heb.teknikmark.com/2118-how-to-find-out-the-windows-license-key
104.21.7.142301 Moved Permanently 0 B URL HTTP/1.1 heb.teknikmark.com/2118-how-to-find-out-the-windows-license-key
IP 104.21.7.142:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /2118-how-to-find-out-the-windows-license-key HTTP/1.1
Host: heb.teknikmark.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 30 Nov 2022 15:19:13 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Wed, 30 Nov 2022 16:19:13 GMT
Location: https://heb.teknikmark.com/2118-how-to-find-out-the-windows-license-key
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WYFP5pYriDMCCnkUrieLlzPnGx5iJe6GZNL4zP3HLmtVquMKh20HqmFPtCx6OpI9p9%2F9CMJkSWyuTol5grCax%2F25Ir25kL3pKfW72CvcmaENRaJKFtZ3ww05nro8XwKt9ll5me0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77248f64ab3d1bfa-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a5daf4dc99951793ae2315d4795e8146
4427507ca4d3a5632cc8f598afbc85e2195d00bd
94fb64c1c826ed7099283c0bedb3cea7ac7e1d9526794cb9fad6e761f5989d32
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11399
Expires: Wed, 30 Nov 2022 18:29:12 GMT
Date: Wed, 30 Nov 2022 15:19:13 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f3cf023c797da81728c0ac84c8759331
fa07c5e39e4b0741ea484101cccb2202acea9d9c
5206a0bac8bf78d6b84322519271a1ece2c1039a0090e583de6d6192d88873d0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6437
Cache-Control: max-age=161963
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 15:19:13 GMT
Etag: "638730f7-1d7"
Expires: Fri, 02 Dec 2022 12:18:36 GMT
Last-Modified: Wed, 30 Nov 2022 10:31:19 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6d9d34c96b9a826ae5676640c966469c
8052a16d41a637e420478b7de1ff5a2dc951fccd
f18ac558cb786126bb7efb159e03353d268d5f5796bcfd2691a349dfc68d863c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9801
Expires: Wed, 30 Nov 2022 18:02:34 GMT
Date: Wed, 30 Nov 2022 15:19:13 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 30 Nov 2022 14:19:41 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3572
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 8QZwJhRhJRKq/njk9ljuHgbO4Td4nb1aVRfe8YTqKm/i9HNro8NmlB3AH+KEVVibagJ4/FdyZZA=
x-amz-request-id: F5RTCB8QBPJXBRPV
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 30 Nov 2022 14:45:16 GMT
age: 2037
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 15:19:13 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 7e8cd73c758ca6307b135b3d15ea36e6
41cb1eb686b0415b438c3668decfc314506f62fa
d7a82074159287773979b486cf418424d7c1ed1e55e521d4200cea2a26cebbb5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6476
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 15:19:13 GMT
Last-Modified: Wed, 30 Nov 2022 13:31:17 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 279
cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.1.0/cookieconsent.min.css
104.17.24.14200 OK 975 B URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.1.0/cookieconsent.min.css
IP 104.17.24.14:0
File type ASCII text, with very long lines (1277)
Hash d7ba2d84c2db8e1f13d9de1be44f2ec4
2c48f91c6336b33ed726a6e98cd415dd9e642130
81c363f062c0e42a2b0a1c4bb15f9cc8af9f671905670fd379ab974fb86f7740
GET /ajax/libs/cookieconsent2/3.1.0/cookieconsent.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heb.teknikmark.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 15:19:13 GMT
content-type: text/css; charset=utf-8
content-length: 975
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e2d-fe0"
last-modified: Mon, 04 May 2020 16:09:17 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1725066
expires: Mon, 20 Nov 2023 15:19:13 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XTcpB29XN7%2BJMcadHMR4su56Pr0bBFRi1CwoCIFnSTWDGZDmk1iXM1LdxuRnRJTez%2FLBUWgDglgrMiKPa7RLseaw0IyafKQMM73NgsVDVn8BYCk%2FFqZoj0Y%2B4yOmvBDhMjFe7kda"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 77248f68780db527-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.1.0/cookieconsent.min.js
104.17.24.14200 OK 6.0 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.1.0/cookieconsent.min.js
IP 104.17.24.14:0
File type ASCII text, with very long lines (20808), with no line terminators
Hash 5eef705ac0dcd662cf86e30068fb1d04
ba327ec52d99f0b45d13b54dc82ad99cf15433c7
d16e5789bf83343bcd10e949a91b8b484757bc6b491cebbb595e382643b89e7d
GET /ajax/libs/cookieconsent2/3.1.0/cookieconsent.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heb.teknikmark.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 15:19:14 GMT
content-type: application/javascript; charset=utf-8
content-length: 5978
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e2d-5148"
last-modified: Mon, 04 May 2020 16:09:17 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 3624070
expires: Mon, 20 Nov 2023 15:19:14 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hMbvuvYaSWidW%2FDfQSvlv38fYw4Tq%2FCB9HdUayrpN5sP%2FbX6OVb9WjtPTcGCdPK3V8XpYk%2Fk9TzL07DIx0rWjhqt7dIxhcy3oXkCx1xJPMhp9D0Se6g2UdFkZbry%2FTwKczS5EjFT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 77248f68881cb527-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
teknikmark.com/template/img/logo1.png
104.21.7.142200 OK 14 kB URL HTTP/2 teknikmark.com/template/img/logo1.png
IP 104.21.7.142:0
File type PNG image data, 331 x 76, 8-bit/color RGBA, non-interlaced\012- data
Hash 688e8d85efa8b95b6590c71b37be433c
4229b9f00347996d8f9305b687aa013ef179753c
4bd69e4bf32e9130d40b7b5a79047637b923ae82e33dcf6afa68d35ea9e0d083
GET /template/img/logo1.png HTTP/1.1
Host: teknikmark.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heb.teknikmark.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 30 Nov 2022 15:19:14 GMT
content-type: image/png
content-length: 13639
last-modified: Fri, 10 May 2019 07:14:40 GMT
etag: "3547-5888351eaf800"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4840
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DUeq0Rq%2FL9o0l7KovTJF75ccFOuCHfDyFmBP2y5XTXRwFJe1exAkQATFFwlJMJhF%2BYtJufvGmI0fIdI8dYblrqJIQb4HchL0EooAuh9cWDM1uCkO39kMiaOBbtNuNJPBoQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77248f68ba18b511-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 146dac10a93604a686550631e14eefb9
b4af601ce6d515d9ec124938ce626060e0d43099
bac5bc94c1a95af45522dadbf1639aff31e691fa2314314c6cce1ab1e70bba87
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 15:19:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 146dac10a93604a686550631e14eefb9
b4af601ce6d515d9ec124938ce626060e0d43099
bac5bc94c1a95af45522dadbf1639aff31e691fa2314314c6cce1ab1e70bba87
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 15:19:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c3a85fd2f91507b22cf22d49cbf2b88e
c39aa3df055e83f15f94e19219425f96e80be201
98ac897608409d772cc5991bad78ee08c35395fbabb78dd8be8622a9477a19c7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98AC897608409D772CC5991BAD78EE08C35395FBABB78DD8BE8622A9477A19C7"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17168
Expires: Wed, 30 Nov 2022 20:05:22 GMT
Date: Wed, 30 Nov 2022 15:19:14 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 7e8cd73c758ca6307b135b3d15ea36e6
41cb1eb686b0415b438c3668decfc314506f62fa
d7a82074159287773979b486cf418424d7c1ed1e55e521d4200cea2a26cebbb5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6477
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 15:19:14 GMT
Last-Modified: Wed, 30 Nov 2022 13:31:17 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 279
ajax.googleapis.com/ajax/libs/jquery/2.2.0/jquery.min.js
142.250.74.106200 OK 30 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/2.2.0/jquery.min.js
IP 142.250.74.106:0
File type ASCII text, with very long lines (32069)
Hash 4ae540714475aa934955496d990ab15f
b7724c4d72a422b86f5dc06571ff4bc86f0308a3
ca0222f8799d862ca8c427d6c612878f47043c9445ad0e1567f1f80e83c965e2
GET /ajax/libs/jquery/2.2.0/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heb.teknikmark.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30089
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 25 Nov 2022 22:29:01 GMT
expires: Sat, 25 Nov 2023 22:29:01 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 406213
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 146dac10a93604a686550631e14eefb9
b4af601ce6d515d9ec124938ce626060e0d43099
bac5bc94c1a95af45522dadbf1639aff31e691fa2314314c6cce1ab1e70bba87
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 15:19:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 146dac10a93604a686550631e14eefb9
b4af601ce6d515d9ec124938ce626060e0d43099
bac5bc94c1a95af45522dadbf1639aff31e691fa2314314c6cce1ab1e70bba87
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 15:19:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 608e4d04a251ebcd51660e801f388303
fcb9aa48fd6ed504a1a9fed7990c5ccde63e6a1d
cc1a34cd0a99e301df97cf184ab0ded2e229659f86f43e4eff479dee221695dc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 15:19:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
files.teknikmark.com/img/124/windows.jpeg
104.21.7.142200 OK 51 kB URL HTTP/2 files.teknikmark.com/img/124/windows.jpeg
IP 104.21.7.142:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, datetime=2019:05:10 10:28:22], baseline, precision 8, 562x331, components 3\012- data
Hash 91a957aa9ff72e659d82969fa0c0cba6
1e56293eb2d1f4bdd2027d61d526f5d39b7aaafe
d8eb2fc15df3cbb060d7874f3598ff912943898c09965d7495db00d54f0659da
GET /img/124/windows.jpeg HTTP/1.1
Host: files.teknikmark.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heb.teknikmark.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 30 Nov 2022 15:19:14 GMT
content-type: image/jpeg
content-length: 50649
last-modified: Fri, 10 May 2019 07:28:22 GMT
etag: "c5d9-5888382e9b180"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tN2S%2BbR6E66afmdpkmquESM1Utwrj4Fg2UG%2FskvPWfefloIrpyhPaK6AOIS%2FfHNP2tg7gc%2BFXOmaBhHNFCPGWhe6Wztgt6jytfWgjstAXmdHYjLfoDZ9OHi2A74farwoYfu7PLQ6Wg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77248f695b0bb511-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cst.wpu.sh/static/adManager.js
188.166.100.156301 Moved Permanently 169 B URL HTTP/2 cst.wpu.sh/static/adManager.js
IP 188.166.100.156:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 84855c13836b389d5ec7cfd4c9266173
1cf3056ff23c4176fd7ca9816a000ed461d6d323
502083c916ae481cdd413b8d93315300653df5fb3dcc5770c01991de19977eae
GET /static/adManager.js HTTP/1.1
Host: cst.wpu.sh
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heb.teknikmark.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
server: nginx/1.18.0
date: Wed, 30 Nov 2022 15:19:14 GMT
content-type: text/html
content-length: 169
location: https://cst.cstwpush.com/static/adManager.js
X-Firefox-Spdy: h2
files.teknikmark.com/img/124/windows-2.jpg
104.21.7.142200 OK 64 kB URL HTTP/2 files.teknikmark.com/img/124/windows-2.jpg
IP 104.21.7.142:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, datetime=2019:05:10 10:27:52], baseline, precision 8, 473x340, components 3\012- data
Hash 6dcab0d7c73628797a349b2ce2c61d78
9aabcedf15a400925a9f560565ba9af01652add3
a5ff2e9e76563188f8c58c51b59b59d1add11344b6e3e53ff1cadea9db869d9e
GET /img/124/windows-2.jpg HTTP/1.1
Host: files.teknikmark.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heb.teknikmark.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 30 Nov 2022 15:19:14 GMT
content-type: image/jpeg
content-length: 63941
last-modified: Fri, 10 May 2019 07:27:52 GMT
etag: "f9c5-58883811fee00"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JnZPnjFQJxPSIX2vJ%2FdYfuPdCIqxsOwKjRhLGEnJpibhb7BGSPxtWA67zYyScNmBaODMdOyD5PlPCGEjPvB6YE%2BOQOQNTHnpG1LhLSpGsN7Kz72DfcIdjah4489Wh2UegBmg5SA2xw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77248f695b07b511-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
files.teknikmark.com/img/124/windows.jpg
104.21.7.142200 OK 66 kB URL HTTP/2 files.teknikmark.com/img/124/windows.jpg
IP 104.21.7.142:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, datetime=2019:05:10 10:28:17], baseline, precision 8, 559x336, components 3\012- data
Hash ac77bbc01b18d2326c40bbe965f6f1ec
510127ad79214b0dbd124d5698ed7d617276257c
1671d9b97716fd22d4a2e8f32ddc65a49acda0ede8f9f7db3fb2a1ce63717808
GET /img/124/windows.jpg HTTP/1.1
Host: files.teknikmark.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heb.teknikmark.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 30 Nov 2022 15:19:14 GMT
content-type: image/jpeg
content-length: 66063
last-modified: Fri, 10 May 2019 07:28:16 GMT
etag: "1020f-58883828e2400"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KGXHGGWdlNKw8OZr6gyDRPt1yBnQbEx55lEFScVNOt2GzrDcSuPqWDYz9gYRhtiN2oikB%2F9o7g9GFRbDh29GCcDZ2FmU%2BhjdjUqRiQMZHtVwwLYQ7dafgF8W8PSb82DDuqaQ1ovKfQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77248f696b0db511-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://heb.teknikmark.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 18:52:41 GMT
expires: Tue, 28 Nov 2023 18:52:41 GMT
cache-control: public, max-age=31536000
age: 159993
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
files.teknikmark.com/img/124/windows-3.jpg
104.21.7.142200 OK 44 kB URL HTTP/2 files.teknikmark.com/img/124/windows-3.jpg
IP 104.21.7.142:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, datetime=2019:05:10 10:27:28], baseline, precision 8, 569x420, components 3\012- data
Hash 27ee65d0416f989790b17b3a2676d715
757db450dcd32be49b4985f54f1220665cb4460d
2985469185b6047e2a23d58c9bf4ea2fb85fa6c37efc73faee5a0dac691768c4
GET /img/124/windows-3.jpg HTTP/1.1
Host: files.teknikmark.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heb.teknikmark.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 30 Nov 2022 15:19:14 GMT
content-type: image/jpeg
content-length: 44412
last-modified: Fri, 10 May 2019 07:27:28 GMT
