gnula.nu/http:/gnula.nu/wp-content/uploads/2015/12/Deadpool_poster_latino.jpg'
185.178.208.130301 Moved Permanently 568 B URL HTTP/1.1 gnula.nu/http:/gnula.nu/wp-content/uploads/2015/12/Deadpool_poster_latino.jpg'
IP 185.178.208.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (564), with no line terminators
Hash 2761b98db33884ab29711096ab315edb
8cea6e53464aea178b72e06a906205d040f14ca5
9f7a07f69d9b9a5af186a79159ccea18935ab4103128ca967e3f3f8ae45fb3ee
GET /http:/gnula.nu/wp-content/uploads/2015/12/Deadpool_poster_latino.jpg' HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: ddos-guard
Date: Thu, 01 Dec 2022 21:09:57 GMT
Connection: keep-alive
Keep-Alive: timeout=60
Location: https://gnula.nu/http:/gnula.nu/wp-content/uploads/2015/12/Deadpool_poster_latino.jpg'
Content-Type: text/html; charset=utf8
Content-Length: 568
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13552
Expires: Fri, 02 Dec 2022 00:55:49 GMT
Date: Thu, 01 Dec 2022 21:09:57 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0c748388899e8a8d3680355da2ea5020
903c620cd137613daafb0da0508c37b2f4a67212
39eab80e022a9a1732872d9926b0ace80f818ec5c535e36a18b539ea63786fb2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1673
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 21:09:57 GMT
Last-Modified: Thu, 01 Dec 2022 20:42:04 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8349
Expires: Thu, 01 Dec 2022 23:29:06 GMT
Date: Thu, 01 Dec 2022 21:09:57 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 01 Dec 2022 20:18:09 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3108
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: i3k/+PyRM+dRLmXB2ZVP0AlfVaTRJnXcZW9teSl720J1s6bEyuTIbRoxROksSUDHx1nr0UWcftc=
x-amz-request-id: WAMKSH64CD5F49NM
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 01 Dec 2022 20:45:48 GMT
age: 1449
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dc73fa8fc37dc7bc795bbd44571b82b5
1497d73a23bdca4073f9149e18fdc3c04b82e9c4
67e5ecd86c5416b82a56f9ae467d283ca4a6d1599e9dca41a503e08adc0128dd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "67E5ECD86C5416B82A56F9AE467D283CA4A6D1599E9DCA41A503E08ADC0128DD"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=646
Expires: Thu, 01 Dec 2022 21:20:43 GMT
Date: Thu, 01 Dec 2022 21:09:57 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 21:09:57 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 01 Dec 2022 21:08:56 GMT
cache-control: public,max-age=3600
age: 61
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1f88399f3fdd89dbb9ca1229cb67143a
325c9dbfd932cf9a6fb9fab2dd8e27083f55a9a3
831ecd45dcd2d5ae2ae86cd63ea5e94ecd85281b7e51054af5df9a6386fb8d79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1720
Cache-Control: max-age=131131
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 21:09:58 GMT
Etag: "63886ea9-1d7"
Expires: Sat, 03 Dec 2022 09:35:29 GMT
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.149.203.40101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.149.203.40:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: pj1Rr1i2hH4LzRGvYFogDQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: K7QJZd5zoGLhEBYa0kSUl/2klNg=
gnula.nu/http:/gnula.nu/wp-content/uploads/2015/12/Deadpool_poster_latino.jpg'
185.178.208.130301 Moved Permanently 6.2 kB URL HTTP/2 gnula.nu/http:/gnula.nu/wp-content/uploads/2015/12/Deadpool_poster_latino.jpg'
IP 185.178.208.130:0
Hash 523060523e8538a5ce44511e3f6857f0
dfd9a769e7f8cbc18799af4180ce662570e5b51f
4295c27a0291af314f33273ae7a76d13b3556bb29e50d49cd7925169223fb8ba
GET /http:/gnula.nu/wp-content/uploads/2015/12/Deadpool_poster_latino.jpg' HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
set-cookie: __ddg1_=boHAnzw6TsiC9498ZavJ; Domain=.gnula.nu; HttpOnly; Path=/; Expires=Fri, 01-Dec-2023 21:09:57 GMT
date: Thu, 01 Dec 2022 21:09:57 GMT
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-redirect-by: WordPress
location: https://gnula.nu/http:/gnula.nu/wp-content/uploads/2015/12/Deadpool_poster_latino.jpg
content-encoding: br
vary: Accept-Encoding
X-Firefox-Spdy: h2
gnula.nu/wp-includes/css/dist/block-library/style.min.css
185.178.208.130200 OK 8.9 kB URL HTTP/2 gnula.nu/wp-includes/css/dist/block-library/style.min.css
IP 185.178.208.130:0
File type Unicode text, UTF-8 text, with very long lines (29677)
Hash c787c06ec6de64a26274c2335677bf93
61d65d871722227622a19026f4c546ec1819df14
3689099f7cfc2d806fe0660c9c031d1bffbd642b9c7c3f278192055c901dbdab
GET /wp-includes/css/dist/block-library/style.min.css HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/404
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 30 Nov 2022 15:00:28 GMT
content-type: text/css
last-modified: Wed, 14 Jul 2021 22:04:26 GMT
cache-control: max-age=604800
content-encoding: gzip
content-length: 8930
ddg-cache-status: HIT,HIT
etag: W/"60ef5f6a-e33b"
expires: Fri, 02 Dec 2022 17:49:03 GMT
age: 108570
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 188c50963e7939b1f26a31dbcb8c8200
859416e6148ea6618584e53604efcf072bb989cc
3a313cd3c1693a886bfbf6ffc6fbac78f87e6ded2b9a7749553444ada65ce36e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 21:09:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gnula.nu/wp-content/themes/charcoal2/scroller.js
185.178.208.130200 OK 1.3 kB URL HTTP/2 gnula.nu/wp-content/themes/charcoal2/scroller.js
IP 185.178.208.130:0
Hash 49649141cd196b9721ecf07427bcdca7
e795aa45688e2535e434306459edcddbffe46f9d
7b0e886aa44e09ba6527af5a96684339529a68d6387cbc965d011c6d866b025c
GET /wp-content/themes/charcoal2/scroller.js HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/404
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 25 Nov 2022 00:15:43 GMT
content-type: application/javascript
last-modified: Tue, 19 May 2020 23:50:09 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: W/"5ec470b1-400"
expires: Wed, 30 Nov 2022 17:48:29 GMT
age: 593655
content-encoding: br
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 3b7361145b0e8ea70f3899e2c29024ea
6245e9832748bad86646a6763960e7047e04c262
18206d942289cabf16a921f5845c68f02895bd4c14b7779a56d3667e88625520
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 21:09:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gnula.nu/img/404.png
185.178.208.130200 OK 43 kB IP 185.178.208.130:0
File type PNG image data, 670 x 417, 8-bit/color RGBA, non-interlaced\012- data
Hash b89565070d7eb7035aadf36126a7fb33
4c279bdffb5e6ab3c835f91e61a51737463c1dc5
6801664d70731f50b64ee4c7d00a693e8433c15496a362c516f1c24c4a8455bd
GET /img/404.png HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/404
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 01 Dec 2022 07:08:19 GMT
content-type: image/png
content-length: 43204
last-modified: Wed, 19 Mar 2014 13:59:32 GMT
etag: "5329a2c4-a8c4"
expires: Thu, 08 Dec 2022 07:08:19 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 50499
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
apis.google.com/js/plusone.js
172.217.21.174200 OK 21 kB URL HTTP/2 apis.google.com/js/plusone.js
IP 172.217.21.174:0
File type ASCII text, with very long lines (1279)
Hash 327d33b72373a953dc7ddef0c6463b48
2fd9b26cb459ff01c3a1dd3507f1c7484cce6ce4
1f9becca80520826519f7908eff9bc2cdf551f9afc5d2a276f9d3c4a55a0e79c
GET /js/plusone.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20984
date: Thu, 01 Dec 2022 21:09:58 GMT
expires: Thu, 01 Dec 2022 21:09:58 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "34fae0e5dab49917"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
gnula.nu/404
185.178.208.130404 Not Found 70 kB IP 185.178.208.130:0
Hash e869935120b8a23fd1d1be4c3a7cbcb9
4c74a17bcf69ddca31b4306d8414ca1a92f0908b
98b0672450aa64fa20de0b5f2afebee90f998547bb9462b643ba053da593a6e4
Analyzer Verdict Alert fortinet Malware
GET /404 HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 404 Not Found
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 01 Dec 2022 21:09:58 GMT
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://gnula.nu/wp-json/>; rel="https://api.w.org/"
content-encoding: gzip
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/12/A_Christmas_Proposal3.gif
185.178.208.130200 OK 6.0 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/12/A_Christmas_Proposal3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash 2aae52439631c45b3d7a0b0999b680d0
c7894829da138a68b9dde5bde6111e777b8e2b18
dcdf11d0604c32e3b6c83b49acb3e80de4dff8de2f40a630fe37efc9ff500338
GET /wp-content/uploads/2022/12/A_Christmas_Proposal3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 01 Dec 2022 16:14:41 GMT
content-type: image/gif
content-length: 6012
last-modified: Thu, 01 Dec 2022 16:10:53 GMT
etag: "6388d20d-177c"
expires: Thu, 08 Dec 2022 16:14:41 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 17717
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/12/Fly3.gif
185.178.208.130200 OK 5.6 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/12/Fly3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash 186bb477bb4c80dd3bf971e3c2afd716
2ce526e11718d48d17e604b223508e627dc890fa
8591017c0b3e1cbc547ffc56934ece47bdab81367828d4fa457c73be861d7c85
GET /wp-content/uploads/2022/12/Fly3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 01 Dec 2022 16:01:44 GMT
content-type: image/gif
content-length: 5572
last-modified: Thu, 01 Dec 2022 15:55:57 GMT
etag: "6388ce8d-15c4"
expires: Thu, 08 Dec 2022 16:01:44 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 18494
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/12/Action_Pack_Saves_Christmas3.gif
185.178.208.130200 OK 5.6 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/12/Action_Pack_Saves_Christmas3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash c05563f32b946f8aec6ca504e070db82
dc6e8bbd59840f47478d1d2b13cf2a97430b832f
3ecbd6a663afb4f76c7c0d0aace66d4d3772f9d31f997aa1104e1f3a5d7d2543
GET /wp-content/uploads/2022/12/Action_Pack_Saves_Christmas3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 01 Dec 2022 16:08:33 GMT
content-type: image/gif
content-length: 5579
last-modified: Thu, 01 Dec 2022 16:06:13 GMT
etag: "6388d0f5-15cb"
expires: Thu, 08 Dec 2022 16:08:33 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 18085
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/12/Huracan3.gif
185.178.208.130200 OK 4.0 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/12/Huracan3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash 1c8f66e7ed125099172ec23e41ad775b
9e6106ace6da5fe6767535007e6812ad6abffb47
dc82e3a64c6205b44e77f14f7cf31c9caa37b6530c4c52a03252a5f7563dd0fb
GET /wp-content/uploads/2022/12/Huracan3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 01 Dec 2022 15:53:35 GMT
content-type: image/gif
content-length: 4006
last-modified: Thu, 01 Dec 2022 15:48:05 GMT
etag: "6388ccb5-fa6"
expires: Thu, 08 Dec 2022 15:53:35 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 18983
