www.allenternews.link/
188.114.96.1301 Moved Permanently 0 B IP 188.114.96.1:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: www.allenternews.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 20 Dec 2022 20:56:43 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Tue, 20 Dec 2022 21:56:43 GMT
Location: https://www.allenternews.link/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=la%2BSlA%2BzurA76bqcwFedUdPJV2HOi05kxYl8tBPxyP4osjjm6XrCodWagWu%2BegUGwXgRAE%2FpN8jK2sg2HP9Nggm0OjWThbLrbKFQbOWqTLLtdB146tox2bDmV%2BbD9HKOhEDEYugLyag%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77cb49473ec2b524-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 048cda18c6dbe7c4e4b106f5e1104b0a
1bd6f3367ccf446263b00ad8c1ece15a4164730b
66a680d9b8e454db94e14d2c4a466891e538b2d83ccee0dc65be62163992b4e0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "66A680D9B8E454DB94E14D2C4A466891E538B2D83CCEE0DC65BE62163992B4E0"
Last-Modified: Tue, 20 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4464
Expires: Tue, 20 Dec 2022 22:11:07 GMT
Date: Tue, 20 Dec 2022 20:56:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b8fbcd7ca1a893d05677318a8a198e7a
0851654c21f6e3741887e7deab8098c1dc56f33c
edbade5913ace2fcbb932922e9af69acb2e8759474a2eeaec216307247fea361
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EDBADE5913ACE2FCBB932922E9AF69ACB2E8759474A2EEAEC216307247FEA361"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5235
Expires: Tue, 20 Dec 2022 22:23:58 GMT
Date: Tue, 20 Dec 2022 20:56:43 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b44c4b5daa307a355e7bab1c83c1ca82
dbd14cd873f1dd4502f277b3f51cb7bc8da0c080
fd4604461cfa002c8a261bb14eb8dda56817db231b9012b2eb38d6dbc2674df5
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Alert, Retry-After, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 20 Dec 2022 20:34:29 GMT
content-type: application/json
age: 1334
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cf03270e3476f7482a2cc7ddc6a9e857
ab70d5ee87b01e0601f8e518bf36f97c8ceeba9a
43a4e796860a1481636dac103488cadc68c261d13cfe835d273efc368e569f97
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "43A4E796860A1481636DAC103488CADC68C261D13CFE835D273EFC368E569F97"
Last-Modified: Sun, 18 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12457
Expires: Wed, 21 Dec 2022 00:24:20 GMT
Date: Tue, 20 Dec 2022 20:56:43 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: sz5/rwLKyWG9qk07FjFNQ3nZYlpV2oNaIZO16PFsd/VGes/cM1yy/0VxqKpldOhzyADI8m7l+P8=
x-amz-request-id: QCWQKPWGJMFVPX5F
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 20 Dec 2022 20:55:07 GMT
age: 96
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9def06686577a2f559b8be1365a62a11
eeff27a0cacab42d581ef022cd3b6889bc448b2c
c8f5fc89630c5c7866e782b8111879fcddb144d4945db60e2cd38df51b0af683
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "C8F5FC89630C5C7866E782B8111879FCDDB144D4945DB60E2CD38DF51B0AF683"
Last-Modified: Mon, 19 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17101
Expires: Wed, 21 Dec 2022 01:41:44 GMT
Date: Tue, 20 Dec 2022 20:56:43 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 20:56:43 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Last-Modified, Retry-After, Content-Type, Alert, Pragma, ETag, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 20 Dec 2022 20:33:24 GMT
age: 1400
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 345 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9def06686577a2f559b8be1365a62a11
eeff27a0cacab42d581ef022cd3b6889bc448b2c
c8f5fc89630c5c7866e782b8111879fcddb144d4945db60e2cd38df51b0af683
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "C8F5FC89630C5C7866E782B8111879FCDDB144D4945DB60E2CD38DF51B0AF683"
Last-Modified: Mon, 19 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17100
Expires: Wed, 21 Dec 2022 01:41:44 GMT
Date: Tue, 20 Dec 2022 20:56:44 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 46b904ee071bf0600d5cb33ccc7b4f08
b4970e7532de3c3e938f94dd49d1aea214d953bd
b177decd74be736cf8b2a4ea7ed7d497d3571102dfd2d4a8d5dfa888eebb0514
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2574
Cache-Control: max-age=87075
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 20:56:44 GMT
Etag: "63a0c8a1-116"
Expires: Wed, 21 Dec 2022 21:07:59 GMT
Last-Modified: Mon, 19 Dec 2022 20:25:05 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d0c2b6760f2b58f445446dd2276d5af4
aeedf417b1ebde86ce837ca02ba934abb938b1a4
8fe72d0ce839150559da5ddf46bf87d26b6b9cbe34d09641b29a53be24997c81
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5631
Cache-Control: max-age=135838
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 20:56:44 GMT
Etag: "63a17b2b-1d7"
Expires: Thu, 22 Dec 2022 10:40:42 GMT
Last-Modified: Tue, 20 Dec 2022 09:06:51 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.3/css/fontawesome.min.css
104.17.25.14200 OK 10 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.3/css/fontawesome.min.css
IP 104.17.25.14:0
File type ASCII text, with very long lines (57726)