etag: "ad7c-588837fb1b800"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tXmOXhuFk3Sn0kcq94KUoqrCdLithHde6PTkjy0Cm%2F0sy88IeV6wndfDxKTJ5nEL4CUxNkXh4nMOT76%2BzyB5Sqk7jx4s81pzZ5nQSimaQDrq%2FXECOeWyWNZ3CZkgUiw3Qxflz%2Fu3Vw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77248f695b09b511-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
get.optad360.io/sf/42446d74-b600-49fa-9c71-aaac7eb799bf/plugin.min.js
143.204.55.44200 OK 57 kB URL HTTP/2 get.optad360.io/sf/42446d74-b600-49fa-9c71-aaac7eb799bf/plugin.min.js
IP 143.204.55.44:0
Hash 03e3b311d5689c0d108d9ebb74064408
c3d97eb8150e608ddb02152bdae061dc96168af7
16fc4e5aba9f95a7bf79a6dc1f75302601779c9a43f8480dbb7320629993f2c8
GET /sf/42446d74-b600-49fa-9c71-aaac7eb799bf/plugin.min.js HTTP/1.1
Host: get.optad360.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heb.teknikmark.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 12 Oct 2022 14:09:42 GMT
server: AmazonS3
content-encoding: gzip
date: Wed, 30 Nov 2022 14:31:23 GMT
cache-control: public, max-age=3600
etag: W/"f40edb1da83734efe14b614ec564e308"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: zzppbU2bF_V6ivoKiL_4RYYWh8PaEwcXmPQn2I-qvp3vGKNg__j3Xw==
age: 2872
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 30 Nov 2022 15:08:56 GMT
cache-control: public,max-age=3600
age: 618
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 657a3f7301d3788e83a82fe1122278d9
6ed52ae294b592c53f29d7aabf04fdb72681cf72
778ddfa80e4970620e2693cb698ac81ffcfc1ce672011c09dbadc96a358f0f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "778DDFA80E4970620E2693CB698AC81FFCFC1CE672011C09DBADC96A358F0F2D"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19460
Expires: Wed, 30 Nov 2022 20:43:34 GMT
Date: Wed, 30 Nov 2022 15:19:14 GMT
Connection: keep-alive
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS2mu1aB.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS2mu1aB.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 16248, version 1.0\012- data
Hash 32716a5cfa3f66cf0e1d74d60694c4ad
ba7958726a7c60abfe42b469c3ce5a7074e4b8fb
ea1b915d9a1f79eefb62e5c9c1af97e12adacc44deac97601105bdd2d2c46798
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS2mu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://heb.teknikmark.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16248
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 21:04:14 GMT
expires: Tue, 28 Nov 2023 21:04:14 GMT
cache-control: public, max-age=31536000
age: 152100
last-modified: Mon, 15 Aug 2022 18:11:29 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/font-awesome/4.2.0/css/font-awesome.min.css
104.18.10.207200 OK 82 kB URL HTTP/2 maxcdn.bootstrapcdn.com/font-awesome/4.2.0/css/font-awesome.min.css
IP 104.18.10.207:0
File type ASCII text, with very long lines (21822)
Hash 42962b5394a4d177965b27697c1809f4
93903111cfa36dd4a458b6c71bcdb40ab694557d
bbc28ffee1a90450a352d996a1162a3227ea54d27bdb6806d8e76684aa7ea5fb
GET /font-awesome/4.2.0/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heb.teknikmark.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 15:19:14 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: SE
cdn-edgestorageid: 601, 718, 718
last-modified: Mon, 25 Jan 2021 22:04:53 GMT
cdn-cachedat: 2021-04-23 05:21:01
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 247af5253dedb1b0bd0d1e5b53c5e898
cdn-cache: HIT
cf-cache-status: HIT
age: 17931857
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 77248f689fa5b500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cfdd00e67ee6ca21712b867eb5288ab6
b61d5d6ec3b7ad71619e13e32c87f2d01871b88a
f740cac6dfedc1bf0f82efb10dac4f6ffb22f9bb5d4a9b68a4cd971dd2f65793
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6449
Cache-Control: max-age=156906
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 15:19:14 GMT
Etag: "63871d2b-1d7"
Expires: Fri, 02 Dec 2022 10:54:20 GMT
Last-Modified: Wed, 30 Nov 2022 09:06:51 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
cdn.jsdelivr.net/gh/prebid/currency-file@1/latest.json?date=20221130
151.101.1.229200 OK 922 B URL HTTP/2 cdn.jsdelivr.net/gh/prebid/currency-file@1/latest.json?date=20221130
IP 151.101.1.229:0
File type JSON data\012- , ASCII text, with very long lines (1643), with no line terminators
Hash 4fea457bd94dfb7c824e15a73b497426
48401663c633b1ec6740029916e5b669d7db7273
2c1c4ce0fe135aca2cd8558eb748ff51a2a1b09ffb6fa003d604ee2a1e085d6a
GET /gh/prebid/currency-file@1/latest.json?date=20221130 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://heb.teknikmark.com
Connection: keep-alive
Referer: https://heb.teknikmark.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/json; charset=utf-8
x-jsd-version: 1.0.1540
x-jsd-version-type: version
etag: W/"66b-MHpICIFaKHnsfHq0GL0f+aHehJQ"
content-encoding: gzip
accept-ranges: bytes
date: Wed, 30 Nov 2022 15:19:14 GMT
age: 1096
x-served-by: cache-fra-eddf8230021-FRA, cache-bma1620-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 922
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4f5de8bcce1ec4a73a8038b4c62406fb
0a93cb3c9f2d85e5e46f9b1670a16c8e5077f605
ac4ecc99de55563004b61d93b50ffc1c30462114a6d36f086904b174b74fbff9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC4ECC99DE55563004B61D93B50FFC1C30462114A6D36F086904B174B74FBFF9"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6271
Expires: Wed, 30 Nov 2022 17:03:45 GMT
Date: Wed, 30 Nov 2022 15:19:14 GMT
Connection: keep-alive
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP 104.18.20.226:0
Hash 88c6faec28fb4367a94d0d0b291b76a7
c67c80690870cca8194b948b4d7f7f4dea74f962
4d8ac4f988abb23b2a00c1f707fb5d4af506a65b1bb1eab70ee6a890ba41ef9b
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 15:19:14 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "1249D9136580D0C65350B2879F7F9006FBED0B8F"
Expires: Thu, 01 Dec 2022 03:00:00 GMT
Last-Modified: Wed, 30 Nov 2022 15:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 466
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77248f6c8a0db4ed-OSL
teknikmark.com/template/css/font-awesome-4.7.0/fonts/fontawesome-webfont.woff?v=4.7.0
104.21.7.142200 OK 98 kB URL HTTP/2 teknikmark.com/template/css/font-awesome-4.7.0/fonts/fontawesome-webfont.woff?v=4.7.0
IP 104.21.7.142:0
File type Web Open Font Format, TrueType, length 98024, version 4.7\012- data
Hash fee66e712a8a08eef5805a46892932ad
28b782240b3e76db824e12c02754a9731a167527
ba0c59deb5450f5cb41b3f93609ee2d0d995415877ddfa223e8a8a7533474f07
GET /template/css/font-awesome-4.7.0/fonts/fontawesome-webfont.woff?v=4.7.0 HTTP/1.1
Host: teknikmark.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://heb.teknikmark.com
Connection: keep-alive
Referer: https://teknikmark.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 30 Nov 2022 15:19:14 GMT
content-type: application/font-woff
content-length: 98024
last-modified: Fri, 11 Jan 2019 08:25:00 GMT
etag: "17ee8-57f2a6e556f00"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TRRrPyMTa6I27z097KEfTkY1jcU%2F8w3oHy7LOEocODp6hXRK%2BYcdIKBEpZ7K9cZ2KmuNhXxFJk9FmPxZ8EHo2Wlk%2BMGWdW7FDZppdY2%2Fm1geblfBvxZ9Oh2KwKshmRYJVw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77248f6c4f1fb511-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
teknikmark.com/template/img/favicon.png
104.21.7.142200 OK 1.3 kB URL HTTP/2 teknikmark.com/template/img/favicon.png
IP 104.21.7.142:0
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 896b8a9b736887ac872266171909a1c2
c37e1b185952b69277318534285bbbe761156580
e2253e3d0c57c0251f142808072f4ed6548c7e45121710cfc6fed8438db30831
GET /template/img/favicon.png HTTP/1.1
Host: teknikmark.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heb.teknikmark.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 30 Nov 2022 15:19:14 GMT
content-type: image/png
content-length: 1306
last-modified: Fri, 10 May 2019 12:52:00 GMT
etag: "51a-588880850dc00"
cache-control: max-age=14400
cf-cache-status: HIT
age: 4839
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Upg34bfdp%2FjtJWN8AjHlSdbvsmmyODJUrGZCkzP1fnuKff0MLOLYDWqR4ZyRhdJQTWbSa79bpMF9XjFrcPJkdFoYiII6vmbyuAqXcMX5pYk9BSkk5enjZ%2BK6OuiaBwcUYg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77248f6cf80ab511-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 5d950b70d3b1532276ed817249b72618
dca7faf727b8afdd481c8f8bcc3e9129fdadadc3
afe3fbe5f269179e18a66ca806664b7f96b903150b364129e2f2b30087198e34
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 15:19:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
js.wpadmngr.com/static/adManager.m.js
45.133.44.25200 OK 36 kB URL HTTP/2 js.wpadmngr.com/static/adManager.m.js
IP 45.133.44.25:0
ASN #39572 DataWeb Global Group B.V.
Hash e7f07e5d9409dccb2c41f2831b902820
e529116594e155237b1cefdfcfef39170e93ac05
2115c96a940e0f10eb780589d246756bfcd43f1e25b816c93b4b60958e76f4a5
GET /static/adManager.m.js HTTP/1.1
Host: js.wpadmngr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://heb.teknikmark.com
Connection: keep-alive
Referer: https://heb.teknikmark.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 15:19:14 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Wed, 30 Nov 2022 13:10:49 GMT
etag: W/"63875659-17718"
content-encoding: gzip
expires: Wed, 30 Nov 2022 15:24:14 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsalphasha2g2
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp2.globalsign.com/gsalphasha2g2
IP 104.18.20.226:0
Hash dbf51c89d57ac781b3b7cee96e10d002
ef728d3107277760d3758c573425bbbec0df3962
d3915ff468a12867c6eeaefbbfbe92b3da8457d24692bfa800313c379df86822
POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 15:19:14 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Sun, 04 Dec 2022 11:51:15 GMT
ETag: "ef728d3107277760d3758c573425bbbec0df3962"
Last-Modified: Wed, 30 Nov 2022 11:51:16 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3554
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77248f6d6976b512-OSL
counter.yadro.ru/hit?r;s1280*1024*24;uhttps%3A//heb.teknikmark.com/2118-how-to-find-out-the-windows-license-key;0.6311041453342704
88.212.201.198200 OK 43 B URL HTTP/1.1 counter.yadro.ru/hit?r;s1280*1024*24;uhttps%3A//heb.teknikmark.com/2118-how-to-find-out-the-windows-license-key;0.6311041453342704
IP 88.212.201.198:0
ASN #39134 United Network LLC
File type GIF image data, version 89a, 1 x 1\012- data
Hash fc94fb0c3ed8a8f909dbc7630a0987ff
56d45f8a17f5078a20af9962c992ca4678450765
2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363
GET /hit?r;s1280*1024*24;uhttps%3A//heb.teknikmark.com/2118-how-to-find-out-the-windows-license-key;0.6311041453342704 HTTP/1.1
Host: counter.yadro.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heb.teknikmark.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Wed, 30 Nov 2022 15:19:14 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Expires: Mon, 29 Nov 2021 21:00:00 GMT
Pragma: no-cache
Cache-control: no-cache
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=86400
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
142.250.74.66200 OK 49 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 142.250.74.66:0
File type ASCII text, with very long lines (4885)
Hash 49470c9ac43f92f910f665f5062a4df5
d831e16c191148486be9ec8d3efa1ff035c8ace9
fba4179e7819e1a687a114fe969bd98131adf5ea8bc6a56fdfcecf03ebf9bb38
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heb.teknikmark.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Wed, 30 Nov 2022 15:19:14 GMT
expires: Wed, 30 Nov 2022 15:19:14 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 10946139838330285343
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 48914
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
securepubads.g.doubleclick.net/tag/js/gpt.js
142.250.74.162200 OK 27 kB URL HTTP/2 securepubads.g.doubleclick.net/tag/js/gpt.js
IP 142.250.74.162:0
File type ASCII text, with very long lines (40310)
Hash 4d771ca93e34e48846fa9a71ad467d3e
8eab1243f2dcd30252596f683449d23401a89ee3
b87772aba02c175fd799123dd3d07839ed744083df11f4bb439a2d544444b43c
GET /tag/js/gpt.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heb.teknikmark.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 27288
date: Wed, 30 Nov 2022 15:19:14 GMT
expires: Wed, 30 Nov 2022 15:19:14 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
etag: "1407 / 511 of 1000 / last-modified: 1669810420"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
js.wpadmngr.com/npc/sdk/wp-banners.js
45.133.44.25200 OK 0 B URL HTTP/2 js.wpadmngr.com/npc/sdk/wp-banners.js
IP 45.133.44.25:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /npc/sdk/wp-banners.js HTTP/1.1
Host: js.wpadmngr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heb.teknikmark.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 15:19:14 GMT
content-type: application/javascript; charset=utf-8
content-length: 0
server: nginx/1.18.0
last-modified: Fri, 20 Aug 2021 15:14:31 GMT
etag: "611fc6d7-0"
expires: Wed, 30 Nov 2022 15:24:14 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 5d950b70d3b1532276ed817249b72618
dca7faf727b8afdd481c8f8bcc3e9129fdadadc3
afe3fbe5f269179e18a66ca806664b7f96b903150b364129e2f2b30087198e34
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 15:19:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cd3d47a4888322339c08e27e1f166936
b49e298cad042730978ee0bb1075b2f336c0fb5c
4a290f823a00f2f81d3d2809bf00cdebdbbae76a1e0d49a6ad6b4c98e53639a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A290F823A00F2F81D3D2809BF00CDEBDBBAE76A1E0D49A6AD6B4C98E53639A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4313
Expires: Wed, 30 Nov 2022 16:31:07 GMT
Date: Wed, 30 Nov 2022 15:19:14 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 5d950b70d3b1532276ed817249b72618
dca7faf727b8afdd481c8f8bcc3e9129fdadadc3
afe3fbe5f269179e18a66ca806664b7f96b903150b364129e2f2b30087198e34
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 15:19:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
na.nawpush.com/tags/1604?version_name=c
45.133.44.25200 OK 629 B URL HTTP/2 na.nawpush.com/tags/1604?version_name=c
IP 45.133.44.25:0
ASN #39572 DataWeb Global Group B.V.
