www.woay.com/
301 Moved Permanently 162 B IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET / HTTP/1.1
Host: www.woay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 20 Dec 2022 21:53:51 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Keep-Alive: timeout=20
Location: https://www.woay.com/
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash bbea1550fedd5eb9c265712fab75b137
2c2f981747898a380265f766345f2bb9c8c983fd
c728286e38c31a4d3f7a39702e0a5f69c14bf69e01a88bc4479714953fbda278
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C728286E38C31A4D3F7A39702E0A5F69C14BF69E01A88BC4479714953FBDA278"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9001
Expires: Wed, 21 Dec 2022 00:23:52 GMT
Date: Tue, 20 Dec 2022 21:53:51 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b8fbcd7ca1a893d05677318a8a198e7a
0851654c21f6e3741887e7deab8098c1dc56f33c
edbade5913ace2fcbb932922e9af69acb2e8759474a2eeaec216307247fea361
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EDBADE5913ACE2FCBB932922E9AF69ACB2E8759474A2EEAEC216307247FEA361"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3303
Expires: Tue, 20 Dec 2022 22:48:54 GMT
Date: Tue, 20 Dec 2022 21:53:51 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b44c4b5daa307a355e7bab1c83c1ca82
dbd14cd873f1dd4502f277b3f51cb7bc8da0c080
fd4604461cfa002c8a261bb14eb8dda56817db231b9012b2eb38d6dbc2674df5
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Alert, Retry-After, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 20 Dec 2022 21:34:30 GMT
content-type: application/json
age: 1161
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash cf03270e3476f7482a2cc7ddc6a9e857
ab70d5ee87b01e0601f8e518bf36f97c8ceeba9a
43a4e796860a1481636dac103488cadc68c261d13cfe835d273efc368e569f97
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "43A4E796860A1481636DAC103488CADC68C261D13CFE835D273EFC368E569F97"
Last-Modified: Sun, 18 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8999
Expires: Wed, 21 Dec 2022 00:23:50 GMT
Date: Tue, 20 Dec 2022 21:53:51 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: sz5/rwLKyWG9qk07FjFNQ3nZYlpV2oNaIZO16PFsd/VGes/cM1yy/0VxqKpldOhzyADI8m7l+P8=
x-amz-request-id: QCWQKPWGJMFVPX5F
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 20 Dec 2022 20:55:07 GMT
age: 3524
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:51 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Last-Modified, Retry-After, Content-Type, Alert, Pragma, ETag, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 20 Dec 2022 21:33:24 GMT
age: 1227
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash d0c2b6760f2b58f445446dd2276d5af4
aeedf417b1ebde86ce837ca02ba934abb938b1a4
8fe72d0ce839150559da5ddf46bf87d26b6b9cbe34d09641b29a53be24997c81
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2444
Cache-Control: max-age=129224
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 21:53:51 GMT
Etag: "63a17b2b-1d7"
Expires: Thu, 22 Dec 2022 09:47:35 GMT
Last-Modified: Tue, 20 Dec 2022 09:06:51 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: PdxZJm/NLmmTa4HhZWySwg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 3dkBvr32U4O7D30Lo1lTOriJFS4=
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 746409a88b1342fe7b570306c302c71e
e08a7bf55e08a498f2eed6a35b90107fc0bdb303
9352308fd047bafceddfaf2a9a6eab650593f16ff5632330a4bf745750704650
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9352308FD047BAFCEDDFAF2A9A6EAB650593F16FF5632330A4BF745750704650"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19389
Expires: Wed, 21 Dec 2022 03:17:02 GMT
Date: Tue, 20 Dec 2022 21:53:53 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 746409a88b1342fe7b570306c302c71e
e08a7bf55e08a498f2eed6a35b90107fc0bdb303
9352308fd047bafceddfaf2a9a6eab650593f16ff5632330a4bf745750704650
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9352308FD047BAFCEDDFAF2A9A6EAB650593F16FF5632330A4BF745750704650"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19389
Expires: Wed, 21 Dec 2022 03:17:02 GMT
Date: Tue, 20 Dec 2022 21:53:53 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 746409a88b1342fe7b570306c302c71e
e08a7bf55e08a498f2eed6a35b90107fc0bdb303
9352308fd047bafceddfaf2a9a6eab650593f16ff5632330a4bf745750704650
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9352308FD047BAFCEDDFAF2A9A6EAB650593F16FF5632330A4BF745750704650"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19389
Expires: Wed, 21 Dec 2022 03:17:02 GMT
Date: Tue, 20 Dec 2022 21:53:53 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 746409a88b1342fe7b570306c302c71e
e08a7bf55e08a498f2eed6a35b90107fc0bdb303
9352308fd047bafceddfaf2a9a6eab650593f16ff5632330a4bf745750704650
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9352308FD047BAFCEDDFAF2A9A6EAB650593F16FF5632330A4BF745750704650"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19389
Expires: Wed, 21 Dec 2022 03:17:02 GMT
Date: Tue, 20 Dec 2022 21:53:53 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb2f35059-99cc-477d-9e68-c3a035d125df.jpeg
200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb2f35059-99cc-477d-9e68-c3a035d125df.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bba7c67bdc57d1fe2870ebd4ee9fd5c9
127850560e258665ca8074757c1b66f680d2bd78
9edd765e65644edfe4221352225cb89ebe98fa451d9528b8b614d594a20e100d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb2f35059-99cc-477d-9e68-c3a035d125df.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9265
x-amzn-requestid: d84f905b-7faf-409a-b188-4b8cf06b9e4f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: da4KJGx9oAMFrQg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a1070d-43152d9651bcb4a15ffe1cfa;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 00:51:25 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: uGYoskcC2ev3JFxsBZGglmBiCCWmjo5Xg2zqe5925zArdzRk5QtuTQ==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 c5c7edc18be1805f007e0576da02e554.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 01:24:18 GMT
age: 73775
etag: "127850560e258665ca8074757c1b66f680d2bd78"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e977b0b-6e7d-42dd-9743-5064708ab1e0.jpeg
200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e977b0b-6e7d-42dd-9743-5064708ab1e0.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b5da803c751be159f0f5b3c2f65bd2b6
39139480cfc2ed0781b51745bfaabed4490aa0db
920ee464843101c638327866fbfcc9c7f00fc19b7cdbc8948fbe53d2b6fb4ed3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e977b0b-6e7d-42dd-9743-5064708ab1e0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7876
x-amzn-requestid: 668c95f2-a1b1-4abd-9f4e-23d05c4998a5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: da270EFlIAMFR5A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a10518-56d6db4f4cff1b4e08b87046;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 00:43:04 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: Hy6G0TSJc89Fyo8X3mLQ4nY4Y-2Xva9gqcLLAZH_T61Kk-6cMmhqQQ==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 cca7d60248a961ff8fc8c5640024b652.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 01:08:39 GMT
age: 74714
etag: "39139480cfc2ed0781b51745bfaabed4490aa0db"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd309904d-b04d-4ea5-a08f-18c679152ad0.jpeg
200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd309904d-b04d-4ea5-a08f-18c679152ad0.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 93c59f175466e2f77cec141a40cf3587
2f3c4bad2a69184f567f74c814b59b53aa777029
974563dd61f2afb6e26bb5516244d16ed1e76124cc6b500a2039e1d255d8945d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd309904d-b04d-4ea5-a08f-18c679152ad0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9893
x-amzn-requestid: b6a76f15-7dc0-43e6-968c-3c228b9aece7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dabr3FHXIAMF2tg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a0d97e-7dab8e9d620fa4323a19ebfc;Sampled=0
x-amzn-remapped-date: Mon, 19 Dec 2022 21:37:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: Mj3_rysMTC6_pR79kGD8zI7lnnqcU0sWT-TOYfX-NCRmPrTDi4aDNQ==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 ef8f66c83aecd87910ce2e1153544a20.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 08:35:02 GMT
age: 47931
etag: "2f3c4bad2a69184f567f74c814b59b53aa777029"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2ded193-0301-4ad3-a888-72c52212ad95.jpeg
200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2ded193-0301-4ad3-a888-72c52212ad95.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bfd0e913579b4ff2f511223d70cb01fb
497e0ffef816e100e6ddc221ec17d5f389c1142a
bee68ae1a938a5111a32dab4ec4f6964994e6c39143eac9ab94d6c5e29999372
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2ded193-0301-4ad3-a888-72c52212ad95.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5185
x-amzn-requestid: 3087af97-3f2d-4848-b297-eba8d84f10c5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dT10YHv8oAMF2sg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e3682-7527022d4bd9c15518fe75cc;Sampled=0
x-amzn-remapped-date: Sat, 17 Dec 2022 21:37:06 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: _WKAnv-iFrsEA9lFq4adBmRVdSk9-FQVF_cFCDhpM1_LMDdt_vPwhQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 21:37:09 GMT
age: 1004
etag: "497e0ffef816e100e6ddc221ec17d5f389c1142a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d762722-a130-4c65-99b1-2f6fb91155e5.jpeg
200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d762722-a130-4c65-99b1-2f6fb91155e5.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c7ac0b5738bab6b4ed770c26ca922250
e56fd4ee2f5354a54a6271db2be528f98eecd3d7
5997d5be6bbeb189ef08af2f6c6dd5bb0cfa70ad7b40daab8712efe5adc2c6e1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d762722-a130-4c65-99b1-2f6fb91155e5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8450
x-amzn-requestid: a9f11c68-8327-46ba-9075-e316a2f9fdbb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dabr3FoSIAMFdtQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a0d97e-61b788f5675fe0e815e1e967;Sampled=0
x-amzn-remapped-date: Mon, 19 Dec 2022 21:37:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: EFtrPmVeBdwlINxF0wQq0671EksYsi6nsyFd5E4SCSH4_bQyGaNQHQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 a06140ffee86972bad90c57fc682df36.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 07:53:50 GMT
age: 50403
etag: "e56fd4ee2f5354a54a6271db2be528f98eecd3d7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82b028aa-d0e3-4082-a385-1385bc5c6e06.jpeg
200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82b028aa-d0e3-4082-a385-1385bc5c6e06.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 045f016fb66e6e0d1da1fb742d9b19a7
8f98bf2cedfccfce71464a733e2fd37482fd71c2
593cf38d1c2c315ff23fcda60e41141caa0266874f36a0c517554ca01ea51f12
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82b028aa-d0e3-4082-a385-1385bc5c6e06.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9216
x-amzn-requestid: 460a95bf-5724-4bea-b6c1-f6ce263da5e7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dabq8FXboAMFwCQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a0d979-70340469247cdcf952a98c3e;Sampled=0
x-amzn-remapped-date: Mon, 19 Dec 2022 21:36:57 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: utr-CdnBX5-MjBHX3PW6rdC06JzmIvfrj9FOrQtOUDd91_Fo4wVzGg==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 a3b5bb90516201e5ddd137696b7b0f50.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 21:48:33 GMT
age: 320
etag: "8f98bf2cedfccfce71464a733e2fd37482fd71c2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
c0.wp.com/c/6.1.1/wp-includes/css/classic-themes.min.css
200 OK 217 B URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/css/classic-themes.min.css
IP
Hash 95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5
GET /c/6.1.1/wp-includes/css/classic-themes.min.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:53 GMT
content-type: text/css
content-length: 217
last-modified: Tue, 25 Oct 2022 13:45:16 GMT
expires: Wed, 20 Dec 2023 21:53:53 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
woay.com/
200 OK 60 kB IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (3152), with CRLF, LF line terminators
Hash 38daea672c21795521767b37a28938e9
833aea16a48aa5215abe3ab98894b801b23405ac
5f1ef5197029db3e00f3e07d8b850f5f65a06a9617fef1a4c0aff954338e6a71
GET / HTTP/1.1
Host: woay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:53 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
x-powered-by: WP Engine
link: <https://woay.com/wp-json/>; rel="https://api.w.org/", <https://woay.com/wp-json/wp/v2/pages/77633>; rel="alternate"; type="application/json", <https://woay.com/>; rel=shortlink
x-pass-why: custom-path
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9d5518b05926e5fc608ad00c4abf3e01
273178a68589773d7c28a2360e64685937a5caa6
c0401c937edee3f05e3e41ab2b09af061962bcfa8471f2d0a0d91c3fe732843d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 21:53:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9d5518b05926e5fc608ad00c4abf3e01
273178a68589773d7c28a2360e64685937a5caa6
c0401c937edee3f05e3e41ab2b09af061962bcfa8471f2d0a0d91c3fe732843d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 21:53:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-122720309-1
200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-122720309-1