ddg-cache-status: HIT,MISS
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/11/Du_som_er_i_himlen3.gif
185.178.208.130200 OK 5.1 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/11/Du_som_er_i_himlen3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash 96b3aaa21b2a66ff8173f4714c80c300
a2698f051e1798ac07c1444e14d29f80e8aee347
e8b05ff6dcd7dc282f87d73f1cc0067de1822b96db876453bfec053b63495e68
GET /wp-content/uploads/2022/11/Du_som_er_i_himlen3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Tue, 29 Nov 2022 15:44:24 GMT
content-type: image/gif
content-length: 5093
last-modified: Tue, 29 Nov 2022 15:39:12 GMT
etag: "638627a0-13e5"
expires: Tue, 06 Dec 2022 15:44:24 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 192334
ddg-cache-status: HIT,MISS
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/11/Le_patient3.gif
185.178.208.130200 OK 4.6 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/11/Le_patient3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash 25a14218f4079a0c23dd3a7858c11c66
fffa95e7387f7b66d3083f8df9e540b0ab5683cf
d035c413026017e267bd6a9e60889240a9dc446c1a5c7bc7b3aa46ee1ab04514
GET /wp-content/uploads/2022/11/Le_patient3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Tue, 29 Nov 2022 15:36:38 GMT
content-type: image/gif
content-length: 4597
last-modified: Tue, 29 Nov 2022 15:31:08 GMT
etag: "638625bc-11f5"
expires: Tue, 06 Dec 2022 15:36:38 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 192800
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
www.google.es/cse/brand?form=cse-search-box&lang=es
142.250.74.67301 Moved Permanently 237 B URL HTTP/2 www.google.es/cse/brand?form=cse-search-box&lang=es
IP 142.250.74.67:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash bda0dec939809d66ff8388fe5c716412
d768e1edcca0d64e15c1a26978d19c8fdfbd4e4f
334f05a39cdb64bac9f876dd2a2011649d08d578f6d751460c91ca294f3304cd
GET /cse/brand?form=cse-search-box&lang=es HTTP/1.1
Host: www.google.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
location: https://www.gstatic.com/prose/brandjs.js
x-content-type-options: nosniff
server: sffe
content-length: 237
x-xss-protection: 0
date: Thu, 01 Dec 2022 20:42:08 GMT
expires: Thu, 01 Dec 2022 21:12:08 GMT
cache-control: public, max-age=1800
content-type: text/html; charset=UTF-8
age: 1670
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/11/Confessions3.gif
185.178.208.130200 OK 5.4 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/11/Confessions3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash 532d08d9351e4fe424c5106d7fb00de3
d218e23e6574411c55cb70532622e0464b3e4811
612681fb176cc4c4df090cda57aeee5514a731b378eb49c269a028f89839cad8
GET /wp-content/uploads/2022/11/Confessions3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Tue, 29 Nov 2022 15:58:28 GMT
content-type: image/gif
content-length: 5424
last-modified: Tue, 29 Nov 2022 15:54:49 GMT
etag: "63862b49-1530"
expires: Tue, 06 Dec 2022 15:58:28 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 191490
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2021/11/La_fracture3.gif
185.178.208.130200 OK 5.1 kB URL HTTP/2 gnula.nu/wp-content/uploads/2021/11/La_fracture3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash 6071a88502aec64d4055e4be8a8a0dcc
896b3a7a3b28acd15cfcd9e62aa4a62a180d6f0f
be0a5e80eef5685a401a3b6b09514ef5d78481780588e6dbcf5b0efa7db01678
GET /wp-content/uploads/2021/11/La_fracture3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Tue, 29 Nov 2022 15:28:14 GMT
content-type: image/gif
content-length: 5104
last-modified: Mon, 29 Nov 2021 14:16:45 GMT
etag: "61a4e0cd-13f0"
expires: Tue, 06 Dec 2022 15:28:14 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 193304
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/09/Maneater3.gif
185.178.208.130200 OK 6.0 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/09/Maneater3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash 6284b65dbaf0fa7425647197881d4ca8
72348f0fafa5d7915243395b9d404aff390e5c8d
b82a79fa75b772146bbd26009c410df426685adffe0e8a67b3cd148d18a9d5e2
GET /wp-content/uploads/2022/09/Maneater3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Tue, 29 Nov 2022 14:57:50 GMT
content-type: image/gif
content-length: 6007
last-modified: Tue, 06 Sep 2022 15:21:18 GMT
etag: "6317656e-1777"
expires: Tue, 06 Dec 2022 14:57:50 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 195129
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/12/Lecciones_para_canallas3.gif
185.178.208.130200 OK 5.7 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/12/Lecciones_para_canallas3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash 41b41abc305b0ac37cb0d104b7de127e
075907355267f34ec6237be8e93185e016ec8bfa
884bae18afc90b83e06a704d165768e7efba2d54ba864cd0494ac67111005ec6
GET /wp-content/uploads/2022/12/Lecciones_para_canallas3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 01 Dec 2022 15:43:13 GMT
content-type: image/gif
content-length: 5660
last-modified: Thu, 01 Dec 2022 15:39:52 GMT
etag: "6388cac8-161c"
expires: Thu, 08 Dec 2022 15:43:13 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 19605
ddg-cache-status: HIT,MISS
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/11/El_Guau3.gif
185.178.208.130200 OK 5.5 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/11/El_Guau3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash 703f71c21df88e702091580c52dcc3a2
5f973992c1e8ee3d10673d6610568d4d87234c53
74b772e65b431050cc98e2af3486d5ef3b86046c67b73ebe019a205a5660a852
GET /wp-content/uploads/2022/11/El_Guau3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 28 Nov 2022 11:17:52 GMT
content-type: image/gif
content-length: 5518
last-modified: Mon, 28 Nov 2022 11:07:51 GMT
etag: "63849687-158e"
expires: Mon, 05 Dec 2022 11:17:52 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 294726
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/11/Christmas_No_Filter3.gif
185.178.208.130200 OK 5.8 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/11/Christmas_No_Filter3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash 8730a2f88e728bee53f89422874468ff
55ebf1fd48c38d7bb590152db9eda78344be09ec
841191ca3376abad3e714346c9e652b7e86154e3afac2eea7625e6505a7141cd
GET /wp-content/uploads/2022/11/Christmas_No_Filter3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 28 Nov 2022 12:56:38 GMT
content-type: image/gif
content-length: 5762
last-modified: Mon, 28 Nov 2022 12:51:59 GMT
etag: "6384aeef-1682"
expires: Mon, 05 Dec 2022 12:56:38 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 288800
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2021/12/The_Fight_Before_Christmas3.gif
185.178.208.130200 OK 5.3 kB URL HTTP/2 gnula.nu/wp-content/uploads/2021/12/The_Fight_Before_Christmas3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash b76f93d67bb1255b3c0d805642638ec8
b76ca1e73796420de299d29a5078170cb5d72cbf
5fc9839f5adf000196af632eb7925fe237d116931e73e2d1513dce445e534048
GET /wp-content/uploads/2021/12/The_Fight_Before_Christmas3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Tue, 29 Nov 2022 15:51:39 GMT
content-type: image/gif
content-length: 5340
last-modified: Mon, 20 Dec 2021 22:10:21 GMT
etag: "61c0ff4d-14dc"
expires: Tue, 06 Dec 2022 15:51:39 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 191899
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/11/A_Christmas_Gift_From_Bob3.gif
185.178.208.130200 OK 5.5 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/11/A_Christmas_Gift_From_Bob3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash a07c9589968797f4a819d11a4a3364a0
e912cae1bc728783583b0edd9f452cd26a6582fa
6d3d48ce18e31108f64b15ee6717e8c59165a66b2f79921e6a0554c8f5974b83
GET /wp-content/uploads/2022/11/A_Christmas_Gift_From_Bob3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 28 Nov 2022 10:54:21 GMT
content-type: image/gif
content-length: 5512
last-modified: Mon, 28 Nov 2022 10:52:29 GMT
etag: "638492ed-1588"
expires: Mon, 05 Dec 2022 10:54:21 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 296137
ddg-cache-status: HIT,MISS
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/11/Holiday_Harmony3.gif
185.178.208.130200 OK 6.1 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/11/Holiday_Harmony3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash bfe788053262070657aae84fbd190baf
32956f3f220c06c290b7b668e72437cac2eaed13
9ad72369ce41c95a4d1aa2c26a4d20185c5d519175f143ffcdcebe61660166de
GET /wp-content/uploads/2022/11/Holiday_Harmony3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sun, 27 Nov 2022 19:58:03 GMT
content-type: image/gif
content-length: 6112
last-modified: Sun, 27 Nov 2022 19:46:26 GMT
etag: "6383be92-17e0"
expires: Sun, 04 Dec 2022 19:58:03 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 349916
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/11/A_Christmas_Mystery3.gif
185.178.208.130200 OK 6.1 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/11/A_Christmas_Mystery3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash 3ff5f4128f0470f5ebfa8b4f03003c16
cc2ddb5d16d119848ccad6553a1492dd49294551
c5d27158f2caa59633d531235f0a93dea62aade6db06a815a056635778cb9c67
GET /wp-content/uploads/2022/11/A_Christmas_Mystery3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sun, 27 Nov 2022 22:52:35 GMT
content-type: image/gif
content-length: 6108
last-modified: Sun, 27 Nov 2022 20:17:52 GMT
etag: "6383c5f0-17dc"
expires: Sun, 04 Dec 2022 22:52:35 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 339443
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/05/Memory3.gif
185.178.208.130200 OK 4.8 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/05/Memory3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash b1e41beeebf90708a2250d0c8eeee306
5395cc5ca13449c9c42cb12ae40179858035f25f
110e09ac4ad7b1f93d4851482ca3d3b8ded3c1edb6347b47425413b7e6e8aff1
GET /wp-content/uploads/2022/05/Memory3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Tue, 29 Nov 2022 15:06:58 GMT
content-type: image/gif
content-length: 4846
last-modified: Sun, 08 May 2022 00:07:37 GMT
etag: "627709c9-12ee"
expires: Tue, 06 Dec 2022 15:06:58 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 194580
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/07/Sword_Art_Online_Progressive_Aria_of_a_Starless_Night3.gif
185.178.208.130200 OK 6.0 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/07/Sword_Art_Online_Progressive_Aria_of_a_Starless_Night3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash 0154183bacbbf9618e7208f401171c00
ecd0c0a4608bbfc6a0ff3931a0f7c268c5c75b9b
87589fc14738b3e5d73e03bcb653df92ec70d0dc45a4b1dd301c4daeb03a71d0
GET /wp-content/uploads/2022/07/Sword_Art_Online_Progressive_Aria_of_a_Starless_Night3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 30 Nov 2022 01:17:41 GMT
content-type: image/gif