File type JSON data\012- , ASCII text, with very long lines (629), with no line terminators
Hash 386c8f42041040bcad3246b6567b0d5b
6d490c83353db810e1e16dc844fcbed676f78b40
adf2b7f275747aa4da4d29c1f4ee48e649b236d432a4cc55129a4bb532a3c322
GET /tags/1604?version_name=c HTTP/1.1
Host: na.nawpush.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://heb.teknikmark.com
Connection: keep-alive
Referer: https://heb.teknikmark.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 15:19:14 GMT
content-type: application/json
content-length: 629
server: nginx/1.18.0
cache-control: max-age=300, public
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.148.77.40101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.77.40:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: r31smQpNzAA4SkTPC8lp4g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: qM6WOcCgZXP78bpaFsJQGXxeBKQ=
googleads.g.doubleclick.net/pagead/html/r20221110/r20190131/zrt_lookup.html
142.250.74.34200 OK 4.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20221110/r20190131/zrt_lookup.html
IP 142.250.74.34:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2579)
Hash 2fb3574102373e2e076cfa2ff90cdf25
d06c985183def975546d6e47ab6369c11dcf7195
e61cbc207f7fc2f429deceff11e7a339a3d9a9574da6d035054eba02ee381345
GET /pagead/html/r20221110/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heb.teknikmark.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 4242
x-xss-protection: 0
date: Wed, 30 Nov 2022 05:11:33 GMT
expires: Wed, 14 Dec 2022 05:11:33 GMT
cache-control: public, max-age=1209600
age: 36461
etag: 10353107486223812946
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/font-awesome/4.2.0/fonts/fontawesome-webfont.woff?v=4.2.0
104.18.10.207200 OK 66 kB URL HTTP/2 maxcdn.bootstrapcdn.com/font-awesome/4.2.0/fonts/fontawesome-webfont.woff?v=4.2.0
IP 104.18.10.207:0
File type Web Open Font Format, TrueType, length 65452, version 1.0\012- data
Hash d95d6f5d5ab7cfefd09651800b69bd54
7d65e0227d0d7cdc1718119cd2a7dce0638f151c
199411f659f41aaccb959bacb1b0de30e54f244352a48c6f9894e65ae0f8a9a1
GET /font-awesome/4.2.0/fonts/fontawesome-webfont.woff?v=4.2.0 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://heb.teknikmark.com
Connection: keep-alive
Referer: https://maxcdn.bootstrapcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 15:19:15 GMT
content-type: font/woff
content-length: 65452
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: "d95d6f5d5ab7cfefd09651800b69bd54"
last-modified: Mon, 25 Jan 2021 22:04:53 GMT
cdn-cachedat: 11/15/2022 10:30:17
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1053
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: f1e108f8857d0eb9a1633df55173e313
cdn-cache: HIT
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 77248f6f5a7d0b51-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 3402a11f28d369c1ad537c8e44ba5568
17c9fc852ca71dc4d46f786537adda4ee0e9a3ef
dd142866516f3293fab9f67f092d37b70c39fc58512734c8e88dab5c5faf7264
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 15:19:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash cd528f6c2c45e38c52095a73a9cd8c68
dca2df874a830edac932136d474453c18d933024
4c7e75aaccb4b74e227ada3b56829f52cb7f14ad05454f7bd6eccf3e94185218
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 15:19:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=heb.teknikmark.com
142.250.74.2200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=heb.teknikmark.com
IP 142.250.74.2:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=heb.teknikmark.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heb.teknikmark.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 30 Nov 2022 15:19:15 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=heb.teknikmark.com
172.217.21.162200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=heb.teknikmark.com
IP 172.217.21.162:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=heb.teknikmark.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heb.teknikmark.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 30 Nov 2022 15:19:15 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 3402a11f28d369c1ad537c8e44ba5568
17c9fc852ca71dc4d46f786537adda4ee0e9a3ef
dd142866516f3293fab9f67f092d37b70c39fc58512734c8e88dab5c5faf7264
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 15:19:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 14bc2bf6e3158890bec81a596e3f6bf0
87b3b9b92320b230704454c03a21f8a468f1a05c
997e6f25a393a0e85f979b0f0b73451d988bc07d762517a78cc9d72c14c9d59d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 15:19:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash cd528f6c2c45e38c52095a73a9cd8c68
dca2df874a830edac932136d474453c18d933024
4c7e75aaccb4b74e227ada3b56829f52cb7f14ad05454f7bd6eccf3e94185218
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 15:19:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=heb.teknikmark.com&callback=_gfp_s_&client=ca-pub-9100330405405938&gpid_exp=1
216.58.207.226200 OK 254 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=heb.teknikmark.com&callback=_gfp_s_&client=ca-pub-9100330405405938&gpid_exp=1
IP 216.58.207.226:0
File type ASCII text, with very long lines (395), with no line terminators
Hash 8ad79b3b52de4723fe8458ae64d549c5
2bf5fa484215b35c83d6bd44b25dd1c98cc2eb38
471054401dd458d2a3c5f34551943003e12dde6da6303411e1825841535db033
GET /gampad/cookie.js?domain=heb.teknikmark.com&callback=_gfp_s_&client=ca-pub-9100330405405938&gpid_exp=1 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heb.teknikmark.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 30 Nov 2022 15:19:15 GMT
server: cafe
cache-control: private
content-length: 254
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=heb.teknikmark.com
172.217.21.162200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=heb.teknikmark.com
IP 172.217.21.162:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=heb.teknikmark.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heb.teknikmark.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 30 Nov 2022 15:19:15 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 14bc2bf6e3158890bec81a596e3f6bf0
87b3b9b92320b230704454c03a21f8a468f1a05c
997e6f25a393a0e85f979b0f0b73451d988bc07d762517a78cc9d72c14c9d59d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 15:19:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3add42e21fa78ec337b44afc54d34e58
19502537251d81268a48c72d4effab5b2841ea28
09b4f1eb459d45b9b2c12cc957664996ea344df17a0d5d440a669da77e232ed3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "09B4F1EB459D45B9B2C12CC957664996EA344DF17A0D5D440A669DA77E232ED3"
Last-Modified: Mon, 28 Nov 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5754
Expires: Wed, 30 Nov 2022 16:55:09 GMT
Date: Wed, 30 Nov 2022 15:19:15 GMT
Connection: keep-alive
b58d4c5be4b99f771c0551ebfaff159a.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
216.58.207.193200 OK 2.7 kB URL HTTP/2 b58d4c5be4b99f771c0551ebfaff159a.safeframe.googlesyndication.com/safeframe/1-0-40/html/container.html
IP 216.58.207.193:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5657)
Hash e8ee9c011ff8e1f464e74c37113119ee
64ad72134ea05877de0f2b6503f5c0d8c3f78197
09e42988871806c7f0a897bda7bc4247f47f4d8590749eaa245b8ff1fa907303
GET /safeframe/1-0-40/html/container.html HTTP/1.1
Host: b58d4c5be4b99f771c0551ebfaff159a.safeframe.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heb.teknikmark.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/html
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 2653
date: Wed, 30 Nov 2022 15:19:15 GMT
expires: Thu, 30 Nov 2023 15:19:15 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Thu, 03 Nov 2022 19:10:08 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
1435b9649d.85c0a6a0ea.com/in/track?data=eyJ3bCI6MSwic3ViaWQiOjAsInVzZXJfaWQiOiI0MDQ2NzQ1NTk1NzMyMTU4NTAwIiwidGltZXpvbmUiOjAsInZlciI6IjMuMTcuMyIsInRhZ19pZCI6MTYwNCwic2NyZWVuX3Jlc29sdXRpb24iOiIxMjgweDEwMjQiLCJhZGJsb2NrIjowLCJ0aW1lem9uZV9vbHNvbiI6IlVUQyIsInV0bV9zb3VyY2UiOiIiLCJ1dG1fbWVkaXVtIjoiIiwidXRtX2NhbXBhaWduIjoiIiwidXRtX2NvbnRlbnQiOiIiLCJtbSI6MCwiaW5pdF9zdGFydF9sYXRlbmN5IjowLjcxLCJpc192MiI6MCwiaXNfdjJfZW1wdHkiOjAsInVzZXJfa2V5d29yZHMiOiIlRDclOTAlRDclOTklRDclOUElMkMlRDclOUMlRDclOUUlRDclQTYlRDclOTUlRDclOTAlMkMlRDclOTAlRDclQUElMkMlRDclOUUlRDclQTQlRDclQUElRDclOTclMkMlRDclOTQlRDclQTglRDclOTklRDclQTklRDclOTklRDclOTUlRDclOUYlMkMlRDclOUUlRDclOTUlRDclQUElRDclQTclRDclOUYlMkNXaW5kb3dzJTJDJTJDJTJDJUQ3JTkwJUQ3JTk5JUQ3JTkxJUQ3JTkzJTJDJUQ3JTkwJUQ3JUFBJTJDJUQ3JTlFJUQ3JUE0JUQ3JUFBJUQ3JTk3JTJDJUQ3JTk0JUQ3JUE4JUQ3JTk5JUQ3JUE5JUQ3JTk5JUQ3JTk1JUQ3JTlGJTJDJUQ3JUE5JUQ3JTlDJUQ3JTlBJTJDJUQ3JTlFJTJDV2luZG93cyUyQyVENyU5RSVENyU5NSVENyVBQSVENyVBNyVENyU5RiUyQyUyQyVENyU5NCVENyU5MyVENyVBOCVENyU5QSUyQyVENyU5NCVENyVBOCVENyU5MCVENyVBOSVENyU5NSVENyVBMCVENyU5NCUyQyVENyU5QyVENyVBNyVENyU5MSVENyU5QyUyQyVENyU5MCVENyU5NSVENyVBQSVENyU5NSUyQyVENyU5MSVENyU5NyVENyU5NiVENyVBOCVENyU5NCUyQyVENyU5QyVENyVBOSVENyU5QiVENyVBQSVENyU5MSUyQyVENyU5MCVENyU5NSVENyVBQSVENyU5NSUyQyVENyU5RSVENyU5MyVENyU5MSVENyVBNyVENyU5NCUyQyVENyU5MSVENyU5RSVENyU5NyVENyVBOSVENyU5MSUyQyUyQyVENyU5MCVENyU5RCUyQyVENyU5NiVENyU5NCUyQyVENyU5QyVENyU5MCUyQyVENyVBMiVENyU5NSVENyU5NiVENyVBOCUyQyVENyU5NCVENyU5RSVENyVBOSVENyU5QSUyQyVENyU5QyVENyVBNyVENyVBOCVENyU5NSVENyU5MC4lMjAifQ==
45.133.44.25200 OK 0 B URL HTTP/2 1435b9649d.85c0a6a0ea.com/in/track?data=eyJ3bCI6MSwic3ViaWQiOjAsInVzZXJfaWQiOiI0MDQ2NzQ1NTk1NzMyMTU4NTAwIiwidGltZXpvbmUiOjAsInZlciI6IjMuMTcuMyIsInRhZ19pZCI6MTYwNCwic2NyZWVuX3Jlc29sdXRpb24iOiIxMjgweDEwMjQiLCJhZGJsb2NrIjowLCJ0aW1lem9uZV9vbHNvbiI6IlVUQyIsInV0bV9zb3VyY2UiOiIiLCJ1dG1fbWVkaXVtIjoiIiwidXRtX2NhbXBhaWduIjoiIiwidXRtX2NvbnRlbnQiOiIiLCJtbSI6MCwiaW5pdF9zdGFydF9sYXRlbmN5IjowLjcxLCJpc192MiI6MCwiaXNfdjJfZW1wdHkiOjAsInVzZXJfa2V5d29yZHMiOiIlRDclOTAlRDclOTklRDclOUElMkMlRDclOUMlRDclOUUlRDclQTYlRDclOTUlRDclOTAlMkMlRDclOTAlRDclQUElMkMlRDclOUUlRDclQTQlRDclQUElRDclOTclMkMlRDclOTQlRDclQTglRDclOTklRDclQTklRDclOTklRDclOTUlRDclOUYlMkMlRDclOUUlRDclOTUlRDclQUElRDclQTclRDclOUYlMkNXaW5kb3dzJTJDJTJDJTJDJUQ3JTkwJUQ3JTk5JUQ3JTkxJUQ3JTkzJTJDJUQ3JTkwJUQ3JUFBJTJDJUQ3JTlFJUQ3JUE0JUQ3JUFBJUQ3JTk3JTJDJUQ3JTk0JUQ3JUE4JUQ3JTk5JUQ3JUE5JUQ3JTk5JUQ3JTk1JUQ3JTlGJTJDJUQ3JUE5JUQ3JTlDJUQ3JTlBJTJDJUQ3JTlFJTJDV2luZG93cyUyQyVENyU5RSVENyU5NSVENyVBQSVENyVBNyVENyU5RiUyQyUyQyVENyU5NCVENyU5MyVENyVBOCVENyU5QSUyQyVENyU5NCVENyVBOCVENyU5MCVENyVBOSVENyU5NSVENyVBMCVENyU5NCUyQyVENyU5QyVENyVBNyVENyU5MSVENyU5QyUyQyVENyU5MCVENyU5NSVENyVBQSVENyU5NSUyQyVENyU5MSVENyU5NyVENyU5NiVENyVBOCVENyU5NCUyQyVENyU5QyVENyVBOSVENyU5QiVENyVBQSVENyU5MSUyQyVENyU5MCVENyU5NSVENyVBQSVENyU5NSUyQyVENyU5RSVENyU5MyVENyU5MSVENyVBNyVENyU5NCUyQyVENyU5MSVENyU5RSVENyU5NyVENyVBOSVENyU5MSUyQyUyQyVENyU5MCVENyU5RCUyQyVENyU5NiVENyU5NCUyQyVENyU5QyVENyU5MCUyQyVENyVBMiVENyU5NSVENyU5NiVENyVBOCUyQyVENyU5NCVENyU5RSVENyVBOSVENyU5QSUyQyVENyU5QyVENyVBNyVENyVBOCVENyU5NSVENyU5MC4lMjAifQ==