Hash 36791ad9d6fab39788d5043952a211e4
5c3f9f25ceca79dfc6df4e54d27e1a6b0700d2f3
be4808c9e048bca184a2b94d79825ea9649d835ce1a12c8c287590b1fec233ec
GET /ajax/libs/font-awesome/5.15.3/css/fontawesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allenternews.link/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Dec 2022 20:56:44 GMT
content-type: text/css; charset=utf-8
content-length: 10262
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "60510736-e238"
last-modified: Tue, 16 Mar 2021 19:29:58 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 512517
expires: Sun, 10 Dec 2023 20:56:44 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zRFzzP7a2DlN9%2FAXL5QyLe8vUI8Xh%2B1gXutFlVtI%2BiLyaE9HfrkEOtomHKhzG2DkC0iM7Kp74jDMz32XzKwCjs07IP4yps2BHSzYKgxztdTU%2BgL0z%2FvOA5%2FEREthpqwXoCEdpy%2FQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 77cb494d78e40af6-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9d5518b05926e5fc608ad00c4abf3e01
273178a68589773d7c28a2360e64685937a5caa6
c0401c937edee3f05e3e41ab2b09af061962bcfa8471f2d0a0d91c3fe732843d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 20:56:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 076a90cf7c90041fd6e2c14b6c619118
b7b37f0806d4329dda9f98d1fe85dae6f62a23bc
b7008e6835fa631dccd8cdbd2416b057590c9b11e37b8761012ae8c33b2a112e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B7008E6835FA631DCCD8CDBD2416B057590C9B11E37B8761012AE8C33B2A112E"
Last-Modified: Tue, 20 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=953
Expires: Tue, 20 Dec 2022 21:12:37 GMT
Date: Tue, 20 Dec 2022 20:56:44 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 46b904ee071bf0600d5cb33ccc7b4f08
b4970e7532de3c3e938f94dd49d1aea214d953bd
b177decd74be736cf8b2a4ea7ed7d497d3571102dfd2d4a8d5dfa888eebb0514
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2574
Cache-Control: max-age=87075
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 20:56:44 GMT
Etag: "63a0c8a1-116"
Expires: Wed, 21 Dec 2022 21:07:59 GMT
Last-Modified: Mon, 19 Dec 2022 20:25:05 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 278
fonts.googleapis.com/css2?display=swap&family=Patua+One&family=PT+Sans+Caption&family=Staatliches
142.250.74.106200 OK 1.0 kB URL HTTP/2 fonts.googleapis.com/css2?display=swap&family=Patua+One&family=PT+Sans+Caption&family=Staatliches
IP 142.250.74.106:0
Hash 254347b4f2654904d43bef3555c124e7
a985136002a80c39b8da574773b051c0ae59f7c6
89fa1fbaf4539a398a614aede032cbf643c270136b2d17f66c630e604b01c358
GET /css2?display=swap&family=Patua+One&family=PT+Sans+Caption&family=Staatliches HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allenternews.link/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 20 Dec 2022 20:56:44 GMT
date: Tue, 20 Dec 2022 20:56:44 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
d3t87ooo0697p8.cloudfront.net/?oootd=972022
143.204.42.94200 OK 54 kB URL HTTP/2 d3t87ooo0697p8.cloudfront.net/?oootd=972022
IP 143.204.42.94:0
File type Unicode text, UTF-8 text, with very long lines (15945)
Hash 86fd9f0886ca29b115354cbc19244c6a
849082d5920f43c08188527ffa26476c4c9f5fd9
42abab92b0d17f497e05bb5fd7b526ac9c777f5a76c96a25b40c09ad10f938b3
GET /?oootd=972022 HTTP/1.1
Host: d3t87ooo0697p8.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allenternews.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 54103
date: Tue, 20 Dec 2022 20:56:44 GMT
access-control-allow-origin: *
cache-control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform
content-encoding: gzip
pragma: no-cache
x-cache: Miss from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: EZizKiS11JXxoWukb2KT5URTI3p3i5M138e7vPFX2UH2GzO4zoUwOQ==
X-Firefox-Spdy: h2
push.services.mozilla.com/
34.208.31.97101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.208.31.97:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Teoo0AcdhXgPyD997TR0IQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: yERtI6F517Se8nNPdknZOX1xUyM=
ocsp.pki.goog/s/gts1p5/lwa0GjFbdPI
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/lwa0GjFbdPI
IP 142.250.74.131:0
Hash a9c02346ebe8d87ebe2289b21e4ef086
ccb5a9707317a03e0aedfa858531af2e1aaf1623
98778a6bdf0dff5d55964fdaa7fe8a46d75b556964523014c2c83dc0d1bcd154
POST /s/gts1p5/lwa0GjFbdPI HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 20:56:44 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.3/webfonts/fa-brands-400.woff2
104.17.25.14200 OK 77 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.3/webfonts/fa-brands-400.woff2
IP 104.17.25.14:0
File type Web Open Font Format (Version 2), TrueType, length 76764, version 331.-31261\012- data
Hash f7307680c7fe85959f3ecf122493ea7d
fce0da592a3e536d6d5df5b50cb513398d8c5161
43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af
GET /ajax/libs/font-awesome/5.15.3/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.allenternews.link
Connection: keep-alive
Referer: https://www.allenternews.link/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 20 Dec 2022 20:56:44 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 76764