IP
File type ASCII text, with very long lines (1921)
Hash 409a2cf487eeda15bdfe1592a3ec0779
64f34cbc7a7356cd1175bf5add382ced4660350b
6bf3981646555220140244058b3862cfb093d4a5a6c3a39ac30a0ea4c6ee748a
GET /gtag/js?id=UA-122720309-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 20 Dec 2022 21:53:53 GMT
expires: Tue, 20 Dec 2022 21:53:53 GMT
cache-control: private, max-age=900
last-modified: Tue, 20 Dec 2022 21:17:12 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43577
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
i0.wp.com/woay.com/wp-content/uploads/2022/10/Holiday_Digital-Ad_728x90_FINAL.jpg?ssl=1
200 OK 24 kB URL HTTP/2 i0.wp.com/woay.com/wp-content/uploads/2022/10/Holiday_Digital-Ad_728x90_FINAL.jpg?ssl=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 728x90, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ea70aa7dacb04b0492c38a95a738763d
9e143b9ec0475d581fc193ff67d8be700fe442fd
47848171948079d2f1c592b4ec9fa4443dbc56c25d97eadc8cceac6f721c2513
GET /woay.com/wp-content/uploads/2022/10/Holiday_Digital-Ad_728x90_FINAL.jpg?ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:53 GMT
content-type: image/webp
content-length: 24052
last-modified: Mon, 12 Dec 2022 03:11:31 GMT
expires: Wed, 11 Dec 2024 15:11:31 GMT
cache-control: public, max-age=63115200
link: <https://woay.com/wp-content/uploads/2022/10/Holiday_Digital-Ad_728x90_FINAL.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "a8d6eb86aa80ea25"
vary: Accept
x-nc: HIT arn 3
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/woay.com/wp-content/uploads/2022/09/unnamed.jpg?ssl=1
200 OK 29 kB URL HTTP/2 i0.wp.com/woay.com/wp-content/uploads/2022/09/unnamed.jpg?ssl=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 728x90, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash c1dbef9ea911b83b88b6cf96931ba6af
af4a0a11f7ad0ca3ba43abccc5773e179b028347
18d51b173b84383e1c4ac2bb74e695608a35740d15598bb33ba91cf4ed815083
GET /woay.com/wp-content/uploads/2022/09/unnamed.jpg?ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:53 GMT
content-type: image/webp
content-length: 28580
last-modified: Sat, 01 Oct 2022 07:58:12 GMT
expires: Mon, 30 Sep 2024 19:58:12 GMT
cache-control: public, max-age=63115200
link: <https://woay.com/wp-content/uploads/2022/09/unnamed.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "7c4ab9dd64943401"
vary: Accept
x-nc: HIT arn 2
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9d5518b05926e5fc608ad00c4abf3e01
273178a68589773d7c28a2360e64685937a5caa6
c0401c937edee3f05e3e41ab2b09af061962bcfa8471f2d0a0d91c3fe732843d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 21:53:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash c92a63593449265941bccd2401ec3927
09bd5c279a11c5067d75300053d70e4e678d7140
a137e34a2d19637a6fe63ba801ce97be1ded72584f8a90798b4c0910526a4429
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 21:53:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
woay.com/wp-content/uploads/2020/03/WOAY-272-X-90.png
200 OK 20 kB URL HTTP/2 woay.com/wp-content/uploads/2020/03/WOAY-272-X-90.png
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 272 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash a1fe0dfb89834fd27c90a76d5c20db25
35f8809d454ccdf271071ec168cadeae9be444cd
3acdc1f4a7ba58d8c5963a734942fe02a5b1ca726cc83ee751af495f40b62d84
GET /wp-content/uploads/2020/03/WOAY-272-X-90.png HTTP/1.1
Host: woay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:54 GMT
content-type: image/png
content-length: 20432
last-modified: Thu, 27 Jan 2022 19:43:06 GMT
etag: "61f2f5ca-4fd0"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
woay.com/wp-content/uploads/2020/03/WOAY-400-X-137.png
200 OK 41 kB URL HTTP/2 woay.com/wp-content/uploads/2020/03/WOAY-400-X-137.png
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 400 x 137, 8-bit/color RGBA, non-interlaced\012- data
Hash 3f09d3da0f555c114ef0041fdf30b3d3
bccd3e9acb34a2804aa13a0cd458c5a46b749393
4217fd4e14883b3252156cd68e432fc9ad4f6384141b4b40422e37c95da10c39
GET /wp-content/uploads/2020/03/WOAY-400-X-137.png HTTP/1.1
Host: woay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:54 GMT
content-type: image/png
content-length: 41435
last-modified: Thu, 27 Jan 2022 19:43:06 GMT
etag: "61f2f5ca-a1db"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
widgets.media.weather.com/wxwidget.loader.js?cid=550806385
200 OK 123 kB URL HTTP/2 widgets.media.weather.com/wxwidget.loader.js?cid=550806385
IP
File type ASCII text, with very long lines (65536), with no line terminators
Size 123 kB (123339 bytes)
Hash f6786e2703b2317989bf41f6460b8277
f2c7f57bce9e22b3f3cc564da9bbc1ca3777bf0b
64bc893d3d29f0911e6276feabbbcf6bf0a128958a4e09a823e376a3841d0404
GET /wxwidget.loader.js?cid=550806385 HTTP/1.1
Host: widgets.media.weather.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
server: nginx
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=31536000; includeSubDomains; preload
etag: W/"81216-9s4hYd4tDmfsOT23/nTUTqAKRZ8"
content-encoding: gzip
x-cache-status: MISS
content-length: 123339
cache-control: max-age=24411
expires: Wed, 21 Dec 2022 04:40:45 GMT
date: Tue, 20 Dec 2022 21:53:54 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
woay.com/wp-content/plugins/eventON/assets/js/jquery.mobile.min.js?ver=2.6.12
200 OK 40 kB URL HTTP/2 woay.com/wp-content/plugins/eventON/assets/js/jquery.mobile.min.js?ver=2.6.12
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (13638), with CRLF line terminators
Hash b07ec55c5d0f5a00329e9f5e64f9c305
00cf461bf0a46a489344df2b66b6621541fe03fb
53ca465d2ed7c0786532efbbeeffe71c30105a207773d5f3a2d01cf6de35385d
GET /wp-content/plugins/eventON/assets/js/jquery.mobile.min.js?ver=2.6.12 HTTP/1.1
Host: woay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:54 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 27 Jan 2022 19:44:46 GMT
etag: W/"61f2f62e-3549"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
woay.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
200 OK 4.4 kB URL HTTP/2 woay.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document, ASCII text, with very long lines (12310), with no line terminators
Hash 063f2f8ccc868a6a5b32b08b8a2a1648
ed583e535b317f93ecc576df26ffd233c03c4a2a
b98e32cffceb40248087cac062fc2d5e3e2addc1d5f025c6305dec1768e6b245
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: woay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:54 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Fri, 16 Dec 2022 14:06:20 GMT
etag: W/"639c7b5c-3016"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
woay.com/wp-content/plugins/td-cloud-library/assets/js/js_posts_autoload.min.js?ver=87b3292f51aec51c00e6ce7db9b73ed1
200 OK 2.5 kB URL HTTP/2 woay.com/wp-content/plugins/td-cloud-library/assets/js/js_posts_autoload.min.js?ver=87b3292f51aec51c00e6ce7db9b73ed1
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (544)
Hash 8b6184bd1d444f78e2a73fdbc39c40bc
7607964881c4a2f176eee329e9497c496d268aba
d96226cf3e9e134de4e4ebe25d3d2e51a72f41177032dcf98c75c88e079dfaf7
GET /wp-content/plugins/td-cloud-library/assets/js/js_posts_autoload.min.js?ver=87b3292f51aec51c00e6ce7db9b73ed1 HTTP/1.1
Host: woay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:54 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Wed, 16 Nov 2022 03:32:38 GMT
etag: W/"637459d6-14e2"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
woay.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.8
200 OK 58 kB URL HTTP/2 woay.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.8
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Hash 2a52c8f276d6abcee0f1aab71d3fbbce
cd315abded0916b2635b67dd3fb1169f5b138cdf
942b2595911b7019845a9252636a076b16810c3fb8c5cdcdb2d8d3213e918b8b
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.8 HTTP/1.1
Host: woay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:54 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 27 Jan 2022 19:44:43 GMT
etag: W/"61f2f62b-e6df"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c87d0c15bf345b606ee083e9ef26e442
877837f24420390a9dda4ec721f4b15ef5ed39e4
93df5fbd82798835d87eb28b25c7004fffeb9c0d15fb7f56678bcaf40fb59bfa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "93DF5FBD82798835D87EB28B25C7004FFFEB9C0D15FB7F56678BCAF40FB59BFA"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4817
Expires: Tue, 20 Dec 2022 23:14:11 GMT
Date: Tue, 20 Dec 2022 21:53:54 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash eadadfec0a65bce69128230cfa49f936
1ae7fbb4969315fc2d13cf0a63d1909c499147db
bbd8831dd832214747d09faca8a7092b1e72dbaec35ee513bf6663caaea3e488
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 21:53:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://woay.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Dec 2022 19:33:54 GMT
expires: Thu, 14 Dec 2023 19:33:54 GMT
cache-control: public, max-age=31536000
age: 526800
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2
200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 17820, version 1.0\012- data
Hash 3d5107abaf7bf4df5478bd04625c0929
b04d394caabf6ea3e500b74781dc2bfd54f3c18d
9ad0a22b0c58240a7a92b4c01aa31f39a5918dea6a8fdfa77e63042abc4fca31
GET /s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://woay.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17820
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Dec 2022 18:56:07 GMT
expires: Tue, 19 Dec 2023 18:56:07 GMT
cache-control: public, max-age=31536000
age: 97067
last-modified: Mon, 15 Aug 2022 18:13:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
woay.com/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.10.1
200 OK 19 kB URL HTTP/2 woay.com/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.10.1
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (1577)
Hash 3ab9e01cb74f77ff671323374a6927e7
6053628304c97388a0e3a64ae78aa000f6150f5a
fe06580d185a04ea66fbaa4baff529c7c5b31bdf4749cfb751823f4a21345ed6
GET /wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.10.1 HTTP/1.1
Host: woay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:54 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Fri, 16 Dec 2022 14:16:09 GMT
etag: W/"639c7da9-2e7a"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
woay.com/wp-content/plugins/wp-user-avatar/assets/js/frontend.min.js?ver=4.3.2
200 OK 20 kB URL HTTP/2 woay.com/wp-content/plugins/wp-user-avatar/assets/js/frontend.min.js?ver=4.3.2
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (19079), with no line terminators
Hash 7bb3113fc31618b627c59587546a30ee
9327f1240820a5271d56a13748fa6c89c93ff08b
d5781b60e3c3c4b76c50d76403e78f0153a5f44d7b8f95f540569eeff38fe978
GET /wp-content/plugins/wp-user-avatar/assets/js/frontend.min.js?ver=4.3.2 HTTP/1.1
Host: woay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:54 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Fri, 16 Dec 2022 13:30:20 GMT
etag: W/"639c72ec-4a87"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
woay.com/wp-content/plugins/td-composer/legacy/Newspaper/assets/images/sprite/elements.png
200 OK 4.1 kB URL HTTP/2 woay.com/wp-content/plugins/td-composer/legacy/Newspaper/assets/images/sprite/elements.png
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type PNG image data, 90 x 2100, 8-bit colormap, non-interlaced\012- data
Hash be2df2724b9e7f4c7eb78bf6bc57d9e2
5ba841b8b7cf210ada1a45d80bfb5c6d12ff2b81
277c84697b5039a7583a843ba2e6b784354925898a15056c8d975b696d2e7c2c
GET /wp-content/plugins/td-composer/legacy/Newspaper/assets/images/sprite/elements.png HTTP/1.1
Host: woay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/wp-content/plugins/td-composer/legacy/Newspaper/assets/css/td_legacy_main.css?ver=e815948e5c9ec5801de67b92a1d5a59fx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:54 GMT
content-type: image/png
content-length: 4149
last-modified: Wed, 16 Nov 2022 03:32:31 GMT
etag: "637459cf-1035"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
woay.com/wp-content/plugins/eventON/assets/js/eventon_functions.js?ver=2.6.12
200 OK 2.5 kB URL HTTP/2 woay.com/wp-content/plugins/eventON/assets/js/eventon_functions.js?ver=2.6.12
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with CRLF line terminators
Hash 4c7daa4c0be0bb3508b9524b06548b0c
38f98ad44cbe68a8524b45be4e59a24c93fd6324
402b31e2e22b2dfcc7aba68038c3905b789f6a5ddb5b176ea36309b9a0186704
GET /wp-content/plugins/eventON/assets/js/eventon_functions.js?ver=2.6.12 HTTP/1.1
Host: woay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:54 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 27 Jan 2022 19:44:46 GMT
etag: W/"61f2f62e-ce6"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash eadadfec0a65bce69128230cfa49f936
1ae7fbb4969315fc2d13cf0a63d1909c499147db
bbd8831dd832214747d09faca8a7092b1e72dbaec35ee513bf6663caaea3e488
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 21:53:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
woay.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
200 OK 36 kB URL HTTP/2 woay.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (9937), with no line terminators
Hash 77ad070013a3bbbe91d5f226755a6514
4f0097709e89c08cbb3d6db9aad2631516f11c44
7053055dd2156b1595b0c7a824028f73da995448350c436a3c7d1feb8a47ecfa
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: woay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:54 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Fri, 16 Dec 2022 14:06:20 GMT