IP 45.133.44.25:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /in/track?data=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 HTTP/1.1
Host: 1435b9649d.85c0a6a0ea.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://heb.teknikmark.com
Connection: keep-alive
Referer: https://heb.teknikmark.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 15:19:15 GMT
content-length: 0
server: nginx/1.18.0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 69a428ade6c69440d1622946a4ea29e5
186ee107e3f31692e1ee8ce938117c090a308244
7d9181225aa2d602eb75b4a9ef784638501f152650841b480605d42ee360680f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D9181225AA2D602EB75B4A9EF784638501F152650841B480605D42EE360680F"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12691
Expires: Wed, 30 Nov 2022 18:50:46 GMT
Date: Wed, 30 Nov 2022 15:19:15 GMT
Connection: keep-alive
fp.metricswpsh.com/fp?tag_id=1604
157.90.84.242204 No Content 0 B URL HTTP/1.1 fp.metricswpsh.com/fp?tag_id=1604
IP 157.90.84.242:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /fp?tag_id=1604 HTTP/1.1
Host: fp.metricswpsh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://heb.teknikmark.com/
Origin: https://heb.teknikmark.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx/1.20.1
Date: Wed, 30 Nov 2022 15:19:15 GMT
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: content-type
Access-Control-Allow-Methods: GET,HEAD,PUT,PATCH,POST,DELETE
Access-Control-Allow-Origin: https://heb.teknikmark.com
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
fp.metricswpsh.com/fp?tag_id=1604
157.90.84.242200 OK 28 B URL HTTP/1.1 fp.metricswpsh.com/fp?tag_id=1604
IP 157.90.84.242:0
ASN #24940 Hetzner Online GmbH
File type JSON data\012- , ASCII text
Hash e3af49472d683a217237a6ebaf79bcb7
378db4d7e6171a2676ee15c80b4475d7f5ec9742
7714898d715fb8b1ce7a1de73e0e7c9f6394acc8a08cf1a3b342a7829d4de84a
POST /fp?tag_id=1604 HTTP/1.1
Host: fp.metricswpsh.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=utf-8
Content-Length: 22286
Origin: https://heb.teknikmark.com
Connection: keep-alive
Referer: https://heb.teknikmark.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Wed, 30 Nov 2022 15:19:15 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 28
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://heb.teknikmark.com
Set-Cookie: id=15026339771164180887; Expires=Thu, 30 Nov 2023 15:19:15 GMT; Secure; SameSite=None
Vary: Origin
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 03687b58fa7e1174e7ea84b360637ffd
7c09ef060716a365b3300c8de24f507f66e9197c
4e971d51fc0862dbd41239b7df741429d308a1e323d8624af0a6cf80eab153e0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 15:19:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
172.217.21.161200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 172.217.21.161:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heb.teknikmark.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Wed, 30 Nov 2022 15:19:15 GMT
expires: Wed, 30 Nov 2022 15:19:15 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
172.217.21.161200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP 172.217.21.161:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heb.teknikmark.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 13:29:37 GMT
expires: Wed, 29 Nov 2023 13:29:37 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
age: 92979
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 8f58cd30443a495eed3ec0d9827550c1
fd0f53d2acc63ae015b7b42155136ade5841ebc7
333a3cae36081ea37371e32dc9587faacfda5970daa476b3b36cd6f587ce1594
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 15:19:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/aframe
142.250.74.132200 OK 513 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 142.250.74.132:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash 39b1a4b29339129558a33c6b97b66a2e
732e9f4e6feaaa4ccd93224ef1543aab47715325
814f39e849ed967eb08b71885baec91a3513a34b52883889948487b2a18ced1d
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heb.teknikmark.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Wed, 30 Nov 2022 15:19:16 GMT
date: Wed, 30 Nov 2022 15:19:16 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-9rnC8RrndK2YjUGknNbZ6Q' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 513
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10007
Expires: Wed, 30 Nov 2022 18:06:03 GMT
Date: Wed, 30 Nov 2022 15:19:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10007
Expires: Wed, 30 Nov 2022 18:06:03 GMT
Date: Wed, 30 Nov 2022 15:19:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10007
Expires: Wed, 30 Nov 2022 18:06:03 GMT
Date: Wed, 30 Nov 2022 15:19:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a97c452e75cf1d4833e777d7ba7f2c47
58f15763fd33f742ce870f49f1c2dbed5b41205f
39bb874a415db37a81432942eb84151b0134d1aacaa31d364b6dadae4388c6a1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39BB874A415DB37A81432942EB84151B0134D1AACAA31D364B6DADAE4388C6A1"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10007
Expires: Wed, 30 Nov 2022 18:06:03 GMT
Date: Wed, 30 Nov 2022 15:19:16 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F250668cd-c9db-4014-b576-3aaad4eb9150.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F250668cd-c9db-4014-b576-3aaad4eb9150.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 59baec8db5ced0210ab766ea5636a5fd
f7cf3a0f89751a02fbcf8d21f505f24a74e8b30b
33ff55891f18c22970804f1b8b2ba6821ddfd7426b01486410bd43f2b4295a8d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F250668cd-c9db-4014-b576-3aaad4eb9150.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5785
x-amzn-requestid: ee77265b-8e90-4035-8ef1-92a2d26aaefa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgDaHdWoAMFqmw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a15-0d10d74030e7aee74804b654;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QhUrNKIJUxXTYFTgfCwizAd9L4PdLMVLbqv1sHmmnrWya0xz1MTSiw==
via: 1.1 38eecd3ca21bf068d69a2f9cfe668d14.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 22:08:46 GMT
etag: "f7cf3a0f89751a02fbcf8d21f505f24a74e8b30b"
content-type: image/jpeg
age: 61830
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd170538c-f8cf-4acb-ba33-2ead00b9db73.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd170538c-f8cf-4acb-ba33-2ead00b9db73.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 777ce44582c70bf01a31da4cab366f36
57e1d34f146d5ccd9943aa97bcc3158f7103bb07
fbdc8f65ae74dc13b7aafec464f08fdc9902af519946200ec52432ac3ca55982
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd170538c-f8cf-4acb-ba33-2ead00b9db73.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10958
x-amzn-requestid: abfea5b0-58f5-49e1-b78e-7cf456d03cb3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgFHF9oIAMF5lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a20-5ab719292d440d083b07a478;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: gCt9oHpZ68tLCYHIYpI1XLtADkScxwf12kDFnU0o5WoQIVSzWlqozw==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 22:16:52 GMT
etag: "57e1d34f146d5ccd9943aa97bcc3158f7103bb07"
content-type: image/jpeg
age: 61344
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2730750-552d-4852-8ce1-503874565f75.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2730750-552d-4852-8ce1-503874565f75.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 05196ec43964cf559caa0c0279148d62
6170d6776615503e3e29f86783febc3e3e78ca66
47f3a5cde661987e3496ce110a0170b10087dd9ba8d4fd691c4830587ba3fa3f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2730750-552d-4852-8ce1-503874565f75.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9051
x-amzn-requestid: 1032dd9c-a15e-4e8a-9c81-07419e8caf67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYhGvEMNIAMFaKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867bc4-1005c20a33320dbf6567ca31;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:38:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: IMaVlQblNnh9mFKwb2LG7hw7h_f1_nVYqO4aEUqY01a2HofnnQqcFQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:49:31 GMT
age: 62985
etag: "6170d6776615503e3e29f86783febc3e3e78ca66"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13e1db4e-7108-464a-85b6-24ac0c4609f9.webp
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13e1db4e-7108-464a-85b6-24ac0c4609f9.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bbe350ea797a0fec5a19a450fc5de4b4
2f3a39a528d3b759060203931de33c12303592e1
4d661dac2e19e07ae15d0f8cf00bd268c6c2defb2f5e4de38fcb6e7031dfd605
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13e1db4e-7108-464a-85b6-24ac0c4609f9.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9330
x-amzn-requestid: 3fad352d-7664-43e0-9395-e840f671ca61
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgFQFIdoAMFSmw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a21-5e9847852f8435231d401fe6;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: mCEtSOenWKxay4vNy5mN9cexxXKXKt7TMuLaLw-M86tLKwQ2MwuxPg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 22:00:54 GMT
age: 62302
etag: "2f3a39a528d3b759060203931de33c12303592e1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb1888-5971-4b4a-923b-dc9d4050182b.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb1888-5971-4b4a-923b-dc9d4050182b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e00769bd1391b8f4f5b8ab128a825355
e4ddf955e8ac1986045ed55880c43c69e588a021
81ca4d20c28fed8fd3135515daadc1fdbfb4198535d7c46021b418b8b98e59a5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb1888-5971-4b4a-923b-dc9d4050182b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7298
x-amzn-requestid: 381e55bb-876b-46ad-84b6-1ddf9f876f56
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgDcE3poAMFaAA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a15-7c12394600900afc7281e858;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8heT2eN5oLbO14R9qLq78Vma_TkteufTyKM5i3K2XoJYXfWNwLMEwQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:56:25 GMT