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "60510736-12bdc"
last-modified: Tue, 16 Mar 2021 19:29:58 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 438879
expires: Sun, 10 Dec 2023 20:56:44 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QquXtRXfPZo6uxL4OLpjlghosPbrier%2F1z8mY24bXB9%2F9ls6JShiKcVCY6xM9EZw%2FIfqirL79s3JZyyAGvfyZusoJIn2OuOW18cyc0iHBIj3%2BDy%2BuURvbqXqm2a553pPu9fUzGcp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 77cb494fe8281bfa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash eadadfec0a65bce69128230cfa49f936
1ae7fbb4969315fc2d13cf0a63d1909c499147db
bbd8831dd832214747d09faca8a7092b1e72dbaec35ee513bf6663caaea3e488
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 20:56:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash eadadfec0a65bce69128230cfa49f936
1ae7fbb4969315fc2d13cf0a63d1909c499147db
bbd8831dd832214747d09faca8a7092b1e72dbaec35ee513bf6663caaea3e488
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 20:56:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash eadadfec0a65bce69128230cfa49f936
1ae7fbb4969315fc2d13cf0a63d1909c499147db
bbd8831dd832214747d09faca8a7092b1e72dbaec35ee513bf6663caaea3e488
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 20:56:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash eadadfec0a65bce69128230cfa49f936
1ae7fbb4969315fc2d13cf0a63d1909c499147db
bbd8831dd832214747d09faca8a7092b1e72dbaec35ee513bf6663caaea3e488
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 20:56:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 89ca187bd18785222d3e82db5c9fb7ea
35da3ebc4719c547971cadf17f6a729434a315ed
b02c0282f17ec7cbbde2c0d78a8c6a6c4e4b0cf89fa563a06d5c2a72ea955918
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6472
Cache-Control: max-age=161177
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 20:56:44 GMT
Etag: "63a1dadd-117"
Expires: Thu, 22 Dec 2022 17:43:01 GMT
Last-Modified: Tue, 20 Dec 2022 15:55:09 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 279
fonts.gstatic.com/s/materialiconsround/v65/LDItaoyNOAY6Uewc665JcIzCKsKc_M9flwmP.woff2
216.58.207.227200 OK 146 kB URL HTTP/2 fonts.gstatic.com/s/materialiconsround/v65/LDItaoyNOAY6Uewc665JcIzCKsKc_M9flwmP.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), CFF, length 146348, version 1.0\012- data
Size 146 kB (146348 bytes)
Hash 712b3ae81bdb1fd53e306da7c397e9f4
02b97dd4616dc82827f1ed1f4622f202fe1abf82
7f517e0a99c99691719d80e7f803c0385a2eebd0fa9069642cbdc7cd4f98667e
GET /s/materialiconsround/v65/LDItaoyNOAY6Uewc665JcIzCKsKc_M9flwmP.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.allenternews.link
Connection: keep-alive
Referer: https://www.allenternews.link/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 146348
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Dec 2022 19:01:30 GMT
expires: Thu, 14 Dec 2023 19:01:30 GMT
cache-control: public, max-age=31536000
age: 525314
last-modified: Tue, 22 Jun 2021 22:48:26 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/raleway/v19/1Ptug8zYS_SKggPNyC0ITw.woff2
216.58.207.227200 OK 47 kB URL HTTP/2 fonts.gstatic.com/s/raleway/v19/1Ptug8zYS_SKggPNyC0ITw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 47272, version 1.0\012- data
Hash 7bc6cb4378557439b87b4460024fb904
db93b7b93bdaccf4e96ee3162e50d1b1b9286bdc
1824e38c8fe9b23fb54ed5deafd63f31fcceed673d89111bebc8f05d1aa7b126
GET /s/raleway/v19/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.allenternews.link
Connection: keep-alive
Referer: https://www.allenternews.link/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47272
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Dec 2022 07:09:41 GMT
expires: Sat, 16 Dec 2023 07:09:41 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 28 Jan 2021 22:37:32 GMT
content-type: font/woff2
age: 395223
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9280942f48b6d8af0882ac1f9a684dae
1998f517eb03d75b98b81b8fcc3de69b57faaad9
43e916ba35470cee4a823db0332214b20948fedd09350f83aa0376d902a4926b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 20:56:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c92a63593449265941bccd2401ec3927
09bd5c279a11c5067d75300053d70e4e678d7140
a137e34a2d19637a6fe63ba801ce97be1ded72584f8a90798b4c0910526a4429
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 20:56:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9280942f48b6d8af0882ac1f9a684dae
1998f517eb03d75b98b81b8fcc3de69b57faaad9
43e916ba35470cee4a823db0332214b20948fedd09350f83aa0376d902a4926b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 20:56:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9280942f48b6d8af0882ac1f9a684dae
1998f517eb03d75b98b81b8fcc3de69b57faaad9
43e916ba35470cee4a823db0332214b20948fedd09350f83aa0376d902a4926b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 20:56:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
upgulpinon.com/1?z=5337591
139.45.197.242200 OK 6.8 kB URL HTTP/2 upgulpinon.com/1?z=5337591