content-length: 5973
last-modified: Thu, 14 Jul 2022 21:19:06 GMT
etag: "62d0884a-1755"
expires: Wed, 07 Dec 2022 01:17:41 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 157937
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/11/The_Woman_King4.gif
185.178.208.130200 OK 44 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/11/The_Woman_King4.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 215 x 269\012- data
Hash 3290f6c4940858e881cb31838fdfb891
6920d3ca37cf1681f8a2208004912ad73a58f4e6
66218423811df26cf62257ea934e4543de60c4d37b6ec1a00c6cee6bd6785031
GET /wp-content/uploads/2022/11/The_Woman_King4.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 30 Nov 2022 07:50:33 GMT
content-type: image/gif
content-length: 44520
last-modified: Wed, 23 Nov 2022 01:43:51 GMT
etag: "637d7ad7-ade8"
expires: Wed, 07 Dec 2022 07:50:33 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 134365
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/11/Nosotros_no_nos_mataremos_con_pistolas3.gif
185.178.208.130200 OK 4.5 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/11/Nosotros_no_nos_mataremos_con_pistolas3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash 122c8c6bdc0c5ab7ace02eb481a9c671
4c23f6e42b762f21a0d072f3dfabae3ca82b8694
14880143e8e7a758e6e1974eec71e35cdefa122876d1740001d35b335c335a7d
GET /wp-content/uploads/2022/11/Nosotros_no_nos_mataremos_con_pistolas3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Tue, 29 Nov 2022 14:55:30 GMT
content-type: image/gif
content-length: 4483
last-modified: Tue, 29 Nov 2022 14:46:00 GMT
etag: "63861b28-1183"
expires: Tue, 06 Dec 2022 14:55:30 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 195268
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/10/Meet_Cute3.gif
185.178.208.130200 OK 5.9 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/10/Meet_Cute3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash 16111763d68963194fdd26866cc57efc
f1b11c0b47a1473605100c4221ea232b2434d34e
bd48bf7383f1245827949d35b6cad9cffd9e17d7cd7c37611763a150deeea7f9
GET /wp-content/uploads/2022/10/Meet_Cute3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Tue, 29 Nov 2022 14:55:30 GMT
content-type: image/gif
content-length: 5900
last-modified: Tue, 11 Oct 2022 23:40:39 GMT
etag: "6345fef7-170c"
expires: Tue, 06 Dec 2022 14:55:30 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 195268
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/10/Lyle_Lyle_Crocodile3.gif
185.178.208.130200 OK 5.9 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/10/Lyle_Lyle_Crocodile3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash fb9b29914900b0e9ad8060743a0a5ad5
9bab6f093f0f915114e865222a9d6cc7fa4e5e92
c25ada41eccdad2304339754f4ca77c5711298dafc974943118f54c2fff54d7c
GET /wp-content/uploads/2022/10/Lyle_Lyle_Crocodile3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 30 Nov 2022 01:17:39 GMT
content-type: image/gif
content-length: 5922
last-modified: Sat, 22 Oct 2022 16:25:45 GMT
etag: "63541989-1722"
expires: Wed, 07 Dec 2022 01:17:39 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 157939
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/11/Under_Wraps-2m3.gif
185.178.208.130200 OK 6.1 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/11/Under_Wraps-2m3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash dd995f2960bc92b987b96ea362923291
6a59b3d5b0b35899f5753ec94f9bfe69a1f30fd7
bcc550187576ca3ff1dae85f934b6381f129bd1090caac121070748f58d98509
GET /wp-content/uploads/2022/11/Under_Wraps-2m3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 30 Nov 2022 01:01:10 GMT
content-type: image/gif
content-length: 6067
last-modified: Tue, 01 Nov 2022 22:33:28 GMT
etag: "63619eb8-17b3"
expires: Wed, 07 Dec 2022 01:01:10 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 158928
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 21:09:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 187be72e3a1102ab2a4e924aecb217cc
008b78c60e186e4897be19afc14e3010f3d416b6
3875154752bf6cdb2118e242143ba72294eeb3c21fb8a15397f13e68e69e82e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3875154752BF6CDB2118E242143BA72294EEB3C21FB8A15397F13E68E69E82E7"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6664
Expires: Thu, 01 Dec 2022 23:01:02 GMT
Date: Thu, 01 Dec 2022 21:09:58 GMT
Connection: keep-alive
gnula.nu/wp-content/uploads/2022/11/Black_Adam5.gif
185.178.208.130200 OK 34 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/11/Black_Adam5.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 215 x 269\012- data
Hash cc449cf16222716cab5d0792042b7c4f
60d4beb0a0fe383d8763287786892ee6c2cab395
dd45a20cf17c45159382a965ae8ae5f9f9db9b330d71048a9ca594dc559139ee
GET /wp-content/uploads/2022/11/Black_Adam5.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 30 Nov 2022 02:24:40 GMT
content-type: image/gif
content-length: 33635
last-modified: Wed, 23 Nov 2022 02:20:29 GMT
cache-control: max-age=604800
accept-ranges: bytes
etag: "637d836d-8363"
expires: Wed, 07 Dec 2022 02:24:40 GMT
age: 153918
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/11/Amsterdam4.gif
185.178.208.130200 OK 36 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/11/Amsterdam4.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 215 x 269\012- data
Hash 4b04ddab75cd6fad617b3081e254dcb1
e5b90f90cac25fecb04f1219e6dd041880cd05da
568a0bb4135b099a04325fbb7b83aa0e383151d07b48abc14dedaf0abbd1c9e4
GET /wp-content/uploads/2022/11/Amsterdam4.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Tue, 29 Nov 2022 17:44:48 GMT
content-type: image/gif
content-length: 35652
last-modified: Tue, 15 Nov 2022 17:40:37 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "6373cf15-8b44"
expires: Fri, 02 Dec 2022 15:53:24 GMT
age: 185110
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/10/Dont_Worry_Darling4.gif
185.178.208.130200 OK 33 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/10/Dont_Worry_Darling4.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 215 x 269\012- data
Hash 784bc6da36153189895b958af63c648c
5c0ae88ad3d2720921dfb6954809ba8ac5cfcbf3
81c22b8799def0e5e82cbc13abaf6643752c4f522c9eaa9c9edf1d79be3b58ad
GET /wp-content/uploads/2022/10/Dont_Worry_Darling4.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 25 Nov 2022 09:51:14 GMT
content-type: image/gif
content-length: 33362
last-modified: Wed, 26 Oct 2022 03:28:42 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "6358a96a-8252"
expires: Fri, 25 Nov 2022 12:36:51 GMT
age: 559124
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/11/My_Policeman4.gif
185.178.208.130200 OK 38 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/11/My_Policeman4.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 215 x 269\012- data
Hash ee49875136f6a4e0f36b1b090ce32bdf
5fb4e22a36354d52309bd32877f4d043eaa66a1f
0d0fa87c67b46606b66c108106059e35792c45f1727d28e592d8d77b149213e3
GET /wp-content/uploads/2022/11/My_Policeman4.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 28 Nov 2022 16:57:37 GMT
content-type: image/gif
content-length: 38299
last-modified: Mon, 07 Nov 2022 16:34:47 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "636933a7-959b"
expires: Sat, 03 Dec 2022 11:19:41 GMT
age: 274341
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/11/The_Guardians_of_the_Galaxy_Holiday_Special3.gif
185.178.208.130200 OK 6.1 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/11/The_Guardians_of_the_Galaxy_Holiday_Special3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash 1988137b91ec2b295d09b6da44d19250
cb3786235a4afa872818b42f11a8df44ffcc092c
414f86a0804fe42278070ea20e728aecec7bb3a6e1b0137fc101e6a2dc48e8e2
GET /wp-content/uploads/2022/11/The_Guardians_of_the_Galaxy_Holiday_Special3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 30 Nov 2022 01:10:00 GMT
content-type: image/gif
content-length: 6060
last-modified: Wed, 30 Nov 2022 01:08:06 GMT
etag: "6386acf6-17ac"
expires: Wed, 07 Dec 2022 01:10:00 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 158398
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/09/Beast2m4.gif
185.178.208.130200 OK 41 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/09/Beast2m4.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 215 x 269\012- data
Hash c15b04077a1988ceab4d1ea6905d7520
922c0aa0e66d16b61c058e81e6721f4ec7589de8
63e990da95df43fa16d4cd816e4f0b4f3078d6921c3094eab0af218ac118c91e
GET /wp-content/uploads/2022/09/Beast2m4.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sat, 26 Nov 2022 14:45:38 GMT
content-type: image/gif
content-length: 41074
last-modified: Thu, 08 Sep 2022 18:35:12 GMT
etag: "631a35e0-a072"
expires: Sat, 03 Dec 2022 14:45:38 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 455061
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/09/One_Way3.gif
185.178.208.130200 OK 5.9 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/09/One_Way3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash 55b72fe1f1d8e1846314fa1fcc87dea8
c1bfdd45a5e721e48399f585269a31d52a7014d8
6e90a7779701b8a95f079f9c3130fb6ca3f4f4dd3188311ca396ed89703f7762
GET /wp-content/uploads/2022/09/One_Way3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 01 Dec 2022 09:16:45 GMT
content-type: image/gif
content-length: 5861
last-modified: Mon, 19 Sep 2022 14:30:48 GMT
etag: "63287d18-16e5"
expires: Thu, 08 Dec 2022 09:16:45 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 42793
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/04/Alien_Sniperess3.gif
185.178.208.130200 OK 5.9 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/04/Alien_Sniperess3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash 75b11d4892ea988b5ff56b1ce2cbace4
eb6cbd3e52a5d8f48f41ecf579e77161406a1df7
5c456caafe5226c7c5a8790612f11b1dcafb7593b7221965493821903dafc050
GET /wp-content/uploads/2022/04/Alien_Sniperess3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 30 Nov 2022 08:29:59 GMT
content-type: image/gif
content-length: 5892
last-modified: Sun, 24 Apr 2022 14:36:21 GMT
etag: "62656065-1704"
expires: Wed, 07 Dec 2022 08:29:59 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 131999
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/10/Black_Adam3.gif
185.178.208.130200 OK 5.5 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/10/Black_Adam3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash f0815d060cd741cafab682ef66685ccd
de94b36510ecf2885830da3b98b22c4acaeda228
951a26bfb9bc27131224510fe3b08c2a3e95ab62e75add8acdbaf50b3f99b56a
GET /wp-content/uploads/2022/10/Black_Adam3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 30 Nov 2022 05:27:02 GMT
content-type: image/gif
content-length: 5534
last-modified: Fri, 21 Oct 2022 16:05:07 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "6352c333-159e"
expires: Thu, 01 Dec 2022 09:12:23 GMT
age: 142976
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/11/The_Visitor3.gif