age: 62571
etag: "e4ddf955e8ac1986045ed55880c43c69e588a021"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 03014221d7f49b50ffc2d1b0a0e75457
772d86ad983042a728ee3490630a9cf1134ad0dd
81fb954fa569955907952987e9d8efd1dac80e0e4a682826abf3c5d90eb31771
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10176
x-amzn-requestid: 768fc69c-e91b-4dd9-8add-63634762b2d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMpbgEFOIAMF71A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bc49-21756db31c4714af0553f21b;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:12:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jS-AS3x8V3XacXRNkU63UJjBxA6unvBer5WcxUYseR5p4eZPK64o2g==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 04:55:46 GMT
age: 37410
etag: "772d86ad983042a728ee3490630a9cf1134ad0dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash 06abbf932bb4cf37cb4098ea37663ca4
a5a761b8525ee52128ff397c8f63765b52c3019c
f31ec92f97c7e734e32de084414ba51a3955cc2ff50c380a2233698446e85819
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 30 Nov 2022 15:19:16 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Sun, 04 Dec 2022 12:37:52 GMT
ETag: "a5a761b8525ee52128ff397c8f63765b52c3019c"
Last-Modified: Wed, 30 Nov 2022 12:37:53 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 718
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77248f781badb4ed-OSL
www.tqlkg.com/image-3118214-15395205
89.207.16.75302 Found 633 B URL HTTP/1.1 www.tqlkg.com/image-3118214-15395205
IP 89.207.16.75:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (314)
Hash 1d4e87c2066709d38e615c97d655ce1f
d4f8b50d6595f091c3ac1cc6b7b9affec1bdfe2c
313b71d183c8f97d829c8fbca452c6e723a45ee2a47de443fe334c3e02952ecc
GET /image-3118214-15395205 HTTP/1.1
Host: www.tqlkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://b58d4c5be4b99f771c0551ebfaff159a.safeframe.googlesyndication.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: Resin/4.0.66
P3P: policyref="/w3c/p3p.xml", CP="ALL BUS LEG DSP COR ADM CUR DEV PSA OUR NAV INT"
Cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Expires: Wed, 30 Nov 2022 15:19:16 GMT
Location: https://cj.dotomi.com/c666bosv8/ipu/osm/7B9FB86B/977E87A/6/6/6/6/6?f=f%3c%3cyAA69%3A%2F%2FDDD.A721x.t53%2Fz3rxv-KIIPJIL-IMKQMJHM%3c%3cX%3cyAA69%3A%2F%2FsMPuLtMsvLsQQwOOItHMMIvswrwwIMQr.9rwvw8r3v.x55x2v9F4uztrAz54.t53%2F%3c%3cI%3cI%3cH%3cH%3cH%3c
Content-Type: text/html; charset=UTF-8
Content-Length: 633
Date: Wed, 30 Nov 2022 15:19:16 GMT
X-VC-HTTPS: On
cj.dotomi.com/c666bosv8/ipu/osm/7B9FB86B/977E87A/6/6/6/6/6?f=f%3c%3cyAA69%3A%2F%2FDDD.A721x.t53%2Fz3rxv-KIIPJIL-IMKQMJHM%3c%3cX%3cyAA69%3A%2F%2FsMPuLtMsvLsQQwOOItHMMIvswrwwIMQr.9rwvw8r3v.x55x2v9F4uztrAz54.t53%2F%3c%3cI%3cI%3cH%3cH%3cH%3c
89.207.16.75302 Found 769 B URL HTTP/1.1 cj.dotomi.com/c666bosv8/ipu/osm/7B9FB86B/977E87A/6/6/6/6/6?f=f%3c%3cyAA69%3A%2F%2FDDD.A721x.t53%2Fz3rxv-KIIPJIL-IMKQMJHM%3c%3cX%3cyAA69%3A%2F%2FsMPuLtMsvLsQQwOOItHMMIvswrwwIMQr.9rwvw8r3v.x55x2v9F4uztrAz54.t53%2F%3c%3cI%3cI%3cH%3cH%3cH%3c
IP 89.207.16.75:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (382)
Hash 3a24579c3dfb8053510737d0aaded326
aa050d944983691a6f0eb3304177f271c3a025fb
325419fdfc03571b58be80a61cfffd2c49ed156d324e177392162b03f27f8d3f
GET /c666bosv8/ipu/osm/7B9FB86B/977E87A/6/6/6/6/6?f=f%3c%3cyAA69%3A%2F%2FDDD.A721x.t53%2Fz3rxv-KIIPJIL-IMKQMJHM%3c%3cX%3cyAA69%3A%2F%2FsMPuLtMsvLsQQwOOItHMMIvswrwwIMQr.9rwvw8r3v.x55x2v9F4uztrAz54.t53%2F%3c%3cI%3cI%3cH%3cH%3cH%3c HTTP/1.1
Host: cj.dotomi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://b58d4c5be4b99f771c0551ebfaff159a.safeframe.googlesyndication.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: Resin/4.0.66
P3P: policyref="/w3c/p3p-d.xml", CP="NOI DSP NID OUR STP"
Cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Expires: Wed, 30 Nov 2022 15:19:16 GMT
Set-Cookie: CJSession=20d4052e-7b79-4204-ae28-ef49e32e6c3b; Max-Age=-1; Domain=.dotomi.com; Path=/; Secure; SameSite=None
cjae=9WMFfkGiD7UJ; Max-Age=34041593; Domain=.dotomi.com; Path=/; Secure; SameSite=None
DotomiUser=400204952148487727$0$1; Max-Age=34041593; Domain=.dotomi.com; Path=/; Secure; SameSite=None
Location: https://cj.mplxtms.com/hc103tkor6/elq/koi/375B7427/533A436/2/622426B7436A6A9949:BYOHhmIkF9WL/2/2/2?h=r%3c%3c6IIEH%3A%2F%2FLLL.IFA95.1DB%2F7Bz53-SQQXRQT-QUSYURPU%3c%3cf%3c6IIEH%3A%2F%2F0UX2T1U03T0YY4WWQ1PUUQ304z44QUYz.Hz434GzB3.5DD5A3HNC271zI7DC.1DB%2F%3cRP2TPUR3-W0WY-TRPT-z3RX-34TY3SR3V1S0%3cQ%3cQ%3cP%3cP%3cP%3c
Content-Type: text/html; charset=UTF-8
Content-Length: 769
Date: Wed, 30 Nov 2022 15:19:16 GMT
X-VC-HTTPS: On
cj.mplxtms.com/hc103tkor6/elq/koi/375B7427/533A436/2/622426B7436A6A9949:BYOHhmIkF9WL/2/2/2?h=r%3c%3c6IIEH%3A%2F%2FLLL.IFA95.1DB%2F7Bz53-SQQXRQT-QUSYURPU%3c%3cf%3c6IIEH%3A%2F%2F0UX2T1U03T0YY4WWQ1PUUQ304z44QUYz.Hz434GzB3.5DD5A3HNC271zI7DC.1DB%2F%3cRP2TPUR3-W0WY-TRPT-z3RX-34TY3SR3V1S0%3cQ%3cQ%3cP%3cP%3cP%3c
89.207.16.75302 Found 87 B URL HTTP/1.1 cj.mplxtms.com/hc103tkor6/elq/koi/375B7427/533A436/2/622426B7436A6A9949:BYOHhmIkF9WL/2/2/2?h=r%3c%3c6IIEH%3A%2F%2FLLL.IFA95.1DB%2F7Bz53-SQQXRQT-QUSYURPU%3c%3cf%3c6IIEH%3A%2F%2F0UX2T1U03T0YY4WWQ1PUUQ304z44QUYz.Hz434GzB3.5DD5A3HNC271zI7DC.1DB%2F%3cRP2TPUR3-W0WY-TRPT-z3RX-34TY3SR3V1S0%3cQ%3cQ%3cP%3cP%3cP%3c
IP 89.207.16.75:0
File type HTML document, ASCII text
Hash 30be87e0f23de3806a2453051197f063
5729a338e6d9205c71e0c89af6daaf41aaf99fae
780add24b14e9673b39efe5cbb657d330b8d72452514db86475d11b763ddf93a
GET /hc103tkor6/elq/koi/375B7427/533A436/2/622426B7436A6A9949:BYOHhmIkF9WL/2/2/2?h=r%3c%3c6IIEH%3A%2F%2FLLL.IFA95.1DB%2F7Bz53-SQQXRQT-QUSYURPU%3c%3cf%3c6IIEH%3A%2F%2F0UX2T1U03T0YY4WWQ1PUUQ304z44QUYz.Hz434GzB3.5DD5A3HNC271zI7DC.1DB%2F%3cRP2TPUR3-W0WY-TRPT-z3RX-34TY3SR3V1S0%3cQ%3cQ%3cP%3cP%3cP%3c HTTP/1.1
Host: cj.mplxtms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://b58d4c5be4b99f771c0551ebfaff159a.safeframe.googlesyndication.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: Resin/4.0.66
P3P: policyref="/w3c/p3p.xml", CP="ALL BUS LEG DSP COR ADM CUR DEV PSA OUR NAV INT"
Cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Expires: Wed, 30 Nov 2022 15:19:16 GMT
Set-Cookie: S=400204952148487727:9WMFfkGiD7UJ; Max-Age=34041593; Domain=.mplxtms.com; Path=/; Secure; SameSite=None
S=400204952148487727:9WMFfkGiD7UJ; Max-Age=34041593; Domain=.mplxtms.com; Path=/; Secure; SameSite=None
CJSession=20d4052e-7b79-4204-ae28-ef49e32e6c3b; Max-Age=-1; Domain=.mplxtms.com; Path=/; Secure; SameSite=None
Location: https://www.yceml.net/0389/15395205-1668758433691
Content-Type: text/html; charset=utf-8
Content-Length: 87
Date: Wed, 30 Nov 2022 15:19:16 GMT
X-VC-HTTPS: On
www.yceml.net/0389/15395205-1668758433691
104.88.23.236200 OK 66 kB URL HTTP/1.1 www.yceml.net/0389/15395205-1668758433691
IP 104.88.23.236:0
File type JPEG image data, progressive, precision 8, 728x90, components 3\012- data
Hash 36dfb6036ac834426c28e8ef2c370f02
81c314402f57df21dee38f7ea18923b4c0d2295d
a04b4a4ba8127892f69d0caff4f41a7a70467cc32bfa94c0fd0bdc4505789f46
GET /0389/15395205-1668758433691 HTTP/1.1
Host: www.yceml.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://b58d4c5be4b99f771c0551ebfaff159a.safeframe.googlesyndication.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Resin/4.0.66
X-VC-HTTPS: On
Content-Length: 66259
Cache-Control: max-age=417454
Expires: Mon, 05 Dec 2022 11:16:50 GMT
Date: Wed, 30 Nov 2022 15:19:16 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 19bb014d1a41d342a56509de242b5095
c8de06c3bae4b7e8561b5de2bc0d835facd95fe5
33aae0efd71b121edbd7262a5b7ab79b0f59f96ed27f7c7c68fea9f6f5c4391e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "33AAE0EFD71B121EDBD7262A5B7AB79B0F59F96ED27F7C7C68FEA9F6F5C4391E"
Last-Modified: Mon, 28 Nov 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9638
Expires: Wed, 30 Nov 2022 17:59:56 GMT
Date: Wed, 30 Nov 2022 15:19:18 GMT
Connection: keep-alive
15c45d55f9.532721ff2f.com/health/
116.202.60.158200 OK 0 B URL HTTP/2 15c45d55f9.532721ff2f.com/health/
IP 116.202.60.158:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /health/ HTTP/1.1
Host: 15c45d55f9.532721ff2f.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heb.teknikmark.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.18.0
date: Wed, 30 Nov 2022 15:19:18 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
X-Firefox-Spdy: h2
15c45d55f9.532721ff2f.com/get/?go=1&data=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
116.202.60.158302 Found 0 B URL HTTP/2 15c45d55f9.532721ff2f.com/get/?go=1&data=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
IP 116.202.60.158:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /get/?go=1&data=eyJpbXAiOlt7InNlY3VyZSI6MSwiZXh0Ijp7InRhZ19hYiI6ImMiLCJtdWx0aSI6ZmFsc2UsInVzZXJfa2V5d29yZHMiOiIiLCJpZCI6MTY5NSwic3BhY2VpZCI6MTY5NSwidHlwZSI6InBvcCIsImlkem9uZSI6bnVsbCwiYWRfdGFncyI6IiVENyU5MCVENyU5OSVENyU5QSUyQyVENyU5QyVENyU5RSVENyVBNiVENyU5NSVENyU5MCUyQyVENyU5MCVENyVBQSUyQyVENyU5RSVENyVBNCVENyVBQSVENyU5NyUyQyVENyU5NCVENyVBOCVENyU5OSVENyVBOSVENyU5OSVENyU5NSVENyU5RiUyQyVENyU5RSVENyU5NSVENyVBQSVENyVBNyVENyU5RiUyQ1dpbmRvd3MlMkMlMkMlMkMlRDclOTAlRDclOTklRDclOTElRDclOTMlMkMlRDclOTAlRDclQUElMkMlRDclOUUlRDclQTQlRDclQUElRDclOTclMkMlRDclOTQlRDclQTglRDclOTklRDclQTklRDclOTklRDclOTUlRDclOUYlMkMlRDclQTklRDclOUMlRDclOUElMkMlRDclOUUlMkNXaW5kb3dzJTJDJUQ3JTlFJUQ3JTk1JUQ3JUFBJUQ3JUE3JUQ3JTlGJTJDJTJDJUQ3JTk0JUQ3JTkzJUQ3JUE4JUQ3JTlBJTJDJUQ3JTk0JUQ3JUE4JUQ3JTkwJUQ3JUE5JUQ3JTk1JUQ3JUEwJUQ3JTk0JTJDJUQ3JTlDJUQ3JUE3JUQ3JTkxJUQ3JTlDJTJDJUQ3JTkwJUQ3JTk1JUQ3JUFBJUQ3JTk1JTJDJUQ3JTkxJUQ3JTk3JUQ3JTk2JUQ3JUE4JUQ3JTk0JTJDJUQ3JTlDJUQ3JUE5JUQ3JTlCJUQ3JUFBJUQ3JTkxJTJDJUQ3JTkwJUQ3JTk1JUQ3JUFBJUQ3JTk1JTJDJUQ3JTlFJUQ3JTkzJUQ3JTkxJUQ3JUE3JUQ3JTk0JTJDJUQ3JTkxJUQ3JTlFJUQ3JTk3JUQ3JUE5JUQ3JTkxJTJDJTJDJUQ3JTkwJUQ3JTlEJTJDJUQ3JTk2JUQ3JTk0JTJDJUQ3JTlDJUQ3JTkwJTJDJUQ3JUEyJUQ3JTk1JUQ3JTk2JUQ3JUE4JTJDJUQ3JTk0JUQ3JTlFJUQ3JUE5JUQ3JTlBJTJDJUQ3JTlDJUQ3JUE3JUQ3JUE4JUQ3JTk1JUQ3JTkwLiUyMCIsImxhYmVscyI6IiIsImFsbG93ZWRfbGFiZWxzIjoiIiwidGl0bGUiOiIiLCJzdWJpZCI6IjE5ODM4ODI2NCIsInJlZnJlc2giOjEsInV0bTEiOiIiLCJ1dG0yIjoiIiwidXRtNCI6IiIsInNwb3RfaWQiOjEwMjgwLCJtdWx0aXBsZSI6ZmFsc2UsImlzX2lmcmFtZSI6ZmFsc2UsInJlZmRvbWFpbiI6IiIsInBsIjowLCJzdHJhdGFnZW0iOiJubGFiZWwtYSIsImd5ciI6MCwiYWNjZWwiOjAsInNzcCI6Mzk3MiwiYnR5cGUiOjB9LCJiYW5uZXIiOnsidyI6MSwiaCI6MX19XSwic2l0ZSI6eyJpZCI6IjEwMjgwIiwiY2F0IjpbIklBQjI1Il0sInBhZ2UiOiJodHRwczovL2hlYi50ZWtuaWttYXJrLmNvbS8yMTE4LWhvdy10by1maW5kLW91dC10aGUtd2luZG93cy1saWNlbnNlLWtleSJ9LCJkZXZpY2UiOnsidyI6MTI4MCwiaCI6MTAyNH0sInVzZXIiOnsiaWQiOiI5ZTQ5NDdmMzU3NTE0NjU0MTFmZDFhNGY1YzM1OGM3OCIsImZwIjpudWxsfSwiZXh0Ijp7ImR0IjoxNjY5ODIxNTU3ODI3fX0= HTTP/1.1
