cc
3a313cd3c1693a886bfbf6ffc6fbac78f87e6ded2b9a7749553444ada65ce36e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:56:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.onairmicflags.com/wp-content/plugins/woocommerce-products-filter/js/chosen/chosen.min.css?ver=1.3.0
72.52.180.146200 OK 2.1 kB URL HTTP/2 www.onairmicflags.com/wp-content/plugins/woocommerce-products-filter/js/chosen/chosen.min.css?ver=1.3.0
IP 72.52.180.146:0
File type ASCII text, with very long lines (372)
Hash 41c76c43dd732fa832218b8d5334e2e0
1a0a078cfab86bd27309d276be115032dc5c2d3f
a7dff263eb480bd9cb4a9ec9c567ad5f51da3f21c58a8a1c707e85911a4bf2c7
GET /wp-content/plugins/woocommerce-products-filter/js/chosen/chosen.min.css?ver=1.3.0 HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Sep 2022 16:55:35 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:31 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2079
content-type: text/css
date: Fri, 02 Dec 2022 03:56:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-content/plugins/customer-reviews-woocommerce/css/badges.css?ver=5.9.0
72.52.180.146200 OK 2.8 kB URL HTTP/2 www.onairmicflags.com/wp-content/plugins/customer-reviews-woocommerce/css/badges.css?ver=5.9.0
IP 72.52.180.146:0
Hash e9ccf7173670d47a572accb51454c0ce
b75dc1c6012faa62ae026fb6a7305915a09326f7
cb67967a547c10e25be4633b2a0af58614835c9d55bf1c8fb80b0e7e11088b87
GET /wp-content/plugins/customer-reviews-woocommerce/css/badges.css?ver=5.9.0 HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 29 Nov 2022 14:24:21 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:31 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2840
content-type: text/css
date: Fri, 02 Dec 2022 03:56:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.5
72.52.180.146200 OK 24 kB URL HTTP/2 www.onairmicflags.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.5
IP 72.52.180.146:0
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Hash f4b081e0f93afb4620f474fc36155678
f8e737ec06645c43cb94388c865609f6ce34e340
14c731b71ee9a157791e5d07c14fc669a122d9016f61581feb79f5d12fba95ac
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.7.5 HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 29 Nov 2022 14:24:26 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:31 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 24470
content-type: text/css
date: Fri, 02 Dec 2022 03:56:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-content/plugins/woocommerce-products-filter/css/front.css?ver=1.3.0
72.52.180.146200 OK 5.0 kB URL HTTP/2 www.onairmicflags.com/wp-content/plugins/woocommerce-products-filter/css/front.css?ver=1.3.0
IP 72.52.180.146:0
Hash db9572681a3d7cbde933820d58386c62
0183893a01dfc564ccc18bb7788a53818a4385ae
371ecbc4a1f6853f42d4f1d56d8a5a589b88a0162c0b2de2cdd2692d2a19d29a
GET /wp-content/plugins/woocommerce-products-filter/css/front.css?ver=1.3.0 HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Sep 2022 16:55:35 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:31 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4953
content-type: text/css
date: Fri, 02 Dec 2022 03:56:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=7.1.0
72.52.180.146200 OK 2.6 kB URL HTTP/2 www.onairmicflags.com/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=7.1.0
IP 72.52.180.146:0
File type ASCII text, with very long lines (17809), with no line terminators
Hash d45c9e0b4109fd68bc2eaae40d01f61a
f0fd80fcb3e8b7a9d95782d0f0c79ddc19b2fa96
072aa95bd2ad493914030593b84c611b2dfcc39444f726ddab52751f4b4bf926
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=7.1.0 HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 29 Nov 2022 14:24:26 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:31 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2554
content-type: text/css
date: Fri, 02 Dec 2022 03:56:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-content/plugins/woo-mailerlite/public/css/style.css?ver=6.1.1
72.52.180.146200 OK 61 B URL HTTP/2 www.onairmicflags.com/wp-content/plugins/woo-mailerlite/public/css/style.css?ver=6.1.1
IP 72.52.180.146:0
File type ASCII text, with no line terminators
Hash 70a0c5b4413be4deecf94998ecb0bdad
f303e8a7b79a4d4438f6f236b03e75308f13baec
e4e0a3a013e5a5ca3a040c9600a14b4236e5afa1344f82507e2112e4889551bd
GET /wp-content/plugins/woo-mailerlite/public/css/style.css?ver=6.1.1 HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 29 Nov 2022 14:24:24 GMT
accept-ranges: bytes
content-length: 61
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:31 GMT
vary: User-Agent
content-type: text/css
date: Fri, 02 Dec 2022 03:56:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=7.1.0
72.52.180.146200 OK 8.9 kB URL HTTP/2 www.onairmicflags.com/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=7.1.0
IP 72.52.180.146:0
File type Unicode text, UTF-8 text, with very long lines (62781), with no line terminators
Hash a15d752339be71e98862a16809456334
49240ae9a1cb1989fafbed8fac7822ba2d9922f3
69c86c79af25482e2a79220ca2c403dd35471a8a15b75919b246244119d8524a
GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=7.1.0 HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 29 Nov 2022 14:24:26 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:31 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 8897
content-type: text/css
date: Fri, 02 Dec 2022 03:56:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-content/plugins/woo-mailerlite/public/js/public.js?ver=1.7.15
72.52.180.146200 OK 354 B URL HTTP/2 www.onairmicflags.com/wp-content/plugins/woo-mailerlite/public/js/public.js?ver=1.7.15
IP 72.52.180.146:0
Hash c4d9bf9927747787a444087ce14f90d7
8e6ae2e03144a4e3158c0c53dd122f06d7ad7e61
d402549356d628cddb6d4860668382f2a7644e6b2f2e32f786749c972c986412
GET /wp-content/plugins/woo-mailerlite/public/js/public.js?ver=1.7.15 HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 29 Nov 2022 14:24:24 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:31 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 354
content-type: application/javascript
date: Fri, 02 Dec 2022 03:56:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
72.52.180.146200 OK 4.2 kB URL HTTP/2 www.onairmicflags.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 72.52.180.146:0
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 09 Dec 2020 13:47:29 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:31 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 4169
content-type: application/javascript
date: Fri, 02 Dec 2022 03:56:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-content/et-cache/global/et-divi-customizer-global.min.css?ver=1669732186
72.52.180.146200 OK 3.0 kB URL HTTP/2 www.onairmicflags.com/wp-content/et-cache/global/et-divi-customizer-global.min.css?ver=1669732186
IP 72.52.180.146:0
File type ASCII text, with very long lines (16266), with CR line terminators
Hash 1b8e5db35d594417ba90bc1a8e38272e
86b0a1ff20a6a184efefb3051d8af9e3e317bb4b
3ef9c3665d6455c675011b858e2077525395d4cc44452a78f3047dac6c382005