185.178.208.130200 OK 5.8 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/11/The_Visitor3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash 1eb7a81e9491bd7780833a3d0672ee8f
06779becf1b6233fb09f6d902396c10778ebea65
25fa513dedd0a8240aa0f5964ea539e220b32b4ba44fded90a254e53f42c097b
GET /wp-content/uploads/2022/11/The_Visitor3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 28 Nov 2022 21:22:37 GMT
content-type: image/gif
content-length: 5802
last-modified: Tue, 15 Nov 2022 19:06:15 GMT
cache-control: max-age=604800
accept-ranges: bytes
etag: "6373e327-16aa"
expires: Mon, 05 Dec 2022 21:22:37 GMT
age: 258441
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/08/Heroes_de_barrio3.gif
185.178.208.130200 OK 4.2 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/08/Heroes_de_barrio3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash 1625270919acbbbd379d863032ead032
3371037a16245c21cb7115d1692c4ea11c36e604
1af653a6e03cef278b0014030130095200a5eef0c2d80a7867c387dc80867d6c
GET /wp-content/uploads/2022/08/Heroes_de_barrio3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 30 Nov 2022 20:38:11 GMT
content-type: image/gif
content-length: 4229
last-modified: Tue, 02 Aug 2022 15:34:13 GMT
cache-control: max-age=604800
accept-ranges: bytes
etag: "62e943f5-1085"
expires: Wed, 07 Dec 2022 20:38:11 GMT
age: 88307
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/07/Mr_Malcolms_List3.gif
185.178.208.130200 OK 5.8 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/07/Mr_Malcolms_List3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash 1ea5f12206607c6177d54ce8e8178a05
f4fa65805bf687f7e6755be57ed9a30582502680
a3df9c2bbf3b1d1887b0019333de473455bbbdf4044cc6634a43e17873dc54d6
GET /wp-content/uploads/2022/07/Mr_Malcolms_List3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 25 Nov 2022 02:24:29 GMT
content-type: image/gif
content-length: 5820
last-modified: Sat, 23 Jul 2022 17:23:30 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "62dc2e92-16bc"
expires: Wed, 30 Nov 2022 07:14:22 GMT
age: 585929
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/07/Cop_Secret3.gif
185.178.208.130200 OK 6.2 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/07/Cop_Secret3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash 6eaaa5ed44cfc32cbe2a66c2f0f88738
30e987d3d2dbdeeae32e717e7e8887db2faf603e
6b772380ef0f32dbd6109e98d60fa4d3d164f87039c179d7e85d8f448a1c2e42
GET /wp-content/uploads/2022/07/Cop_Secret3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 25 Nov 2022 16:25:56 GMT
content-type: image/gif
content-length: 6241
last-modified: Sun, 10 Jul 2022 22:18:51 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "62cb504b-1861"
expires: Wed, 30 Nov 2022 05:03:26 GMT
age: 535442
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/10/The_Woman_King3.gif
185.178.208.130200 OK 5.6 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/10/The_Woman_King3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash 6b21b5a7c2f695941e5081b6c5ea31ce
8b8012f9fd20d9f94cb1dd7350b6b4c42a0282bd
c762380096001a240b1bf07e458d3b6bb814e5c4a2447c866bd293a7fcf7a9b7
GET /wp-content/uploads/2022/10/The_Woman_King3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 30 Nov 2022 01:47:22 GMT
content-type: image/gif
content-length: 5570
last-modified: Fri, 07 Oct 2022 22:06:53 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "6340a2fd-15c2"
expires: Mon, 05 Dec 2022 20:46:12 GMT
age: 156156
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/10/Amsterdam3.gif
185.178.208.130200 OK 5.7 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/10/Amsterdam3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash e08d1bec5792451d510bf2efb80daadb
8be5a8f98a884d544e32934c1928fb2cc4f14e79
8af00b372faefda02acece4f341150f627021e3f51dbc69e9e5fbba1c6614778
GET /wp-content/uploads/2022/10/Amsterdam3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Tue, 29 Nov 2022 17:44:48 GMT
content-type: image/gif
content-length: 5709
last-modified: Sat, 08 Oct 2022 17:23:49 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,MISS
etag: "6341b225-164d"
expires: Tue, 06 Dec 2022 17:44:48 GMT
age: 185110
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 188c50963e7939b1f26a31dbcb8c8200
859416e6148ea6618584e53604efcf072bb989cc
3a313cd3c1693a886bfbf6ffc6fbac78f87e6ded2b9a7749553444ada65ce36e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 21:09:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 533f66ef53706466ce20dc9aebf11812
0c0d713d538eb224deeb9241917a117205f16cb2
8ce7b68022c847b59b9a132ada3a75eea73bb57bae4683901c8df08fa255ba79
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 21:09:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gnula.nu/wp-content/uploads/2022/08/Nope4.gif
185.178.208.130200 OK 41 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/08/Nope4.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 215 x 269\012- data
Hash 3938804975796ef88f10bfdc13098f7c
6c228c84d8867f44d5b61ce39dcdf7e5ae520aa8
385a0d28d4855873ad6f61d07464f23613249bad88579d60123392deb6bf3364
GET /wp-content/uploads/2022/08/Nope4.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 01 Dec 2022 14:04:56 GMT
content-type: image/gif
content-length: 40845
last-modified: Thu, 25 Aug 2022 17:12:40 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,MISS
etag: "6307ad88-9f8d"
expires: Thu, 08 Dec 2022 14:04:56 GMT
age: 25502
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/11/Bodies_Bodies_Bodies4.gif
185.178.208.130200 OK 36 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/11/Bodies_Bodies_Bodies4.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 215 x 269\012- data
Hash 609af1aca0b86df61decea3888097441
8d04bc59beaa1da770ebb5002cfc05d58f5553f2
aecdf6e59f70749c2be0a890a73f40750a149a20034de1ef850837b51d1453d6
GET /wp-content/uploads/2022/11/Bodies_Bodies_Bodies4.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 01 Dec 2022 08:05:23 GMT
content-type: image/gif
content-length: 35488
last-modified: Wed, 02 Nov 2022 05:15:08 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "6361fcdc-8aa0"
expires: Thu, 01 Dec 2022 15:09:08 GMT
age: 47075
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/10/Ticket_to_Paradise4.gif
185.178.208.130200 OK 40 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/10/Ticket_to_Paradise4.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 215 x 269\012- data
Hash 4a47cd3f95966d4db09b4fd2b2ab14d9
64ed404d8c68bd19665942fd8b240f1d79fdb875
c2df865684570f7a418c18f742ae6015c38da34b97b2bbb0c8d93ed705880797
GET /wp-content/uploads/2022/10/Ticket_to_Paradise4.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 30 Nov 2022 01:23:43 GMT
content-type: image/gif
content-length: 39962
last-modified: Wed, 26 Oct 2022 17:48:25 GMT
etag: "635972e9-9c1a"
expires: Wed, 07 Dec 2022 01:23:43 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 157575
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/11/Halloween_Ends5.gif
185.178.208.130200 OK 34 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/11/Halloween_Ends5.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 215 x 269\012- data
Hash f2dd6502043b71b245120730a5a17d4f
6f065d619730f0bccf081593f7897dc20a8fd5cd
e6cbf20a531d2fab7f96ffa775df952618075fcf48dd269f5617b9e88d308107
GET /wp-content/uploads/2022/11/Halloween_Ends5.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sat, 26 Nov 2022 07:39:55 GMT
content-type: image/gif
content-length: 34140
last-modified: Sat, 05 Nov 2022 06:08:36 GMT
etag: "6365fde4-855c"
expires: Sat, 03 Dec 2022 07:39:55 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 480603
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/11/Black_Panther_Wakanda_Forever_new.jpg
185.178.208.130200 OK 46 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/11/Black_Panther_Wakanda_Forever_new.jpg
IP 185.178.208.130:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 23.4 (Macintosh), datetime=2022:11:11 08:46:24], baseline, precision 8, 215x279, components 3\012- data
Hash cbdcc426447d906834ab0cb1f6839f4c
63c346a64a9bfe1c785f074da118685817162cda
f29c23376bb7749318f13a3f424bca07c279a84c320558cc70ce4e291ba02278
GET /wp-content/uploads/2022/11/Black_Panther_Wakanda_Forever_new.jpg HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 25 Nov 2022 16:22:25 GMT
content-type: image/jpeg
content-length: 45858
last-modified: Fri, 11 Nov 2022 13:46:34 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,MISS
etag: "636e523a-b322"
expires: Fri, 02 Dec 2022 16:22:25 GMT
age: 535653
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/02/In_the_Forest3.gif
185.178.208.130200 OK 4.8 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/02/In_the_Forest3.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 54 x 83\012- data
Hash 8c2a023a78634f35eec674641ac73f16
f9bdd3129d0497c1b09663f848b6d0db50d968fd
2bd0cb23775fa0da6bd30cd3ccf738318a8b5f206d3fd6b9e14464e7f8aabaac
GET /wp-content/uploads/2022/02/In_the_Forest3.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 25 Nov 2022 19:12:20 GMT
content-type: image/gif
content-length: 4809
last-modified: Fri, 11 Feb 2022 03:54:17 GMT
etag: "6205dde9-12c9"
expires: Fri, 02 Dec 2022 19:12:20 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 525459
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/10/Barbarian4.gif
185.178.208.130200 OK 42 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/10/Barbarian4.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 215 x 269\012- data
Hash 5aa098f15c8ac21cc203f05c75af0330
ee108a687a23dd4c0f349ea8b4f1ffe95b2d9e37
03f7d8ffe3833b47abf1eb36272f733a76046dce23af4d8788e5203edaa63095
GET /wp-content/uploads/2022/10/Barbarian4.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 30 Nov 2022 06:04:25 GMT
content-type: image/gif
content-length: 41791
last-modified: Wed, 26 Oct 2022 03:48:42 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "6358ae1a-a33f"
expires: Sat, 03 Dec 2022 12:04:58 GMT
age: 140733
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/08/Minions_The_Rise_of_Gru4.gif
185.178.208.130200 OK 40 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/08/Minions_The_Rise_of_Gru4.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 215 x 269\012- data
Hash e77f0b8630fddaa60f4af4a3a38b1224
7b49bd428fbc28c1ca7acac32ce6aca443053eab
ceb169c22fda9f4739637944673372e7d2d2476778075b689eda5f292cad951d
GET /wp-content/uploads/2022/08/Minions_The_Rise_of_Gru4.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 30 Nov 2022 11:24:29 GMT
content-type: image/gif
content-length: 40272
last-modified: Tue, 02 Aug 2022 14:00:46 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "62e92e0e-9d50"
expires: Sun, 04 Dec 2022 22:12:51 GMT
age: 121529
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/09/Three_Thousand_Years_of_Longing4.gif