etag: W/"639c7b5c-26d1"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
pixel.wp.com/g.gif?v=ext&blog=173639802&post=77633&tz=-5&srv=woay.com&j=1%3A11.5.1&host=woay.com&ref=&fcp=3496&rand=0.07702603750261405
200 OK 50 B URL HTTP/2 pixel.wp.com/g.gif?v=ext&blog=173639802&post=77633&tz=-5&srv=woay.com&j=1%3A11.5.1&host=woay.com&ref=&fcp=3496&rand=0.07702603750261405
IP
File type GIF image data, version 89a, 6 x 5\012- data
Hash e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
GET /g.gif?v=ext&blog=173639802&post=77633&tz=-5&srv=woay.com&j=1%3A11.5.1&host=woay.com&ref=&fcp=3496&rand=0.07702603750261405 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:54 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2
woay.com/wp-content/plugins/wp-user-avatar/assets/flatpickr/flatpickr.min.js?ver=4.3.2
200 OK 15 kB URL HTTP/2 woay.com/wp-content/plugins/wp-user-avatar/assets/flatpickr/flatpickr.min.js?ver=4.3.2
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (31752)
Hash 24712ef0b583fdcb37d9327af8ba0766
2844548c0bc352beba75ee87de03fce97b1f5da1
a0cc9371d91ed5be1f5004f4c1055d96b0f3705ddcf604c74bfb7e45f711d166
GET /wp-content/plugins/wp-user-avatar/assets/flatpickr/flatpickr.min.js?ver=4.3.2 HTTP/1.1
Host: woay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:54 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Fri, 16 Dec 2022 13:30:20 GMT
etag: W/"639c72ec-c5ad"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
i0.wp.com/woay.com/wp-content/uploads/2022/10/11014L00-HHIFW.jpg?resize=100%2C70&ssl=1
200 OK 1.8 kB URL HTTP/2 i0.wp.com/woay.com/wp-content/uploads/2022/10/11014L00-HHIFW.jpg?resize=100%2C70&ssl=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 100x70, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 44311eab3256e109e9b57729c1d8ae49
27978ebca23343e0eea42e0eb8b7d9c984287bdb
7ec596548445543f8e0889ba7d979dc90964639a3ddf88abddcc0a1af6beceb7
GET /woay.com/wp-content/uploads/2022/10/11014L00-HHIFW.jpg?resize=100%2C70&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:54 GMT
content-type: image/webp
content-length: 1754
last-modified: Tue, 20 Dec 2022 21:53:54 GMT
expires: Fri, 20 Dec 2024 09:53:54 GMT
cache-control: public, max-age=63115200
link: <https://woay.com/wp-content/uploads/2022/10/11014L00-HHIFW.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "be61772b8cd4ff69"
vary: Accept
x-nc: MISS arn 8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/woay.com/wp-content/uploads/2022/10/11014L00-HHIFW.jpg?resize=533%2C261&ssl=1
200 OK 14 kB URL HTTP/2 i0.wp.com/woay.com/wp-content/uploads/2022/10/11014L00-HHIFW.jpg?resize=533%2C261&ssl=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 533x261, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 624a6f09d7c511ab10393fe7837f9fb0
4927cf5cdec611d5d8b53efcb8649165be0ec339
617932cdc3e3f2deef57ef3d361756beff62fb2c17c1bcdddb4b9b5e60b5a2c8
GET /woay.com/wp-content/uploads/2022/10/11014L00-HHIFW.jpg?resize=533%2C261&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:54 GMT
content-type: image/webp
content-length: 14536
last-modified: Tue, 20 Dec 2022 21:53:54 GMT
expires: Fri, 20 Dec 2024 09:53:54 GMT
cache-control: public, max-age=63115200
link: <https://woay.com/wp-content/uploads/2022/10/11014L00-HHIFW.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "3b250c60fd005a89"
vary: Accept
x-nc: MISS arn 8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/woay.com/wp-content/uploads/2022/12/MGN_1280x960_11217P00-FEAZJ.png?resize=100%2C70&ssl=1
200 OK 2.9 kB URL HTTP/2 i0.wp.com/woay.com/wp-content/uploads/2022/12/MGN_1280x960_11217P00-FEAZJ.png?resize=100%2C70&ssl=1
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 349f892ca438c356f39dc99e32239447
70dca46bfaba475fe87558a45f544a99b05a52c6
915b53b1363ab25728cd32735faff607af0f724712c23d22136d69321178f22c
GET /woay.com/wp-content/uploads/2022/12/MGN_1280x960_11217P00-FEAZJ.png?resize=100%2C70&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:54 GMT
content-type: image/webp
content-length: 2862
last-modified: Tue, 20 Dec 2022 21:53:54 GMT
expires: Fri, 20 Dec 2024 09:53:54 GMT
cache-control: public, max-age=63115200
link: <https://woay.com/wp-content/uploads/2022/12/MGN_1280x960_11217P00-FEAZJ.png>; rel="canonical"
x-content-type-options: nosniff
etag: "fee18a466807a73a"
vary: Accept
x-nc: MISS arn 6
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/woay.com/wp-content/uploads/2018/12/Holidays-generic-MGN_1479584064343_4923904_ver1.0_1280_720.jpg?zoom=2&resize=265%2C198&ssl=1
200 OK 36 kB URL HTTP/2 i0.wp.com/woay.com/wp-content/uploads/2018/12/Holidays-generic-MGN_1479584064343_4923904_ver1.0_1280_720.jpg?zoom=2&resize=265%2C198&ssl=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 530x396, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f709e6f0a33a282e81d3d62c6bfb1b10
faa850f1f4a777a3dfdd87e5dbe1575530ab7f96
a5758662524197e8d4a27c33f258dd60d876b842b3e9d353714f21e999d260fc
GET /woay.com/wp-content/uploads/2018/12/Holidays-generic-MGN_1479584064343_4923904_ver1.0_1280_720.jpg?zoom=2&resize=265%2C198&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:54 GMT
content-type: image/webp
content-length: 35492
last-modified: Tue, 20 Dec 2022 21:53:54 GMT
expires: Fri, 20 Dec 2024 09:53:54 GMT
cache-control: public, max-age=63115200
link: <https://woay.com/wp-content/uploads/2018/12/Holidays-generic-MGN_1479584064343_4923904_ver1.0_1280_720.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "ccbd8b173ddf403f"
vary: Accept
x-nc: MISS arn 3
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/woay.com/wp-content/uploads/2018/12/Holidays-generic-MGN_1479584064343_4923904_ver1.0_1280_720.jpg?zoom=2&resize=100%2C70&ssl=1
200 OK 9.5 kB URL HTTP/2 i0.wp.com/woay.com/wp-content/uploads/2018/12/Holidays-generic-MGN_1479584064343_4923904_ver1.0_1280_720.jpg?zoom=2&resize=100%2C70&ssl=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 200x140, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash fbc118b6411688ad901839eedd7c0aa0
b91553b2add07add2abb5c4843f810a30105b913
4a51a5c9dad5877ea1aa70ba4d858ec184ba83590970f6ea5133c641bf967a67
GET /woay.com/wp-content/uploads/2018/12/Holidays-generic-MGN_1479584064343_4923904_ver1.0_1280_720.jpg?zoom=2&resize=100%2C70&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:54 GMT
content-type: image/webp
content-length: 9478
last-modified: Tue, 20 Dec 2022 21:53:54 GMT
expires: Fri, 20 Dec 2024 09:53:54 GMT
cache-control: public, max-age=63115200
link: <https://woay.com/wp-content/uploads/2018/12/Holidays-generic-MGN_1479584064343_4923904_ver1.0_1280_720.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "42a96fac6c27f56e"
vary: Accept
x-nc: MISS arn 3
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/woay.com/wp-content/uploads/2022/12/MGN_1280x720_20610B00-DZNJN.png?resize=265%2C198&ssl=1
200 OK 35 kB URL HTTP/2 i0.wp.com/woay.com/wp-content/uploads/2022/12/MGN_1280x720_20610B00-DZNJN.png?resize=265%2C198&ssl=1
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash f8d2a7f1c99dd0aad989be5cfc503878
5a210b61c7a00f609e19b00fa3b302d50a670f9b
6e67a5707b5bfb22d9daf3bd21060d9384149eba05e33182dd54f8ae7b9bd58d
GET /woay.com/wp-content/uploads/2022/12/MGN_1280x720_20610B00-DZNJN.png?resize=265%2C198&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:54 GMT
content-type: image/webp
content-length: 34696
last-modified: Tue, 20 Dec 2022 21:53:54 GMT
expires: Fri, 20 Dec 2024 09:53:54 GMT
cache-control: public, max-age=63115200
link: <https://woay.com/wp-content/uploads/2022/12/MGN_1280x720_20610B00-DZNJN.png>; rel="canonical"
x-content-type-options: nosniff
etag: "e327006680b636b4"
vary: Accept
x-nc: MISS arn 6
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/woay.com/wp-content/uploads/2022/12/MGN_1280x960_11217P00-FEAZJ.png?resize=534%2C462&ssl=1
200 OK 42 kB URL HTTP/2 i0.wp.com/woay.com/wp-content/uploads/2022/12/MGN_1280x960_11217P00-FEAZJ.png?resize=534%2C462&ssl=1
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 104acca14d65627d00e30cd1d2310071
adc4bf489af6839dd5d9ef8a7c1dec1897c81c61
cfce121e571a7c15d4aef5a3c04074c957b43223e15cd351355e9a094cc96a64
GET /woay.com/wp-content/uploads/2022/12/MGN_1280x960_11217P00-FEAZJ.png?resize=534%2C462&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:54 GMT
content-type: image/webp
content-length: 42070
last-modified: Tue, 20 Dec 2022 21:53:54 GMT
expires: Fri, 20 Dec 2024 09:53:54 GMT
cache-control: public, max-age=63115200
link: <https://woay.com/wp-content/uploads/2022/12/MGN_1280x960_11217P00-FEAZJ.png>; rel="canonical"
x-content-type-options: nosniff
etag: "32289b8228318c77"
vary: Accept
x-nc: MISS arn 6
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/woay.com/wp-content/uploads/2020/05/image.jpg?fit=192%2C192&ssl=1
200 OK 4.8 kB URL HTTP/2 i0.wp.com/woay.com/wp-content/uploads/2020/05/image.jpg?fit=192%2C192&ssl=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 192x192, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a951fd0983990e29c014474773912f72
329755a351eb1fedaed6a7ddc5dbbb8365a1c171
9ac46a46cf66a10eaf39724a103480fb4cf786277b3c83673c0ebc76f346d8cb
GET /woay.com/wp-content/uploads/2020/05/image.jpg?fit=192%2C192&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:55 GMT
content-type: image/webp
content-length: 4822
last-modified: Thu, 08 Dec 2022 04:41:03 GMT
expires: Sat, 07 Dec 2024 16:41:03 GMT
cache-control: public, max-age=63115200
link: <https://woay.com/wp-content/uploads/2020/05/image.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "b714592fb5fa6057"
vary: Accept
x-nc: MISS arn 4
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
i0.wp.com/woay.com/wp-content/uploads/2020/05/image.jpg?fit=32%2C32&ssl=1
200 OK 682 B URL HTTP/2 i0.wp.com/woay.com/wp-content/uploads/2020/05/image.jpg?fit=32%2C32&ssl=1
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 32x32, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d0a0329b4c5fb9aac4526add4ccdc798
3e42921a95cf4f0ff928d40ee75188d4c8131d38
a150ae07d1518bc656558ef948de749ca2e2abd4bea651305278bb609e27c1d5
GET /woay.com/wp-content/uploads/2020/05/image.jpg?fit=32%2C32&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:55 GMT
content-type: image/webp
content-length: 682
last-modified: Mon, 19 Dec 2022 07:08:58 GMT
expires: Wed, 18 Dec 2024 19:08:58 GMT
cache-control: public, max-age=63115200
link: <https://woay.com/wp-content/uploads/2020/05/image.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "780babf16f41cc20"
vary: Accept
x-nc: MISS arn 4
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
assets-cdn.abcnews.com/abcnews/1f9da5e8e121-release-12-13-2022.11/client/css/fusion.css
200 OK 12 kB URL HTTP/1.1 assets-cdn.abcnews.com/abcnews/1f9da5e8e121-release-12-13-2022.11/client/css/fusion.css
IP
File type Unicode text, UTF-8 text, with very long lines (47309), with no line terminators
Hash 8d4e5f2ca010d911dd4b8f0011d4b465
4b8b9d5c221fec2a061eb9463f44abbe26732e24
a163c01565bafb7467882b076fff847b85dcffd6ac8432c8e27f3490bddf035a
GET /abcnews/1f9da5e8e121-release-12-13-2022.11/client/css/fusion.css HTTP/1.1
Host: assets-cdn.abcnews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abcnews.go.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 12153
Connection: keep-alive
Date: Thu, 15 Dec 2022 00:55:02 GMT
Last-Modified: Wed, 14 Dec 2022 23:48:12 GMT
Server: AmazonS3
ETag: W/"57044f0c2da43c94c9c47d21c742b62b"
Content-Encoding: gzip
Via: 1.1 varnish (Varnish/6.0), 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Access-Control-Allow-Origin: *
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Mq-YOy4tpTjlbOdUmqybyUQ4xJzsGb_MlklXjFlwEcAzGNIfVqCiRg==
Age: 507533
woay.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-lazy-images/dist/lazy-images.js?minify=false&ver=8767d0da914b289bd862
200 OK 3.3 kB URL HTTP/2 woay.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-lazy-images/dist/lazy-images.js?minify=false&ver=8767d0da914b289bd862
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (2366), with no line terminators
Hash 5d9279b9591a34e4f2c424422134a218
68657eec868dd8d69beaba4ad2686b22ada12765
ef830524770f2cfbd593ac6870bffb23a8db9c38e9f3285656399e0996199dfe
GET /wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-lazy-images/dist/lazy-images.js?minify=false&ver=8767d0da914b289bd862 HTTP/1.1
Host: woay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:54 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Fri, 16 Dec 2022 14:44:36 GMT
etag: W/"639c8454-93e"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
woay.com/wp-content/plugins/td-cloud-library/assets/js/js_files_for_front.min.js?ver=87b3292f51aec51c00e6ce7db9b73ed1
200 OK 401 kB URL HTTP/2 woay.com/wp-content/plugins/td-cloud-library/assets/js/js_files_for_front.min.js?ver=87b3292f51aec51c00e6ce7db9b73ed1
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with very long lines (1042)
Size 401 kB (400979 bytes)
Hash a4fe5c490bf22c90ea1a999c92c10067
323262a320b3d4ddfbd0ed47a6b53a56b41e965e
4aa911615343eac4d1a71d21c48e51c62e70e5e2690402fcbefd3518b49f3c96
GET /wp-content/plugins/td-cloud-library/assets/js/js_files_for_front.min.js?ver=87b3292f51aec51c00e6ce7db9b73ed1 HTTP/1.1
Host: woay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:54 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Wed, 16 Nov 2022 03:32:38 GMT