GET /wp-content/et-cache/global/et-divi-customizer-global.min.css?ver=1669732186 HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 29 Nov 2022 14:29:46 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:31 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3035
content-type: text/css
date: Fri, 02 Dec 2022 03:56:31 GMT
server: Apache
X-Firefox-Spdy: h2
secure.visionarycompany52.com/js/263816.js
51.11.20.152200 OK 16 B URL HTTP/1.1 secure.visionarycompany52.com/js/263816.js
IP 51.11.20.152:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with no line terminators
Hash 3c8be73fe1a5b3032bc4532fc62c94d2
dc7f4b6caab5b69482deb07bfadb241557f52265
8822193a2fc84b0d258c70d83b3055d61de6d84195494029f7ddf2f80d6cdcd0
GET /js/263816.js HTTP/1.1
Host: secure.visionarycompany52.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 03:56:31 GMT
Content-Type: text/javascript
Content-Length: 16
Connection: keep-alive
Server: Kestrel
Cache-Control: no-store, must-revalidate
Pragma: no-cache
Expires: 0
Request-Context: appId=cid-v1:abe8a76f-f1a2-4b2e-9017-0ea36ffb5c20
www.onairmicflags.com/wp-content/plugins/woocommerce-products-filter/js/icheck/icheck.min.js?ver=1.3.0
72.52.180.146200 OK 2.3 kB URL HTTP/2 www.onairmicflags.com/wp-content/plugins/woocommerce-products-filter/js/icheck/icheck.min.js?ver=1.3.0
IP 72.52.180.146:0
File type ASCII text, with very long lines (524)
Hash 2d4eea803889d104d38c3441adde5737
f68eb2603a909e3c2fb673b34a15c4905b16a7f1
a6f494288addb285d14f72edc2d2f26a7276a85dedb63c2645a0cb19d85cb6e9
GET /wp-content/plugins/woocommerce-products-filter/js/icheck/icheck.min.js?ver=1.3.0 HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Sep 2022 16:55:35 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:31 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2267
content-type: application/javascript
date: Fri, 02 Dec 2022 03:56:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-content/themes/Divi-child/style.css?ver=4.18.0
72.52.180.146200 OK 2.2 kB URL HTTP/2 www.onairmicflags.com/wp-content/themes/Divi-child/style.css?ver=4.18.0
IP 72.52.180.146:0
File type ASCII text, with very long lines (2357)
Hash 791e5e1751e8379d566ca20973926c8a
51889bdf4b8eb917f5776036f6b7e916cc79fa73
1ff93a3bf574b110d04ead26ab58847750956f5a6c7037ca5c246525739c14d5
GET /wp-content/themes/Divi-child/style.css?ver=4.18.0 HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 31 Oct 2018 13:14:09 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:31 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2172
content-type: text/css
date: Fri, 02 Dec 2022 03:56:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-content/et-cache/notfound/et-divi-dynamic.css?ver=1669924047
72.52.180.146200 OK 18 kB URL HTTP/2 www.onairmicflags.com/wp-content/et-cache/notfound/et-divi-dynamic.css?ver=1669924047
IP 72.52.180.146:0
File type ASCII text, with very long lines (14447)
Hash 44f593f361ca06c6fec160e4177a25bb
52025e8848db3e346282fadd4fab15fe1fef0501
5bec417d9749d7abee43cc2dc5132810ef95bb737530b08e0e387da41304b812
GET /wp-content/et-cache/notfound/et-divi-dynamic.css?ver=1669924047 HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 01 Dec 2022 19:47:27 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:31 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 17935
content-type: text/css
date: Fri, 02 Dec 2022 03:56:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
72.52.180.146200 OK 31 kB URL HTTP/2 www.onairmicflags.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 72.52.180.146:0
File type ASCII text, with very long lines (65447)
Hash 1b5264c989379b828aff60f65a518a24
98641237f14ccb33ac114f54329a33bd0aa17eb7
6c8e7b78c6dbc13426810c905572db7589cf3e00264e30ce797fddb0b1092237
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 29 Nov 2022 14:20:51 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:31 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 30995
content-type: application/javascript
date: Fri, 02 Dec 2022 03:56:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-content/tablepress-combined.min.css?ver=24
72.52.180.146200 OK 2.4 kB URL HTTP/2 www.onairmicflags.com/wp-content/tablepress-combined.min.css?ver=24
IP 72.52.180.146:0
File type ASCII text, with very long lines (5150)
Hash 2a0f34a36cc804b28f0f1c319ef27c71
aef1f0d855cd2b8a5455ba5e1af4ddcbc2380f6a
27cc310780ddfa5a40b762285014f21c1d23913d812a4ebf3bbe4b566a618af6
GET /wp-content/tablepress-combined.min.css?ver=24 HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Mar 2022 14:30:22 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:31 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2363
content-type: text/css
date: Fri, 02 Dec 2022 03:56:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-content/uploads/2022/02/OnAirMicFlags_Logo.jpg
72.52.180.146200 OK 41 kB URL HTTP/2 www.onairmicflags.com/wp-content/uploads/2022/02/OnAirMicFlags_Logo.jpg
IP 72.52.180.146:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, progressive, precision 8, 300x149, components 3\012- data
Hash 0617fc0df8b3c40feeb5bb875ec4f59b
3175d10481821776199789173bdc11bbde02be53
a5963a6afcafffc62458d0506b19014e11e352af2741b976069d80991145b62a
GET /wp-content/uploads/2022/02/OnAirMicFlags_Logo.jpg HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 16 Feb 2022 15:41:47 GMT
accept-ranges: bytes
content-length: 40941
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:31 GMT
content-type: image/jpeg
date: Fri, 02 Dec 2022 03:56:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-content/plugins/woocommerce-products-filter/img/delete.png
72.52.180.146200 OK 4.0 kB URL HTTP/2 www.onairmicflags.com/wp-content/plugins/woocommerce-products-filter/img/delete.png
IP 72.52.180.146:0
File type PNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced\012- data
Hash 94269ff5a488963f93fc9e9f8f068cb1
bc9deaa8ca68b507613cba6c3435e9cc1e3e65de
c42f45f80fe632e3b75a0724b3c0733915022e89037af91a52205b1baab9bf34
GET /wp-content/plugins/woocommerce-products-filter/img/delete.png HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Sep 2022 16:55:35 GMT
accept-ranges: bytes
content-length: 3986
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:31 GMT
content-type: image/png
date: Fri, 02 Dec 2022 03:56:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.fitvids.js?ver=4.18.0
72.52.180.146200 OK 1.3 kB URL HTTP/2 www.onairmicflags.com/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.fitvids.js?ver=4.18.0
IP 72.52.180.146:0
File type HTML document, ASCII text
Hash 1ac5fd0d746d90e81bb4663d18a6d4c8
4566f66fbfc4cd3881967b31c39ba9299c5f4e6a
9e76b39ba632c5e8d0e3e91427ba4498cb4343394efbfb60fcc58dd0e8a09d3f
GET /wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.fitvids.js?ver=4.18.0 HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 12 Aug 2022 13:29:20 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:31 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1341
content-type: application/javascript
date: Fri, 02 Dec 2022 03:56:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-content/plugins/woocommerce-products-filter/js/front.js?ver=1.3.0