IP 139.45.197.242:0
File type ASCII text, with very long lines (16471)
Hash 2c9d210885a8ad42a18b51f1a5f4bc7e
ee5aa35bed6937dbddbe4d26999e39de5003455f
6e21af727ad7d5100dd11d31e1ef4c88dc622902cf9a8961211d2a1ef24cbae3
GET /1?z=5337591 HTTP/1.1
Host: upgulpinon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allenternews.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 20:56:44 GMT
content-type: text/javascript
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 4ba8c5beaad9cd2b52b69ca8a7749b18
access-control-expose-headers: X-Sc
x-sc: 166EzvkIPkzMwaa269MUCWNw2GddXTB03Rz2qkULyNo8LY7Ef0wPr-Er8g5ij5akgwZt_m4ZxpCwy7BL5BphCrLJVgQ=
set-cookie: scm=1; expires=Wed, 20 Dec 2023 20:56:44 GMT; secure; SameSite=None
OAID=3d982b6441504ad09fbedba1ef1f949d; expires=Wed, 20 Dec 2023 20:56:44 GMT; secure; SameSite=None
oaidts=1671569804; expires=Wed, 20 Dec 2023 20:56:44 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash eadadfec0a65bce69128230cfa49f936
1ae7fbb4969315fc2d13cf0a63d1909c499147db
bbd8831dd832214747d09faca8a7092b1e72dbaec35ee513bf6663caaea3e488
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 20:56:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-LFTV4B96P1
142.250.74.168200 OK 77 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-LFTV4B96P1
IP 142.250.74.168:0
File type ASCII text, with very long lines (22462)
Hash 060b44e5d05802f0c366b47715f72ed3
49c55c75c862b3c56185805c8222bdbad7695e7b
01bd1683309f4ddce24ca70052d46483de529a352d9005d54d428eeb1050923b
GET /gtag/js?id=G-LFTV4B96P1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allenternews.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 20 Dec 2022 20:56:44 GMT
expires: Tue, 20 Dec 2022 20:56:44 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 76834
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-1474482844360906&host=ca-host-pub-1556223355139109
142.250.74.162200 OK 50 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-1474482844360906&host=ca-host-pub-1556223355139109
IP 142.250.74.162:0
File type ASCII text, with very long lines (4885)
Hash cd7d347c9a5f8beb916681b85587a335
d3d4bef8c0847f82249853cb3e245e032118eba1
9a7d5766b8fbfe3291f6a302e0f68a3704eb67ac3cc48d1d5da52c028fa38f5d
GET /pagead/js/adsbygoogle.js?client=ca-pub-1474482844360906&host=ca-host-pub-1556223355139109 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.allenternews.link
Connection: keep-alive
Referer: https://www.allenternews.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Tue, 20 Dec 2022 20:56:44 GMT
expires: Tue, 20 Dec 2022 20:56:44 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 12961291976108525156
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 49465
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 39d9e071c09fc7d070edd864e4b2d734
f852f95974f12d1ea309daf0df3bb46c0a058870
2c4799a79a023faf0c558efbc191c82efca0f01332815b59e95cc33de62c4f36
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 20:56:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-1474482844360906
142.250.74.162200 OK 50 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-1474482844360906
IP 142.250.74.162:0
File type ASCII text, with very long lines (4885)
Hash da8dd484cf45152e9810bfdf2fd20057
2f31946667bd146c45893e8448646a89ffd06479
5b6ba707afb5e58a17eeeea1b74f2ac12aee04fe6a509bf563f2e21151a52c9a
GET /pagead/js/adsbygoogle.js?client=ca-pub-1474482844360906 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.allenternews.link
Connection: keep-alive
Referer: https://www.allenternews.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Tue, 20 Dec 2022 20:56:44 GMT
expires: Tue, 20 Dec 2022 20:56:44 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 14478335777123278979
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 49465
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
142.250.74.162200 OK 50 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP 142.250.74.162:0
File type ASCII text, with very long lines (4885)
Hash 35c5dff8ba1ec6fcae2a391d7df4c604
226626eaa8fdf4293fa544486f21b703e7f57cf1
96d85c8000ef7db55259b45499330d59f3f546261bdff4ed00925b3bea00a882
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allenternews.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Tue, 20 Dec 2022 20:56:44 GMT
expires: Tue, 20 Dec 2022 20:56:44 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 3950479488749828783
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 49484
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.blogger.com/static/v1/widgets/1197256859-widgets.js
142.250.74.73200 OK 56 kB URL HTTP/2 www.blogger.com/static/v1/widgets/1197256859-widgets.js
IP 142.250.74.73:0
File type ASCII text, with very long lines (2221)
Hash 15d181d1185f956f34ef9d8cff4af838
41a3dfc3567601d72332b73abadda6031cdf593b
2c8823905cd520208804414a54a064a4f98e315a8b97cca381cfae0fe630b7e1
GET /static/v1/widgets/1197256859-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allenternews.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56470