etag: W/"637459d6-280b6"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 11ef4e19f4c7f67b6f4d26f787b8b2ea
93068edb94d448923ebbcfa7329529450bd214cf
c39e922bfaa39b446dd15ad733ea96b0bf50d6635b52e099bd77fd6f434289ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C39E922BFAA39B446DD15AD733EA96B0BF50D6635B52E099BD77FD6F434289BA"
Last-Modified: Tue, 20 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3808
Expires: Tue, 20 Dec 2022 22:57:23 GMT
Date: Tue, 20 Dec 2022 21:53:55 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash bb120a816fcf4f6afe7a3aeab18e7bbd
1f15e81595a0b524a2401d5566beaa0b8d4f61e6
cca2f14595c5ba6446c4e522883036fa07e31599909870ad42bc678587b1a91d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6508
Cache-Control: max-age=142979
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 21:53:55 GMT
Etag: "63a1a10a-1d7"
Expires: Thu, 22 Dec 2022 13:36:54 GMT
Last-Modified: Tue, 20 Dec 2022 11:48:26 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9280942f48b6d8af0882ac1f9a684dae
1998f517eb03d75b98b81b8fcc3de69b57faaad9
43e916ba35470cee4a823db0332214b20948fedd09350f83aa0376d902a4926b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 21:53:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.wp.com/e-202251.js
200 OK 23 kB IP
File type ASCII text, with very long lines (2690)
Hash fd047dcd9aad79b954524aa805ce0398
961f5e3d1862f4e35ad4a15dcfe6917d75bdc09c
ccf83f637587b9032dab1f41e6a0c22a0d496fdc5c32fb94c7456f7a479eae41
GET /e-202251.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:54 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"6197c5cf-3508"
content-encoding: br
expires: Sun, 10 Dec 2023 23:28:49 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2
s.abcnews.com/assets/dtci/js/atPageParams.js
200 OK 126 B URL HTTP/2 s.abcnews.com/assets/dtci/js/atPageParams.js
IP
Hash ec7bbdf3c6553ea81ce2cd9883073547
c9023e7b8c5b753cd05764d43d91bd0511ce841a
fa9592f5efb38348d7254bce59d2d80be49c80cd57da9e9c7ff50b06b0f2f79c
GET /assets/dtci/js/atPageParams.js HTTP/1.1
Host: s.abcnews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abcnews.go.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 126
last-modified: Fri, 03 Apr 2020 19:49:26 GMT
x-amz-meta-user-agent: AWSTransfer
x-amz-meta-user-agent-id: abcnewssite@s-0da66bcd175040bb8
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Tue, 20 Dec 2022 21:47:50 GMT
etag: "ec7bbdf3c6553ea81ce2cd9883073547"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: HCk1Vvs7vzz-gGyvZekJB0Ua0roNwvPGL6QDemMI5VQw7yB1Zp5uOw==
age: 416
X-Firefox-Spdy: h2
s.abcnews.com/assets/dtci/fonts/post-grotesk/PostGrotesk-Book.woff2
200 OK 52 kB URL HTTP/2 s.abcnews.com/assets/dtci/fonts/post-grotesk/PostGrotesk-Book.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 52408, version 2.65\012- data
Hash 6f0942a878183d0b7c862df9487eb857
e7be5044e91740d96f1fe9ef37f52999d2276f15
19f51b9f3812c72be9330c350365819a1915a49c83fc70a94216ae154255651d
GET /assets/dtci/fonts/post-grotesk/PostGrotesk-Book.woff2 HTTP/1.1
Host: s.abcnews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://abcnews.go.com
Connection: keep-alive
Referer: https://abcnews.go.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 52408
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 23 Mar 2020 15:13:08 GMT
x-amz-meta-user-agent: AWSTransfer
x-amz-meta-user-agent-id: abcnewssite@s-0da66bcd175040bb8
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Tue, 20 Dec 2022 21:43:46 GMT
etag: "6f0942a878183d0b7c862df9487eb857"
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: bzNUSTjN9Scr-2qZwn3JZ24M5MwEBA24lqMq9m-LIzsu9UI6uNar4A==
age: 644
X-Firefox-Spdy: h2
s.abcnews.com/assets/dtci/fonts/klim/tiempos/TiemposHeadline-Regular.woff2
200 OK 33 kB URL HTTP/2 s.abcnews.com/assets/dtci/fonts/klim/tiempos/TiemposHeadline-Regular.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 32946, version 1.0\012- data
Hash 59a87140d3865265c9907fbac47691c7
b7175c8ed32220c2a8dc37eb3b3caf81fb4e447f
532b96c5185519480e13e810445b5775c5d9fbb678d38c042cc2ddf0bf2cd6c0
GET /assets/dtci/fonts/klim/tiempos/TiemposHeadline-Regular.woff2 HTTP/1.1
Host: s.abcnews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://abcnews.go.com
Connection: keep-alive
Referer: https://abcnews.go.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 32946
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Fri, 11 Oct 2019 19:30:45 GMT
x-amz-meta-user-agent: AWSTransfer
x-amz-meta-user-agent-id: abcnewssite@s-0da66bcd175040bb8
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Tue, 20 Dec 2022 21:43:46 GMT
etag: "59a87140d3865265c9907fbac47691c7"
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Gn6JGmUb6-jIHcKbaGbgC4bARtSZwKMZJDM731ZM4xxJ9nixcf7QDA==
age: 644
X-Firefox-Spdy: h2
s.abcnews.com/assets/dtci/js/floodlight_global.js
200 OK 358 B URL HTTP/2 s.abcnews.com/assets/dtci/js/floodlight_global.js
IP
File type HTML document, ASCII text
Hash 0960d8b25295089b6cad687953471219
04d33f5823ed893bc9eb0bed5bf2f01afe4cc385
816e35a359220487d92776f8166aa66b5050655194d7679ea09873f73a856f02
GET /assets/dtci/js/floodlight_global.js HTTP/1.1
Host: s.abcnews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abcnews.go.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 358
last-modified: Tue, 11 Aug 2020 19:17:09 GMT
x-amz-meta-user-agent: AWSTransfer
x-amz-meta-user-agent-id: abcnewssite@s-0da66bcd175040bb8
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Tue, 20 Dec 2022 21:50:50 GMT
etag: "0960d8b25295089b6cad687953471219"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3hFtYn-_ITl5TRUZBzPC9OQ2JGKp1CdN9kE-Dv2elaGGHg11x9mGhg==
age: 223
X-Firefox-Spdy: h2
s.abcnews.com/assets/dtci/fonts/klim/tiempos/TiemposHeadline-RegularItalic.woff2
200 OK 34 kB URL HTTP/2 s.abcnews.com/assets/dtci/fonts/klim/tiempos/TiemposHeadline-RegularItalic.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 34126, version 1.0\012- data
Hash 4365ade213510125a12755b337544ca6
1e4fc59c2f818caba62313cb42620d28bb9c7e03
1a22f12c0ade9571c25e787076901fc372d5686e9aa7faf590f2e7f511a23521
GET /assets/dtci/fonts/klim/tiempos/TiemposHeadline-RegularItalic.woff2 HTTP/1.1
Host: s.abcnews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://abcnews.go.com
Connection: keep-alive
Referer: https://abcnews.go.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 34126
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Fri, 11 Oct 2019 19:30:58 GMT
x-amz-meta-user-agent: AWSTransfer
x-amz-meta-user-agent-id: abcnewssite@s-0da66bcd175040bb8
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Tue, 20 Dec 2022 21:48:16 GMT
etag: "4365ade213510125a12755b337544ca6"
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ehNBCOgLUMTXQrFwpfC3p8Ibe-BG-Q9vCDml7cTrhIbGVRrM0t81-A==
age: 464
X-Firefox-Spdy: h2
s.abcnews.com/assets/dtci/fonts/klim/tiempos/TiemposText-Regular.woff2
200 OK 50 kB URL HTTP/2 s.abcnews.com/assets/dtci/fonts/klim/tiempos/TiemposText-Regular.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 49910, version 1.0\012- data
Hash cad633c7e5471196d61ae4ab0159b0d9
5c5a815ccf88756b65bf1a472bef4d9a1a69b9ef
f4e3881d17cf551a4ef101f1b98d44ea9b4e43018bd45751bdae718e4f8866ba
GET /assets/dtci/fonts/klim/tiempos/TiemposText-Regular.woff2 HTTP/1.1
Host: s.abcnews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://abcnews.go.com
Connection: keep-alive
Referer: https://abcnews.go.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 49910
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Fri, 11 Oct 2019 19:31:02 GMT
x-amz-meta-user-agent: AWSTransfer
x-amz-meta-user-agent-id: abcnewssite@s-0da66bcd175040bb8
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Tue, 20 Dec 2022 21:25:59 GMT
etag: "cad633c7e5471196d61ae4ab0159b0d9"
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 6wFnB7JR8XIYdGd80HgdHvEHj6ZtFORiDhC0GrioIyKmxrgInLq36w==
age: 1687
X-Firefox-Spdy: h2
connect.facebook.net/en_US/sdk.js
200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js
IP
File type ASCII text, with very long lines (1957)
Hash ac65dec0cb06e8395f0b57987b13f2a5
d6619e1eb021bfdb81ba7a7d633bca8649ebd177
9b07e35fdaad5551186ae0fa2911a5200d0bc39df636fceede43b207c818f920
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://woay.com
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 7a7ad3cbe080d6014b1a295405ae0682
etag: "36872cb0f5efe93b5dc5821cd0190776"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Tue, 20 Dec 2022 22:03:53 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: rGXewMsG6DlfC1eYexPypQ==
x-fb-debug: Ly169R4zbmOIpblOK6keHZOiUnWW9eoggZAq0PKH7mJnpmAsBA+R6ENtNIpIlpV+0Xins8xsYtX5VML3Bj3G3w==
priority: u=3,i
content-length: 1685
x-fb-trip-id: 1904183273
date: Tue, 20 Dec 2022 21:53:55 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
js.interestmoments.com/scripts/count.js
200 OK 1.7 kB URL HTTP/1.1 js.interestmoments.com/scripts/count.js
IP
ASN #50321 FOP Reznichenko Sergey Mykolayovich
File type ASCII text, with very long lines (4587), with no line terminators
Hash 604404f904668bba5c2412748523a5b2
fb364d5fdabc9781a35d270f72502c3329bd7e43
cf4051550888255f110d596d59a1ecf8c5c961c32322d844604c6affc2f6f9fe
GET /scripts/count.js HTTP/1.1
Host: js.interestmoments.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 20 Dec 2022 21:53:55 GMT
Content-Type: application/javascript
Last-Modified: Fri, 25 Nov 2022 05:06:18 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63804d4a-11eb"
Expires: Fri, 30 Dec 2022 21:53:55 GMT
Cache-Control: max-age=864000
Access-Control-Allow-Origin: *
Content-Encoding: gzip
ocsp.digicert.com/
200 OK 471 B IP
Hash bb120a816fcf4f6afe7a3aeab18e7bbd
1f15e81595a0b524a2401d5566beaa0b8d4f61e6
cca2f14595c5ba6446c4e522883036fa07e31599909870ad42bc678587b1a91d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6508
Cache-Control: max-age=142979
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 21:53:55 GMT
Etag: "63a1a10a-1d7"
Expires: Thu, 22 Dec 2022 13:36:54 GMT
Last-Modified: Tue, 20 Dec 2022 11:48:26 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
200 OK 50 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP
File type ASCII text, with very long lines (4885)
Hash f6ea0b31af8c2d6db5402ca8968c1b67
bede81db12a2eff81583538c470591f60a278d09
e6073779fb90c498a1a287155655afcda91b2a3177f81517b1d7cd08cc6e1530
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Tue, 20 Dec 2022 21:53:55 GMT
expires: Tue, 20 Dec 2022 21:53:55 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 11159641955670720915
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 49601
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 9280942f48b6d8af0882ac1f9a684dae
1998f517eb03d75b98b81b8fcc3de69b57faaad9
43e916ba35470cee4a823db0332214b20948fedd09350f83aa0376d902a4926b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 21:53:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/viewthroughconversion/1010108458/?random=1671573245183&cv=11&fst=1671573245183&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=2&url=https%3A%2F%2Fabcnews.go.com%2Fvideo%2Fembed%3Fid%3Dabc_live11%26affil%3Dtrue&ref=https%3A%2F%2Fwoay.com%2F&tiba=ABC%20News%20Live%20-%20ABC%20News&data=event%3Dgtag.config&rfmt=3&fmt=4
200 OK 923 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/1010108458/?random=1671573245183&cv=11&fst=1671573245183&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=2&url=https%3A%2F%2Fabcnews.go.com%2Fvideo%2Fembed%3Fid%3Dabc_live11%26affil%3Dtrue&ref=https%3A%2F%2Fwoay.com%2F&tiba=ABC%20News%20Live%20-%20ABC%20News&data=event%3Dgtag.config&rfmt=3&fmt=4
IP
File type ASCII text, with very long lines (2031), with no line terminators
Hash 36fd5f7f3b93a4ed58f80bcdcab2fca6
90af23e9514d639ad24fb600e78567a9238addd0
d739eaf46fbe56fdc703afed7b964a88769c458e54a8e078cd79b52720740421
GET /pagead/viewthroughconversion/1010108458/?random=1671573245183&cv=11&fst=1671573245183&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=2&url=https%3A%2F%2Fabcnews.go.com%2Fvideo%2Fembed%3Fid%3Dabc_live11%26affil%3Dtrue&ref=https%3A%2F%2Fwoay.com%2F&tiba=ABC%20News%20Live%20-%20ABC%20News&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abcnews.go.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 20 Dec 2022 21:53:55 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 923
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 20-Dec-2022 22:08:55 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 0b3a38d8057f8c59aa4db5a405d1004c
3c25e79903c1854f482800c6649da26764730a90
910fbf0b154d2cb38f02f87065f7e94f0aa98a11ffd1c87b04eecf80975d4a51
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 21:53:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 44d1b97ebc6772b76319806ff504cf27
e7e520951d9f34cfc991932a62b0bd8cf390b1f7
b30398f6056dcc04122b413d78c632ea15df7cff07471850a1603a121efba20d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 21:53:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.comodoca.com/
200 OK 471 B IP
Hash 60f621970f4019ba930c548f1905fd41
a17f749a961f1a74491db97534558ec79bf86686
8123e7117a9c99d320aee221441f2c804346b6668d09ea6eb41b75c4d3b06a24
POST / HTTP/1.1
Host: ocsp.comodoca.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 21:53:55 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 17 Dec 2022 15:38:19 GMT
Expires: Sat, 24 Dec 2022 15:38:18 GMT
Etag: "a17f749a961f1a74491db97534558ec79bf86686"
Cache-Control: max-age=602702,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 52