72.52.180.146200 OK 12 kB URL HTTP/2 www.onairmicflags.com/wp-content/plugins/woocommerce-products-filter/js/front.js?ver=1.3.0
IP 72.52.180.146:0
Hash 8c5c522e68692d3f25891622f1ab58a2
595920c2527fde132838b10acd98727fa50ec490
6a4ba8f7479f24562307e51ed08fc84c0e4cf15d5ad05fa2bb297e8beff1ab9d
GET /wp-content/plugins/woocommerce-products-filter/js/front.js?ver=1.3.0 HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Sep 2022 16:55:35 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:31 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 12014
content-type: application/javascript
date: Fri, 02 Dec 2022 03:56:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-content/plugins/woocommerce-products-filter/js/html_types/mselect.js?ver=1.3.0
72.52.180.146200 OK 723 B URL HTTP/2 www.onairmicflags.com/wp-content/plugins/woocommerce-products-filter/js/html_types/mselect.js?ver=1.3.0
IP 72.52.180.146:0
Hash 410ca650532a0a3c9381084738fb8979
252182cbed5fcb809f2dd0927fb7e25c0b260c94
316ced6aaf345338a94987197bbbd040e066463a4e1f7e9396ee931ea97c0bda
GET /wp-content/plugins/woocommerce-products-filter/js/html_types/mselect.js?ver=1.3.0 HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Sep 2022 16:55:35 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:31 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 723
content-type: application/javascript
date: Fri, 02 Dec 2022 03:56:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-content/themes/Divi/core/admin/js/common.js?ver=4.18.0
72.52.180.146200 OK 566 B URL HTTP/2 www.onairmicflags.com/wp-content/themes/Divi/core/admin/js/common.js?ver=4.18.0
IP 72.52.180.146:0
Hash c24ce4d2c7d7512601a6db3b24242297
ed36ea05d2e96b5706a803067c84206a8f7c3202
ce9cccfd1fbc822ac820d3ad47f5a3adabb312ac517a8c6473568bd2d2f98fb4
GET /wp-content/themes/Divi/core/admin/js/common.js?ver=4.18.0 HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 12 Aug 2022 13:29:20 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:31 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 566
content-type: application/javascript
date: Fri, 02 Dec 2022 03:56:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-content/plugins/customer-reviews-woocommerce/js/colcade.js?ver=5.9.0
72.52.180.146200 OK 3.1 kB URL HTTP/2 www.onairmicflags.com/wp-content/plugins/customer-reviews-woocommerce/js/colcade.js?ver=5.9.0
IP 72.52.180.146:0
Hash a91e3c5a28913c1ca57efd1d93b2f1a2
6ae96534e3d800a36282d39f68b6f609ee66bad7
5b866dd28d144be5f9efb63a382c28fe13bedaf3fe6ca8b068ce7cc2e92b4bc3
GET /wp-content/plugins/customer-reviews-woocommerce/js/colcade.js?ver=5.9.0 HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 29 Nov 2022 14:24:21 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:31 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3141
content-type: application/javascript
date: Fri, 02 Dec 2022 03:56:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0
72.52.180.146200 OK 1.0 kB URL HTTP/2 www.onairmicflags.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0
IP 72.52.180.146:0
File type ASCII text, with very long lines (2938), with no line terminators
Hash 45db3d2887c26700a51bf469e3bb3aa1
d070b5fb53d2fbb66964bbfd482270b855d0ee96
1abc0cff49f82d9a063c04cd086b991af6ad00467efc4cb8d8d4e3c9a0f95777
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.1.0 HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 29 Nov 2022 14:24:26 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:31 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1039
content-type: application/javascript
date: Fri, 02 Dec 2022 03:56:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-content/plugins/woocommerce-products-filter/js/chosen/chosen.jquery.js?ver=1.3.0
72.52.180.146200 OK 8.6 kB URL HTTP/2 www.onairmicflags.com/wp-content/plugins/woocommerce-products-filter/js/chosen/chosen.jquery.js?ver=1.3.0
IP 72.52.180.146:0
File type ASCII text, with very long lines (326)
Hash 54e3fa2ddc6abf6a9d078b2ff6e8acf7
bb35fabf0930131584f0de446885416f48bfd99c
f8f003239bf329f76c94e1fc5b0ce14390c3b0773f4244a9de4ea2c81110ed2d
GET /wp-content/plugins/woocommerce-products-filter/js/chosen/chosen.jquery.js?ver=1.3.0 HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Sep 2022 16:55:35 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:31 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 8594
content-type: application/javascript
date: Fri, 02 Dec 2022 03:56:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-content/plugins/woocommerce-products-filter/js/tooltip/js/tooltipster.bundle.min.js?ver=1.3.0
72.52.180.146200 OK 10 kB URL HTTP/2 www.onairmicflags.com/wp-content/plugins/woocommerce-products-filter/js/tooltip/js/tooltipster.bundle.min.js?ver=1.3.0
IP 72.52.180.146:0
File type ASCII text, with very long lines (31915)
Hash 066fc6704659819dc9fa906866624628
08f990470547622fd2df5376c5d16a5f492cc013
93454198d487e5773764ceebd3998cf907fb72e7dc2e5a9e569abdacb9f76a41
GET /wp-content/plugins/woocommerce-products-filter/js/tooltip/js/tooltipster.bundle.min.js?ver=1.3.0 HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Sep 2022 16:55:35 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:31 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 10106
content-type: application/javascript
date: Fri, 02 Dec 2022 03:56:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-content/plugins/woocommerce-products-filter/js/woof_sid.js?ver=1.3.0
72.52.180.146200 OK 394 B URL HTTP/2 www.onairmicflags.com/wp-content/plugins/woocommerce-products-filter/js/woof_sid.js?ver=1.3.0
IP 72.52.180.146:0
Hash f9ecdd724b1834c2c73efb49d6a5aab6
190589a73f8840e923b9fc392a3e7749c346e64c
b6fbce08dc6025b2b9263f64f8be60776992ba2cff501cd54fce371b67ec2e41
GET /wp-content/plugins/woocommerce-products-filter/js/woof_sid.js?ver=1.3.0 HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Sep 2022 16:55:35 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:31 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 394
content-type: application/javascript
date: Fri, 02 Dec 2022 03:56:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0
72.52.180.146200 OK 794 B URL HTTP/2 www.onairmicflags.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0
IP 72.52.180.146:0
File type ASCII text, with very long lines (2139), with no line terminators
Hash 29307e8dec33cf3411ca4e1f2c84e9d0
484402289464d7ffb1475827f3438329d520bfc6
a2db59efaa416ef0c9d5d58f142cd5e44c475348cff20a664586fd3cda1b5f5b
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.1.0 HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 29 Nov 2022 14:24:26 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:31 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 794
content-type: application/javascript
date: Fri, 02 Dec 2022 03:56:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-content/plugins/woocommerce-products-filter/js/html_types/radio.js?ver=1.3.0
72.52.180.146200 OK 743 B URL HTTP/2 www.onairmicflags.com/wp-content/plugins/woocommerce-products-filter/js/html_types/radio.js?ver=1.3.0
IP 72.52.180.146:0
Hash e2ba2528c39cb865f781de3b7df04908