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 18 Dec 2022 03:01:04 GMT
expires: Mon, 18 Dec 2023 03:01:04 GMT
cache-control: public, max-age=31536000
last-modified: Sun, 18 Dec 2022 00:52:06 GMT
content-type: text/javascript
age: 237340
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash c92a63593449265941bccd2401ec3927
09bd5c279a11c5067d75300053d70e4e678d7140
a137e34a2d19637a6fe63ba801ce97be1ded72584f8a90798b4c0910526a4429
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 20:56:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9280942f48b6d8af0882ac1f9a684dae
1998f517eb03d75b98b81b8fcc3de69b57faaad9
43e916ba35470cee4a823db0332214b20948fedd09350f83aa0376d902a4926b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 20:56:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 39d9e071c09fc7d070edd864e4b2d734
f852f95974f12d1ea309daf0df3bb46c0a058870
2c4799a79a023faf0c558efbc191c82efca0f01332815b59e95cc33de62c4f36
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 20:56:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4817b81ef8edd224f655ec0203f639ac
99daacd43e1634623125fde39e1ba3d12eb99e46
80b8da6e967445dcb5db8bc6e57470b8b235be28bce7a3bed7f4a66bf9249b32
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "80B8DA6E967445DCB5DB8BC6E57470B8B235BE28BCE7A3BED7F4A66BF9249B32"
Last-Modified: Tue, 20 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2436
Expires: Tue, 20 Dec 2022 21:37:21 GMT
Date: Tue, 20 Dec 2022 20:56:45 GMT
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 193971dc134641fd7f42a7607d9b2385
79c62628fb09946280a432ae5ec94a032763b4da
45c5fa92ae4f7531285ca3bd63cba8c693589f9f265fce48a0c47e5b116112ff
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=156158
Date: Tue, 20 Dec 2022 20:56:45 GMT
Etag: "63a1ccd6-1d7"
Expires: Thu, 22 Dec 2022 16:19:23 GMT
Last-Modified: Tue, 20 Dec 2022 14:55:18 GMT
Server: ECS (dcb/7F38)
X-Cache: Miss from cloudfront
Via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: oRljT9a4kuiJOIrOAVrX6Vth1FJxPusdbbu9sD2Q6m9Rf53eAP49_g==
Age: 5045
ocsp.pki.goog/s/gts1p5/lwa0GjFbdPI
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/lwa0GjFbdPI
IP 142.250.74.131:0
Hash a9c02346ebe8d87ebe2289b21e4ef086
ccb5a9707317a03e0aedfa858531af2e1aaf1623
98778a6bdf0dff5d55964fdaa7fe8a46d75b556964523014c2c83dc0d1bcd154
POST /s/gts1p5/lwa0GjFbdPI HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 20:56:45 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
my.rtmark.net/gid.js
139.45.195.8200 OK 65 B IP 139.45.195.8:0
File type JSON data\012- , ASCII text
Hash 7099494fc09c5b78780a4990dad30ef5
a5316cf03bd0e7c93ae1b166f7f8c0779b67ef90
42defd83cbd37fd2ceab88bad3a9d6dc6d64f5cac7ff0563e46f4bb05c2b088d
GET /gid.js HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.allenternews.link
Connection: keep-alive
Referer: https://www.allenternews.link/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 20:56:45 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://www.allenternews.link
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=cc420f1ad91f4ff289543a5655605c9f; expires=Wed, 20 Dec 2023 20:56:45 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f7dcf9d0bec3dc8cdae7ecbd96018346
3812c0a621a0cfa658678d4ea7258d5356a2e242
fe543f3c2fe317e04e5f2ed76b172df4a02f70691801586cb6248387ca37444b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FE543F3C2FE317E04E5F2ED76B172DF4A02F70691801586CB6248387CA37444B"
Last-Modified: Tue, 20 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3249
Expires: Tue, 20 Dec 2022 21:50:54 GMT
Date: Tue, 20 Dec 2022 20:56:45 GMT
Connection: keep-alive
ihavelearnat.xyz/aVhlNzMIOgZaDAhlBxFGGzRYEgEvfVdxV1osXQBcBjdVAQpeKF0ZUAU3EFNVGzcLQx0HPRESAS8BNgUKIgowblwoGzRdVj1gIntdAX1XcVUvaVNTADssJ2NYGBMhQ2AhIV15VjoRJnlECgoucEQRCCYOYAw1KEZ4Dh0RUnQoLSRkX108Vwd8JTEBAFVZM0AFcScLDlBmAxUPfXcGFyxefkxqJ31bUCsodFdbGQxiFlseKU5QLRNXdQMtDhVcVz4WUG8BICEpTmYlEjF+Ags0VAF4ExIQb2sZaAFaZQ86Vm52CzRUAX4AYAlga1w/AWZfIj0tYhZbGgNhRx88AmVGMQBIWAAkH1BUcFoKV1FYL24HcH1cABwHVCMLJHZRWjskUmVQbwFvaV8AVkNUDRAWfXoTOw97YighPH9iJwALR0QIEBF9Y1owVhFZGjcLRw48Mi4FfiEqJG10
143.204.55.6200 OK 1.2 kB URL HTTP/2 ihavelearnat.xyz/aVhlNzMIOgZaDAhlBxFGGzRYEgEvfVdxV1osXQBcBjdVAQpeKF0ZUAU3EFNVGzcLQx0HPRESAS8BNgUKIgowblwoGzRdVj1gIntdAX1XcVUvaVNTADssJ2NYGBMhQ2AhIV15VjoRJnlECgoucEQRCCYOYAw1KEZ4Dh0RUnQoLSRkX108Vwd8JTEBAFVZM0AFcScLDlBmAxUPfXcGFyxefkxqJ31bUCsodFdbGQxiFlseKU5QLRNXdQMtDhVcVz4WUG8BICEpTmYlEjF+Ags0VAF4ExIQb2sZaAFaZQ86Vm52CzRUAX4AYAlga1w/AWZfIj0tYhZbGgNhRx88AmVGMQBIWAAkH1BUcFoKV1FYL24HcH1cABwHVCMLJHZRWjskUmVQbwFvaV8AVkNUDRAWfXoTOw97YighPH9iJwALR0QIEBF9Y1owVhFZGjcLRw48Mi4FfiEqJG10
IP 143.204.55.6:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3037), with no line terminators
Hash 5201efeaf7f4fe1769fd54e3a2076045
50c521b2faf81e85aa1f1085efbaeb97eb4bc820
930248a47aed1aa20c596078baf9bfb57158110ba2e1d6227f9c93b8873f4425