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77cb9d13f9f2b51e-OSL
ocsp.comodoca.com/
200 OK 471 B IP
Hash 60f621970f4019ba930c548f1905fd41
a17f749a961f1a74491db97534558ec79bf86686
8123e7117a9c99d320aee221441f2c804346b6668d09ea6eb41b75c4d3b06a24
POST / HTTP/1.1
Host: ocsp.comodoca.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 20 Dec 2022 21:53:55 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 17 Dec 2022 15:38:19 GMT
Expires: Sat, 24 Dec 2022 15:38:18 GMT
Etag: "a17f749a961f1a74491db97534558ec79bf86686"
Cache-Control: max-age=602702,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 52
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77cb9d140aa2b4fd-OSL
widgets-green.media.weather.com/widgets/wxwidget.current-conditions.js?cid=550806385&v=181482f820ed754b77e1&referrer=woay.com
200 OK 5.6 kB URL HTTP/2 widgets-green.media.weather.com/widgets/wxwidget.current-conditions.js?cid=550806385&v=181482f820ed754b77e1&referrer=woay.com
IP
File type Unicode text, UTF-8 text, with very long lines (24877), with no line terminators
Hash e0049430e7d8633f78395714d013c0e1
b62db1a86e32c3347c12c7c63086fa631a9fadb6
0b078ac3cc00a5e68ab7c5eae945318508ab654f8aa3f0b5cbdc220884459c9e
GET /widgets/wxwidget.current-conditions.js?cid=550806385&v=181482f820ed754b77e1&referrer=woay.com HTTP/1.1
Host: widgets-green.media.weather.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
server: nginx
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=31536000; includeSubDomains; preload
etag: W/"6130-AQ6fcMRniRbHu39Q2WJYpBx6Vtc"
content-encoding: gzip
content-length: 5570
cache-control: public, max-age=550
expires: Tue, 20 Dec 2022 22:03:05 GMT
date: Tue, 20 Dec 2022 21:53:55 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/1010108458/?random=1671573245183&cv=11&fst=1671570000000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=2&url=https%3A%2F%2Fabcnews.go.com%2Fvideo%2Fembed%3Fid%3Dabc_live11%26affil%3Dtrue&ref=https%3A%2F%2Fwoay.com%2F&tiba=ABC%20News%20Live%20-%20ABC%20News&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1632838586&rmt_tld=1&ipr=y
200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/1010108458/?random=1671573245183&cv=11&fst=1671570000000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=2&url=https%3A%2F%2Fabcnews.go.com%2Fvideo%2Fembed%3Fid%3Dabc_live11%26affil%3Dtrue&ref=https%3A%2F%2Fwoay.com%2F&tiba=ABC%20News%20Live%20-%20ABC%20News&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1632838586&rmt_tld=1&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/1010108458/?random=1671573245183&cv=11&fst=1671570000000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=2&url=https%3A%2F%2Fabcnews.go.com%2Fvideo%2Fembed%3Fid%3Dabc_live11%26affil%3Dtrue&ref=https%3A%2F%2Fwoay.com%2F&tiba=ABC%20News%20Live%20-%20ABC%20News&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1632838586&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abcnews.go.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 20 Dec 2022 21:53:55 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/1010108458/?random=1671573245183&cv=11&fst=1671570000000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=2&url=https%3A%2F%2Fabcnews.go.com%2Fvideo%2Fembed%3Fid%3Dabc_live11%26affil%3Dtrue&ref=https%3A%2F%2Fwoay.com%2F&tiba=ABC%20News%20Live%20-%20ABC%20News&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1632838586&rmt_tld=0&ipr=y
200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/1010108458/?random=1671573245183&cv=11&fst=1671570000000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=2&url=https%3A%2F%2Fabcnews.go.com%2Fvideo%2Fembed%3Fid%3Dabc_live11%26affil%3Dtrue&ref=https%3A%2F%2Fwoay.com%2F&tiba=ABC%20News%20Live%20-%20ABC%20News&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1632838586&rmt_tld=0&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/1010108458/?random=1671573245183&cv=11&fst=1671570000000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=2&url=https%3A%2F%2Fabcnews.go.com%2Fvideo%2Fembed%3Fid%3Dabc_live11%26affil%3Dtrue&ref=https%3A%2F%2Fwoay.com%2F&tiba=ABC%20News%20Live%20-%20ABC%20News&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1632838586&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abcnews.go.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 20 Dec 2022 21:53:55 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 44d1b97ebc6772b76319806ff504cf27
e7e520951d9f34cfc991932a62b0bd8cf390b1f7
b30398f6056dcc04122b413d78c632ea15df7cff07471850a1603a121efba20d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 21:53:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 97216d9347c0d3c1bab297df919688d5
61eca83749fd58d5ce753bf65419435d522c2ce5
7277b81f23f6516aa706c00202e0705421837431095d5b1f7fb0f283ab5736ff
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 21:53:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 659ed3cfe3c0292c4f9b327aa4c139f6
5dd2c04f8c2e5da54bfdc4535068175214afb470
e26cd5b8bfd594fe4f2fd2eff937c6913b81aed931ddd09d830bd08b014e7d86
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E26CD5B8BFD594FE4F2FD2EFF937C6913B81AED931DDD09D830BD08B014E7D86"
Last-Modified: Tue, 20 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3750
Expires: Tue, 20 Dec 2022 22:56:26 GMT
Date: Tue, 20 Dec 2022 21:53:56 GMT
Connection: keep-alive
widgets-green.media.weather.com/widgets/wxwidget.search.js?cid=550806385&v=181482f820ed754b77e1&referrer=woay.com
200 OK 4.9 kB URL HTTP/2 widgets-green.media.weather.com/widgets/wxwidget.search.js?cid=550806385&v=181482f820ed754b77e1&referrer=woay.com
IP
File type ASCII text, with very long lines (15893), with no line terminators
Hash ecacfa022ac357cae7ae2e14bd2c37bf
4bd8fd0f910a2d932eec8ff0edf3aeb85942c244
b6412d9251b46bf547aef5ce207a69e071af1f6537b0db4ff6b9b997bf1a48bb
GET /widgets/wxwidget.search.js?cid=550806385&v=181482f820ed754b77e1&referrer=woay.com HTTP/1.1
Host: widgets-green.media.weather.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
server: nginx
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=31536000; includeSubDomains; preload
etag: W/"3e15-hcNsgJdk80+YZy0vn40C2McA5HE"
content-encoding: gzip
content-length: 4941
cache-control: public, max-age=600
expires: Tue, 20 Dec 2022 22:03:56 GMT
date: Tue, 20 Dec 2022 21:53:56 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
long.interestmoments.com/go/away.php?id=9689546-75-934597645&pid=2324&lid=7933345&from=google
302 Found 0 B URL HTTP/1.1 long.interestmoments.com/go/away.php?id=9689546-75-934597645&pid=2324&lid=7933345&from=google
IP
ASN #50321 FOP Reznichenko Sergey Mykolayovich
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/away.php?id=9689546-75-934597645&pid=2324&lid=7933345&from=google HTTP/1.1
Host: long.interestmoments.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Tue, 20 Dec 2022 21:53:56 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://long.interestmoments.com/go/away.php?id=987730385-23-683234&pid=7856&lid=07882367658&jid=67852&from=Tonyman3
Access-Control-Allow-Origin: *
api.amplitude.com/
200 OK 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS / HTTP/1.1
Host: api.amplitude.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: cross-origin-resource-policy
Referer: https://woay.com/
Origin: https://woay.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Dec 2022 21:53:56 GMT
content-length: 0
access-control-allow-origin: *
access-control-allow-methods: GET, POST
access-control-allow-headers: cross-origin-resource-policy
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
long.interestmoments.com/go/away.php?id=987730385-23-683234&pid=7856&lid=07882367658&jid=67852&from=Tonyman3
200 OK 440 B URL HTTP/1.1 long.interestmoments.com/go/away.php?id=987730385-23-683234&pid=7856&lid=07882367658&jid=67852&from=Tonyman3
IP
ASN #50321 FOP Reznichenko Sergey Mykolayovich
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash d282386a919dab7821ecb8af2c2be991
cb29f509dd65f520b4b8d72ee0c2b560a2c360b0
6403ec35140c92ba51786815e1505a33606ae5e76f33d13e5f64ed83ff5c2179
GET /go/away.php?id=987730385-23-683234&pid=7856&lid=07882367658&jid=67852&from=Tonyman3 HTTP/1.1
Host: long.interestmoments.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://woay.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 20 Dec 2022 21:53:56 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Content-Encoding: gzip
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3d5e4dc59cdcf5a1e50bd80e314c12fa
99dc516ce443c318ceb0265ae28dfa788f87d4f7
bfedacaa56286ebb9221267defd5472009886bd24d5333e9aae17abf92652474
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BFEDACAA56286EBB9221267DEFD5472009886BD24D5333E9AAE17ABF92652474"
Last-Modified: Tue, 20 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6548
Expires: Tue, 20 Dec 2022 23:43:04 GMT
Date: Tue, 20 Dec 2022 21:53:56 GMT
Connection: keep-alive
corepsh.top/?pl=BqvRQCjrqUSruoVr6MUW9w&click_id=cnv8903c5b7b8a55d5112d9f915bfbfafe8&sub_id=1380818623325349
302 Found 0 B URL HTTP/2 corepsh.top/?pl=BqvRQCjrqUSruoVr6MUW9w&click_id=cnv8903c5b7b8a55d5112d9f915bfbfafe8&sub_id=1380818623325349
IP
ASN #35277 Llhost Inc. Srl
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?pl=BqvRQCjrqUSruoVr6MUW9w&click_id=cnv8903c5b7b8a55d5112d9f915bfbfafe8&sub_id=1380818623325349 HTTP/1.1
Host: corepsh.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Tue, 20 Dec 2022 21:53:57 GMT
content-length: 0
location: https://open.flintguard.top/space-robot/?pl=BqvRQCjrqUSruoVr6MUW9w&sm=space-robot&click_id=cnv8903c5b7b8a55d5112d9f915bfbfafe8&sub_id=1380818623325349&hash=HHxfdmMRtCcKd53Hmd-GTQ&exp=1671573537
set-cookie: BqvRQCjrqUSruoVr6MUW9w=1; max-age=345600; path=/; samesite=lax
__pl=5166ec7a-a05a-46f8-86ac-51b934bb06c0; expires=Fri, 20 Dec 2024 21:53:57 GMT; path=/; samesite=lax
cache-control: max-age=0, no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
open.flintguard.top/space-robot/assets/corner.png
200 OK 300 B URL HTTP/2 open.flintguard.top/space-robot/assets/corner.png
IP
ASN #24940 Hetzner Online GmbH
File type PNG image data, 44 x 44, 8-bit colormap, non-interlaced\012- data
Hash f66c38fa2cd7c50bd1989d41da28fb80
e1de333eca72647f3c1831083fe678cfa8fe9eab
3059be4046e0315ad1c0d1cb163d9daaf759bdf16e906e908842fac07e5608a2
GET /space-robot/assets/corner.png HTTP/1.1
Host: open.flintguard.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://open.flintguard.top/space-robot/?pl=BqvRQCjrqUSruoVr6MUW9w&sm=space-robot&click_id=cnv8903c5b7b8a55d5112d9f915bfbfafe8&sub_id=1380818623325349&hash=HHxfdmMRtCcKd53Hmd-GTQ&exp=1671573537
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:57 GMT
content-type: image/png
content-length: 300
last-modified: Fri, 15 Jul 2022 07:41:17 GMT
etag: "62d11a1d-12c"
strict-transport-security: max-age=63072000
accept-ranges: bytes
X-Firefox-Spdy: h2
code.jquery.com/jquery-2.1.4.min.js
200 OK 30 kB URL HTTP/2 code.jquery.com/jquery-2.1.4.min.js
IP
File type ASCII text, with very long lines (32025)
Hash a7f7dc66f5ba563bdbd4077fa667016e
c98fd169e356a997daf790dac6ead0c49e8c1eda
5315acee8e8c38e3fe62cff3b7a50cfb46a1130b0abb61bf119340e6b73934ac
GET /jquery-2.1.4.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://open.flintguard.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Dec 2022 21:53:57 GMT
content-encoding: gzip
content-length: 29519
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
accept-ranges: bytes
server: nginx
etag: W/"28feccc0-14979"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-sp-metadata: HS256.CIX6iJ0GEocBCiQzZGUwNGJiMy0yOTg4LTRhNjktYWM4MC1jZDQzODIwOTJkOWQQ+OiCoKvU+wIaBgj13YidBiIMOTEuOTAuNDIuMTU0KM/2ATADOARCFlRMU19BRVNfMTI4X0dDTV9TSEEyNTZaIGM3ZDJiNGM0ODRhNDEzZTE5MWRlNmFjZmYyZGIyMDA5GiwIARIkNDdlMDc2NjAtZTU5My00YTdkLWJmOWEtN2M5YzU4MmU1M2M4GM/mASIYCAISFGNkczAxNy5zazEuaHdjZG4ubmV0.ydh/yYo5py50Tzq9f3xeThMx0d4F/ECQuFY0K6irsxI=
x-hw: 1671573237.dop229.sk1.t,1671573237.cds254.sk1.hn,1671573237.cds017.sk1.c
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash eadadfec0a65bce69128230cfa49f936
1ae7fbb4969315fc2d13cf0a63d1909c499147db
bbd8831dd832214747d09faca8a7092b1e72dbaec35ee513bf6663caaea3e488
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 21:53:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://open.flintguard.top
Connection: keep-alive
Referer: https://open.flintguard.top/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Dec 2022 16:40:43 GMT
expires: Fri, 15 Dec 2023 16:40:43 GMT
cache-control: public, max-age=31536000
age: 450794
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
s.abcnews.com/assets/dtci/icomoon/svg/logo.svg
200 OK 4.6 kB URL HTTP/2 s.abcnews.com/assets/dtci/icomoon/svg/logo.svg
IP
Hash 04aa2c1587b5c7a658e15495c5aca998
e9d2d752ef3006c59ef158af8fcb9c82722ca114
fcd29f7cdc0ed50b0a08555f2dfca0813280a0ee89c7af77e132e6f3aebe573e
GET /assets/dtci/icomoon/svg/logo.svg HTTP/1.1
Host: s.abcnews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://abcnews.go.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
last-modified: Wed, 22 Sep 2021 14:13:01 GMT
x-amz-server-side-encryption: AES256
x-amz-meta-user-agent: AWSTransfer
x-amz-meta-user-agent-id: abcnewssite@s-0da66bcd175040bb8
x-amz-version-id: JdlNOFkBB0vm.Zs3KOhTjwjou4CinE1I
server: AmazonS3
content-encoding: gzip
date: Tue, 20 Dec 2022 21:38:19 GMT