f689d0c1192c56489ba2fcaba3dcc77ae935ee57
ba8d1fad10df2896d6ed35b935799b01692f05e8d3a10162dde7d90ed116c31e
GET /wp-content/plugins/woocommerce-products-filter/js/html_types/radio.js?ver=1.3.0 HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Sep 2022 16:55:35 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:31 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 743
content-type: application/javascript
date: Fri, 02 Dec 2022 03:56:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-content/plugins/woocommerce-products-filter/js/tooltip/css/plugins/tooltipster/sideTip/themes/tooltipster-sideTip-noir.min.css?ver=1.3.0
72.52.180.146200 OK 285 B URL HTTP/2 www.onairmicflags.com/wp-content/plugins/woocommerce-products-filter/js/tooltip/css/plugins/tooltipster/sideTip/themes/tooltipster-sideTip-noir.min.css?ver=1.3.0
IP 72.52.180.146:0
File type ASCII text, with very long lines (1324), with no line terminators
Hash fe8f219ef19cb7e904e357193e0f66f7
4b065bf820dd5a5785377b24e0d3da898cec8eab
bf6b908db92fe5b86ecf6b2d112fc10570b40285f31c161300a16cc46c04ad99
GET /wp-content/plugins/woocommerce-products-filter/js/tooltip/css/plugins/tooltipster/sideTip/themes/tooltipster-sideTip-noir.min.css?ver=1.3.0 HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Sep 2022 16:55:35 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:31 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 285
content-type: text/css
date: Fri, 02 Dec 2022 03:56:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0
72.52.180.146200 OK 1.1 kB URL HTTP/2 www.onairmicflags.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0
IP 72.52.180.146:0
File type HTML document, ASCII text, with very long lines (3029), with no line terminators
Hash 3fffd1b8f00bf4175aaf1831974a4e4c
7f16ab9253c92a528f1f8cb20bee07128ce67048
3eeb166e786db324c70ef63628846f825951748a76d0de97c719189a0ab555c3
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.1.0 HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 29 Nov 2022 14:24:26 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:31 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1088
content-type: application/javascript
date: Fri, 02 Dec 2022 03:56:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-content/plugins/woocommerce-products-filter/js/html_types/select.js?ver=1.3.0
72.52.180.146200 OK 461 B URL HTTP/2 www.onairmicflags.com/wp-content/plugins/woocommerce-products-filter/js/html_types/select.js?ver=1.3.0
IP 72.52.180.146:0
Hash fd25e24c71eceb57524db8bbf6551189
99dfdb8add7424f7ae23480b9753e453d21355ef
fdcbc597373981eca00517809d8c42317e11e2cb9a3e18795ea999436948669c
GET /wp-content/plugins/woocommerce-products-filter/js/html_types/select.js?ver=1.3.0 HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Sep 2022 16:55:35 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:31 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 461
content-type: application/javascript
date: Fri, 02 Dec 2022 03:56:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-content/plugins/woocommerce-products-filter/js/html_types/checkbox.js?ver=1.3.0
72.52.180.146200 OK 839 B URL HTTP/2 www.onairmicflags.com/wp-content/plugins/woocommerce-products-filter/js/html_types/checkbox.js?ver=1.3.0
IP 72.52.180.146:0
Hash 80f506ceebb65317a7db2f15e43b71f3
429b0163108cb429e4b4fb83e4127c64ff7d36c0
cc1e0735f3552a37ab606d7198da71c26f8462ab7d0d4798b9e0e70bb5993c56
GET /wp-content/plugins/woocommerce-products-filter/js/html_types/checkbox.js?ver=1.3.0 HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Sep 2022 16:55:35 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:31 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 839
content-type: application/javascript
date: Fri, 02 Dec 2022 03:56:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-content/plugins/woocommerce-products-filter/js/tooltip/css/tooltipster.bundle.min.css?ver=1.3.0
72.52.180.146200 OK 1.1 kB URL HTTP/2 www.onairmicflags.com/wp-content/plugins/woocommerce-products-filter/js/tooltip/css/tooltipster.bundle.min.css?ver=1.3.0
IP 72.52.180.146:0
File type ASCII text, with very long lines (6495), with no line terminators
Hash 6501556badae2fbfffbb7f15725c9a01
2e9285eb2a3ebfe8b84097e25a6181c70ea39b39
53469cd3cad4d3b46ce9883afd1ae4adac27f68e302906eb8e178da317d94067
GET /wp-content/plugins/woocommerce-products-filter/js/tooltip/css/tooltipster.bundle.min.css?ver=1.3.0 HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Sep 2022 16:55:35 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:31 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1115
content-type: text/css
date: Fri, 02 Dec 2022 03:56:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-content/themes/Divi/js/smoothscroll.js?ver=4.18.0
72.52.180.146200 OK 2.6 kB URL HTTP/2 www.onairmicflags.com/wp-content/themes/Divi/js/smoothscroll.js?ver=4.18.0
IP 72.52.180.146:0
File type ASCII text, with very long lines (5644)
Hash 062e1255f1cb0d2f5b2badd2375ac0fd
c3c9772e967520006444fe8877b747a7155afc87
90164a05ed461227744513b44fbd7e0b0b2e4ea18de01c0da57df97039e93147
GET /wp-content/themes/Divi/js/smoothscroll.js?ver=4.18.0 HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 12 Aug 2022 13:29:21 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:31 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 2557
content-type: application/javascript
date: Fri, 02 Dec 2022 03:56:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0
72.52.180.146200 OK 3.5 kB URL HTTP/2 www.onairmicflags.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0
IP 72.52.180.146:0
File type ASCII text, with very long lines (9111)
Hash f6004c12128ba678a6ab8fafb9cb1d61
a023d537a3273176524815baca3f2c42cc601a3c
e516f66f227db9eb26f5bec7605f4647680979c10c9bb61ac1654ccbf7e348af
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.1.0 HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 29 Nov 2022 14:24:26 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:31 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 3496
content-type: application/javascript
date: Fri, 02 Dec 2022 03:56:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-content/plugins/customer-reviews-woocommerce/js/frontend.js?ver=5.9.0
72.52.180.146200 OK 8.4 kB URL HTTP/2 www.onairmicflags.com/wp-content/plugins/customer-reviews-woocommerce/js/frontend.js?ver=5.9.0
IP 72.52.180.146:0
File type ASCII text, with very long lines (325)
Hash 0e17478b04c32b23a572d5f8ae4acb06
16819098c6480ed591cc9779377ede194e2e5cb1
92d6b8c2ab055d4cfa50e2a3c5b0ff00165941219ccc5a5b5e75555072995035
GET /wp-content/plugins/customer-reviews-woocommerce/js/frontend.js?ver=5.9.0 HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 29 Nov 2022 14:24:21 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:31 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 8421
content-type: application/javascript
date: Fri, 02 Dec 2022 03:56:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0
72.52.180.146200 OK 982 B URL HTTP/2 www.onairmicflags.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0