Host: 15c45d55f9.532721ff2f.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heb.teknikmark.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx/1.18.0
date: Wed, 30 Nov 2022 15:19:19 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
location: https://rtbrennab.com/banner/in/show/?mid=8884000829908066339&pid=0&site=10280&sc=NO&usage_type=DCH&subid=198388264&sid=0&cid=0&price=0&is_cpm=0&cpm=0&ecpm=0&crid=&crtid=&tcid=0&out_id=&ver=&ver_c=&refdom=heb.teknikmark.com&hostname=auc-banner-hz-5&site_id=0&spot_id=10280&utm_source=&utm_medium=&utm_campaign=&utm_content=&expiration_timestamp=0&created_at=0000-00-00&is_native=0&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=default&iabcat=IAB25&min_cpm=0.0001&placement_type_id=&skin_test=&verify_hash=&score=99&ml=&tag_ab=c&ttl=&space_id=1695&banner_width=1&banner_height=1&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fbtds.zog.link%2Fin%2F912%2F%3Fsid%3D10280%26source%3D198388264%26idzone%3D0%26w%3D1%26h%3D1%26mo%3D%26ve%3D%26site_id%3D10280%26utm1%3D%26utm2%3D%26utm3%3D%26utm4%3D%26ad_tags%3D%25D7%2590%25D7%2599%25D7%259A%252C%25D7%259C%25D7%259E%25D7%25A6%25D7%2595%25D7%2590%252C%25D7%2590%25D7%25AA%252C%25D7%259E%25D7%25A4%25D7%25AA%25D7%2597%252C%25D7%2594%25D7%25A8%25D7%2599%25D7%25A9%25D7%2599%25D7%2595%25D7%259F%252C%25D7%259E%25D7%2595%25D7%25AA%25D7%25A7%25D7%259F%252CWindows%252C%252C%252C%25D7%2590%25D7%2599%25D7%2591%25D7%2593%252C%25D7%2590%25D7%25AA%252C%25D7%259E%25D7%25A4%25D7%25AA%25D7%2597%252C%25D7%2594%25D7%25A8%25D7%2599%25D7%25A9%25D7%2599%25D7%2595%25D7%259F%252C%25D7%25A9%25D7%259C%25D7%259A%252C%25D7%259E%252CWindows%252C%25D7%259E%25D7%2595%25D7%25AA%25D7%25A7%25D7%259F%252C%252C%25D7%2594%25D7%2593%25D7%25A8%25D7%259A%252C%25D7%2594%25D7%25A8%25D7%2590%25D7%25A9%25D7%2595%25D7%25A0%25D7%2594%252C%25D7%259C%25D7%25A7%25D7%2591%25D7%259C%252C%25D7%2590%25D7%2595%25D7%25AA%25D7%2595%252C%25D7%2591%25D7%2597%25D7%2596%25D7%25A8%25D7%2594%252C%25D7%259C%25D7%25A9%25D7%259B%25D7%25AA%25D7%2591%252C%25D7%2590%25D7%2595%25D7%25AA%25D7%2595%252C%25D7%259E%25D7%2593%25D7%2591%25D7%25A7%25D7%2594%252C%25D7%2591%25D7%259E%25D7%2597%25D7%25A9%25D7%2591%252C%252C%25D7%2590%25D7%259D%252C%25D7%2596%25D7%2594%252C%25D7%259C%25D7%2590%252C%25D7%25A2%25D7%2595%25D7%2596%25D7%25A8%252C%25D7%2594%25D7%259E%25D7%25A9%25D7%259A%252C%25D7%259C%25D7%25A7%25D7%25A8%25D7%2595%25D7%2590.%2520%26spot_id%3D10280%26p%3Dhttps%253A%252F%252Fheb.teknikmark.com%252F2118-how-to-find-out-the-windows-license-key%26katds_labels%3D%26btype%3D0%26score%3D99%26bf%3D0.0001&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=%D7%90%D7%99%D7%9A%2C%D7%9C%D7%9E%D7%A6%D7%95%D7%90%2C%D7%90%D7%AA%2C%D7%9E%D7%A4%D7%AA%D7%97%2C%D7%94%D7%A8%D7%99%D7%A9%D7%99%D7%95%D7%9F%2C%D7%9E%D7%95%D7%AA%D7%A7%D7%9F%2CWindows%2C%2C%2C%D7%90%D7%99%D7%91%D7%93%2C%D7%90%D7%AA%2C%D7%9E%D7%A4%D7%AA%D7%97%2C%D7%94%D7%A8%D7%99%D7%A9%D7%99%D7%95%D7%9F%2C%D7%A9%D7%9C%D7%9A%2C%D7%9E%2CWindows%2C%D7%9E%D7%95%D7%AA%D7%A7%D7%9F%2C%2C%D7%94%D7%93%D7%A8%D7%9A%2C%D7%94%D7%A8%D7%90%D7%A9%D7%95%D7%A0%D7%94%2C%D7%9C%D7%A7%D7%91%D7%9C%2C%D7%90%D7%95%D7%AA%D7%95%2C%D7%91%D7%97%D7%96%D7%A8%D7%94%2C%D7%9C%D7%A9%D7%9B%D7%AA%D7%91%2C%D7%90%D7%95%D7%AA%D7%95%2C%D7%9E%D7%93%D7%91%D7%A7%D7%94%2C%D7%91%D7%9E%D7%97%D7%A9%D7%91%2C%2C%D7%90%D7%9D%2C%D7%96%D7%94%2C%D7%9C%D7%90%2C%D7%A2%D7%95%D7%96%D7%A8%2C%D7%94%D7%9E%D7%A9%D7%9A%2C%D7%9C%D7%A7%D7%A8%D7%95%D7%90.%20&stratagem=nlabel-a&ssp=3972
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash af0936c36b9c03d7e048212d86962d22
ff45455af54348de8a16e1beaea44cf50fc6ccf2
1ac7adffe7849e0c0b77fd9b952a2a54bca9ff23fe60ff24d281deb658065717
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1AC7ADFFE7849E0C0B77FD9B952A2A54BCA9FF23FE60FF24D281DEB658065717"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6879
Expires: Wed, 30 Nov 2022 17:13:58 GMT
Date: Wed, 30 Nov 2022 15:19:19 GMT
Connection: keep-alive
rtbrennab.com/banner/in/show/?mid=8884000829908066339&pid=0&site=10280&sc=NO&usage_type=DCH&subid=198388264&sid=0&cid=0&price=0&is_cpm=0&cpm=0&ecpm=0&crid=&crtid=&tcid=0&out_id=&ver=&ver_c=&refdom=heb.teknikmark.com&hostname=auc-banner-hz-5&site_id=0&spot_id=10280&utm_source=&utm_medium=&utm_campaign=&utm_content=&expiration_timestamp=0&created_at=0000-00-00&is_native=0&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=default&iabcat=IAB25&min_cpm=0.0001&placement_type_id=&skin_test=&verify_hash=&score=99&ml=&tag_ab=c&ttl=&space_id=1695&banner_width=1&banner_height=1&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fbtds.zog.link%2Fin%2F912%2F%3Fsid%3D10280%26source%3D198388264%26idzone%3D0%26w%3D1%26h%3D1%26mo%3D%26ve%3D%26site_id%3D10280%26utm1%3D%26utm2%3D%26utm3%3D%26utm4%3D%26ad_tags%3D%25D7%2590%25D7%2599%25D7%259A%252C%25D7%259C%25D7%259E%25D7%25A6%25D7%2595%25D7%2590%252C%25D7%2590%25D7%25AA%252C%25D7%259E%25D7%25A4%25D7%25AA%25D7%2597%252C%25D7%2594%25D7%25A8%25D7%2599%25D7%25A9%25D7%2599%25D7%2595%25D7%259F%252C%25D7%259E%25D7%2595%25D7%25AA%25D7%25A7%25D7%259F%252CWindows%252C%252C%252C%25D7%2590%25D7%2599%25D7%2591%25D7%2593%252C%25D7%2590%25D7%25AA%252C%25D7%259E%25D7%25A4%25D7%25AA%25D7%2597%252C%25D7%2594%25D7%25A8%25D7%2599%25D7%25A9%25D7%2599%25D7%2595%25D7%259F%252C%25D7%25A9%25D7%259C%25D7%259A%252C%25D7%259E%252CWindows%252C%25D7%259E%25D7%2595%25D7%25AA%25D7%25A7%25D7%259F%252C%252C%25D7%2594%25D7%2593%25D7%25A8%25D7%259A%252C%25D7%2594%25D7%25A8%25D7%2590%25D7%25A9%25D7%2595%25D7%25A0%25D7%2594%252C%25D7%259C%25D7%25A7%25D7%2591%25D7%259C%252C%25D7%2590%25D7%2595%25D7%25AA%25D7%2595%252C%25D7%2591%25D7%2597%25D7%2596%25D7%25A8%25D7%2594%252C%25D7%259C%25D7%25A9%25D7%259B%25D7%25AA%25D7%2591%252C%25D7%2590%25D7%2595%25D7%25AA%25D7%2595%252C%25D7%259E%25D7%2593%25D7%2591%25D7%25A7%25D7%2594%252C%25D7%2591%25D7%259E%25D7%2597%25D7%25A9%25D7%2591%252C%252C%25D7%2590%25D7%259D%252C%25D7%2596%25D7%2594%252C%25D7%259C%25D7%2590%252C%25D7%25A2%25D7%2595%25D7%2596%25D7%25A8%252C%25D7%2594%25D7%259E%25D7%25A9%25D7%259A%252C%25D7%259C%25D7%25A7%25D7%25A8%25D7%2595%25D7%2590.%2520%26spot_id%3D10280%26p%3Dhttps%253A%252F%252Fheb.teknikmark.com%252F2118-how-to-find-out-the-windows-license-key%26katds_labels%3D%26btype%3D0%26score%3D99%26bf%3D0.0001&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=%D7%90%D7%99%D7%9A%2C%D7%9C%D7%9E%D7%A6%D7%95%D7%90%2C%D7%90%D7%AA%2C%D7%9E%D7%A4%D7%AA%D7%97%2C%D7%94%D7%A8%D7%99%D7%A9%D7%99%D7%95%D7%9F%2C%D7%9E%D7%95%D7%AA%D7%A7%D7%9F%2CWindows%2C%2C%2C%D7%90%D7%99%D7%91%D7%93%2C%D7%90%D7%AA%2C%D7%9E%D7%A4%D7%AA%D7%97%2C%D7%94%D7%A8%D7%99%D7%A9%D7%99%D7%95%D7%9F%2C%D7%A9%D7%9C%D7%9A%2C%D7%9E%2CWindows%2C%D7%9E%D7%95%D7%AA%D7%A7%D7%9F%2C%2C%D7%94%D7%93%D7%A8%D7%9A%2C%D7%94%D7%A8%D7%90%D7%A9%D7%95%D7%A0%D7%94%2C%D7%9C%D7%A7%D7%91%D7%9C%2C%D7%90%D7%95%D7%AA%D7%95%2C%D7%91%D7%97%D7%96%D7%A8%D7%94%2C%D7%9C%D7%A9%D7%9B%D7%AA%D7%91%2C%D7%90%D7%95%D7%AA%D7%95%2C%D7%9E%D7%93%D7%91%D7%A7%D7%94%2C%D7%91%D7%9E%D7%97%D7%A9%D7%91%2C%2C%D7%90%D7%9D%2C%D7%96%D7%94%2C%D7%9C%D7%90%2C%D7%A2%D7%95%D7%96%D7%A8%2C%D7%94%D7%9E%D7%A9%D7%9A%2C%D7%9C%D7%A7%D7%A8%D7%95%D7%90.%20&stratagem=nlabel-a&ssp=3972
162.55.139.130302 Found 0 B URL HTTP/2 rtbrennab.com/banner/in/show/?mid=8884000829908066339&pid=0&site=10280&sc=NO&usage_type=DCH&subid=198388264&sid=0&cid=0&price=0&is_cpm=0&cpm=0&ecpm=0&crid=&crtid=&tcid=0&out_id=&ver=&ver_c=&refdom=heb.teknikmark.com&hostname=auc-banner-hz-5&site_id=0&spot_id=10280&utm_source=&utm_medium=&utm_campaign=&utm_content=&expiration_timestamp=0&created_at=0000-00-00&is_native=0&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=default&iabcat=IAB25&min_cpm=0.0001&placement_type_id=&skin_test=&verify_hash=&score=99&ml=&tag_ab=c&ttl=&space_id=1695&banner_width=1&banner_height=1&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fbtds.zog.link%2Fin%2F912%2F%3Fsid%3D10280%26source%3D198388264%26idzone%3D0%26w%3D1%26h%3D1%26mo%3D%26ve%3D%26site_id%3D10280%26utm1%3D%26utm2%3D%26utm3%3D%26utm4%3D%26ad_tags%3D%25D7%2590%25D7%2599%25D7%259A%252C%25D7%259C%25D7%259E%25D7%25A6%25D7%2595%25D7%2590%252C%25D7%2590%25D7%25AA%252C%25D7%259E%25D7%25A4%25D7%25AA%25D7%2597%252C%25D7%2594%25D7%25A8%25D7%2599%25D7%25A9%25D7%2599%25D7%2595%25D7%259F%252C%25D7%259E%25D7%2595%25D7%25AA%25D7%25A7%25D7%259F%252CWindows%252C%252C%252C%25D7%2590%25D7%2599%25D7%2591%25D7%2593%252C%25D7%2590%25D7%25AA%252C%25D7%259E%25D7%25A4%25D7%25AA%25D7%2597%252C%25D7%2594%25D7%25A8%25D7%2599%25D7%25A9%25D7%2599%25D7%2595%25D7%259F%252C%25D7%25A9%25D7%259C%25D7%259A%252C%25D7%259E%252CWindows%252C%25D7%259E%25D7%2595%25D7%25AA%25D7%25A7%25D7%259F%252C%252C%25D7%2594%25D7%2593%25D7%25A8%25D7%259A%252C%25D7%2594%25D7%25A8%25D7%2590%25D7%25A9%25D7%2595%25D7%25A0%25D7%2594%252C%25D7%259C%25D7%25A7%25D7%2591%25D7%259C%252C%25D7%2590%25D7%2595%25D7%25AA%25D7%2595%252C%25D7%2591%25D7%2597%25D7%2596%25D7%25A8%25D7%2594%252C%25D7%259C%25D7%25A9%25D7%259B%25D7%25AA%25D7%2591%252C%25D7%2590%25D7%2595%25D7%25AA%25D7%2595%252C%25D7%259E%25D7%2593%25D7%2591%25D7%25A7%25D7%2594%252C%25D7%2591%25D7%259E%25D7%2597%25D7%25A9%25D7%2591%252C%252C%25D7%2590%25D7%259D%252C%25D7%2596%25D7%2594%252C%25D7%259C%25D7%2590%252C%25D7%25A2%25D7%2595%25D7%2596%25D7%25A8%252C%25D7%2594%25D7%259E%25D7%25A9%25D7%259A%252C%25D7%259C%25D7%25A7%25D7%25A8%25D7%2595%25D7%2590.%2520%26spot_id%3D10280%26p%3Dhttps%253A%252F%252Fheb.teknikmark.com%252F2118-how-to-find-out-the-windows-license-key%26katds_labels%3D%26btype%3D0%26score%3D99%26bf%3D0.0001&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=%D7%90%D7%99%D7%9A%2C%D7%9C%D7%9E%D7%A6%D7%95%D7%90%2C%D7%90%D7%AA%2C%D7%9E%D7%A4%D7%AA%D7%97%2C%D7%94%D7%A8%D7%99%D7%A9%D7%99%D7%95%D7%9F%2C%D7%9E%D7%95%D7%AA%D7%A7%D7%9F%2CWindows%2C%2C%2C%D7%90%D7%99%D7%91%D7%93%2C%D7%90%D7%AA%2C%D7%9E%D7%A4%D7%AA%D7%97%2C%D7%94%D7%A8%D7%99%D7%A9%D7%99%D7%95%D7%9F%2C%D7%A9%D7%9C%D7%9A%2C%D7%9E%2CWindows%2C%D7%9E%D7%95%D7%AA%D7%A7%D7%9F%2C%2C%D7%94%D7%93%D7%A8%D7%9A%2C%D7%94%D7%A8%D7%90%D7%A9%D7%95%D7%A0%D7%94%2C%D7%9C%D7%A7%D7%91%D7%9C%2C%D7%90%D7%95%D7%AA%D7%95%2C%D7%91%D7%97%D7%96%D7%A8%D7%94%2C%D7%9C%D7%A9%D7%9B%D7%AA%D7%91%2C%D7%90%D7%95%D7%AA%D7%95%2C%D7%9E%D7%93%D7%91%D7%A7%D7%94%2C%D7%91%D7%9E%D7%97%D7%A9%D7%91%2C%2C%D7%90%D7%9D%2C%D7%96%D7%94%2C%D7%9C%D7%90%2C%D7%A2%D7%95%D7%96%D7%A8%2C%D7%94%D7%9E%D7%A9%D7%9A%2C%D7%9C%D7%A7%D7%A8%D7%95%D7%90.%20&stratagem=nlabel-a&ssp=3972