185.178.208.130200 OK 40 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/09/Three_Thousand_Years_of_Longing4.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 215 x 269\012- data
Hash defa4b7e5b78b3f54bb63e7971fb128c
f9df4b5376e03cf9672efed4b0415d597b4b61da
11e203114231734a55a865581b268b738a7ff79cea4da8bc0750cca58bfb8366
GET /wp-content/uploads/2022/09/Three_Thousand_Years_of_Longing4.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 01 Dec 2022 14:07:24 GMT
content-type: image/gif
content-length: 39834
last-modified: Mon, 19 Sep 2022 19:00:03 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "6328bc33-9b9a"
expires: Sat, 03 Dec 2022 16:01:38 GMT
age: 25354
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/1.6/jquery.min.js
142.250.74.138200 OK 32 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.6/jquery.min.js
IP 142.250.74.138:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (32769)
Hash beb03c9ee6d13748648309584590d515
a491b316cdd4df32dabb7a3a1d85919681911dda
acec62a91cdd6d2b03731fcc7e988094b3c38c9269276f09f9a842e6433ee008
GET /ajax/libs/jquery/1.6/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 32222
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 27 Nov 2022 15:10:06 GMT
expires: Mon, 27 Nov 2023 15:10:06 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 367192
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/09/Fall5.gif
185.178.208.130200 OK 36 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/09/Fall5.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 215 x 269\012- data
Hash 9e1d07d1fcda9b4db2b23ffd054d6640
0e389380b0628fb2a99944804b88b7019370e65c
03be235a9ddabb7abf9b38eee6387311d1ba8aa398d0f8f74bbc89535fbbfc2b
GET /wp-content/uploads/2022/09/Fall5.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 28 Nov 2022 14:01:59 GMT
content-type: image/gif
content-length: 36342
last-modified: Fri, 02 Sep 2022 14:32:42 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "6312140a-8df6"
expires: Sat, 03 Dec 2022 08:55:13 GMT
age: 284879
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/07/Lightyear4.gif
185.178.208.130200 OK 33 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/07/Lightyear4.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 215 x 269\012- data
Hash bc414fdcadd43283ba463097b1de3d92
bff73ee95800371b3e50dee1fbdd691095dddd92
11232c7a182b06dd91a0d706fd48d0cea7fa9f3817ea606c368d1320cf0490b5
GET /wp-content/uploads/2022/07/Lightyear4.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Tue, 29 Nov 2022 22:16:57 GMT
content-type: image/gif
content-length: 33003
last-modified: Thu, 14 Jul 2022 16:51:11 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "62d0497f-80eb"
expires: Sat, 03 Dec 2022 12:05:05 GMT
age: 168781
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2021/09/Free_Guy5.gif
185.178.208.130200 OK 40 kB URL HTTP/2 gnula.nu/wp-content/uploads/2021/09/Free_Guy5.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 215 x 269\012- data
Hash a46cc3cd01e9889ea09d14ec81ad1fbe
d462507245493576e505040bf0de984f2e490a4f
652a376a1bef35a690e3ca8a3ad646f5d71d291b4e430f09a7f7589575e0244a
GET /wp-content/uploads/2021/09/Free_Guy5.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 30 Nov 2022 12:33:06 GMT
content-type: image/gif
content-length: 40539
last-modified: Wed, 29 Sep 2021 04:25:52 GMT
etag: "6153ead0-9e5b"
expires: Wed, 07 Dec 2022 12:33:06 GMT
cache-control: max-age=604800
accept-ranges: bytes
age: 117412
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2021/09/Dear_Evan_Hansen4.gif
185.178.208.130200 OK 33 kB URL HTTP/2 gnula.nu/wp-content/uploads/2021/09/Dear_Evan_Hansen4.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 215 x 269\012- data
Hash dce8ec7cdeee2deca8a5de066915e400
abb2f56e5f7c7a9c7d43762f73f2579d9fbc026d
3a7a5f3ce2f8e0930b9813442c60e2b04c701f713bb390061d424acf5560c3f1
GET /wp-content/uploads/2021/09/Dear_Evan_Hansen4.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 30 Nov 2022 17:25:46 GMT
content-type: image/gif
content-length: 33142
last-modified: Mon, 20 Sep 2021 02:11:32 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "6147edd4-8176"
expires: Wed, 07 Dec 2022 00:26:42 GMT
age: 99852
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 3b7361145b0e8ea70f3899e2c29024ea
6245e9832748bad86646a6763960e7047e04c262
18206d942289cabf16a921f5845c68f02895bd4c14b7779a56d3667e88625520
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 21:09:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
murkilyergots.com/gcgLKdwzr0hh/33424
23.109.248.141200 OK 26 B URL HTTP/1.1 murkilyergots.com/gcgLKdwzr0hh/33424
IP 23.109.248.141:0
File type ASCII text, with no line terminators
Hash 4e5d65669f8dcd928dad06adf883f025
d771713d758c3348dd7e5b38bb40c7935399ae46
0bebbf029fa045e4f462855e6c44edf8aaa36ded05b07a8ce456b67416d20c95
GET /gcgLKdwzr0hh/33424 HTTP/1.1
Host: murkilyergots.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 21:09:58 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://gnula.nu
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
Set-Cookie: GL_UI4=eJw9jd1OhDAYRIHy42aFOAkPsI9QVBAvvfEVvCSl%2FcC60G5KXfTtbUz07mTmTCaKoqSuEF9zBvYpWpzU1HSS9428bx9417WPgtM09s9j%2F9Q1gvc46G3wYlzIp7idyZDTcpBWUYm7UP0lZ2N3kyIbnTCqRLYGYylRjM7uG7maITViJRSv2tFkv4IhPqwDa3gbWJvAMUdit5pVBxRv2qiwrI5IGl6VeYTjZRF%2Bsm4dtMpjZLMTihC%2F4EYKT7N13ygUbWdvL4Bd1PDv%2Fx6zveHIFV21JGTWv5P7AaoaStk%3D; expires=Fri, 02-Dec-2022 21:09:58 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJxNjM0KgkAYRW0qSwrjQg%2FQC2T%2Fi7bVMnThAwxmXzFg84kz%2FdjTpwbR5nI4cK7jOGLsQ6gcw%2B0i2M6D9TJYbNZoX4khwgjDlO%2FaFqXUyY3ghlw8kxJuQVfFGmK%2BwuDLMuUzoRtG0z%2FXRIPIZDzZ1z8lOqmqt1bwav52vaprXFuZHP4uU69JzNndVi8GniYrTU50hrdPThnNDvER%2Fs82H24LfWVkXvCrrHhk1Y3erEny5WLIVqr1cMUHDLFHVQ%3D%3D; expires=Fri, 02-Dec-2022 21:09:58 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
gnula.nu/wp-content/uploads/2021/01/The_Croods_A_New_Age5.gif
185.178.208.130200 OK 27 kB URL HTTP/2 gnula.nu/wp-content/uploads/2021/01/The_Croods_A_New_Age5.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 215 x 269\012- data
Hash 86a76e72f8f96c44d0347bdda79d056d
8007d4a92aafc7a13956c4cbb02d3a0020cb6026
cf784b3c1dda6a1870ccfa4902b760f53a063f44e8f3d7374d1db1852938c2c2
GET /wp-content/uploads/2021/01/The_Croods_A_New_Age5.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Mon, 28 Nov 2022 13:20:55 GMT
content-type: image/gif
content-length: 27011
last-modified: Sat, 02 Jan 2021 14:04:12 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "5ff07d5c-6983"
expires: Thu, 01 Dec 2022 08:50:18 GMT
age: 287343
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2021/01/Promising_Young_Woman6.gif
185.178.208.130200 OK 31 kB URL HTTP/2 gnula.nu/wp-content/uploads/2021/01/Promising_Young_Woman6.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 215 x 269\012- data
Hash 4f4d7e501b001996cf36e22084e3dc36
5a20254f715aea63e3af30da9e5968660cdb5b8e
f1f91761b558400b145c7672943ae3e766e3491b5015e6a120bc260528e6dba7
GET /wp-content/uploads/2021/01/Promising_Young_Woman6.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 01 Dec 2022 10:44:10 GMT
content-type: image/gif
content-length: 31093
last-modified: Fri, 15 Jan 2021 01:35:34 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "6000f166-7975"
expires: Thu, 01 Dec 2022 19:35:37 GMT
age: 37548
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2022/11/Black_Adam4.gif
185.178.208.130200 OK 33 kB URL HTTP/2 gnula.nu/wp-content/uploads/2022/11/Black_Adam4.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 215 x 269\012- data
Hash eeb25bdd8c538037b393efbb6cbf9ec7
0f2013a4a0f5ff16b71dd49191727b6ec79f9204
487eb2a86630f85ced8acde914c76eae0cfce18dd8f8e8dcd6b4f832bfa09590
GET /wp-content/uploads/2022/11/Black_Adam4.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 30 Nov 2022 05:27:01 GMT
content-type: image/gif
content-length: 32715
last-modified: Wed, 16 Nov 2022 04:54:50 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "63746d1a-7fcb"
expires: Thu, 01 Dec 2022 09:12:27 GMT
age: 142977
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2021/05/Chaos_Walking5.gif
185.178.208.130200 OK 36 kB URL HTTP/2 gnula.nu/wp-content/uploads/2021/05/Chaos_Walking5.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 215 x 269\012- data
Hash 8cbe83232e067e85f193643cff4733db
0b6476a4dbf52899cf9dc3b1b36743cfafcbbfa0
416115705b0e961e14f589b577a4b9096cf4c8bdb5f31ca3edb61b90b4947cac
GET /wp-content/uploads/2021/05/Chaos_Walking5.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Fri, 25 Nov 2022 04:47:54 GMT
content-type: image/gif
content-length: 35478
last-modified: Sat, 08 May 2021 22:27:16 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "60971044-8a96"
expires: Thu, 01 Dec 2022 14:03:15 GMT
age: 577324
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a77f62f0fd1ec8d075b0aa9f43940bcc
9d32a64a96ca4b522b286ed5f87f7e43baaa587f
74f68f9be470497e2d7562847f771f827459b39bf2afdce3dc846004d968a02d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "74F68F9BE470497E2D7562847F771F827459B39BF2AFDCE3DC846004D968A02D"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12947
Expires: Fri, 02 Dec 2022 00:45:45 GMT
Date: Thu, 01 Dec 2022 21:09:58 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 21:09:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 21:09:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
hangersbozal.com/flRBO2UBwE6d/27199
23.109.82.119200 OK 26 B URL HTTP/1.1 hangersbozal.com/flRBO2UBwE6d/27199
IP 23.109.82.119:0
File type ASCII text, with no line terminators
Hash 4e5d65669f8dcd928dad06adf883f025
d771713d758c3348dd7e5b38bb40c7935399ae46
0bebbf029fa045e4f462855e6c44edf8aaa36ded05b07a8ce456b67416d20c95
GET /flRBO2UBwE6d/27199 HTTP/1.1
Host: hangersbozal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 21:09:59 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://gnula.nu
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
Set-Cookie: GL_UI4=eJw9jd1OhDAYRIHy42aFOAkPsI9QVBAvvfEVvCSl%2FcC60G5KXfTtbUz07mTmTCaKoqSuEF9zBvYpWpzU1HSS9428bx9417WPgtM09s9j%2F9Q1gvc46G3wYlzIp7idyZDTcpBWUYm7UP0lZ2N3kyIbnTCqRLYGYylRjM7uG7maITViJRSv2tFkv4IhPqwDa3gbWJvAMUdit5pVBxRv2qiwrI5IGl6VeYTjZRF%2Bsm4dtMpjZLMTihC%2F4EYKT7N13ygUbWdvL4Bd1PDv%2Fx6zveHIFV21JGTWv5P7AaoaStk%3D; expires=Fri, 02-Dec-2022 21:09:59 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJxNjM0KgkAYRW0qSwrjQg%2FQC2T%2Fi7bVMnThAwxmXzFg84kz%2FdjTpwbR5nI4cK7jOGLsQ6gcw%2B0i2M6D9TJYbNZoX4khwgjDlO%2FaFqXUyY3ghlw8kxJuQVfFGmK%2BwuDLMuUzoRtG0z%2FXRIPIZDzZ1z8lOqmqt1bwav52vaprXFuZHP4uU69JzNndVi8GniYrTU50hrdPThnNDvER%2Fs82H24LfWVkXvCrrHhk1Y3erEny5WLIVqr1cMUHDLFHVQ%3D%3D; expires=Fri, 02-Dec-2022 21:09:59 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
www.gstatic.com/prose/brandjs.js
142.250.74.99200 OK 5.8 kB URL HTTP/2 www.gstatic.com/prose/brandjs.js
IP 142.250.74.99:0
File type ASCII text, with very long lines (1352)