IP 72.52.180.146:0
File type ASCII text, with very long lines (1668)
Hash e66463f2023b738680c9bdefece69a37
315dc8e6ebdfb18c662851244ee33e2758ad3c83
fd83e7fc6d81aa6f6680ea640e9c086aa1950a17757a582aa74ea9797a70f346
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.1.0 HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 29 Nov 2022 14:24:26 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:31 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 982
content-type: application/javascript
date: Fri, 02 Dec 2022 03:56:31 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:56:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.onairmicflags.com/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=7.1.0
72.52.180.146200 OK 1.2 kB URL HTTP/2 www.onairmicflags.com/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=7.1.0
IP 72.52.180.146:0
File type ASCII text, with very long lines (7043), with no line terminators
Hash 7a01d757cd8aced5af866e83a6d0ce76
f352b0e25c2a3ca7af84f93c9bc1fd700db3586f
da5327f259e09fafac875160fbcd3fe934f48359e751e42b802f5577310b014c
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=7.1.0 HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 29 Nov 2022 14:24:26 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:32 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1177
content-type: text/css
date: Fri, 02 Dec 2022 03:56:32 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:56:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/francoisone/v20/_Xmr-H4zszafZw3A-KPSZutNww.woff2
216.58.207.227200 OK 30 kB URL HTTP/2 fonts.gstatic.com/s/francoisone/v20/_Xmr-H4zszafZw3A-KPSZutNww.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 30416, version 1.0\012- data
Hash 7312d3d5ba52309c6ad43b8250904e6e
9b9b98d11ae55583c8a0ce14b566d827af3a014b
341f8c7e2c4bf23884777471f0ac1e8b6c4b2c7d73b1586ee8bd5bd74d02d855
GET /s/francoisone/v20/_Xmr-H4zszafZw3A-KPSZutNww.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.onairmicflags.com
Connection: keep-alive
Referer: https://www.onairmicflags.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30416
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 22:28:43 GMT
expires: Fri, 01 Dec 2023 22:28:43 GMT
cache-control: public, max-age=31536000
age: 19669
last-modified: Thu, 21 Apr 2022 17:09:14 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1y9ogUQ.woff2
216.58.207.227200 OK 26 kB URL HTTP/2 fonts.gstatic.com/s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1y9ogUQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 25760, version 1.0\012- data
Hash bbcc19d8b3f3806a5f2bb130cca75f2b
69ccde92698872690eff3501326ffd5a0c435424
9c0c88bf98c0adb1433a2e11959dcb9251811f8211d50bbf09a79fdcc120bb87
GET /s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1y9ogUQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.onairmicflags.com
Connection: keep-alive
Referer: https://www.onairmicflags.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 21:13:44 GMT
expires: Tue, 28 Nov 2023 21:13:44 GMT
cache-control: public, max-age=31536000
age: 283368
last-modified: Mon, 18 Jul 2022 19:25:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZogUQ.woff2
216.58.207.227200 OK 26 kB URL HTTP/2 fonts.gstatic.com/s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZogUQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 25636, version 1.0\012- data
Hash 8c11e7e5f07b4854e014ef67cfbe7cff
7ee83379ffc5d81381f1efcd70f25ecab4503ae0
23dd9dd46ea206093e13e414d25d9331cdd42e8b3362edede6a90ecfc7d36279
GET /s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1xZogUQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.onairmicflags.com
Connection: keep-alive
Referer: https://www.onairmicflags.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25636
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 21:12:04 GMT
expires: Tue, 28 Nov 2023 21:12:04 GMT
cache-control: public, max-age=31536000
age: 283468
last-modified: Mon, 18 Jul 2022 19:25:11 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs18NvgUQ.woff2
216.58.207.227200 OK 26 kB URL HTTP/2 fonts.gstatic.com/s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs18NvgUQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 25828, version 1.0\012- data
Hash be415c2ce9c9abd447b40b1baea395c9
79e64fd54e929f0161b4ee46764bc64da26f5583
637453c4d3f0ce30e85f267812a45a3d4fba44b1f98b1ebcf0aa2400984f75ab
GET /s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs18NvgUQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.onairmicflags.com
Connection: keep-alive
Referer: https://www.onairmicflags.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25828
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 21:13:49 GMT
expires: Tue, 28 Nov 2023 21:13:49 GMT
cache-control: public, max-age=31536000
age: 283363
last-modified: Mon, 18 Jul 2022 19:25:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:56:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.onairmicflags.com/wp-content/themes/Divi/core/admin/fonts/modules/all/modules.ttf
72.52.180.146200 OK 37 kB URL HTTP/2 www.onairmicflags.com/wp-content/themes/Divi/core/admin/fonts/modules/all/modules.ttf
IP 72.52.180.146:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, modules \012- data
Hash d383ce01d8ba4337d4bd99f7b89d6e31
bfaba81d075b92dc6ecd9f71652be0a16ecffbfe
8b2540670f845cd7fa3d8d7860fa1cabd7162486dd4a58786c0dd6bde25cdc8a
GET /wp-content/themes/Divi/core/admin/fonts/modules/all/modules.ttf HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-content/et-cache/notfound/et-divi-dynamic.css?ver=1669924047
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 12 Aug 2022 13:29:20 GMT
accept-ranges: bytes
cache-control: max-age=172800
expires: Sun, 04 Dec 2022 03:56:32 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 37445
content-type: font/ttf
date: Fri, 02 Dec 2022 03:56:32 GMT
server: Apache
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-content/plugins/customer-reviews-woocommerce/fonts/roboto-500.woff2
72.52.180.146200 OK 50 kB URL HTTP/2 www.onairmicflags.com/wp-content/plugins/customer-reviews-woocommerce/fonts/roboto-500.woff2
IP 72.52.180.146:0
File type Web Open Font Format (Version 2), TrueType, length 50460, version 1.0\012- data
Hash e49eef23dfc0f7c54977c365624b68fa
9f513cb4d813a9ffebc3d87181f5dd5aba3dfa9b
ee7e4a24daafdb8c937da249dc9bf3786eb966f53cbcb436a950e49298e8da75
GET /wp-content/plugins/customer-reviews-woocommerce/fonts/roboto-500.woff2 HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-content/plugins/customer-reviews-woocommerce/css/badges.css?ver=5.9.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 29 Nov 2022 14:24:21 GMT
accept-ranges: bytes
content-length: 50460
cache-control: max-age=172800
expires: Sun, 04 Dec 2022 03:56:32 GMT
vary: Accept-Encoding,User-Agent
content-type: font/woff2
date: Fri, 02 Dec 2022 03:56:32 GMT
server: Apache
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-content/plugins/customer-reviews-woocommerce/fonts/roboto-700.woff2
72.52.180.146200 OK 50 kB URL HTTP/2 www.onairmicflags.com/wp-content/plugins/customer-reviews-woocommerce/fonts/roboto-700.woff2