etag: W/"bc08050ed61ac68c12d9ac0f4d48537e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: Xb3DaUZjFqIk7k3QaJXRezu4b_4bUk_YS54OteYE5v7wYIUE6O2DKg==
age: 991
X-Firefox-Spdy: h2
js.nextpsh.top/ps/ps.js?pl=true&id=BqvRQCjrqUSruoVr6MUW9w&sm=space-robot&click_id=cnv8903c5b7b8a55d5112d9f915bfbfafe8&sub_id=1380818623325349
200 OK 22 kB URL HTTP/2 js.nextpsh.top/ps/ps.js?pl=true&id=BqvRQCjrqUSruoVr6MUW9w&sm=space-robot&click_id=cnv8903c5b7b8a55d5112d9f915bfbfafe8&sub_id=1380818623325349
IP
ASN #35277 Llhost Inc. Srl
File type Unicode text, UTF-8 text, with very long lines (21709), with no line terminators
Hash bde9b0c0c6102f2d8bcbcc21c85baf01
902543064018eee7e9fc64f7c93a2c1b7ac709b9
7ea28c51f82e37a2f58cc78e072b66c33326941d94d46ee85043c2c789d256b9
Analyzer Verdict Alert quad9 Sinkholed
GET /ps/ps.js?pl=true&id=BqvRQCjrqUSruoVr6MUW9w&sm=space-robot&click_id=cnv8903c5b7b8a55d5112d9f915bfbfafe8&sub_id=1380818623325349 HTTP/1.1
Host: js.nextpsh.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://open.flintguard.top/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:57 GMT
content-type: application/javascript
content-length: 21950
set-cookie: __psu=4073bd1e-529a-4dde-83d0-1a87e46971d9; expires=Fri, 20 Dec 2024 21:53:57 GMT; path=/; secure; samesite=none
cache-control: max-age=0, no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
open.flintguard.top/space-robot/assets/apple-touch-icon.png
200 OK 23 kB URL HTTP/2 open.flintguard.top/space-robot/assets/apple-touch-icon.png
IP
ASN #24940 Hetzner Online GmbH
File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash f500ba7eee0ae7d1ceb44236ac253165
0614de220ecadb48038ed894d91120ba102c8367
ba5a3083c38d71a2191ee7e614a96812d1f9d88bbfb360d3b61dbb1ffcd51de5
GET /space-robot/assets/apple-touch-icon.png HTTP/1.1
Host: open.flintguard.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://open.flintguard.top/space-robot/?pl=BqvRQCjrqUSruoVr6MUW9w&sm=space-robot&click_id=cnv8903c5b7b8a55d5112d9f915bfbfafe8&sub_id=1380818623325349&hash=HHxfdmMRtCcKd53Hmd-GTQ&exp=1671573537
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:57 GMT
content-type: image/png
content-length: 23177
last-modified: Fri, 15 Jul 2022 07:41:17 GMT
etag: "62d11a1d-5a89"
strict-transport-security: max-age=63072000
accept-ranges: bytes
X-Firefox-Spdy: h2
open.flintguard.top/space-robot/assets/favicon-16x16.png
200 OK 1.2 kB URL HTTP/2 open.flintguard.top/space-robot/assets/favicon-16x16.png
IP
ASN #24940 Hetzner Online GmbH
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash 9d35b617fd258f648c37812252297dd3
7e32fd007f1c6fe1466d15439173082c0fbe82da
e8a768f8122da75777dc64b6d35e756a1848c4f330f293920c18480df085000a
GET /space-robot/assets/favicon-16x16.png HTTP/1.1
Host: open.flintguard.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://open.flintguard.top/space-robot/?pl=BqvRQCjrqUSruoVr6MUW9w&sm=space-robot&click_id=cnv8903c5b7b8a55d5112d9f915bfbfafe8&sub_id=1380818623325349&hash=HHxfdmMRtCcKd53Hmd-GTQ&exp=1671573537
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:57 GMT
content-type: image/png
content-length: 1163
last-modified: Fri, 15 Jul 2022 07:41:17 GMT
etag: "62d11a1d-48b"
strict-transport-security: max-age=63072000
accept-ranges: bytes
X-Firefox-Spdy: h2
js.nextpsh.top/ps/config.js?id=BqvRQCjrqUSruoVr6MUW9w
200 OK 356 B URL HTTP/2 js.nextpsh.top/ps/config.js?id=BqvRQCjrqUSruoVr6MUW9w
IP
ASN #35277 Llhost Inc. Srl
File type ASCII text, with CRLF line terminators
Hash 0bba2ca7f0180b1ecac227209f65d779
9a7a0029e1676be96355adb369c28be52bdb8e3f
9bd55a2b4d4726c08c72d29255063b3b5e1737b538e3266024ee0cd0b10d7c52
Analyzer Verdict Alert quad9 Sinkholed
GET /ps/config.js?id=BqvRQCjrqUSruoVr6MUW9w HTTP/1.1
Host: js.nextpsh.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://open.flintguard.top/
Cookie: __psu=4073bd1e-529a-4dde-83d0-1a87e46971d9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:57 GMT
content-type: application/javascript
content-length: 356
cache-control: max-age=0, no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
open.flintguard.top/space-robot/?pl=BqvRQCjrqUSruoVr6MUW9w&sm=space-robot&click_id=cnv8903c5b7b8a55d5112d9f915bfbfafe8&sub_id=1380818623325349&hash=HHxfdmMRtCcKd53Hmd-GTQ&exp=1671573537
304 Not Modified 0 B URL HTTP/2 open.flintguard.top/space-robot/?pl=BqvRQCjrqUSruoVr6MUW9w&sm=space-robot&click_id=cnv8903c5b7b8a55d5112d9f915bfbfafe8&sub_id=1380818623325349&hash=HHxfdmMRtCcKd53Hmd-GTQ&exp=1671573537
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /space-robot/?pl=BqvRQCjrqUSruoVr6MUW9w&sm=space-robot&click_id=cnv8903c5b7b8a55d5112d9f915bfbfafe8&sub_id=1380818623325349&hash=HHxfdmMRtCcKd53Hmd-GTQ&exp=1671573537 HTTP/1.1
Host: open.flintguard.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
If-Modified-Since: Mon, 25 Jul 2022 09:33:31 GMT
If-None-Match: W/"62de636b-3486"
TE: trailers
HTTP/2 304 Not Modified
server: nginx
date: Tue, 20 Dec 2022 21:53:58 GMT
last-modified: Mon, 25 Jul 2022 09:33:31 GMT
etag: "62de636b-3486"
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
js.nextpsh.top/ps/pl.js
200 OK 2.5 kB IP
ASN #35277 Llhost Inc. Srl
File type ASCII text, with very long lines (2504), with no line terminators
Hash cab6e91576cd92f022ccaaed013935e7
9801bae710b8101e7f43c17d68584a20c7b0854b
2fe4af427bd85f1934a685583b055f2d3879158886cb2e14a6f65c84a809c389
Analyzer Verdict Alert quad9 Sinkholed
GET /ps/pl.js HTTP/1.1
Host: js.nextpsh.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://open.flintguard.top/
Cookie: __psu=4073bd1e-529a-4dde-83d0-1a87e46971d9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:58 GMT
content-type: application/javascript
content-length: 2504
cache-control: max-age=0, no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
js.nextpsh.top/ps/ps.js?pl=true&id=BqvRQCjrqUSruoVr6MUW9w&sm=space-robot&click_id=cnv8903c5b7b8a55d5112d9f915bfbfafe8&sub_id=1380818623325349
200 OK 22 kB URL HTTP/2 js.nextpsh.top/ps/ps.js?pl=true&id=BqvRQCjrqUSruoVr6MUW9w&sm=space-robot&click_id=cnv8903c5b7b8a55d5112d9f915bfbfafe8&sub_id=1380818623325349
IP
ASN #35277 Llhost Inc. Srl
File type Unicode text, UTF-8 text, with very long lines (21709), with no line terminators
Hash bde9b0c0c6102f2d8bcbcc21c85baf01
902543064018eee7e9fc64f7c93a2c1b7ac709b9
7ea28c51f82e37a2f58cc78e072b66c33326941d94d46ee85043c2c789d256b9
Analyzer Verdict Alert quad9 Sinkholed
GET /ps/ps.js?pl=true&id=BqvRQCjrqUSruoVr6MUW9w&sm=space-robot&click_id=cnv8903c5b7b8a55d5112d9f915bfbfafe8&sub_id=1380818623325349 HTTP/1.1
Host: js.nextpsh.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://open.flintguard.top/
Cookie: __psu=4073bd1e-529a-4dde-83d0-1a87e46971d9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:58 GMT
content-type: application/javascript
content-length: 21950
cache-control: max-age=0, no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
js.nextpsh.top/ps/config.js?id=BqvRQCjrqUSruoVr6MUW9w
200 OK 356 B URL HTTP/2 js.nextpsh.top/ps/config.js?id=BqvRQCjrqUSruoVr6MUW9w
IP
ASN #35277 Llhost Inc. Srl
File type ASCII text, with CRLF line terminators
Hash 0bba2ca7f0180b1ecac227209f65d779
9a7a0029e1676be96355adb369c28be52bdb8e3f
9bd55a2b4d4726c08c72d29255063b3b5e1737b538e3266024ee0cd0b10d7c52
Analyzer Verdict Alert quad9 Sinkholed
GET /ps/config.js?id=BqvRQCjrqUSruoVr6MUW9w HTTP/1.1
Host: js.nextpsh.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://open.flintguard.top/
Cookie: __psu=4073bd1e-529a-4dde-83d0-1a87e46971d9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:58 GMT
content-type: application/javascript
content-length: 356
cache-control: max-age=0, no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
open.flintguard.top/sw-ca65b8c1f18adfc80ff5be356da33ece.js
304 Not Modified 0 B URL HTTP/2 open.flintguard.top/sw-ca65b8c1f18adfc80ff5be356da33ece.js
IP
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sw-ca65b8c1f18adfc80ff5be356da33ece.js HTTP/1.1
Host: open.flintguard.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
If-Modified-Since: Thu, 17 Feb 2022 13:24:13 GMT
If-None-Match: W/"620e4c7d-954"
Cache-Control: max-age=0
TE: trailers
HTTP/2 304 Not Modified
server: nginx
date: Tue, 20 Dec 2022 21:53:59 GMT
last-modified: Thu, 17 Feb 2022 13:24:13 GMT
etag: "620e4c7d-954"
strict-transport-security: max-age=63072000
X-Firefox-Spdy: h2
woay.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
200 OK 0 B URL HTTP/2 woay.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1
Host: woay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:53 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Fri, 16 Dec 2022 14:06:20 GMT
etag: W/"639c7b5c-aab"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
woay.com/wp-content/plugins/wp-user-avatar/assets/css/frontend.min.css?ver=4.3.2
200 OK 0 B URL HTTP/2 woay.com/wp-content/plugins/wp-user-avatar/assets/css/frontend.min.css?ver=4.3.2
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/plugins/wp-user-avatar/assets/css/frontend.min.css?ver=4.3.2 HTTP/1.1
Host: woay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:53 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Fri, 16 Dec 2022 13:35:30 GMT
etag: W/"639c7422-185bc"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
woay.com/wp-content/plugins/eventON/assets/css/eventon_styles.css?ver=2.6.12
200 OK 0 B URL HTTP/2 woay.com/wp-content/plugins/eventON/assets/css/eventon_styles.css?ver=2.6.12
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/plugins/eventON/assets/css/eventon_styles.css?ver=2.6.12 HTTP/1.1
Host: woay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:53 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 27 Jan 2022 19:44:46 GMT
etag: W/"61f2f62e-16afa"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
woay.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-lazy-images/dist/intersection-observer.js?minify=false&ver=83ec8aa758f883d6da14
200 OK 0 B URL HTTP/2 woay.com/wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-lazy-images/dist/intersection-observer.js?minify=false&ver=83ec8aa758f883d6da14
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/plugins/jetpack/jetpack_vendor/automattic/jetpack-lazy-images/dist/intersection-observer.js?minify=false&ver=83ec8aa758f883d6da14 HTTP/1.1
Host: woay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:54 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Fri, 16 Dec 2022 14:44:36 GMT
etag: W/"639c8454-2317"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
c0.wp.com/p/jetpack/11.5.1/css/jetpack.css
200 OK 0 B URL HTTP/2 c0.wp.com/p/jetpack/11.5.1/css/jetpack.css
IP
GET /p/jetpack/11.5.1/css/jetpack.css HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:53 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Tue, 25 Oct 2022 13:51:34 GMT
content-encoding: br
expires: Wed, 20 Dec 2023 21:53:53 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans%3A400%2C600%2C700%7CRoboto%3A400%2C500%2C700&display=swap&ver=12.1
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans%3A400%2C600%2C700%7CRoboto%3A400%2C500%2C700&display=swap&ver=12.1
IP
GET /css?family=Open+Sans%3A400%2C600%2C700%7CRoboto%3A400%2C500%2C700&display=swap&ver=12.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://woay.com
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 20 Dec 2022 21:53:53 GMT
date: Tue, 20 Dec 2022 21:53:53 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
woay.com/wp-content/plugins/td-composer/td-multi-purpose/style.css?ver=e815948e5c9ec5801de67b92a1d5a59fx
200 OK 0 B URL HTTP/2 woay.com/wp-content/plugins/td-composer/td-multi-purpose/style.css?ver=e815948e5c9ec5801de67b92a1d5a59fx
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/plugins/td-composer/td-multi-purpose/style.css?ver=e815948e5c9ec5801de67b92a1d5a59fx HTTP/1.1
Host: woay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:53 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Wed, 16 Nov 2022 03:32:32 GMT
etag: W/"637459d0-92ec"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
woay.com/wp-content/plugins/eventON/assets/js/eventon_script.js?ver=2.6.12
200 OK 0 B URL HTTP/2 woay.com/wp-content/plugins/eventON/assets/js/eventon_script.js?ver=2.6.12
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/plugins/eventON/assets/js/eventon_script.js?ver=2.6.12 HTTP/1.1
Host: woay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:54 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 27 Jan 2022 19:44:46 GMT
etag: W/"61f2f62e-9826"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
woay.com/wp-content/themes/Newspaper/style.css?ver=12.1
200 OK 0 B URL HTTP/2 woay.com/wp-content/themes/Newspaper/style.css?ver=12.1
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/themes/Newspaper/style.css?ver=12.1 HTTP/1.1
Host: woay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:54 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Wed, 16 Nov 2022 03:32:26 GMT
etag: W/"637459ca-24f51"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
woay.com/wp-content/plugins/td-standard-pack/Newspaper/assets/css/td_standard_pack_main.css?ver=48767bfdc5698c9103b4ef9b700012fd
200 OK 0 B URL HTTP/2 woay.com/wp-content/plugins/td-standard-pack/Newspaper/assets/css/td_standard_pack_main.css?ver=48767bfdc5698c9103b4ef9b700012fd
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/plugins/td-standard-pack/Newspaper/assets/css/td_standard_pack_main.css?ver=48767bfdc5698c9103b4ef9b700012fd HTTP/1.1