GET /aVhlNzMIOgZaDAhlBxFGGzRYEgEvfVdxV1osXQBcBjdVAQpeKF0ZUAU3EFNVGzcLQx0HPRESAS8BNgUKIgowblwoGzRdVj1gIntdAX1XcVUvaVNTADssJ2NYGBMhQ2AhIV15VjoRJnlECgoucEQRCCYOYAw1KEZ4Dh0RUnQoLSRkX108Vwd8JTEBAFVZM0AFcScLDlBmAxUPfXcGFyxefkxqJ31bUCsodFdbGQxiFlseKU5QLRNXdQMtDhVcVz4WUG8BICEpTmYlEjF+Ags0VAF4ExIQb2sZaAFaZQ86Vm52CzRUAX4AYAlga1w/AWZfIj0tYhZbGgNhRx88AmVGMQBIWAAkH1BUcFoKV1FYL24HcH1cABwHVCMLJHZRWjskUmVQbwFvaV8AVkNUDRAWfXoTOw97YighPH9iJwALR0QIEBF9Y1owVhFZGjcLRw48Mi4FfiEqJG10 HTTP/1.1
Host: ihavelearnat.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allenternews.link/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1188
date: Tue, 20 Dec 2022 20:56:45 GMT
server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
content-encoding: gzip
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
x-cache: Miss from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: PcjLmF9Z5zQYkkkZ13szhUGkTUfUViqtluQln-AIdMV53I-zcMELgQ==
X-Firefox-Spdy: h2
upgulpinon.com/9?z=5337591&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.allenternews.link%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&oaid=cc420f1ad91f4ff289543a5655605c9f
139.45.197.242204 No Content 0 B URL HTTP/2 upgulpinon.com/9?z=5337591&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.allenternews.link%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&oaid=cc420f1ad91f4ff289543a5655605c9f
IP 139.45.197.242:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /9?z=5337591&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.allenternews.link%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&oaid=cc420f1ad91f4ff289543a5655605c9f HTTP/1.1
Host: upgulpinon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.allenternews.link/
Origin: https://www.allenternews.link
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Tue, 20 Dec 2022 20:56:45 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.allenternews.link
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
d3t87ooo0697p8.cloudfront.net/YS29KRUYoACQjeT8GLnh/fF16d3RtBTkqKDtSHy8NeSICNwcRKGwxPC9SemMqKgEteGAuASl4d20OLid7f0k+NSkgUjMjJDoOIiM+Jh9sMCd2AiU/LycDK2B0DVpkdWN5X2IyLyULJTI1bl16KzJuXXp0dmVfb3YEbl16Mi8lWX5gdQlKeHU+fVtvdgRuXX-o3MG5cC3R2fkF6bGN5Xy0gJSAAb3cAeV97dXZ6X3tgdHsJIzcjLQAyYHQNXnpwaHtJP3h3
143.204.42.94200 OK 500 B URL HTTP/2 d3t87ooo0697p8.cloudfront.net/YS29KRUYoACQjeT8GLnh/fF16d3RtBTkqKDtSHy8NeSICNwcRKGwxPC9SemMqKgEteGAuASl4d20OLid7f0k+NSkgUjMjJDoOIiM+Jh9sMCd2AiU/LycDK2B0DVpkdWN5X2IyLyULJTI1bl16KzJuXXp0dmVfb3YEbl16Mi8lWX5gdQlKeHU+fVtvdgRuXX-o3MG5cC3R2fkF6bGN5Xy0gJSAAb3cAeV97dXZ6X3tgdHsJIzcjLQAyYHQNXnpwaHtJP3h3
IP 143.204.42.94:0
File type ASCII text, with very long lines (686), with no line terminators
Hash b4d552f3aba4b3238f3631ed0a6d64ec
19db37b0e2a92e46088ac8ab309bd04ca605903a
bad399ba5fdda4893b5743d328718c0af44503c6fbd431056811f047515e47c1
GET /YS29KRUYoACQjeT8GLnh/fF16d3RtBTkqKDtSHy8NeSICNwcRKGwxPC9SemMqKgEteGAuASl4d20OLid7f0k+NSkgUjMjJDoOIiM+Jh9sMCd2AiU/LycDK2B0DVpkdWN5X2IyLyULJTI1bl16KzJuXXp0dmVfb3YEbl16Mi8lWX5gdQlKeHU+fVtvdgRuXX-o3MG5cC3R2fkF6bGN5Xy0gJSAAb3cAeV97dXZ6X3tgdHsJIzcjLQAyYHQNXnpwaHtJP3h3 HTTP/1.1
Host: d3t87ooo0697p8.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ihavelearnat.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 500
date: Tue, 20 Dec 2022 20:56:45 GMT
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: A2yam4geOzF62cWtFDZ8lwFrRyEc62FOfoPnhfTyCKqNiMGZ0LPUNA==
X-Firefox-Spdy: h2
pl18004230.highperformancecpmgate.com/8e/59/5c/8e595cf7920b547fb9850519b3be997f.js
173.233.139.164200 OK 21 kB URL HTTP/1.1 pl18004230.highperformancecpmgate.com/8e/59/5c/8e595cf7920b547fb9850519b3be997f.js
IP 173.233.139.164:0
File type HTML document, ASCII text, with very long lines (60153), with no line terminators
Hash 21ac4a1767504cf6cf824d43e79388cc
214bfb20a3bb48ae5e2b7176964a492eeda21177
fdb4df34212855f27d5b1faa4f1b3c23cd6189ddfca70eeddbe82a8201ff8d57
Analyzer Verdict Alert quad9 Sinkholed
GET /8e/59/5c/8e595cf7920b547fb9850519b3be997f.js HTTP/1.1
Host: pl18004230.highperformancecpmgate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allenternews.link/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 20 Dec 2022 20:56:45 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1000abd09793c321243168ab9768ee75
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
upgulpinon.com/11?rnd=2605680668&z=5337591&b=16164355&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=8t1O5lLId2dl_2vwaGzhERAzB1LHPpBCrcXr2__GlmyMezRjBdirTgOUosaFq1BiNK2WJFq6dMc-gCAYKHed5xkZTprXOShQoz-G1xkEsbzU_tmCuJ93r_U0mgRyp5-pnGz3YtfII0Vpob_H8skyBy5v6oeQf-TLQbsuVkFT8Hh21dfw95HCDO19x3_Z7yegxq9h6z1RmTzn2ePi_e6kbaz5I2wru6CHJcVViW_P-EqccQJK9aMqPC2oi_zAoKLWFJO5ClUu60QHg1cIvFn54bw4eJE_Qyw2HO0uvZhtLklUxMj7gj_Dvx9LJedVDW876JwcchozOcDNfD0LkY3BYdFxs-JTVpDEdJa6E-mz7r7hg1iGEvnHOVYLB4XS_Ojl9ko0ocvaFpFyQ8ulIChRS9GqZujEI0-86f6jSrngM1CszrxWeBrZhfgy4EUtMvtLzFRuNDGTuUtq0QbdgPChvRBbt9ssnEaA6oIeKu-xzeFnheNtXljyDgvDMqmnRkBg8aS_cIkRvjXa0UzcKqGkShf0hk0lVSNysXwglfySjYepVo4Rwe0D6jteWxQrxuFnk-Zf9vA-hWVNsBA1UYRAXNrStdY_ppSijzo9R9M4q6Dz3U8iEA_Ckuu05XTEqx1sBE5iQPiIzQrrlpc9FTflo5wOYYWZls0qolVP_lv4pVf0ERppKHh8z9bsaV8Nhgah0RRdA_G1f7_WcBHjKnpS4W2pImwOssta_hawQXi6sJMLg2khrsSRYSaQL5M1MqCDlTtKs8a-783n84XX8nkax-Zg3v7I0bdHfYAOHQF-an-ZETz7PXz62BWlEIRAl7z9u3XtWRc-i_u8-xJHCF0iMNdLE5ARTdn5ZCYAxsBUbYcM7IGGv7xiqEs20_ksQgvP&ruid=5b430bcf-b3e5-43e9-b2c9-b60e82d181af&subid=629171971067752448&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.allenternews.link%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&ot=164