IP 72.52.180.146:0
File type Web Open Font Format (Version 2), TrueType, length 50196, version 1.0\012- data
Hash bc4866b032d34d1ab1fe7d30fe7d2af2
98fe0e5e6e425a6881de5971eae18cd5ccb5ccf7
be54ac8b9843afcd92dea7b3e72306efec71ba3b6365f679f179c7ca4a0aea9f
GET /wp-content/plugins/customer-reviews-woocommerce/fonts/roboto-700.woff2 HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-content/plugins/customer-reviews-woocommerce/css/badges.css?ver=5.9.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 29 Nov 2022 14:24:21 GMT
accept-ranges: bytes
content-length: 50196
cache-control: max-age=172800
expires: Sun, 04 Dec 2022 03:56:32 GMT
vary: Accept-Encoding,User-Agent
content-type: font/woff2
date: Fri, 02 Dec 2022 03:56:32 GMT
server: Apache
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Fri, 02 Dec 2022 02:41:08 GMT
expires: Fri, 02 Dec 2022 04:41:08 GMT
cache-control: public, max-age=7200
age: 4524
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a11a991958dbd78dfb3392214590ef38
c5fb54ce1ad1c51598623b66827af482c565e0d5
01d67dc39941deea93712fa87453fd27679357916ab856358e0bda7a63b2624d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5788
Cache-Control: max-age=163390
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:56:32 GMT
Etag: "63893c12-1d7"
Expires: Sun, 04 Dec 2022 01:19:42 GMT
Last-Modified: Thu, 01 Dec 2022 23:43:14 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a11a991958dbd78dfb3392214590ef38
c5fb54ce1ad1c51598623b66827af482c565e0d5
01d67dc39941deea93712fa87453fd27679357916ab856358e0bda7a63b2624d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3314
Cache-Control: max-age=160916
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:56:32 GMT
Etag: "63893c12-1d7"
Expires: Sun, 04 Dec 2022 00:38:28 GMT
Last-Modified: Thu, 01 Dec 2022 23:43:14 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/plugins/ua/ecommerce.js
142.250.74.110200 OK 738 B URL HTTP/2 www.google-analytics.com/plugins/ua/ecommerce.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (745)
Hash f804aa0b574b678d24df5281ed71a61d
2fc02211b273e1ab4d362df05d592f2d822c2add
1d2d8c7f3502f4459478fe8c7495a27464d6f178b1d564333a107d310c0ea74d
GET /plugins/ua/ecommerce.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 738
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Dec 2022 03:50:44 GMT
expires: Fri, 02 Dec 2022 04:50:44 GMT
cache-control: public, max-age=3600
age: 348
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-content/uploads/2018/08/cropped-MicFlagLogo_FAVICON-192x192.png
72.52.180.146200 OK 11 kB URL HTTP/2 www.onairmicflags.com/wp-content/uploads/2018/08/cropped-MicFlagLogo_FAVICON-192x192.png
IP 72.52.180.146:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash e6704a9fc5683427a3baac463344947b
37786a38be6e9bb83ec06f550d679329c073c43b
e141cc0ca7a7e6fb5e79ca69f1f3bbd192154abab4967f0606150108408b135d
GET /wp-content/uploads/2018/08/cropped-MicFlagLogo_FAVICON-192x192.png HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 17 Aug 2018 18:58:46 GMT
accept-ranges: bytes
content-length: 11313
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:32 GMT
content-type: image/png
date: Fri, 02 Dec 2022 03:56:32 GMT
server: Apache
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-content/uploads/2018/08/cropped-MicFlagLogo_FAVICON-32x32.png
72.52.180.146200 OK 1.1 kB URL HTTP/2 www.onairmicflags.com/wp-content/uploads/2018/08/cropped-MicFlagLogo_FAVICON-32x32.png
IP 72.52.180.146:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash a0cf04d8ee8a073e7274f0f177edd0b2
777892183905e59a6fb4b9291a47f4864fcdd651
a008b0a7ab40eb71fa0dc731fce59cbb9d19c875ec41248ef7d6e2bdc5713fef
GET /wp-content/uploads/2018/08/cropped-MicFlagLogo_FAVICON-32x32.png HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 17 Aug 2018 18:58:46 GMT
accept-ranges: bytes
content-length: 1147
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:32 GMT
content-type: image/png
date: Fri, 02 Dec 2022 03:56:32 GMT
server: Apache
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
157.240.240.1200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.240.1:0
File type ASCII text, with very long lines (64348)
Hash 44ecaa3c2a4929a40141edc4540aaf84
f29a573182333b2500d41bfc389d6c5232dfb348
6589fe14578dedd4df678a909afadd7e5bc7f57c7e3e24518a7f5faac7383396
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: 2OUC3/FWSpQxZIS1TFH+O18N0Ky5VaBTVsPvSpHHlijcQOAia+rS/AG1zr/AbYoKIQwoLUjxjMsqb7dlCE6MJQ==
priority: u=3,i
content-length: 27340
x-fb-trip-id: 1679558926
date: Fri, 02 Dec 2022 03:56:32 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
connect.facebook.net/en_US/sdk.js
157.240.240.1200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js
IP 157.240.240.1:0
File type ASCII text, with very long lines (1957)
Hash df45deb59e472b8b2226414573a51e6f
9caaef4b2567623ed9fe70857053e7328892a0f6
47a90728931ab303fbc68fb93307fb3b253eb3a2fc0e6dde68468db10221dfd5
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 4f5d163df28238171aa52cd85ba93e68
etag: "bc8f2dbab1f1c35f738f0c5795090725"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Fri, 02 Dec 2022 04:04:03 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: 30XetZ5HK4siJkFFc6Uebw==
x-fb-debug: WT02aA+JAw7Pkde93yw10JTDRss516bT5Tco9W0pG28umk3V/SfIsnEiCEBcE+SYixl5o1n8qppcPUJ6Zuq4TQ==
content-length: 1687
x-fb-trip-id: 1679558926
date: Fri, 02 Dec 2022 03:56:32 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a11a991958dbd78dfb3392214590ef38
c5fb54ce1ad1c51598623b66827af482c565e0d5
01d67dc39941deea93712fa87453fd27679357916ab856358e0bda7a63b2624d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5788
Cache-Control: max-age=163390
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:56:32 GMT
Etag: "63893c12-1d7"
Expires: Sun, 04 Dec 2022 01:19:42 GMT
Last-Modified: Thu, 01 Dec 2022 23:43:14 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash e23314439984ca398e32ed4e04aa0040
2a2fe4c951b0f496a74aba21b9a571482928c20d
1e8f47130d03d623dca2a99ef9bfcad50c46a7ab9af084b1dbd76509f2a1c5c3
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=106929
Date: Fri, 02 Dec 2022 03:56:32 GMT
Etag: "638872f2-1d7"
Expires: Sat, 03 Dec 2022 09:38:41 GMT
Last-Modified: Thu, 01 Dec 2022 09:25:06 GMT
Server: ECS (dcb/7FA4)
X-Cache: Miss from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: T71jV2Rir9eroPygZu1toM9jac4nePhEqmgvJRAiijKCmgsfrkYbYA==
Age: 815
connect.facebook.net/en_US/sdk.js?hash=82eca85097171e85d4812d9177d9c7ba
157.240.240.1200 OK 87 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js?hash=82eca85097171e85d4812d9177d9c7ba
IP 157.240.240.1:0
File type ASCII text, with very long lines (13192)
Hash 1efca111577ff6fe8fcb1463ec29d168
22f64b8adc8bef0482740596d18f2d4fbe91ed66
52d897b4dbbc3d1e391e21df6546d4f77fb9416c312f89650b19d7c997f2e079
GET /en_US/sdk.js?hash=82eca85097171e85d4812d9177d9c7ba HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.onairmicflags.com
Connection: keep-alive
Referer: https://www.onairmicflags.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: b22fd356960dfd7bf46efc036f7be561