Host: woay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:54 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Wed, 16 Nov 2022 03:32:53 GMT
etag: W/"637459e5-b2d2a"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
woay.com/wp-content/plugins/td-composer/legacy/Newspaper/js/tagdiv_theme.min.js?ver=12.1
200 OK 0 B URL HTTP/2 woay.com/wp-content/plugins/td-composer/legacy/Newspaper/js/tagdiv_theme.min.js?ver=12.1
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/plugins/td-composer/legacy/Newspaper/js/tagdiv_theme.min.js?ver=12.1 HTTP/1.1
Host: woay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:54 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Wed, 16 Nov 2022 03:32:31 GMT
etag: W/"637459cf-4a964"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
www.woay.com/
301 Moved Permanently 0 B IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET / HTTP/1.1
Host: www.woay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
server: nginx
date: Tue, 20 Dec 2022 21:53:51 GMT
content-type: text/html; charset=UTF-8
location: https://woay.com/
x-powered-by: WP Engine
x-redirect-by: WordPress
x-pass-why: custom-path
X-Firefox-Spdy: h2
woay.com/wp-content/plugins/td-newsletter/style.css?ver=12.1
200 OK 0 B URL HTTP/2 woay.com/wp-content/plugins/td-newsletter/style.css?ver=12.1
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/plugins/td-newsletter/style.css?ver=12.1 HTTP/1.1
Host: woay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:53 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Wed, 16 Nov 2022 03:32:50 GMT
etag: W/"637459e2-1558"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
woay.com/wp-content/themes/Newspaper-child/style.css?ver=12.1c
200 OK 0 B URL HTTP/2 woay.com/wp-content/themes/Newspaper-child/style.css?ver=12.1c
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/themes/Newspaper-child/style.css?ver=12.1c HTTP/1.1
Host: woay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:54 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 27 Jan 2022 19:44:40 GMT
etag: W/"61f2f628-1e1"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
woay.com/wp-content/plugins/adrotate/library/jquery.adrotate.clicktracker.js
200 OK 0 B URL HTTP/2 woay.com/wp-content/plugins/adrotate/library/jquery.adrotate.clicktracker.js
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/plugins/adrotate/library/jquery.adrotate.clicktracker.js HTTP/1.1
Host: woay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:54 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Tue, 22 Nov 2022 12:09:51 GMT
etag: W/"637cbc0f-16d"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
woay.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.8
200 OK 0 B URL HTTP/2 woay.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.8
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.8 HTTP/1.1
Host: woay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:54 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 27 Jan 2022 19:44:43 GMT
etag: W/"61f2f62b-1e570"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
woay.com/wp-content/uploads/2022/11/2022-Election-share.jpg
200 OK 0 B URL HTTP/2 woay.com/wp-content/uploads/2022/11/2022-Election-share.jpg
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/uploads/2022/11/2022-Election-share.jpg HTTP/1.1
Host: woay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:54 GMT
content-type: image/jpeg
content-length: 198489
last-modified: Tue, 08 Nov 2022 16:01:02 GMT
etag: "636a7d3e-30759"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
c0.wp.com/c/6.1.1/wp-includes/js/comment-reply.min.js
200 OK 0 B URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/js/comment-reply.min.js
IP
GET /c/6.1.1/wp-includes/js/comment-reply.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:53 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
content-encoding: br
expires: Wed, 20 Dec 2023 21:53:53 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
woay.com/wp-content/plugins/wp-user-avatar/assets/select2/select2.min.css?ver=6.1.1
200 OK 0 B URL HTTP/2 woay.com/wp-content/plugins/wp-user-avatar/assets/select2/select2.min.css?ver=6.1.1
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/plugins/wp-user-avatar/assets/select2/select2.min.css?ver=6.1.1 HTTP/1.1
Host: woay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:53 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Fri, 16 Dec 2022 13:30:20 GMT
etag: W/"639c72ec-3a75"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
woay.com/wp-content/plugins/eventon-event-lists/assets/el_styles.css?ver=6.1.1
200 OK 0 B URL HTTP/2 woay.com/wp-content/plugins/eventon-event-lists/assets/el_styles.css?ver=6.1.1
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/plugins/eventon-event-lists/assets/el_styles.css?ver=6.1.1 HTTP/1.1
Host: woay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:54 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 27 Jan 2022 19:44:46 GMT
etag: W/"61f2f62e-163"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
woay.com/wp-content/plugins/td-cloud-library/assets/css/tdb_main.css?ver=87b3292f51aec51c00e6ce7db9b73ed1
200 OK 0 B URL HTTP/2 woay.com/wp-content/plugins/td-cloud-library/assets/css/tdb_main.css?ver=87b3292f51aec51c00e6ce7db9b73ed1
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/plugins/td-cloud-library/assets/css/tdb_main.css?ver=87b3292f51aec51c00e6ce7db9b73ed1 HTTP/1.1
Host: woay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:54 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Wed, 16 Nov 2022 03:32:38 GMT
etag: W/"637459d6-74a9"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
widgets-green.media.weather.com/wxwidget.common.js?cid=550806385&v=181482f820ed754b77e1
200 OK 0 B URL HTTP/2 widgets-green.media.weather.com/wxwidget.common.js?cid=550806385&v=181482f820ed754b77e1
IP
GET /wxwidget.common.js?cid=550806385&v=181482f820ed754b77e1 HTTP/1.1
Host: widgets-green.media.weather.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
server: nginx
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=31536000; includeSubDomains; preload
etag: W/"b9701-Qpk3UWbpv6jYlgWAC4dfsqHLcKM"
content-encoding: gzip
cache-control: public, max-age=583
expires: Tue, 20 Dec 2022 22:03:39 GMT
date: Tue, 20 Dec 2022 21:53:56 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
open.flintguard.top/space-robot/assets/trls.js
200 OK 0 B URL HTTP/2 open.flintguard.top/space-robot/assets/trls.js
IP
ASN #24940 Hetzner Online GmbH
GET /space-robot/assets/trls.js HTTP/1.1
Host: open.flintguard.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://open.flintguard.top/space-robot/?pl=BqvRQCjrqUSruoVr6MUW9w&sm=space-robot&click_id=cnv8903c5b7b8a55d5112d9f915bfbfafe8&sub_id=1380818623325349&hash=HHxfdmMRtCcKd53Hmd-GTQ&exp=1671573537
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:57 GMT
content-type: application/javascript
last-modified: Fri, 15 Jul 2022 07:41:17 GMT
vary: Accept-Encoding
etag: W/"62d11a1d-1ea7"
strict-transport-security: max-age=63072000
content-encoding: gzip
X-Firefox-Spdy: h2
c0.wp.com/c/6.1.1/wp-includes/js/jquery/jquery.min.js
200 OK 0 B URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/js/jquery/jquery.min.js
IP
GET /c/6.1.1/wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:53 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 19 Sep 2022 14:16:24 GMT
content-encoding: br
expires: Wed, 20 Dec 2023 21:53:53 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
open.flintguard.top/shared-js/assets/fnr.js
200 OK 0 B URL HTTP/2 open.flintguard.top/shared-js/assets/fnr.js
IP
ASN #24940 Hetzner Online GmbH
GET /shared-js/assets/fnr.js HTTP/1.1
Host: open.flintguard.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://open.flintguard.top/space-robot/?pl=BqvRQCjrqUSruoVr6MUW9w&sm=space-robot&click_id=cnv8903c5b7b8a55d5112d9f915bfbfafe8&sub_id=1380818623325349&hash=HHxfdmMRtCcKd53Hmd-GTQ&exp=1671573537
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:57 GMT
content-type: application/javascript
last-modified: Fri, 15 Jul 2022 07:41:17 GMT
vary: Accept-Encoding
etag: W/"62d11a1d-165c"
strict-transport-security: max-age=63072000
content-encoding: gzip
X-Firefox-Spdy: h2
woay.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.8
200 OK 0 B URL HTTP/2 woay.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.8
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.8 HTTP/1.1
Host: woay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:54 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 27 Jan 2022 19:44:43 GMT
etag: W/"61f2f62b-5cbe1"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
open.flintguard.top/space-robot/assets/main.js
200 OK 0 B URL HTTP/2 open.flintguard.top/space-robot/assets/main.js
IP
ASN #24940 Hetzner Online GmbH
GET /space-robot/assets/main.js HTTP/1.1
Host: open.flintguard.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://open.flintguard.top/space-robot/?pl=BqvRQCjrqUSruoVr6MUW9w&sm=space-robot&click_id=cnv8903c5b7b8a55d5112d9f915bfbfafe8&sub_id=1380818623325349&hash=HHxfdmMRtCcKd53Hmd-GTQ&exp=1671573537
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:57 GMT
content-type: application/javascript
last-modified: Fri, 15 Jul 2022 07:41:17 GMT
vary: Accept-Encoding
etag: W/"62d11a1d-702"
strict-transport-security: max-age=63072000
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Oswald%3A400%2C300%7COpen+Sans%3A700%2C400%2C400i%7CRoboto%3A700%2C400&ver=6.1.1
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Oswald%3A400%2C300%7COpen+Sans%3A700%2C400%2C400i%7CRoboto%3A700%2C400&ver=6.1.1
IP
GET /css?family=Oswald%3A400%2C300%7COpen+Sans%3A700%2C400%2C400i%7CRoboto%3A700%2C400&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://woay.com
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 20 Dec 2022 21:53:53 GMT
date: Tue, 20 Dec 2022 21:53:53 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
c0.wp.com/c/6.1.1/wp-includes/js/jquery/jquery-migrate.min.js
200 OK 0 B URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/js/jquery/jquery-migrate.min.js
IP
GET /c/6.1.1/wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:53 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
content-encoding: br
expires: Wed, 20 Dec 2023 21:53:53 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
woay.com/wp-content/plugins/eventON/assets/css/eventon_dynamic_styles.css?ver=6.1.1
200 OK 0 B URL HTTP/2 woay.com/wp-content/plugins/eventON/assets/css/eventon_dynamic_styles.css?ver=6.1.1
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/plugins/eventON/assets/css/eventon_dynamic_styles.css?ver=6.1.1 HTTP/1.1
Host: woay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:53 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 27 Jan 2022 19:44:46 GMT
etag: W/"61f2f62e-251e"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
connect.facebook.net/en_US/sdk.js?hash=c831ba8e1d8515edea088a9fbf6f883b
200 OK 0 B URL HTTP/2 connect.facebook.net/en_US/sdk.js?hash=c831ba8e1d8515edea088a9fbf6f883b
IP
GET /en_US/sdk.js?hash=c831ba8e1d8515edea088a9fbf6f883b HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://woay.com
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 4f83736b347cd07945c0a764a3754b2f
etag: "154f762cf06d4868093909235dfa15a3"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Wed, 20 Dec 2023 20:01:44 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: verDhvOmnTtGS7+DUUeBGA==
x-fb-debug: nP2Rinwkgpbgv1DP9KlYKMNAtbTMU/hx7J7fNNnYYlP03G7qmaohlVbDYGsFGXaAlc6Pc+yJ9wOlKB/frVU9VQ==
priority: u=3,i
content-length: 87016
x-fb-trip-id: 1904183273
date: Tue, 20 Dec 2022 21:53:55 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
woay.com/wp-content/plugins/eventON/assets/js/jquery.mousewheel.min.js?ver=2.6.12
200 OK 0 B URL HTTP/2 woay.com/wp-content/plugins/eventON/assets/js/jquery.mousewheel.min.js?ver=2.6.12
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/plugins/eventON/assets/js/jquery.mousewheel.min.js?ver=2.6.12 HTTP/1.1
Host: woay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:54 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 27 Jan 2022 19:44:46 GMT
etag: W/"61f2f62e-570"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
woay.com/wp-content/plugins/td-composer/legacy/Newspaper/assets/css/td_legacy_main.css?ver=e815948e5c9ec5801de67b92a1d5a59fx
200 OK 0 B URL HTTP/2 woay.com/wp-content/plugins/td-composer/legacy/Newspaper/assets/css/td_legacy_main.css?ver=e815948e5c9ec5801de67b92a1d5a59fx
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/plugins/td-composer/legacy/Newspaper/assets/css/td_legacy_main.css?ver=e815948e5c9ec5801de67b92a1d5a59fx HTTP/1.1
Host: woay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:54 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Wed, 16 Nov 2022 03:32:31 GMT
etag: W/"637459cf-281f9"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
s.viilotu.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=?u=https%3A%2F%2Fcorepsh.top%2F%3Fpl%3DBqvRQCjrqUSruoVr6MUW9w%26click_id%3Dcnv8903c5b7b8a55d5112d9f915bfbfafe8%26sub_id%3D1380818623325349
200 OK 0 B URL HTTP/2 s.viilotu.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=?u=https%3A%2F%2Fcorepsh.top%2F%3Fpl%3DBqvRQCjrqUSruoVr6MUW9w%26click_id%3Dcnv8903c5b7b8a55d5112d9f915bfbfafe8%26sub_id%3D1380818623325349
IP
ASN #39572 DataWeb Global Group B.V.