139.45.197.242200 OK 35 B URL HTTP/2 upgulpinon.com/11?rnd=2605680668&z=5337591&b=16164355&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=8t1O5lLId2dl_2vwaGzhERAzB1LHPpBCrcXr2__GlmyMezRjBdirTgOUosaFq1BiNK2WJFq6dMc-gCAYKHed5xkZTprXOShQoz-G1xkEsbzU_tmCuJ93r_U0mgRyp5-pnGz3YtfII0Vpob_H8skyBy5v6oeQf-TLQbsuVkFT8Hh21dfw95HCDO19x3_Z7yegxq9h6z1RmTzn2ePi_e6kbaz5I2wru6CHJcVViW_P-EqccQJK9aMqPC2oi_zAoKLWFJO5ClUu60QHg1cIvFn54bw4eJE_Qyw2HO0uvZhtLklUxMj7gj_Dvx9LJedVDW876JwcchozOcDNfD0LkY3BYdFxs-JTVpDEdJa6E-mz7r7hg1iGEvnHOVYLB4XS_Ojl9ko0ocvaFpFyQ8ulIChRS9GqZujEI0-86f6jSrngM1CszrxWeBrZhfgy4EUtMvtLzFRuNDGTuUtq0QbdgPChvRBbt9ssnEaA6oIeKu-xzeFnheNtXljyDgvDMqmnRkBg8aS_cIkRvjXa0UzcKqGkShf0hk0lVSNysXwglfySjYepVo4Rwe0D6jteWxQrxuFnk-Zf9vA-hWVNsBA1UYRAXNrStdY_ppSijzo9R9M4q6Dz3U8iEA_Ckuu05XTEqx1sBE5iQPiIzQrrlpc9FTflo5wOYYWZls0qolVP_lv4pVf0ERppKHh8z9bsaV8Nhgah0RRdA_G1f7_WcBHjKnpS4W2pImwOssta_hawQXi6sJMLg2khrsSRYSaQL5M1MqCDlTtKs8a-783n84XX8nkax-Zg3v7I0bdHfYAOHQF-an-ZETz7PXz62BWlEIRAl7z9u3XtWRc-i_u8-xJHCF0iMNdLE5ARTdn5ZCYAxsBUbYcM7IGGv7xiqEs20_ksQgvP&ruid=5b430bcf-b3e5-43e9-b2c9-b60e82d181af&subid=629171971067752448&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.allenternews.link%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&ot=164
IP 139.45.197.242:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /11?rnd=2605680668&z=5337591&b=16164355&var=&rqtdbc=1&rcvdbc=1&btp=7&rb=8t1O5lLId2dl_2vwaGzhERAzB1LHPpBCrcXr2__GlmyMezRjBdirTgOUosaFq1BiNK2WJFq6dMc-gCAYKHed5xkZTprXOShQoz-G1xkEsbzU_tmCuJ93r_U0mgRyp5-pnGz3YtfII0Vpob_H8skyBy5v6oeQf-TLQbsuVkFT8Hh21dfw95HCDO19x3_Z7yegxq9h6z1RmTzn2ePi_e6kbaz5I2wru6CHJcVViW_P-EqccQJK9aMqPC2oi_zAoKLWFJO5ClUu60QHg1cIvFn54bw4eJE_Qyw2HO0uvZhtLklUxMj7gj_Dvx9LJedVDW876JwcchozOcDNfD0LkY3BYdFxs-JTVpDEdJa6E-mz7r7hg1iGEvnHOVYLB4XS_Ojl9ko0ocvaFpFyQ8ulIChRS9GqZujEI0-86f6jSrngM1CszrxWeBrZhfgy4EUtMvtLzFRuNDGTuUtq0QbdgPChvRBbt9ssnEaA6oIeKu-xzeFnheNtXljyDgvDMqmnRkBg8aS_cIkRvjXa0UzcKqGkShf0hk0lVSNysXwglfySjYepVo4Rwe0D6jteWxQrxuFnk-Zf9vA-hWVNsBA1UYRAXNrStdY_ppSijzo9R9M4q6Dz3U8iEA_Ckuu05XTEqx1sBE5iQPiIzQrrlpc9FTflo5wOYYWZls0qolVP_lv4pVf0ERppKHh8z9bsaV8Nhgah0RRdA_G1f7_WcBHjKnpS4W2pImwOssta_hawQXi6sJMLg2khrsSRYSaQL5M1MqCDlTtKs8a-783n84XX8nkax-Zg3v7I0bdHfYAOHQF-an-ZETz7PXz62BWlEIRAl7z9u3XtWRc-i_u8-xJHCF0iMNdLE5ARTdn5ZCYAxsBUbYcM7IGGv7xiqEs20_ksQgvP&ruid=5b430bcf-b3e5-43e9-b2c9-b60e82d181af&subid=629171971067752448&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.allenternews.link%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&ot=164 HTTP/1.1
Host: upgulpinon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.allenternews.link
Connection: keep-alive
Referer: https://www.allenternews.link/
Cookie: scm=1; OAID=cc420f1ad91f4ff289543a5655605c9f; oaidts=1671569804
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 20:56:45 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://www.allenternews.link
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 732bab15d735e0bf433f6abd3acec93d
access-control-expose-headers: X-Sc
set-cookie: OAID=cc420f1ad91f4ff289543a5655605c9f; expires=Wed, 20 Dec 2023 20:56:45 GMT; secure; SameSite=None
oaidts=1671569804; expires=Wed, 20 Dec 2023 20:56:45 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
upgulpinon.com/121?rnd=3718995933&z=5337591&b=16164355&c=6446448&var=&d=https%3A%2F%2Fcomerbia-immesses.com%2F3606ac93-9050-4b6b-9f04-1c63efbef772%3Fzoneid%3D5337591%26campaignid%3D6446448%26ln%3D%7Blanguage%7D%26cs%3D%7Bcost%7D%26visitor_id%3D629171971067752448&cln={CELL_NUMBER}&btp=7&rb=8t1O5lLId2dl_2vwaGzhERAzB1LHPpBCrcXr2__GlmyMezRjBdirTgOUosaFq1BiNK2WJFq6dMc-gCAYKHed5xkZTprXOShQoz-G1xkEsbzU_tmCuJ93r_U0mgRyp5-pnGz3YtfII0Vpob_H8skyBy5v6oeQf-TLQbsuVkFT8Hh21dfw95HCDO19x3_Z7yegxq9h6z1RmTzn2ePi_e6kbaz5I2wru6CHJcVViW_P-EqccQJK9aMqPC2oi_zAoKLWFJO5ClUu60QHg1cIvFn54bw4eJE_Qyw2HO0uvZhtLklUxMj7gj_Dvx9LJedVDW876JwcchozOcDNfD0LkY3BYdFxs-JTVpDEdJa6E-mz7r7hg1iGEvnHOVYLB4XS_Ojl9ko0ocvaFpFyQ8ulIChRS9GqZujEI0-86f6jSrngM1CszrxWeBrZhfgy4EUtMvtLzFRuNDGTuUtq0QbdgPChvRBbt9ssnEaA6oIeKu-xzeFnheNtXljyDgvDMqmnRkBg8aS_cIkRvjXa0UzcKqGkShf0hk0lVSNysXwglfySjYepVo4Rwe0D6jteWxQrxuFnk-Zf9vA-hWVNsBA1UYRAXNrStdY_ppSijzo9R9M4q6Dz3U8iEA_Ckuu05XTEqx1sBE5iQPiIzQrrlpc9FTflo5wOYYWZls0qolVP_lv4pVf0ERppKHh8z9bsaV8Nhgah0RRdA_G1f7_WcBHjKnpS4W2pImwOssta_hawQXi6sJMLg2khrsSRYSaQL5M1MqCDlTtKs8a-783n84XX8nkax-Zg3v7I0bdHfYAOHQF-an-ZETz7PXz62BWlEIRAl7z9u3XtWRc-i_u8-xJHCF0iMNdLE5ARTdn5ZCYAxsBUbYcM7IGGv7xiqEs20_ksQgvP&bag=UYi4cYCPuXIjFjxfrQoKXq9IrYMXdBf3&ruid=5b430bcf-b3e5-43e9-b2c9-b60e82d181af&subid=629171971067752448