Hash 10aa07ab4f7de5535f4cafe167ca4fa7
6c804574a29f9d8a77ed2823a7879e56dbc42c22
d111484a9bceee10b129b20ebd4ead4639b5d7dd78117522249195fb84db3cf0
GET /prose/brandjs.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gnula.nu/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/prose-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="prose-team"
report-to: {"group":"prose-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/prose-team"}]}
content-length: 5807
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 18:10:36 GMT
expires: Fri, 02 Dec 2022 18:10:36 GMT
cache-control: public, max-age=86400
age: 10763
last-modified: Tue, 06 Apr 2021 15:14:29 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
gnula.nu/wp-content/themes/charcoal2/images/li2.gif
185.178.208.130200 OK 2.0 kB URL HTTP/2 gnula.nu/wp-content/themes/charcoal2/images/li2.gif
IP 185.178.208.130:0
File type GIF image data, version 89a, 210 x 25\012- data
Hash dd9cca90bdfe16a9a85b6e46f57bb97f
c1a797f881f789f111df30455369e05439856211
54f6772dc8d1466e269ea4da0435d09751b740226bcb57e336abf066459e484a
GET /wp-content/themes/charcoal2/images/li2.gif HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/wp-content/themes/charcoal2/style.css
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 30 Nov 2022 19:16:38 GMT
content-type: image/gif
content-length: 2043
last-modified: Tue, 19 May 2020 23:50:09 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "5ec470b1-7fb"
expires: Wed, 07 Dec 2022 19:00:31 GMT
age: 93201
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 21:09:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
hangersbozal.com/flRBO2UBwE6d/27199
23.109.82.119200 OK 26 B URL HTTP/1.1 hangersbozal.com/flRBO2UBwE6d/27199
IP 23.109.82.119:0
File type ASCII text, with no line terminators
Hash 4e5d65669f8dcd928dad06adf883f025
d771713d758c3348dd7e5b38bb40c7935399ae46
0bebbf029fa045e4f462855e6c44edf8aaa36ded05b07a8ce456b67416d20c95
GET /flRBO2UBwE6d/27199 HTTP/1.1
Host: hangersbozal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/
Cookie: GL_UI4=eJw9jd1OhDAYRIHy42aFOAkPsI9QVBAvvfEVvCSl%2FcC60G5KXfTtbUz07mTmTCaKoqSuEF9zBvYpWpzU1HSS9428bx9417WPgtM09s9j%2F9Q1gvc46G3wYlzIp7idyZDTcpBWUYm7UP0lZ2N3kyIbnTCqRLYGYylRjM7uG7maITViJRSv2tFkv4IhPqwDa3gbWJvAMUdit5pVBxRv2qiwrI5IGl6VeYTjZRF%2Bsm4dtMpjZLMTihC%2F4EYKT7N13ygUbWdvL4Bd1PDv%2Fx6zveHIFV21JGTWv5P7AaoaStk%3D; GL_GI10=eJxNjM0KgkAYRW0qSwrjQg%2FQC2T%2Fi7bVMnThAwxmXzFg84kz%2FdjTpwbR5nI4cK7jOGLsQ6gcw%2B0i2M6D9TJYbNZoX4khwgjDlO%2FaFqXUyY3ghlw8kxJuQVfFGmK%2BwuDLMuUzoRtG0z%2FXRIPIZDzZ1z8lOqmqt1bwav52vaprXFuZHP4uU69JzNndVi8GniYrTU50hrdPThnNDvER%2Fs82H24LfWVkXvCrrHhk1Y3erEny5WLIVqr1cMUHDLFHVQ%3D%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 21:09:59 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://gnula.nu
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
murkilyergots.com/gcgLKdwzr0hh/33424
23.109.248.141200 OK 26 B URL HTTP/1.1 murkilyergots.com/gcgLKdwzr0hh/33424
IP 23.109.248.141:0
File type ASCII text, with no line terminators
Hash 4e5d65669f8dcd928dad06adf883f025
d771713d758c3348dd7e5b38bb40c7935399ae46
0bebbf029fa045e4f462855e6c44edf8aaa36ded05b07a8ce456b67416d20c95
GET /gcgLKdwzr0hh/33424 HTTP/1.1
Host: murkilyergots.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/
Cookie: GL_UI4=eJw9jd1OhDAYRIHy42aFOAkPsI9QVBAvvfEVvCSl%2FcC60G5KXfTtbUz07mTmTCaKoqSuEF9zBvYpWpzU1HSS9428bx9417WPgtM09s9j%2F9Q1gvc46G3wYlzIp7idyZDTcpBWUYm7UP0lZ2N3kyIbnTCqRLYGYylRjM7uG7maITViJRSv2tFkv4IhPqwDa3gbWJvAMUdit5pVBxRv2qiwrI5IGl6VeYTjZRF%2Bsm4dtMpjZLMTihC%2F4EYKT7N13ygUbWdvL4Bd1PDv%2Fx6zveHIFV21JGTWv5P7AaoaStk%3D; GL_GI10=eJxNjM0KgkAYRW0qSwrjQg%2FQC2T%2Fi7bVMnThAwxmXzFg84kz%2FdjTpwbR5nI4cK7jOGLsQ6gcw%2B0i2M6D9TJYbNZoX4khwgjDlO%2FaFqXUyY3ghlw8kxJuQVfFGmK%2BwuDLMuUzoRtG0z%2FXRIPIZDzZ1z8lOqmqt1bwav52vaprXFuZHP4uU69JzNndVi8GniYrTU50hrdPThnNDvER%2Fs82H24LfWVkXvCrrHhk1Y3erEny5WLIVqr1cMUHDLFHVQ%3D%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 21:09:59 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://gnula.nu
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
gnula.nu/wp-content/uploads/2014/04/heada.jpg
185.178.208.130200 OK 90 kB URL HTTP/2 gnula.nu/wp-content/uploads/2014/04/heada.jpg
IP 185.178.208.130:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 Windows, datetime=2012:10:22 16:36:42], progressive, precision 8, 1200x116, components 3\012- data
Hash 50f9a92c99bb8560a4108909327f1314
3b964b1dd35ae34c5c0bbc931a3e650e47546061
da7095ec43fb09c4c5fde2546ac40a15fca9ad785a44a5bd00cf1963128243ac
GET /wp-content/uploads/2014/04/heada.jpg HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Tue, 29 Nov 2022 13:50:50 GMT
content-type: image/jpeg
content-length: 89782
last-modified: Wed, 20 May 2020 00:18:30 GMT
cache-control: max-age=604800
accept-ranges: bytes
etag: "5ec47756-15eb6"
expires: Tue, 06 Dec 2022 13:50:50 GMT
age: 199150
ddg-cache-status: HIT,HIT
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2014/04/headb.jpg
185.178.208.130200 OK 46 kB URL HTTP/2 gnula.nu/wp-content/uploads/2014/04/headb.jpg
IP 185.178.208.130:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 Windows, datetime=2012:10:22 16:48:18], progressive, precision 8, 1200x65, components 3\012- data
Hash a464117e8d7a6e49becab8e33d3ef73c
39d4580fb9e397dc824075dc0100a5973ca4e2a7
b158e64c80b09edb16ca4ad107d62dbf4aa81e5bb684bd81dbdfb38447b2f241
GET /wp-content/uploads/2014/04/headb.jpg HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Sun, 27 Nov 2022 16:25:27 GMT
content-type: image/jpeg
content-length: 45487
last-modified: Wed, 20 May 2020 00:18:31 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,MISS
etag: "5ec47757-b1af"
expires: Sun, 04 Dec 2022 16:25:27 GMT
age: 362673
X-Firefox-Spdy: h2
gnula.nu/wp-content/themes/charcoal2/images/footer.jpg
185.178.208.130200 OK 12 kB URL HTTP/2 gnula.nu/wp-content/themes/charcoal2/images/footer.jpg
IP 185.178.208.130:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS5 Windows, datetime=2012:10:22 19:48:35], progressive, precision 8, 1200x72, components 3\012- data
Hash 2c6aad12cf0fdab93b1e0a1829e16e32
0920b41cd4d2f0f2b8fb42d992dfdddbc51ea67f
ab6ff958174c2bbf87bebd765f638b90904f63f31c85ce3e0159b67ca489d3b5
GET /wp-content/themes/charcoal2/images/footer.jpg HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/wp-content/themes/charcoal2/style.css
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 30 Nov 2022 17:25:46 GMT
content-type: image/jpeg
content-length: 11906
last-modified: Tue, 19 May 2020 23:50:09 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "5ec470b1-2e82"
expires: Wed, 07 Dec 2022 00:26:43 GMT
age: 99853
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 21412971a3b7926162a2950c9703ac8b
5570b244815f3e5e33ed361da246064718550be3
800e04c790cdc91d9b1f0a8d572e1f42d454071fdd176795c4ce6d7cb9fc9263
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "800E04C790CDC91D9B1F0A8D572E1F42D454071FDD176795C4CE6D7CB9FC9263"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21576
Expires: Fri, 02 Dec 2022 03:09:35 GMT
Date: Thu, 01 Dec 2022 21:09:59 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 71051c57b5b047bd11a873d032a4f28f
acba394c09064359c0933e480626b5d4a2177e9f
eeaaff8b246df4ce669e53d866edaf351b1c5348cd713cef632d2039605cd867
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EEAAFF8B246DF4CE669E53D866EDAF351B1C5348CD713CEF632D2039605CD867"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13542
Expires: Fri, 02 Dec 2022 00:55:41 GMT
Date: Thu, 01 Dec 2022 21:09:59 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 71051c57b5b047bd11a873d032a4f28f
acba394c09064359c0933e480626b5d4a2177e9f
eeaaff8b246df4ce669e53d866edaf351b1c5348cd713cef632d2039605cd867
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EEAAFF8B246DF4CE669E53D866EDAF351B1C5348CD713CEF632D2039605CD867"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13542
Expires: Fri, 02 Dec 2022 00:55:41 GMT
Date: Thu, 01 Dec 2022 21:09:59 GMT
Connection: keep-alive
rilelogicbuy.com/flUTNX3mFJP/27199
172.255.6.226200 OK 26 B URL HTTP/1.1 rilelogicbuy.com/flUTNX3mFJP/27199
IP 172.255.6.226:0
File type ASCII text, with no line terminators
Hash 4e5d65669f8dcd928dad06adf883f025
d771713d758c3348dd7e5b38bb40c7935399ae46
0bebbf029fa045e4f462855e6c44edf8aaa36ded05b07a8ce456b67416d20c95
GET /flUTNX3mFJP/27199 HTTP/1.1
Host: rilelogicbuy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 01 Dec 2022 21:09:59 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://gnula.nu
Access-Control-Allow-Headers: content-type, megageocheckolololo, x-forwarded-for
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET, POST, OPTIONS
Set-Cookie: GL_UI4=eJw9jd1OhDAYRIHy42aFOAkPsI9QVBAvvfEVvCSl%2FcC60G5KXfTtbUz07mTmTCaKoqSuEF9zBvYpWpzU1HSS9428bx9417WPgtM09s9j%2F9Q1gvc46G3wYlzIp7idyZDTcpBWUYm7UP0lZ2N3kyIbnTCqRLYGYylRjM7uG7maITViJRSv2tFkv4IhPqwDa3gbWJvAMUdit5pVBxRv2qiwrI5IGl6VeYTjZRF%2Bsm4dtMpjZLMTihC%2F4EYKT7N13ygUbWdvL4Bd1PDv%2Fx6zveHIFV21JGTWv5P7AaoaStk%3D; expires=Fri, 02-Dec-2022 21:09:59 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJxNjM0KgkAYRW0qSwrjQg%2FQC2T%2Fi7bVMnThAwxmXzFg84kz%2FdjTpwbR5nI4cK7jOGLsQ6gcw%2B0i2M6D9TJYbNZoX4khwgjDlO%2FaFqXUyY3ghlw8kxJuQVfFGmK%2BwuDLMuUzoRtG0z%2FXRIPIZDzZ1z8lOqmqt1bwav52vaprXFuZHP4uU69JzNndVi8GniYrTU50hrdPThnNDvER%2Fs82H24LfWVkXvCrrHhk1Y3erEny5WLIVqr1cMUHDLFHVQ%3D%3D; expires=Fri, 02-Dec-2022 21:09:59 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff
grunoaph.net/tag.min.js
139.45.197.238200 OK 23 kB IP 139.45.197.238:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 1485db79cf52f5b8572d2febb3439125
eb9589a69ff36eb48b444db8c009c852c83d7ab3
98bfa49689e1f05d3c83aa1d1db3e939d6eb87670da92cf8ef2be458030723fd
Analyzer Verdict Alert quad9 Sinkholed
GET /tag.min.js HTTP/1.1
Host: grunoaph.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 21:09:59 GMT
content-type: text/javascript; charset=utf-8
content-length: 23393
content-encoding: br
x-trace-id: acb50ec5dfd9feaafe8f29fbffe6dd26
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
accept-ranges: bytes
last-modified: Thu, 01 Dec 2022 13:59:29 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
gnula.nu/404
185.178.208.130404 Not Found 0 B IP 185.178.208.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
HEAD /404 HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/404
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 01 Dec 2022 21:09:59 GMT
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://gnula.nu/wp-json/>; rel="https://api.w.org/"
content-encoding: gzip
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Thu, 01 Dec 2022 20:41:08 GMT
expires: Thu, 01 Dec 2022 22:41:08 GMT
cache-control: public, max-age=7200
age: 1731
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
gnula.nu/wp-content/uploads/2015/06/natsu_incono_gnula.jpg
185.178.208.130200 OK 2.8 kB URL HTTP/2 gnula.nu/wp-content/uploads/2015/06/natsu_incono_gnula.jpg