GET 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=?u=https%3A%2F%2Fcorepsh.top%2F%3Fpl%3DBqvRQCjrqUSruoVr6MUW9w%26click_id%3Dcnv8903c5b7b8a55d5112d9f915bfbfafe8%26sub_id%3D1380818623325349 HTTP/1.1
Host: s.viilotu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.19.0
date: Tue, 20 Dec 2022 21:53:57 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
accept-ch: Width, Viewport-Width, DPR, Device-Memory, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA, Sec-CH-UA-Full-Version
content-encoding: gzip
X-Firefox-Spdy: h2
s.viilotu.com/cnt/api/index
200 OK 0 B URL HTTP/2 s.viilotu.com/cnt/api/index
IP
ASN #39572 DataWeb Global Group B.V.
POST /cnt/api/index HTTP/1.1
Host: s.viilotu.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 3036
Origin: https://s.viilotu.com
Connection: keep-alive
Referer: https://s.viilotu.com/h/831/nohhsxek65nhtf474tlz7l4hvowtsun5s6myctcb6wy77tvwwlida7rhpnswq2aunvyeuoogrpd5mzzyc3gfhb2pyez5xskd2fi4tq2qqbel3f4zqgopl2n5w5j7asaa2jluli3a4ks756r3xfuibc7f4nrna6uv67ck7ewnvgyliygapjlpqosle566mtldvrjhqvcsa64wwm5ojvb4yu5gx3ranclk57mor3ldqj5v3x42jkn2qvkgjbtiq64667cyg3gskxbetcktpgsfcoojnxdixr6wm7ahyvpqhrifqbdbpz7fmy2km5saw626bjtxo72umjfwayaopjmieusoqnsyxofrsuz2c3k4iqyuhq5urflef5gzj4vfo33dhfnbrfczka34cm4ax5b5cupv2jnnasf7yjplksscgmlce2qbpfnfcyznpqbwqglbm5ohywadmqvxeb3jjfqtaxrlb5jtaktt4fjhtxcqtkwzqmgojvp5yutp4obqbddlflqr44vukjx6hayaxfv2rkxpwpnkljvhk6cuuudi3f4y4ysb7klgoiqcmmjdild2ky2euydclmvqqazxpn4voy2kg43ac7ylam2cs7qfguowazbiwshmljht7dtjot342lwkdmzxa3f4blwrp4gnfmu4vm3tn7f65w7ink5ny63gqwsvnvhwslsifj5du6m557pnetk3obyfksxoxfqrfw6jinmfa6cuwj2swcmnc6biplkme2qaobybpvree===?u=https%3A%2F%2Fcorepsh.top%2F%3Fpl%3DBqvRQCjrqUSruoVr6MUW9w%26click_id%3Dcnv8903c5b7b8a55d5112d9f915bfbfafe8%26sub_id%3D1380818623325349
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.19.0
date: Tue, 20 Dec 2022 21:53:57 GMT
content-type: application/json
vary: Accept-Encoding
access-control-allow-headers: X-Requested-With, Cache-Control, Content-Type
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-origin: https://s.viilotu.com
content-encoding: gzip
X-Firefox-Spdy: h2
c0.wp.com/p/jetpack/11.5.1/_inc/build/photon/photon.min.js
200 OK 0 B URL HTTP/2 c0.wp.com/p/jetpack/11.5.1/_inc/build/photon/photon.min.js
IP
GET /p/jetpack/11.5.1/_inc/build/photon/photon.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:53 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 07 Dec 2021 16:56:47 GMT
content-encoding: br
expires: Wed, 20 Dec 2023 21:53:53 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
open.flintguard.top/space-robot/assets/style.css
200 OK 0 B URL HTTP/2 open.flintguard.top/space-robot/assets/style.css
IP
ASN #24940 Hetzner Online GmbH
GET /space-robot/assets/style.css HTTP/1.1
Host: open.flintguard.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://open.flintguard.top/space-robot/?pl=BqvRQCjrqUSruoVr6MUW9w&sm=space-robot&click_id=cnv8903c5b7b8a55d5112d9f915bfbfafe8&sub_id=1380818623325349&hash=HHxfdmMRtCcKd53Hmd-GTQ&exp=1671573537
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:57 GMT
content-type: text/css
last-modified: Fri, 15 Jul 2022 07:41:17 GMT
vary: Accept-Encoding
etag: W/"62d11a1d-251e"
strict-transport-security: max-age=63072000
content-encoding: gzip
X-Firefox-Spdy: h2
woay.com/wp-content/tablepress-combined.min.css?ver=11
200 OK 0 B URL HTTP/2 woay.com/wp-content/tablepress-combined.min.css?ver=11
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/tablepress-combined.min.css?ver=11 HTTP/1.1
Host: woay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:53 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Wed, 11 May 2022 03:29:35 GMT
etag: W/"627b2d9f-14d7"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
woay.com/wp-content/plugins/wp-user-avatar/assets/select2/select2.min.js?ver=4.3.2
200 OK 0 B URL HTTP/2 woay.com/wp-content/plugins/wp-user-avatar/assets/select2/select2.min.js?ver=4.3.2
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/plugins/wp-user-avatar/assets/select2/select2.min.js?ver=4.3.2 HTTP/1.1
Host: woay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:54 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Fri, 16 Dec 2022 13:30:20 GMT
etag: W/"639c72ec-114c3"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
woay.com/wp-content/plugins/tablepress-responsive-tables/css/tablepress-responsive.min.css?ver=1.8
200 OK 0 B URL HTTP/2 woay.com/wp-content/plugins/tablepress-responsive-tables/css/tablepress-responsive.min.css?ver=1.8
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/plugins/tablepress-responsive-tables/css/tablepress-responsive.min.css?ver=1.8 HTTP/1.1
Host: woay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:54 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Wed, 04 May 2022 19:29:51 GMT
etag: W/"6272d42f-22aa"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
woay.com/wp-content/plugins/wp-user-avatar/assets/flatpickr/flatpickr.min.css?ver=4.3.2
200 OK 0 B URL HTTP/2 woay.com/wp-content/plugins/wp-user-avatar/assets/flatpickr/flatpickr.min.css?ver=4.3.2
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/plugins/wp-user-avatar/assets/flatpickr/flatpickr.min.css?ver=4.3.2 HTTP/1.1
Host: woay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:53 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Fri, 16 Dec 2022 13:30:20 GMT
etag: W/"639c72ec-3601"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
woay.com/wp-content/plugins/eventON/assets/fonts/font-awesome.css?ver=2.6.12
200 OK 0 B URL HTTP/2 woay.com/wp-content/plugins/eventON/assets/fonts/font-awesome.css?ver=2.6.12
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/plugins/eventON/assets/fonts/font-awesome.css?ver=2.6.12 HTTP/1.1
Host: woay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:53 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 27 Jan 2022 19:44:46 GMT
etag: W/"61f2f62e-9210"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
woay.com/wp-content/plugins/eventON/assets/js/handlebars.js?ver=2.6.12
200 OK 0 B URL HTTP/2 woay.com/wp-content/plugins/eventON/assets/js/handlebars.js?ver=2.6.12
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/plugins/eventON/assets/js/handlebars.js?ver=2.6.12 HTTP/1.1
Host: woay.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:54 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 27 Jan 2022 19:44:47 GMT
etag: W/"61f2f62f-12630"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
open.flintguard.top/space-robot/?pl=BqvRQCjrqUSruoVr6MUW9w&sm=space-robot&click_id=cnv8903c5b7b8a55d5112d9f915bfbfafe8&sub_id=1380818623325349&hash=HHxfdmMRtCcKd53Hmd-GTQ&exp=1671573537
200 OK 0 B URL HTTP/2 open.flintguard.top/space-robot/?pl=BqvRQCjrqUSruoVr6MUW9w&sm=space-robot&click_id=cnv8903c5b7b8a55d5112d9f915bfbfafe8&sub_id=1380818623325349&hash=HHxfdmMRtCcKd53Hmd-GTQ&exp=1671573537
IP
ASN #24940 Hetzner Online GmbH
GET /space-robot/?pl=BqvRQCjrqUSruoVr6MUW9w&sm=space-robot&click_id=cnv8903c5b7b8a55d5112d9f915bfbfafe8&sub_id=1380818623325349&hash=HHxfdmMRtCcKd53Hmd-GTQ&exp=1671573537 HTTP/1.1
Host: open.flintguard.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:57 GMT
content-type: text/html
last-modified: Mon, 25 Jul 2022 09:33:31 GMT
vary: Accept-Encoding
etag: W/"62de636b-3486"
strict-transport-security: max-age=63072000
content-encoding: gzip
X-Firefox-Spdy: h2
open.flintguard.top/sw-ca65b8c1f18adfc80ff5be356da33ece.js
200 OK 0 B URL HTTP/2 open.flintguard.top/sw-ca65b8c1f18adfc80ff5be356da33ece.js
IP
ASN #24940 Hetzner Online GmbH
GET /sw-ca65b8c1f18adfc80ff5be356da33ece.js HTTP/1.1
Host: open.flintguard.top
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:57 GMT
content-type: application/javascript
last-modified: Thu, 17 Feb 2022 13:24:13 GMT
vary: Accept-Encoding
etag: W/"620e4c7d-954"
strict-transport-security: max-age=63072000
content-encoding: gzip
X-Firefox-Spdy: h2
c0.wp.com/c/6.1.1/wp-includes/js/underscore.min.js
200 OK 0 B URL HTTP/2 c0.wp.com/c/6.1.1/wp-includes/js/underscore.min.js
IP
GET /c/6.1.1/wp-includes/js/underscore.min.js HTTP/1.1
Host: c0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://woay.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 21:53:53 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Tue, 27 Sep 2022 15:18:25 GMT
content-encoding: br
expires: Wed, 20 Dec 2023 21:53:53 GMT
cache-control: max-age=31536000
strict-transport-security: max-age=15552000
x-nc: HIT arn 2
timing-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
X-Firefox-Spdy: h2
34.74.21.109
193.169.194.63
46.148.125.182
96.6.16.174
31.13.72.12
93.184.220.29
116.202.184.109
0.0.0.0