IP 162.55.139.130:0
ASN #24940 Hetzner Online GmbH
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /banner/in/show/?mid=8884000829908066339&pid=0&site=10280&sc=NO&usage_type=DCH&subid=198388264&sid=0&cid=0&price=0&is_cpm=0&cpm=0&ecpm=0&crid=&crtid=&tcid=0&out_id=&ver=&ver_c=&refdom=heb.teknikmark.com&hostname=auc-banner-hz-5&site_id=0&spot_id=10280&utm_source=&utm_medium=&utm_campaign=&utm_content=&expiration_timestamp=0&created_at=0000-00-00&is_native=0&auction_queue=0&pop_winurl=&ip=91.90.42.154&testab=&px_id=0&adblock=0&auction_host=&mm=&yc=&render_type=&campaign_type=&uniq=&exp=&resp_type=default&iabcat=IAB25&min_cpm=0.0001&placement_type_id=&skin_test=&verify_hash=&score=99&ml=&tag_ab=c&ttl=&space_id=1695&banner_width=1&banner_height=1&accel=0&gyr=0&iabcat=IAB25&url=https%3A%2F%2Fbtds.zog.link%2Fin%2F912%2F%3Fsid%3D10280%26source%3D198388264%26idzone%3D0%26w%3D1%26h%3D1%26mo%3D%26ve%3D%26site_id%3D10280%26utm1%3D%26utm2%3D%26utm3%3D%26utm4%3D%26ad_tags%3D%25D7%2590%25D7%2599%25D7%259A%252C%25D7%259C%25D7%259E%25D7%25A6%25D7%2595%25D7%2590%252C%25D7%2590%25D7%25AA%252C%25D7%259E%25D7%25A4%25D7%25AA%25D7%2597%252C%25D7%2594%25D7%25A8%25D7%2599%25D7%25A9%25D7%2599%25D7%2595%25D7%259F%252C%25D7%259E%25D7%2595%25D7%25AA%25D7%25A7%25D7%259F%252CWindows%252C%252C%252C%25D7%2590%25D7%2599%25D7%2591%25D7%2593%252C%25D7%2590%25D7%25AA%252C%25D7%259E%25D7%25A4%25D7%25AA%25D7%2597%252C%25D7%2594%25D7%25A8%25D7%2599%25D7%25A9%25D7%2599%25D7%2595%25D7%259F%252C%25D7%25A9%25D7%259C%25D7%259A%252C%25D7%259E%252CWindows%252C%25D7%259E%25D7%2595%25D7%25AA%25D7%25A7%25D7%259F%252C%252C%25D7%2594%25D7%2593%25D7%25A8%25D7%259A%252C%25D7%2594%25D7%25A8%25D7%2590%25D7%25A9%25D7%2595%25D7%25A0%25D7%2594%252C%25D7%259C%25D7%25A7%25D7%2591%25D7%259C%252C%25D7%2590%25D7%2595%25D7%25AA%25D7%2595%252C%25D7%2591%25D7%2597%25D7%2596%25D7%25A8%25D7%2594%252C%25D7%259C%25D7%25A9%25D7%259B%25D7%25AA%25D7%2591%252C%25D7%2590%25D7%2595%25D7%25AA%25D7%2595%252C%25D7%259E%25D7%2593%25D7%2591%25D7%25A7%25D7%2594%252C%25D7%2591%25D7%259E%25D7%2597%25D7%25A9%25D7%2591%252C%252C%25D7%2590%25D7%259D%252C%25D7%2596%25D7%2594%252C%25D7%259C%25D7%2590%252C%25D7%25A2%25D7%2595%25D7%2596%25D7%25A8%252C%25D7%2594%25D7%259E%25D7%25A9%25D7%259A%252C%25D7%259C%25D7%25A7%25D7%25A8%25D7%2595%25D7%2590.%2520%26spot_id%3D10280%26p%3Dhttps%253A%252F%252Fheb.teknikmark.com%252F2118-how-to-find-out-the-windows-license-key%26katds_labels%3D%26btype%3D0%26score%3D99%26bf%3D0.0001&pr=&bid_crid=&bid_cid=&is_iframe=0&ad_tags=%D7%90%D7%99%D7%9A%2C%D7%9C%D7%9E%D7%A6%D7%95%D7%90%2C%D7%90%D7%AA%2C%D7%9E%D7%A4%D7%AA%D7%97%2C%D7%94%D7%A8%D7%99%D7%A9%D7%99%D7%95%D7%9F%2C%D7%9E%D7%95%D7%AA%D7%A7%D7%9F%2CWindows%2C%2C%2C%D7%90%D7%99%D7%91%D7%93%2C%D7%90%D7%AA%2C%D7%9E%D7%A4%D7%AA%D7%97%2C%D7%94%D7%A8%D7%99%D7%A9%D7%99%D7%95%D7%9F%2C%D7%A9%D7%9C%D7%9A%2C%D7%9E%2CWindows%2C%D7%9E%D7%95%D7%AA%D7%A7%D7%9F%2C%2C%D7%94%D7%93%D7%A8%D7%9A%2C%D7%94%D7%A8%D7%90%D7%A9%D7%95%D7%A0%D7%94%2C%D7%9C%D7%A7%D7%91%D7%9C%2C%D7%90%D7%95%D7%AA%D7%95%2C%D7%91%D7%97%D7%96%D7%A8%D7%94%2C%D7%9C%D7%A9%D7%9B%D7%AA%D7%91%2C%D7%90%D7%95%D7%AA%D7%95%2C%D7%9E%D7%93%D7%91%D7%A7%D7%94%2C%D7%91%D7%9E%D7%97%D7%A9%D7%91%2C%2C%D7%90%D7%9D%2C%D7%96%D7%94%2C%D7%9C%D7%90%2C%D7%A2%D7%95%D7%96%D7%A8%2C%D7%94%D7%9E%D7%A9%D7%9A%2C%D7%9C%D7%A7%D7%A8%D7%95%D7%90.%20&stratagem=nlabel-a&ssp=3972 HTTP/1.1
Host: rtbrennab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://heb.teknikmark.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx/1.16.0
date: Wed, 30 Nov 2022 15:19:19 GMT
content-length: 0
vary: Origin
cache-control: no-transform, no-cache, no-store, must-revalidate
pragma: no-cache
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: *
location: https://btds.zog.link/in/912/?sid=10280&source=198388264&idzone=0&w=1&h=1&mo=&ve=&site_id=10280&utm1=&utm2=&utm3=&utm4=&ad_tags=%D7%90%D7%99%D7%9A%2C%D7%9C%D7%9E%D7%A6%D7%95%D7%90%2C%D7%90%D7%AA%2C%D7%9E%D7%A4%D7%AA%D7%97%2C%D7%94%D7%A8%D7%99%D7%A9%D7%99%D7%95%D7%9F%2C%D7%9E%D7%95%D7%AA%D7%A7%D7%9F%2CWindows%2C%2C%2C%D7%90%D7%99%D7%91%D7%93%2C%D7%90%D7%AA%2C%D7%9E%D7%A4%D7%AA%D7%97%2C%D7%94%D7%A8%D7%99%D7%A9%D7%99%D7%95%D7%9F%2C%D7%A9%D7%9C%D7%9A%2C%D7%9E%2CWindows%2C%D7%9E%D7%95%D7%AA%D7%A7%D7%9F%2C%2C%D7%94%D7%93%D7%A8%D7%9A%2C%D7%94%D7%A8%D7%90%D7%A9%D7%95%D7%A0%D7%94%2C%D7%9C%D7%A7%D7%91%D7%9C%2C%D7%90%D7%95%D7%AA%D7%95%2C%D7%91%D7%97%D7%96%D7%A8%D7%94%2C%D7%9C%D7%A9%D7%9B%D7%AA%D7%91%2C%D7%90%D7%95%D7%AA%D7%95%2C%D7%9E%D7%93%D7%91%D7%A7%D7%94%2C%D7%91%D7%9E%D7%97%D7%A9%D7%91%2C%2C%D7%90%D7%9D%2C%D7%96%D7%94%2C%D7%9C%D7%90%2C%D7%A2%D7%95%D7%96%D7%A8%2C%D7%94%D7%9E%D7%A9%D7%9A%2C%D7%9C%D7%A7%D7%A8%D7%95%D7%90.%20&spot_id=10280&p=https%3A%2F%2Fheb.teknikmark.com%2F2118-how-to-find-out-the-windows-license-key&katds_labels=&btype=0&score=99&bf=0.0001
X-Firefox-Spdy: h2
teknikmark.com/template/css/font-awesome-4.7.0/fonts/fontawesome-webfont.ttf?v=4.7.0
104.21.7.142200 OK 99 kB URL HTTP/2 teknikmark.com/template/css/font-awesome-4.7.0/fonts/fontawesome-webfont.ttf?v=4.7.0
IP 104.21.7.142:0
File type TrueType Font data, 13 tables, 1st "FFTM", 24 names, Macintosh\012- data
Hash 4e3b5415c02d64866935ebd2904baf27
4fd84f143155d293c21818e28eebc5a27c06d326
77569cd841351a1527b564df89f40a733e34647e9cebec6f1daa3ca95317a6a2
GET /template/css/font-awesome-4.7.0/fonts/fontawesome-webfont.ttf?v=4.7.0 HTTP/1.1
Host: teknikmark.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://heb.teknikmark.com
Connection: keep-alive
Referer: https://teknikmark.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 30 Nov 2022 15:19:14 GMT
content-type: application/font-sfnt
last-modified: Fri, 11 Jan 2019 08:25:00 GMT
etag: W/"286ac-57f2a6e556f00"
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gWk120fGm6hBuTydM3MExfir1g3LRFvtQKl1NRoaKwUwhQrc7p39296165%2F2yHIPMz0h19tkSdV7Uvdd9W75HABiNPbyxj%2BU4w%2BgBvv3PvgFWamIxaa3LRMmW70dRQeFJQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77248f6cf80db511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
btds.zog.link/in/912/?sid=10280&source=198388264&idzone=0&w=1&h=1&mo=&ve=&site_id=10280&utm1=&utm2=&utm3=&utm4=&ad_tags=%D7%90%D7%99%D7%9A%2C%D7%9C%D7%9E%D7%A6%D7%95%D7%90%2C%D7%90%D7%AA%2C%D7%9E%D7%A4%D7%AA%D7%97%2C%D7%94%D7%A8%D7%99%D7%A9%D7%99%D7%95%D7%9F%2C%D7%9E%D7%95%D7%AA%D7%A7%D7%9F%2CWindows%2C%2C%2C%D7%90%D7%99%D7%91%D7%93%2C%D7%90%D7%AA%2C%D7%9E%D7%A4%D7%AA%D7%97%2C%D7%94%D7%A8%D7%99%D7%A9%D7%99%D7%95%D7%9F%2C%D7%A9%D7%9C%D7%9A%2C%D7%9E%2CWindows%2C%D7%9E%D7%95%D7%AA%D7%A7%D7%9F%2C%2C%D7%94%D7%93%D7%A8%D7%9A%2C%D7%94%D7%A8%D7%90%D7%A9%D7%95%D7%A0%D7%94%2C%D7%9C%D7%A7%D7%91%D7%9C%2C%D7%90%D7%95%D7%AA%D7%95%2C%D7%91%D7%97%D7%96%D7%A8%D7%94%2C%D7%9C%D7%A9%D7%9B%D7%AA%D7%91%2C%D7%90%D7%95%D7%AA%D7%95%2C%D7%9E%D7%93%D7%91%D7%A7%D7%94%2C%D7%91%D7%9E%D7%97%D7%A9%D7%91%2C%2C%D7%90%D7%9D%2C%D7%96%D7%94%2C%D7%9C%D7%90%2C%D7%A2%D7%95%D7%96%D7%A8%2C%D7%94%D7%9E%D7%A9%D7%9A%2C%D7%9C%D7%A7%D7%A8%D7%95%D7%90.%20&spot_id=10280&p=https%3A%2F%2Fheb.teknikmark.com%2F2118-how-to-find-out-the-windows-license-key&katds_labels=&btype=0&score=99&bf=0.0001
109.206.163.116302 Found 0 B URL HTTP/2 btds.zog.link/in/912/?sid=10280&source=198388264&idzone=0&w=1&h=1&mo=&ve=&site_id=10280&utm1=&utm2=&utm3=&utm4=&ad_tags=%D7%90%D7%99%D7%9A%2C%D7%9C%D7%9E%D7%A6%D7%95%D7%90%2C%D7%90%D7%AA%2C%D7%9E%D7%A4%D7%AA%D7%97%2C%D7%94%D7%A8%D7%99%D7%A9%D7%99%D7%95%D7%9F%2C%D7%9E%D7%95%D7%AA%D7%A7%D7%9F%2CWindows%2C%2C%2C%D7%90%D7%99%D7%91%D7%93%2C%D7%90%D7%AA%2C%D7%9E%D7%A4%D7%AA%D7%97%2C%D7%94%D7%A8%D7%99%D7%A9%D7%99%D7%95%D7%9F%2C%D7%A9%D7%9C%D7%9A%2C%D7%9E%2CWindows%2C%D7%9E%D7%95%D7%AA%D7%A7%D7%9F%2C%2C%D7%94%D7%93%D7%A8%D7%9A%2C%D7%94%D7%A8%D7%90%D7%A9%D7%95%D7%A0%D7%94%2C%D7%9C%D7%A7%D7%91%D7%9C%2C%D7%90%D7%95%D7%AA%D7%95%2C%D7%91%D7%97%D7%96%D7%A8%D7%94%2C%D7%9C%D7%A9%D7%9B%D7%AA%D7%91%2C%D7%90%D7%95%D7%AA%D7%95%2C%D7%9E%D7%93%D7%91%D7%A7%D7%94%2C%D7%91%D7%9E%D7%97%D7%A9%D7%91%2C%2C%D7%90%D7%9D%2C%D7%96%D7%94%2C%D7%9C%D7%90%2C%D7%A2%D7%95%D7%96%D7%A8%2C%D7%94%D7%9E%D7%A9%D7%9A%2C%D7%9C%D7%A7%D7%A8%D7%95%D7%90.%20&spot_id=10280&p=https%3A%2F%2Fheb.teknikmark.com%2F2118-how-to-find-out-the-windows-license-key&katds_labels=&btype=0&score=99&bf=0.0001
IP 109.206.163.116:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /in/912/?sid=10280&source=198388264&idzone=0&w=1&h=1&mo=&ve=&site_id=10280&utm1=&utm2=&utm3=&utm4=&ad_tags=%D7%90%D7%99%D7%9A%2C%D7%9C%D7%9E%D7%A6%D7%95%D7%90%2C%D7%90%D7%AA%2C%D7%9E%D7%A4%D7%AA%D7%97%2C%D7%94%D7%A8%D7%99%D7%A9%D7%99%D7%95%D7%9F%2C%D7%9E%D7%95%D7%AA%D7%A7%D7%9F%2CWindows%2C%2C%2C%D7%90%D7%99%D7%91%D7%93%2C%D7%90%D7%AA%2C%D7%9E%D7%A4%D7%AA%D7%97%2C%D7%94%D7%A8%D7%99%D7%A9%D7%99%D7%95%D7%9F%2C%D7%A9%D7%9C%D7%9A%2C%D7%9E%2CWindows%2C%D7%9E%D7%95%D7%AA%D7%A7%D7%9F%2C%2C%D7%94%D7%93%D7%A8%D7%9A%2C%D7%94%D7%A8%D7%90%D7%A9%D7%95%D7%A0%D7%94%2C%D7%9C%D7%A7%D7%91%D7%9C%2C%D7%90%D7%95%D7%AA%D7%95%2C%D7%91%D7%97%D7%96%D7%A8%D7%94%2C%D7%9C%D7%A9%D7%9B%D7%AA%D7%91%2C%D7%90%D7%95%D7%AA%D7%95%2C%D7%9E%D7%93%D7%91%D7%A7%D7%94%2C%D7%91%D7%9E%D7%97%D7%A9%D7%91%2C%2C%D7%90%D7%9D%2C%D7%96%D7%94%2C%D7%9C%D7%90%2C%D7%A2%D7%95%D7%96%D7%A8%2C%D7%94%D7%9E%D7%A9%D7%9A%2C%D7%9C%D7%A7%D7%A8%D7%95%D7%90.%20&spot_id=10280&p=https%3A%2F%2Fheb.teknikmark.com%2F2118-how-to-find-out-the-windows-license-key&katds_labels=&btype=0&score=99&bf=0.0001 HTTP/1.1
Host: btds.zog.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://heb.teknikmark.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx/1.20.1
date: Wed, 30 Nov 2022 15:19:18 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://cdn.1vag.com/1x1.png
pragma: no-cache
vary: *
cache-control: no-cache, no-store, must-revalidate
set-cookie: 912.0=1; expires=Thu, 01 Dec 2022 15:19:18 GMT; path=/; secure; SameSite=None
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cc38388edbe9fc1581700806f0300ebc
4a9640bb3d6f540e02326fa23e0e4bfa9b47c61a
52e7d02844ebe099813921038e49a23e15fe7b2fbac302a587013584fbd28815
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "52E7D02844EBE099813921038E49A23E15FE7B2FBAC302A587013584FBD28815"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11286
Expires: Wed, 30 Nov 2022 18:27:25 GMT
Date: Wed, 30 Nov 2022 15:19:19 GMT
Connection: keep-alive
cdn.1vag.com/1x1.png
45.133.44.25200 OK 68 B IP 45.133.44.25:0
ASN #39572 DataWeb Global Group B.V.