IP 185.178.208.130:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 59x45, components 3\012- data
Hash 00a0e9802138dd13d3433dc8a8892dc5
27f4b2b80e9fc682d63953d08ef14457dd8ae6ac
ad0ebb72ed8394e48ffaf5ef59244ccfe0f5af7a43df06fd7061b068f4a91df2
GET /wp-content/uploads/2015/06/natsu_incono_gnula.jpg HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 01 Dec 2022 16:30:03 GMT
content-type: image/jpeg
content-length: 2761
last-modified: Wed, 20 May 2020 00:19:16 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: "5ec47784-ac9"
expires: Thu, 08 Dec 2022 15:46:02 GMT
age: 16796
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 16c3ad4a2bc7f419fb354b37778f8b2f
d193a1336556dcf6b4975a057e7c849037eef0ff
5993deb5a53b2e844b9027a6b6906c718f6e9f69c27388199c4343a80ef067f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 21:09:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/cse/static/images/1x/es/branding.png
142.250.74.132200 OK 1.4 kB URL HTTP/2 www.google.com/cse/static/images/1x/es/branding.png
IP 142.250.74.132:0
File type PNG image data, 132 x 15, 8-bit/color RGBA, non-interlaced\012- data
Hash 5cde6b1e2022536bb6bad42206b592e6
d5f8b090cdf01d307543e4adc439c5b450725ef6
6034e5ee0510f90b538cb59205702151396dda15fc431432b7fc95e4ecde8886
GET /cse/static/images/1x/es/branding.png HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/prose-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="prose-team"
report-to: {"group":"prose-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/prose-team"}]}
content-length: 1404
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 16:59:21 GMT
expires: Fri, 01 Dec 2023 16:59:21 GMT
cache-control: public, max-age=31536000
age: 15038
last-modified: Mon, 25 May 2020 08:30:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9caeefc49be26de4b50c14df1aace81f
ef836496e49f843f0e4c2dc991c314aad13f0f2e
83203278dadec9319a72ccb142c413696d8bd09a25f1b6c8d1edef20405e90f0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "83203278DADEC9319A72CCB142C413696D8BD09A25F1B6C8D1EDEF20405E90F0"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12378
Expires: Fri, 02 Dec 2022 00:36:17 GMT
Date: Thu, 01 Dec 2022 21:09:59 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash a40e191e2c32caa23c7ec1abea39e991
b03456fefb0156a48fae623cdc3c444c44d2481e
23abf43db4e7fafcd42f2114b823179fa4119c04f317cd0ee8c395e0688778cd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6166
Cache-Control: max-age=132705
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 21:09:59 GMT
Etag: "63886372-117"
Expires: Sat, 03 Dec 2022 10:01:44 GMT
Last-Modified: Thu, 01 Dec 2022 08:18:58 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 279
my.rtmark.net/gid.js?userId=ef57120cbef04176a4cd2fd9b1dceb79
139.45.195.8200 OK 65 B URL HTTP/2 my.rtmark.net/gid.js?userId=ef57120cbef04176a4cd2fd9b1dceb79
IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash 2736ef31a4b39332bac22ac911c6feb0
465a817e2b8eb42fe6b8ff6ed27d65791a75024f
d57b14f4a645f0ba3801133afc51d71238f59c68dbfa2053e0a8e8cf82802331
GET /gid.js?userId=ef57120cbef04176a4cd2fd9b1dceb79 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gnula.nu
Connection: keep-alive
Referer: https://gnula.nu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 21:09:59 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://gnula.nu
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=ef57120cbef04176a4cd2fd9b1dceb79; expires=Fri, 01 Dec 2023 21:09:59 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash a40e191e2c32caa23c7ec1abea39e991
b03456fefb0156a48fae623cdc3c444c44d2481e
23abf43db4e7fafcd42f2114b823179fa4119c04f317cd0ee8c395e0688778cd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6166
Cache-Control: max-age=132705
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 21:09:59 GMT
Etag: "63886372-117"
Expires: Sat, 03 Dec 2022 10:01:44 GMT
Last-Modified: Thu, 01 Dec 2022 08:18:58 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 279
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12332
Expires: Fri, 02 Dec 2022 00:35:31 GMT
Date: Thu, 01 Dec 2022 21:09:59 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12332
Expires: Fri, 02 Dec 2022 00:35:31 GMT
Date: Thu, 01 Dec 2022 21:09:59 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12332
Expires: Fri, 02 Dec 2022 00:35:31 GMT
Date: Thu, 01 Dec 2022 21:09:59 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12332
Expires: Fri, 02 Dec 2022 00:35:31 GMT
Date: Thu, 01 Dec 2022 21:09:59 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 26d6dffbf400da4803a2e76e2a8ef2f8
2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8
04c6e31623fe48cbe83dc91635bfa47b337590f18919995b08d5bde27e929e03
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F600016d1-5abb-4a6c-996a-933a8d4bc6df.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8740
x-amzn-requestid: 4823cf63-98eb-40d3-bb8b-e09cd2262f36
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP7SqHjYIAMF8xw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63830c10-316b213c33ce9bc2355c0900;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:04:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tK4wl-g5kcUhVFE3iZGILhZhZSsaMzQD9JTBHj1JXV95yXs_e3gMGw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 12:31:43 GMT
age: 31096
etag: "2e62f9ed8f5e7b2f888a73320dd98b0cda9303b8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc2b4ec6-0955-4089-983c-0abf7fd13bf2.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc2b4ec6-0955-4089-983c-0abf7fd13bf2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e1e6b6ba4f82221b41c3d9129008c76d
2f9532d698b4c28df23e18bbb66399ec776d5b9f
218c6f41a16e6087c611d4db5784a7cc1d027084d0bf2bd6dc3843ee5dfd560f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc2b4ec6-0955-4089-983c-0abf7fd13bf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9459
x-amzn-requestid: c08f55b2-7ac6-4dec-b53c-fd3f4533f9c9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMpBiGoHIAMFR2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bba3-69c2c2d05e55fd745caf1dce;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:09:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: w_Mb-0pBwp-pUyU2bdJ8MhrGHkk6VQgJmcGV9MfHwj_yGUMIYZkyrg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 10:48:24 GMT
age: 37295
etag: "2f9532d698b4c28df23e18bbb66399ec776d5b9f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 820cf89fcab8380adff42982c9fb11ed
84241ddddbbfd7de30118307fb1a62800d0a4cb3
0d051495f06ac84de934283b40cbfee7a042d32153a73486dd7c017430e882d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83cd87b8-4041-419b-ab34-9f8e5a326f4b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12898
x-amzn-requestid: 9b594c3c-6b8c-4589-8fcb-b3d7518b46f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cQZBNFxToAMF_9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63833ba1-767f510d72eef86d0cc892df;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 10:27:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: gsn5uUFEzDZDOMPTvW9UQxtccvRfJKUM4eJ8U99jvUGzNIKkF9SzeA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:49:20 GMT
age: 84039
etag: "84241ddddbbfd7de30118307fb1a62800d0a4cb3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb53953-3f6b-43ee-95d9-fb65d133745f.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb53953-3f6b-43ee-95d9-fb65d133745f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 328ce221bcf3442f88d09373193ff594
63bfa2ea925aa2c188c664a7bf7af7b0e5417e60
21d5b5ec267430dba91b17f89a557aca5cd2a21535da18eb02ec69ed0e1b7371
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb53953-3f6b-43ee-95d9-fb65d133745f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13411
x-amzn-requestid: 17fcc4e1-76c1-4eca-9235-c1a513bca24a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbz80FCQoAMFs1A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cd1e-26da4f265d74215f31425eb9;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:37:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: MttRByNp1C1ZeFFicFVa0w3XRyXJnUycPy2Izk8hzGEgXGdDqD3L3A==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:48:17 GMT
age: 84102
etag: "63bfa2ea925aa2c188c664a7bf7af7b0e5417e60"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ffd12f9c423ffc627d9e3b3145944fe4
5cf9a7a784952e1bb0cbe499104f1774b1269d08
a25f1b752d9af599aefd73073c105853130f1759905269de3d582d2eb35fe167
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 16038
x-amzn-requestid: 9d34c42b-ba0c-498f-8f99-d4ab527ffa89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbzMdHXNIAMFgaw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cbe9-376846f31dc9b995797cbd18;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:32:25 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: DngCuOTO9fQAwWe_ip6EtBcgruigZN6Bl1_v5BHM2dsWlhqCXCL3gg==
via: 1.1 efcf7b9d0f917f9ebf314db03e52d9b6.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:45:33 GMT
age: 84266
etag: "5cf9a7a784952e1bb0cbe499104f1774b1269d08"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d2dd5a4bcfd47db8f38544bf39ce3031
fa2217bae05b7beca2e12597eaad835298276b82
3266004f5e73af5359b71622eea31f1e28abb4bbc443b5f9e481b5a8b2e9249e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4762
x-amzn-requestid: b7c0e28a-de0d-443d-8bf4-900a964bf110
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP7uSFcMoAMF2CQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63830cc1-7abade3a670201cf1906b79f;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:07:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: gZSkafSw8cXo9AChLOTVJW7r_hHLW8kaHlA-ED2_zFJwuUk1uS3VRw==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 13:29:36 GMT
age: 27623
etag: "fa2217bae05b7beca2e12597eaad835298276b82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 081f27e87b02fb79b3453a116e731959
03e52819d86a0fa523e77ed24126e76e5369bd21
10283df9fce094267720532246e9d80b3c2061425f657497652e71de4c95de06
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 21:09:59 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 29 Nov 2022 01:33:19 GMT
Expires: Tue, 06 Dec 2022 01:33:18 GMT
Etag: "03e52819d86a0fa523e77ed24126e76e5369bd21"
Cache-Control: max-age=360798,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 772ece97eeea0b02-OSL
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 51d5484b700426c5612c309bbf14b114
026994960bfaaa4e2604b66cb795b2787fe300a2
e3e30a64f2e4fc59120c46b320d104f1b9d9a8af90106ab78715d14e49e11ae0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 21:09:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
datatechonert.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
37.48.68.71200 OK 12 B URL HTTP/1.1 datatechonert.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
IP 37.48.68.71:0
ASN #60781 LeaseWeb Netherlands B.V.