etag: "ef87f91cf9ad5bb738a9e88620da0018"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Fri, 01 Dec 2023 21:59:17 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: HvyhEVd/9v6PyxRj7CnRaA==
x-fb-debug: OCLWqiOvetBWCdcspSWnbfsLEpXZSwLT2pdeL2iLMBM4mKEQbfmNsk2gw/+ig1NX64rL/kCLGzPyISIOSGGQDA==
priority: u=3,i
content-length: 86897
x-fb-trip-id: 1679558926
date: Fri, 02 Dec 2022 03:56:32 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-content/plugins/woocommerce-products-filter/img/plus2.svg
72.52.180.146200 OK 195 B URL HTTP/2 www.onairmicflags.com/wp-content/plugins/woocommerce-products-filter/img/plus2.svg
IP 72.52.180.146:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text
Hash a5153480e607a22eec21d5e034b29028
426de1040d2e99ece26249c04b66df26898763b5
b8ebe9ab04f8a530386b95e107d0379c50a07c5a2a5e53bac7ebe9f1bb957cbf
GET /wp-content/plugins/woocommerce-products-filter/img/plus2.svg HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-content/plugins/woocommerce-products-filter/css/front.css?ver=1.3.0
Cookie: _ga=GA1.2.1492082975.1669953391; _gid=GA1.2.750944873.1669953391; _gat_gtag_UA_135434678_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Sep 2022 16:55:35 GMT
accept-ranges: bytes
cache-control: max-age=172800
expires: Sun, 04 Dec 2022 03:56:32 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 195
content-type: image/svg+xml
date: Fri, 02 Dec 2022 03:56:32 GMT
server: Apache
X-Firefox-Spdy: h2
www.webtraxs.com/wt.php
34.195.199.177200 OK 1.3 kB IP 34.195.199.177:0
File type exported SGML document, ASCII text
Hash ac5a19415802056efa3965951bf4999d
c2f17fe14a767c9c49192f7ee71b1edd377dc626
9ffe41d00d01fff3fdd9c9945b8155c4b22a1a372dc528985c4d237bb6fd9681
GET /wt.php HTTP/1.1
Host: www.webtraxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Dec 2022 03:56:32 GMT
content-type: application/javascript
content-length: 1263
server: Apache/2.4.54 (Amazon) PHP/5.6.40
x-powered-by: PHP/5.6.40
expires: Fri, 02 Dec 2022 05:56:32 GMT
pragma: cache
cache-control: max-age=7200
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-content/plugins/woocommerce-products-filter/js/icheck/skins/flat/blue.png
72.52.180.146200 OK 1.5 kB URL HTTP/2 www.onairmicflags.com/wp-content/plugins/woocommerce-products-filter/js/icheck/skins/flat/blue.png
IP 72.52.180.146:0
File type PNG image data, 176 x 22, 8-bit/color RGBA, non-interlaced\012- data
Hash 36ae7b1e1de65a74be291624eab4a6f8
f26af9ef96e73910d6b13a142d79843794904836
f8cd711862ded984c4d8dfb70d8f0f890a1cc8037e883288a0a459d7524b3d42
GET /wp-content/plugins/woocommerce-products-filter/js/icheck/skins/flat/blue.png HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-content/plugins/woocommerce-products-filter/js/icheck/skins/flat/blue.css?ver=1.3.0
Cookie: _ga=GA1.2.1492082975.1669953391; _gid=GA1.2.750944873.1669953391; _gat_gtag_UA_135434678_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 15 Sep 2022 16:55:35 GMT
accept-ranges: bytes
content-length: 1518
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:32 GMT
content-type: image/png
date: Fri, 02 Dec 2022 03:56:32 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 49a9684674e0f1b3974c6427c5354fe4
c201e61bcda9cc91369f0c57f8236fcdd3db26c6
27b8d50242836a45aca1fcd0cb58e7f685011c1f93b57d0e3ea9a02400f8d801
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:56:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 51d5484b700426c5612c309bbf14b114
026994960bfaaa4e2604b66cb795b2787fe300a2
e3e30a64f2e4fc59120c46b320d104f1b9d9a8af90106ab78715d14e49e11ae0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:56:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-38620895-1&cid=1492082975.1669953391&jid=823591433&gjid=700578915&_gid=750944873.1669953391&_u=aGDAgUATAAAAAGAAI~&z=2104387155
64.233.165.156200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-38620895-1&cid=1492082975.1669953391&jid=823591433&gjid=700578915&_gid=750944873.1669953391&_u=aGDAgUATAAAAAGAAI~&z=2104387155
IP 64.233.165.156:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-38620895-1&cid=1492082975.1669953391&jid=823591433&gjid=700578915&_gid=750944873.1669953391&_u=aGDAgUATAAAAAGAAI~&z=2104387155 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.onairmicflags.com
Connection: keep-alive
Referer: https://www.onairmicflags.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.onairmicflags.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 02 Dec 2022 03:56:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1749727715105973&ev=PageView&dl=https%3A%2F%2Fwww.onairmicflags.com%2Fwp-includes%2Fpomo%2Fwells%2Findex.html&rl=&if=false&ts=1669953391057&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&par[0]=%7B%22extractorID%22%3A%22669122790253926%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22USD%22%7D%7D%7D&par[1]=%7B%22extractorID%22%3A%22876318276036700%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&fbp=fb.1.1669953391056.1179230282&it=1669953390821&coo=false&rqm=GET
157.240.240.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1749727715105973&ev=PageView&dl=https%3A%2F%2Fwww.onairmicflags.com%2Fwp-includes%2Fpomo%2Fwells%2Findex.html&rl=&if=false&ts=1669953391057&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&par[0]=%7B%22extractorID%22%3A%22669122790253926%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22USD%22%7D%7D%7D&par[1]=%7B%22extractorID%22%3A%22876318276036700%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&fbp=fb.1.1669953391056.1179230282&it=1669953390821&coo=false&rqm=GET
IP 157.240.240.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1749727715105973&ev=PageView&dl=https%3A%2F%2Fwww.onairmicflags.com%2Fwp-includes%2Fpomo%2Fwells%2Findex.html&rl=&if=false&ts=1669953391057&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&par[0]=%7B%22extractorID%22%3A%22669122790253926%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%22priceCurrency%22%3A%22USD%22%7D%7D%7D&par[1]=%7B%22extractorID%22%3A%22876318276036700%22%2C%22jsonLD%22%3A%7B%22%40context%22%3A%22http%3A%2F%2Fschema.org%22%2C%22%40type%22%3A%22Product%22%2C%22offers%22%3A%7B%7D%7D%7D&fbp=fb.1.1669953391056.1179230282&it=1669953390821&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Fri, 02 Dec 2022 03:56:32 GMT
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-135434678-1&cid=1492082975.1669953391&jid=1755748985&gjid=85461885&_gid=750944873.1669953391&_u=aGDAAUASAAAAACAAI~&z=1485379534
64.233.165.156200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-135434678-1&cid=1492082975.1669953391&jid=1755748985&gjid=85461885&_gid=750944873.1669953391&_u=aGDAAUASAAAAACAAI~&z=1485379534
IP 64.233.165.156:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-135434678-1&cid=1492082975.1669953391&jid=1755748985&gjid=85461885&_gid=750944873.1669953391&_u=aGDAAUASAAAAACAAI~&z=1485379534 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.onairmicflags.com
Connection: keep-alive