File type PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Hash 91e42db1c66c0b276abf6234dc50b2eb
c1986af3c26609b8b7d8933f99c51c1a89e9ea6b
63ef318d96b5d0d0ceba6e04a4e622b1158335cdc67c49e27839132c6f655058
GET /1x1.png HTTP/1.1
Host: cdn.1vag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://heb.teknikmark.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 15:19:19 GMT
content-type: image/png
content-length: 68
server: nginx/1.20.1
last-modified: Wed, 15 Apr 2020 13:30:15 GMT
etag: "5e970c67-44"
cache-control: max-age=3600
x-request-id: e0cea73041c202c45e6ab3a8b14597f5
expires: Wed, 30 Nov 2022 16:19:19 GMT
x-proxy-cache: HIT
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
heb.teknikmark.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
104.21.7.142200 OK 0 B URL HTTP/2 heb.teknikmark.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP 104.21.7.142:0
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: heb.teknikmark.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heb.teknikmark.com/2118-how-to-find-out-the-windows-license-key
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 30 Nov 2022 15:19:13 GMT
content-type: application/javascript
last-modified: Mon, 28 Nov 2022 15:39:19 GMT
etag: W/"6384d627-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=by1TzS%2FHqXUcYmYGN7%2Fbis%2FGiIX8SccwXOuPAYAnJq%2FNNFMAgEuW3MMX%2FcKRokr%2F2SOT3QlAZfwL%2BfVkKvff%2BBtq91ZgZXmJ1J3N%2FKU%2F%2Bz9Z2F9wF2r%2BYnxXEolK8%2FsLOysxa6A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77248f684970b511-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Fri, 02 Dec 2022 15:19:13 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2
teknikmark.com/template/css/1506758391index.css
104.21.7.142200 OK 0 B URL HTTP/2 teknikmark.com/template/css/1506758391index.css
IP 104.21.7.142:0
GET /template/css/1506758391index.css HTTP/1.1
Host: teknikmark.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heb.teknikmark.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 30 Nov 2022 15:19:14 GMT
content-type: text/css
last-modified: Sun, 27 Dec 2020 21:06:10 GMT
etag: W/"1418c-5b77886dad480-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 4840
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fA0TKpNBkxT6ZR%2FCbiP3A0AENh210mJ3drqv1HPOZ2MUJ4vdjgVsmaCIEYQ24tnkctOZFFGm6kCIXR4k5XrnlQ3w86TqzGExzqEOPm9BJhU8KqZsRPN6q9w72xV0548OBg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77248f6899f1b511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
teknikmark.com/template/js/viomag-scripts-functions.js
104.21.7.142200 OK 0 B URL HTTP/2 teknikmark.com/template/js/viomag-scripts-functions.js
IP 104.21.7.142:0
GET /template/js/viomag-scripts-functions.js HTTP/1.1
Host: teknikmark.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heb.teknikmark.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 30 Nov 2022 15:19:14 GMT
content-type: application/javascript
last-modified: Fri, 11 Jan 2019 08:25:00 GMT
etag: W/"7d9-57f2a6e556f00-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 4840
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EQzsdmKdTDfzILx4NfKoOa56cjaTY7OF0FklHEbCDDICTix8PDat%2Fr%2BUjS%2BgjwVVwoFmioWQa%2BGDSMN5lLquLfvg0Zlp7O9P70HoSPjRWRNyLTe36iaHULPVX7p%2FjakliA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77248f68aa09b511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400italic,700italic,400,700&subset=latin,latin-ext
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400italic,700italic,400,700&subset=latin,latin-ext
IP 142.250.74.106:0
GET /css?family=Open+Sans:400italic,700italic,400,700&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heb.teknikmark.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 30 Nov 2022 15:19:14 GMT
date: Wed, 30 Nov 2022 15:19:14 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
teknikmark.com/template/js/jquery-migrate.min.js
104.21.7.142200 OK 0 B URL HTTP/2 teknikmark.com/template/js/jquery-migrate.min.js
IP 104.21.7.142:0
GET /template/js/jquery-migrate.min.js HTTP/1.1
Host: teknikmark.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heb.teknikmark.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 30 Nov 2022 15:19:14 GMT
content-type: application/javascript
last-modified: Fri, 11 Jan 2019 08:25:00 GMT
etag: W/"2749-57f2a6e556f00-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 4840
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RsUS8VU04YPgWle4%2Fv%2BEYbq0u5OVVRp8TLxTOPvWd0ru%2BSZWwxd3HBc8mwvn%2Fz%2BKXrXQ30ONqATu7cliAS88O4l6jNnSP%2BMhMadlq7OhhTnkpXaPtPQF5PdMC4SQQwrxQA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77248f6899ffb511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
teknikmark.com/template/js/navigation.js
104.21.7.142200 OK 0 B URL HTTP/2 teknikmark.com/template/js/navigation.js
IP 104.21.7.142:0
GET /template/js/navigation.js HTTP/1.1
Host: teknikmark.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heb.teknikmark.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 30 Nov 2022 15:19:14 GMT
content-type: application/javascript
last-modified: Fri, 11 Jan 2019 08:25:00 GMT
etag: W/"635-57f2a6e556f00-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 4841
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hrJqNTFYdEaXzN6S5vvp5DMyCA0QMuJo8vcJ7zdwhAofgb18hT8%2FrQaEv0bgmWP%2BymGxbMV5gYhsDaE03%2FkP2mV5W3RLgrqHvhmxx%2BCimULOaSPQR2eHXi11tCbSRzHxsA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77248f68aa06b511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
load5.biz/?pu=gq2tinzsmq5ha3ddf4ytimzu
185.177.94.108200 OK 0 B URL HTTP/2 load5.biz/?pu=gq2tinzsmq5ha3ddf4ytimzu
IP 185.177.94.108:0
ASN #39572 DataWeb Global Group B.V.
GET /?pu=gq2tinzsmq5ha3ddf4ytimzu HTTP/1.1
Host: load5.biz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heb.teknikmark.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 15:19:14 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
set-cookie: uuid=55c9a5f9-7868-4477-a0b9-990e3b773396; expires=Fri, 30-Dec-2022 15:19:14 GMT; Max-Age=2592000; path=/; SameSite=None; domain=load5.biz; secure
strict-transport-security: max-age=31536000
content-security-policy: img-src https: data:; upgrade-insecure-requests
X-Firefox-Spdy: h2
js.cabnnr.com/banner-admanager/build.m.js
45.133.44.24200 OK 0 B URL HTTP/2 js.cabnnr.com/banner-admanager/build.m.js
IP 45.133.44.24:0
ASN #39572 DataWeb Global Group B.V.
GET /banner-admanager/build.m.js HTTP/1.1
Host: js.cabnnr.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heb.teknikmark.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 15:19:15 GMT
content-type: application/javascript; charset=utf-8
server: nginx/1.18.0
last-modified: Wed, 30 Nov 2022 14:18:35 GMT
etag: W/"6387663b-d063"
content-encoding: gzip
expires: Wed, 30 Nov 2022 15:24:15 GMT
cache-control: max-age=300
x-proxy-cache: HIT
access-control-allow-origin: *
X-Firefox-Spdy: h2
teknikmark.com/template/css/1.css
104.21.7.142200 OK 0 B URL HTTP/2 teknikmark.com/template/css/1.css
IP 104.21.7.142:0
GET /template/css/1.css HTTP/1.1
Host: teknikmark.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heb.teknikmark.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 30 Nov 2022 15:19:14 GMT
content-type: text/css
last-modified: Sun, 27 Dec 2020 21:05:26 GMT
etag: W/"141ed-5b778843b7180-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 4840
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OPJZ70qCxGdfiy69oU%2FSYr%2Fk%2Beocheb22FwvDPw0OTpK8b3os60MHVkeihjm7qFLLyEm4oHwoLQZg3WL2Bgzw%2FG3fDSK470Il9M60Muzj%2BaKElkrEO8ySOz2vLK4SHh%2B6Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77248f6899f6b511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
teknikmark.com/template/js/jquery.js
104.21.7.142200 OK 0 B URL HTTP/2 teknikmark.com/template/js/jquery.js
IP 104.21.7.142:0
GET /template/js/jquery.js HTTP/1.1
Host: teknikmark.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heb.teknikmark.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 30 Nov 2022 15:19:14 GMT
content-type: application/javascript
last-modified: Fri, 11 Jan 2019 08:25:00 GMT
etag: W/"17ba6-57f2a6e556f00-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 4840
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WFz4WHxOapi%2FoGE0vmV5Y5xsaMiaeEe53s8iM42flR5%2BlU%2Fsh7hNKHVdoiro65ieb0Zi8T0lg%2BqeNgrDj%2BSDfE7xKsSjYi9BAWUuQ%2Fans%2F%2BIu94om53z%2BIcxm4fiqu1b3w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77248f6899f7b511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
get.optad360.io/sf/prebid6.13.0.js
143.204.55.44200 OK 0 B URL HTTP/2 get.optad360.io/sf/prebid6.13.0.js
IP 143.204.55.44:0
GET /sf/prebid6.13.0.js HTTP/1.1
Host: get.optad360.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heb.teknikmark.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Sun, 20 Nov 2022 01:21:33 GMT
last-modified: Wed, 02 Mar 2022 11:37:42 GMT
etag: W/"9880469287264dec1b2db80d6f0c4c98"
cache-control: public, max-age=360000000
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 1_6kHHBKamDuPz6rcZXcEk1I8iycX4wBZ0n2OImf_g1vpmiRAwiz2w==
age: 914261
X-Firefox-Spdy: h2
heb.teknikmark.com/2118-how-to-find-out-the-windows-license-key
104.21.7.142200 OK 0 B URL HTTP/2 heb.teknikmark.com/2118-how-to-find-out-the-windows-license-key
IP 104.21.7.142:0
GET /2118-how-to-find-out-the-windows-license-key HTTP/1.1
Host: heb.teknikmark.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Wed, 30 Nov 2022 15:19:13 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oGAD8QSluRYW5dMLeHwW4wIUlZ%2FD23WIGWTG9%2Ba3QaGTbsVeR3MI2MEW2ShywuiR9f5e%2FoEQ4qjX8aMOJS8k6hZXifwPF2wT2CMOV3e7wQmxJzJf6YdAVbGnjgGw6A0JtjNTa%2BA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77248f669f4fb511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
teknikmark.com/template/css/index3.css
104.21.7.142200 OK 0 B URL HTTP/2 teknikmark.com/template/css/index3.css
IP 104.21.7.142:0
GET /template/css/index3.css HTTP/1.1
Host: teknikmark.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heb.teknikmark.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 30 Nov 2022 15:19:14 GMT
content-type: text/css
last-modified: Fri, 11 Jan 2019 08:25:00 GMT
etag: W/"1e42-57f2a6e556f00-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 4840
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZkQfXfrj6YIY7c5TqbT5uNTXu7tjlUPC%2B21ohsuEzoNAhoQ4slCEnwPNZ9sE1so4YRMUbslO7J7%2FLE7%2BuQZ7afygXwp2BLmTjIxmmg%2FLLh%2Fc59fVtPwoyjImfWaoCB75sQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77248f6899f5b511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
teknikmark.com/template/css/index2.css
104.21.7.142200 OK 0 B URL HTTP/2 teknikmark.com/template/css/index2.css
IP 104.21.7.142:0
GET /template/css/index2.css HTTP/1.1
Host: teknikmark.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://heb.teknikmark.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 30 Nov 2022 15:19:14 GMT
content-type: text/css
last-modified: Fri, 11 Jan 2019 08:25:00 GMT
etag: W/"c80e-57f2a6e556f00-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 4840
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7z%2F%2FHC%2F4xfzfmM4XShqbljONI%2F8aSvO4rXSm1b5QNFGnaaDsoZidXB7yvBNaMb61L3Vnd0W02%2B2krHLm4hn1pKTLrB%2F4wB4MQFNq7MrtLKgYCF3AYFvpaVNEtZY3JyOhrw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77248f6899f4b511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2