File type JSON data\012- , ASCII text, with no line terminators
Hash adb4650bfc9d2a73d4dd69583b0ceb14
1ce399d6e936232aaf2192cd7903a279c5015f22
21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed
Analyzer Verdict Alert quad9 Sinkholed
POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f HTTP/1.1
Host: datatechonert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 883
Origin: https://gnula.nu
Connection: keep-alive
Referer: https://gnula.nu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Thu, 01 Dec 2022 21:09:59 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://gnula.nu
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-144276616-1&cid=1250055096.1669928998&jid=1284540039&gjid=103222075&_gid=1213484237.1669928998&_u=YEBAAUAAAAAAACAAI~&z=1996528803
108.177.14.154200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-144276616-1&cid=1250055096.1669928998&jid=1284540039&gjid=103222075&_gid=1213484237.1669928998&_u=YEBAAUAAAAAAACAAI~&z=1996528803
IP 108.177.14.154:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-144276616-1&cid=1250055096.1669928998&jid=1284540039&gjid=103222075&_gid=1213484237.1669928998&_u=YEBAAUAAAAAAACAAI~&z=1996528803 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://gnula.nu
Connection: keep-alive
Referer: https://gnula.nu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://gnula.nu
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 01 Dec 2022 21:09:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 81abfd63eeb2fadc85b31541378babb1
09d3223c1a2a4e2cbfcba0381ead2cee5ee0a200
c7665c83165956c11bdbe0509ae03bf6af1b34ca68bf352fbfd629dc3a04b815
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 21:09:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 51d5484b700426c5612c309bbf14b114
026994960bfaaa4e2604b66cb795b2787fe300a2
e3e30a64f2e4fc59120c46b320d104f1b9d9a8af90106ab78715d14e49e11ae0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 21:09:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-144276616-1&cid=1250055096.1669928998&jid=1284540039&_u=YEBAAUAAAAAAACAAI~&z=1322116337
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-144276616-1&cid=1250055096.1669928998&jid=1284540039&_u=YEBAAUAAAAAAACAAI~&z=1322116337
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-144276616-1&cid=1250055096.1669928998&jid=1284540039&_u=YEBAAUAAAAAAACAAI~&z=1322116337 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 01 Dec 2022 21:09:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 471 B IP 216.58.211.3:0
Hash 81abfd63eeb2fadc85b31541378babb1
09d3223c1a2a4e2cbfcba0381ead2cee5ee0a200
c7665c83165956c11bdbe0509ae03bf6af1b34ca68bf352fbfd629dc3a04b815
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 21:09:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc2c1d47-fc4a-4f23-a6f7-5ac8f3a68490.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc2c1d47-fc4a-4f23-a6f7-5ac8f3a68490.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash acffcb88ce68b2d70c9c046a7b5a4aa8
cd016e6c0bf5c6eef06e933c9a5257ff4fca9bc1
692d782ac1d812de6dadbcfe46034b6b5d8bbd586e56beedd96dc4d65445dd4c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc2c1d47-fc4a-4f23-a6f7-5ac8f3a68490.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 12035
x-amzn-requestid: eef7d417-c6ca-4e3f-ac00-1425f3d5c4a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cb0TSGHDIAMF_jA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cdae-467c79a805dfb5622687f628;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:39:58 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: haFJ2LZecbT4HRbkvcaZxR4SAIx5cGxNyghKiDOJVX6xDkPwzc2wNQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:45:34 GMT
age: 84272
etag: "cd016e6c0bf5c6eef06e933c9a5257ff4fca9bc1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
gnula.nu/http:/gnula.nu/wp-content/uploads/2015/12/Deadpool_poster_latino.jpg
185.178.208.130302 Found 0 B URL HTTP/2 gnula.nu/http:/gnula.nu/wp-content/uploads/2015/12/Deadpool_poster_latino.jpg
IP 185.178.208.130:0
GET /http:/gnula.nu/wp-content/uploads/2015/12/Deadpool_poster_latino.jpg HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 302 Found
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Thu, 01 Dec 2022 21:09:58 GMT
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://gnula.nu/wp-json/>; rel="https://api.w.org/"
location: /404
content-encoding: br
vary: Accept-Encoding
age: 0
ddg-cache-status: MISS,MISS
X-Firefox-Spdy: h2
tzegilo.com/stattag.js
172.64.132.2200 OK 0 B IP 172.64.132.2:0
GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 01 Dec 2022 21:09:59 GMT
content-type: application/javascript
last-modified: Wed, 23 Nov 2022 15:07:42 GMT
etag: W/"637e373e-32a6"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 1579
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Xvch726dixr6WQPfryNV5%2FUKn%2F468iGbJTmgG01OsNQpcS9k09MbjEYFisq7wlhVktp3JouGTiX2BrLMnE13LWCxnt12bmwcVdle8pL51a2qC1rEunbcmX5g39s9Jw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 772ece96bd3174f5-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
grunoaph.net/?rb=__GWnbY_m4eR8F4WPCqyP-zbQ_Ff-H0SAiKCczeCG1DU1sY4SgsBGa_Z8ggWL6oC7xF2Y7vdWeWylBsYFGDgUMpbeEd_kRTHMGeF9_BMvgi2W6CNNfZtLO8ung7meWLdXsWS7zto2qqCQRynK-0TnXCUDLFqjzly-sfmY2zKa4CaIFpf_LRQHubJ1meydSmu5FKAnJY83pPG2fMeJ2oFDjnRFaW-KllFDXVLv9j8p4I%3D&request_ab2=96001&zoneid=5487261&js_build=iclick-v1.457.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wih=939&wiw=1280&wfc=1&pl=https%3A%2F%2Fgnula.nu%2F404&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.457.0&bs=d0e50dca-41aa-439f-902b-8022b804c713&userId=ef57120cbef04176a4cd2fd9b1dceb79&m=link
139.45.197.238200 OK 0 B URL HTTP/2 grunoaph.net/?rb=__GWnbY_m4eR8F4WPCqyP-zbQ_Ff-H0SAiKCczeCG1DU1sY4SgsBGa_Z8ggWL6oC7xF2Y7vdWeWylBsYFGDgUMpbeEd_kRTHMGeF9_BMvgi2W6CNNfZtLO8ung7meWLdXsWS7zto2qqCQRynK-0TnXCUDLFqjzly-sfmY2zKa4CaIFpf_LRQHubJ1meydSmu5FKAnJY83pPG2fMeJ2oFDjnRFaW-KllFDXVLv9j8p4I%3D&request_ab2=96001&zoneid=5487261&js_build=iclick-v1.457.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wih=939&wiw=1280&wfc=1&pl=https%3A%2F%2Fgnula.nu%2F404&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.457.0&bs=d0e50dca-41aa-439f-902b-8022b804c713&userId=ef57120cbef04176a4cd2fd9b1dceb79&m=link
IP 139.45.197.238:0
Analyzer Verdict Alert quad9 Sinkholed
GET /?rb=__GWnbY_m4eR8F4WPCqyP-zbQ_Ff-H0SAiKCczeCG1DU1sY4SgsBGa_Z8ggWL6oC7xF2Y7vdWeWylBsYFGDgUMpbeEd_kRTHMGeF9_BMvgi2W6CNNfZtLO8ung7meWLdXsWS7zto2qqCQRynK-0TnXCUDLFqjzly-sfmY2zKa4CaIFpf_LRQHubJ1meydSmu5FKAnJY83pPG2fMeJ2oFDjnRFaW-KllFDXVLv9j8p4I%3D&request_ab2=96001&zoneid=5487261&js_build=iclick-v1.457.0&fs=0&cf=0&sw=1280&sh=1024&sah=1002&wx=0&wy=0&ww=1280&wh=1024&cw=1268&wih=939&wiw=1280&wfc=1&pl=https%3A%2F%2Fgnula.nu%2F404&drf=&np=0&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&js_build=iclick-v1.457.0&bs=d0e50dca-41aa-439f-902b-8022b804c713&userId=ef57120cbef04176a4cd2fd9b1dceb79&m=link HTTP/1.1
Host: grunoaph.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gnula.nu/
Origin: https://gnula.nu
Connection: keep-alive
Cookie: OAID=ef57120cbef04176a4cd2fd9b1dceb79; oaidts=1669928999
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 21:09:59 GMT
content-type: application/json
x-trace-id: 68f268ad9e2f83b5c792746e70b08984
access-control-allow-origin: https://gnula.nu
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=ef57120cbef04176a4cd2fd9b1dceb79; expires=Fri, 01 Dec 2023 21:09:59 GMT; path=/; secure; SameSite=None
oaidts=1669928999; expires=Fri, 01 Dec 2023 21:09:59 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Thu, 08 Dec 2022 21:09:59 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
grunoaph.net/5/5487261/?oo=1&aab=1
139.45.197.238200 OK 0 B URL HTTP/2 grunoaph.net/5/5487261/?oo=1&aab=1
IP 139.45.197.238:0
Analyzer Verdict Alert quad9 Sinkholed
GET /5/5487261/?oo=1&aab=1 HTTP/1.1
Host: grunoaph.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://gnula.nu
Connection: keep-alive
Referer: https://gnula.nu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 21:09:59 GMT
content-type: application/json
x-trace-id: fee8a031893a68d78165d1cfecd14067
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://diromalxx.com>; rel="preconnect dns-prefetch"
access-control-allow-origin: https://gnula.nu
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=ef57120cbef04176a4cd2fd9b1dceb79; expires=Fri, 01 Dec 2023 21:09:59 GMT; path=/; secure; SameSite=None
oaidts=1669928999; expires=Fri, 01 Dec 2023 21:09:59 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
gnula.nu/wp-includes/js/wp-embed.min.js
185.178.208.130200 OK 0 B URL HTTP/2 gnula.nu/wp-includes/js/wp-embed.min.js
IP 185.178.208.130:0
GET /wp-includes/js/wp-embed.min.js HTTP/1.1
Host: gnula.nu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gnula.nu/404
Cookie: __ddg1_=boHAnzw6TsiC9498ZavJ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: ddos-guard
content-security-policy: upgrade-insecure-requests;
date: Wed, 30 Nov 2022 00:23:14 GMT
content-type: application/javascript
last-modified: Mon, 15 Feb 2021 03:38:18 GMT
cache-control: max-age=604800
accept-ranges: bytes
ddg-cache-status: HIT,HIT
etag: W/"6029ecaa-592"
expires: Mon, 05 Dec 2022 07:35:12 GMT
age: 161204
content-encoding: br
vary: Accept-Encoding
X-Firefox-Spdy: h2