Referer: https://www.onairmicflags.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.onairmicflags.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 02 Dec 2022 03:56:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 51d5484b700426c5612c309bbf14b114
026994960bfaaa4e2604b66cb795b2787fe300a2
e3e30a64f2e4fc59120c46b320d104f1b9d9a8af90106ab78715d14e49e11ae0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:56:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 16c3ad4a2bc7f419fb354b37778f8b2f
d193a1336556dcf6b4975a057e7c849037eef0ff
5993deb5a53b2e844b9027a6b6906c718f6e9f69c27388199c4343a80ef067f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:56:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 59ccaf5f1bf1101f3d43ae777be4f6a9
2740c2403e005eac512a829e64de6a03a65fcbb6
1c6da1c071531cd11b32e943b42798202de1a80882e067773ed4d6147094587f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:56:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 81abfd63eeb2fadc85b31541378babb1
09d3223c1a2a4e2cbfcba0381ead2cee5ee0a200
c7665c83165956c11bdbe0509ae03bf6af1b34ca68bf352fbfd629dc3a04b815
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:56:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 16c3ad4a2bc7f419fb354b37778f8b2f
d193a1336556dcf6b4975a057e7c849037eef0ff
5993deb5a53b2e844b9027a6b6906c718f6e9f69c27388199c4343a80ef067f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:56:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-38620895-1&cid=1492082975.1669953391&jid=823591433&_u=aGDAgUATAAAAAGAAI~&z=498555302
216.58.211.4200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-38620895-1&cid=1492082975.1669953391&jid=823591433&_u=aGDAgUATAAAAAGAAI~&z=498555302
IP 216.58.211.4:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-38620895-1&cid=1492082975.1669953391&jid=823591433&_u=aGDAgUATAAAAAGAAI~&z=498555302 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 02 Dec 2022 03:56:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-38620895-1&cid=1492082975.1669953391&jid=823591433&_u=aGDAgUATAAAAAGAAI~&z=498555302
142.250.74.67200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-38620895-1&cid=1492082975.1669953391&jid=823591433&_u=aGDAgUATAAAAAGAAI~&z=498555302
IP 142.250.74.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-38620895-1&cid=1492082975.1669953391&jid=823591433&_u=aGDAgUATAAAAAGAAI~&z=498555302 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 02 Dec 2022 03:56:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-135434678-1&cid=1492082975.1669953391&jid=1755748985&_u=aGDAAUASAAAAACAAI~&z=273732785
142.250.74.67200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-135434678-1&cid=1492082975.1669953391&jid=1755748985&_u=aGDAAUASAAAAACAAI~&z=273732785
IP 142.250.74.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-135434678-1&cid=1492082975.1669953391&jid=1755748985&_u=aGDAAUASAAAAACAAI~&z=273732785 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 02 Dec 2022 03:56:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-135434678-1&cid=1492082975.1669953391&jid=1755748985&_u=aGDAAUASAAAAACAAI~&z=273732785
216.58.211.4200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-135434678-1&cid=1492082975.1669953391&jid=1755748985&_u=aGDAAUASAAAAACAAI~&z=273732785
IP 216.58.211.4:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-135434678-1&cid=1492082975.1669953391&jid=1755748985&_u=aGDAAUASAAAAACAAI~&z=273732785 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 02 Dec 2022 03:56:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 533f66ef53706466ce20dc9aebf11812
0c0d713d538eb224deeb9241917a117205f16cb2
8ce7b68022c847b59b9a132ada3a75eea73bb57bae4683901c8df08fa255ba79
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:56:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 59ccaf5f1bf1101f3d43ae777be4f6a9
2740c2403e005eac512a829e64de6a03a65fcbb6
1c6da1c071531cd11b32e943b42798202de1a80882e067773ed4d6147094587f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 03:56:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.webtraxs.com/webtraxs.php?id=wt-d7947361-edeb-40fd-b5c5-8aade196b7c5&referer=&r=1280x1024&c=24&showme=n&st=img&title=Page%20not%20found%20%u2013%20On%20Air%20Mic%20Flags&url=https%3A//www.onairmicflags.com/wp-includes/pomo/wells/index.html
34.195.199.177200 OK 43 B URL HTTP/2 www.webtraxs.com/webtraxs.php?id=wt-d7947361-edeb-40fd-b5c5-8aade196b7c5&referer=&r=1280x1024&c=24&showme=n&st=img&title=Page%20not%20found%20%u2013%20On%20Air%20Mic%20Flags&url=https%3A//www.onairmicflags.com/wp-includes/pomo/wells/index.html
IP 34.195.199.177:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 55fade2068e7503eae8d7ddf5eb6bd09
317496a096d6c86486a71d4521994bcd171a6bb3
e586a84d8523747f42e510d78e141015b6424cf67d612854e892a7bcedc8ec9e
GET /webtraxs.php?id=wt-d7947361-edeb-40fd-b5c5-8aade196b7c5&referer=&r=1280x1024&c=24&showme=n&st=img&title=Page%20not%20found%20%u2013%20On%20Air%20Mic%20Flags&url=https%3A//www.onairmicflags.com/wp-includes/pomo/wells/index.html HTTP/1.1
Host: www.webtraxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Dec 2022 03:56:33 GMT
content-type: image/gif
content-length: 43
server: Apache/2.4.54 (Amazon) PHP/5.6.40
x-powered-by: PHP/5.6.40
set-cookie: same26072=87313; expires=Fri, 02-Dec-2022 04:26:33 GMT; Max-Age=1800
p3p: CP="NOI DSP COR ADM DEV PSA OUR IND UNI PUR COM NAV INT STA"
X-Firefox-Spdy: h2
www.onairmicflags.com/?wc-ajax=get_refreshed_fragments
72.52.180.146200 OK 161 B URL HTTP/2 www.onairmicflags.com/?wc-ajax=get_refreshed_fragments
IP 72.52.180.146:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 650d329ca7144ad1b254f70cec48c223
05e4429056d334328c79307d47cb4f2437037c25
2343b049d208442d3efabc649b5f659a589a5bbb8d5e92f1fffb474775331fea
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://www.onairmicflags.com
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Cookie: _ga=GA1.2.1492082975.1669953391; _gid=GA1.2.750944873.1669953391; _gat_gtag_UA_135434678_1=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-pingback: https://www.onairmicflags.com/xmlrpc.php
access-control-allow-origin: https://www.onairmicflags.com
access-control-allow-credentials: true
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-robots-tag: noindex
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 161
content-type: application/json; charset=UTF-8
date: Fri, 02 Dec 2022 03:56:32 GMT
server: Apache
X-Firefox-Spdy: h2
www.onairmicflags.com/wp-content/themes/Divi/js/scripts.min.js?ver=4.18.0
72.52.180.146200 OK 0 B URL HTTP/2 www.onairmicflags.com/wp-content/themes/Divi/js/scripts.min.js?ver=4.18.0
IP 72.52.180.146:0
GET /wp-content/themes/Divi/js/scripts.min.js?ver=4.18.0 HTTP/1.1
Host: www.onairmicflags.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.onairmicflags.com/wp-includes/pomo/wells/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 12 Aug 2022 13:29:21 GMT
accept-ranges: bytes
cache-control: max-age=2592000
expires: Sun, 01 Jan 2023 03:56:31 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-type: application/javascript
date: Fri, 02 Dec 2022 03:56:31 GMT
server: Apache
X-Firefox-Spdy: h2