139.45.197.242302 Found 0 B URL HTTP/2 upgulpinon.com/121?rnd=3718995933&z=5337591&b=16164355&c=6446448&var=&d=https%3A%2F%2Fcomerbia-immesses.com%2F3606ac93-9050-4b6b-9f04-1c63efbef772%3Fzoneid%3D5337591%26campaignid%3D6446448%26ln%3D%7Blanguage%7D%26cs%3D%7Bcost%7D%26visitor_id%3D629171971067752448&cln={CELL_NUMBER}&btp=7&rb=8t1O5lLId2dl_2vwaGzhERAzB1LHPpBCrcXr2__GlmyMezRjBdirTgOUosaFq1BiNK2WJFq6dMc-gCAYKHed5xkZTprXOShQoz-G1xkEsbzU_tmCuJ93r_U0mgRyp5-pnGz3YtfII0Vpob_H8skyBy5v6oeQf-TLQbsuVkFT8Hh21dfw95HCDO19x3_Z7yegxq9h6z1RmTzn2ePi_e6kbaz5I2wru6CHJcVViW_P-EqccQJK9aMqPC2oi_zAoKLWFJO5ClUu60QHg1cIvFn54bw4eJE_Qyw2HO0uvZhtLklUxMj7gj_Dvx9LJedVDW876JwcchozOcDNfD0LkY3BYdFxs-JTVpDEdJa6E-mz7r7hg1iGEvnHOVYLB4XS_Ojl9ko0ocvaFpFyQ8ulIChRS9GqZujEI0-86f6jSrngM1CszrxWeBrZhfgy4EUtMvtLzFRuNDGTuUtq0QbdgPChvRBbt9ssnEaA6oIeKu-xzeFnheNtXljyDgvDMqmnRkBg8aS_cIkRvjXa0UzcKqGkShf0hk0lVSNysXwglfySjYepVo4Rwe0D6jteWxQrxuFnk-Zf9vA-hWVNsBA1UYRAXNrStdY_ppSijzo9R9M4q6Dz3U8iEA_Ckuu05XTEqx1sBE5iQPiIzQrrlpc9FTflo5wOYYWZls0qolVP_lv4pVf0ERppKHh8z9bsaV8Nhgah0RRdA_G1f7_WcBHjKnpS4W2pImwOssta_hawQXi6sJMLg2khrsSRYSaQL5M1MqCDlTtKs8a-783n84XX8nkax-Zg3v7I0bdHfYAOHQF-an-ZETz7PXz62BWlEIRAl7z9u3XtWRc-i_u8-xJHCF0iMNdLE5ARTdn5ZCYAxsBUbYcM7IGGv7xiqEs20_ksQgvP&bag=UYi4cYCPuXIjFjxfrQoKXq9IrYMXdBf3&ruid=5b430bcf-b3e5-43e9-b2c9-b60e82d181af&subid=629171971067752448
IP 139.45.197.242:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /121?rnd=3718995933&z=5337591&b=16164355&c=6446448&var=&d=https%3A%2F%2Fcomerbia-immesses.com%2F3606ac93-9050-4b6b-9f04-1c63efbef772%3Fzoneid%3D5337591%26campaignid%3D6446448%26ln%3D%7Blanguage%7D%26cs%3D%7Bcost%7D%26visitor_id%3D629171971067752448&cln={CELL_NUMBER}&btp=7&rb=8t1O5lLId2dl_2vwaGzhERAzB1LHPpBCrcXr2__GlmyMezRjBdirTgOUosaFq1BiNK2WJFq6dMc-gCAYKHed5xkZTprXOShQoz-G1xkEsbzU_tmCuJ93r_U0mgRyp5-pnGz3YtfII0Vpob_H8skyBy5v6oeQf-TLQbsuVkFT8Hh21dfw95HCDO19x3_Z7yegxq9h6z1RmTzn2ePi_e6kbaz5I2wru6CHJcVViW_P-EqccQJK9aMqPC2oi_zAoKLWFJO5ClUu60QHg1cIvFn54bw4eJE_Qyw2HO0uvZhtLklUxMj7gj_Dvx9LJedVDW876JwcchozOcDNfD0LkY3BYdFxs-JTVpDEdJa6E-mz7r7hg1iGEvnHOVYLB4XS_Ojl9ko0ocvaFpFyQ8ulIChRS9GqZujEI0-86f6jSrngM1CszrxWeBrZhfgy4EUtMvtLzFRuNDGTuUtq0QbdgPChvRBbt9ssnEaA6oIeKu-xzeFnheNtXljyDgvDMqmnRkBg8aS_cIkRvjXa0UzcKqGkShf0hk0lVSNysXwglfySjYepVo4Rwe0D6jteWxQrxuFnk-Zf9vA-hWVNsBA1UYRAXNrStdY_ppSijzo9R9M4q6Dz3U8iEA_Ckuu05XTEqx1sBE5iQPiIzQrrlpc9FTflo5wOYYWZls0qolVP_lv4pVf0ERppKHh8z9bsaV8Nhgah0RRdA_G1f7_WcBHjKnpS4W2pImwOssta_hawQXi6sJMLg2khrsSRYSaQL5M1MqCDlTtKs8a-783n84XX8nkax-Zg3v7I0bdHfYAOHQF-an-ZETz7PXz62BWlEIRAl7z9u3XtWRc-i_u8-xJHCF0iMNdLE5ARTdn5ZCYAxsBUbYcM7IGGv7xiqEs20_ksQgvP&bag=UYi4cYCPuXIjFjxfrQoKXq9IrYMXdBf3&ruid=5b430bcf-b3e5-43e9-b2c9-b60e82d181af&subid=629171971067752448 HTTP/1.1
Host: upgulpinon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: scm=1; OAID=cc420f1ad91f4ff289543a5655605c9f; oaidts=1671569804
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Tue, 20 Dec 2022 20:56:45 GMT
content-length: 0
location: https://comerbia-immesses.com/3606ac93-9050-4b6b-9f04-1c63efbef772?zoneid=5337591&campaignid=6446448&ln={language}&cs=&visitor_id=629171971067752448
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 4c71edaf835acfc778383fa603241caf
access-control-expose-headers: X-Sc
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
upgulpinon.com/9?z=5337591&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.allenternews.link%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&oaid=cc420f1ad91f4ff289543a5655605c9f
139.45.197.242200 OK 2.9 kB URL HTTP/2 upgulpinon.com/9?z=5337591&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.allenternews.link%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&oaid=cc420f1ad91f4ff289543a5655605c9f
IP 139.45.197.242:0
File type JSON data\012- , ASCII text, with very long lines (7051), with no line terminators
Hash 3ca7b72e4f10c90fde3d6b0b1de46a48
eff3910912612ec062e6ba7af0bd34d3dca3d125
627d02eadfc0421a5a52103953923e459c0d0218538d49cf55f7d589d3ff3aa8
POST /9?z=5337591&ng=1&ix=0&pt=0&np=1&gp=-1&bp=-1&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.allenternews.link%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1268&wiw=1280&wih=939&wfc=1&sah=1002&drf=&hil=1&ist=0&oaid=cc420f1ad91f4ff289543a5655605c9f HTTP/1.1
Host: upgulpinon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 56
Origin: https://www.allenternews.link
Connection: keep-alive
Referer: https://www.allenternews.link/
Cookie: scm=1; OAID=3d982b6441504ad09fbedba1ef1f949d; oaidts=1671569804
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 20:56:45 GMT
content-type: application/json
access-control-allow-credentials: true
access-control-allow-origin: https://www.allenternews.link
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
x-trace-id: 614bca1f19161af05fb47b9892cfc5d1
access-control-expose-headers: X-Sc
set-cookie: OAID=cc420f1ad91f4ff289543a5655605c9f; expires=Wed, 20 Dec 2023 20:56:45 GMT; secure; SameSite=None
oaidts=1671569804; expires=Wed, 20 Dec 2023 20:56:45 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
comerbia-immesses.com/3606ac93-9050-4b6b-9f04-1c63efbef772?zoneid=5337591&campaignid=6446448&ln={language}&cs=&visitor_id=629171971067752448
18.193.146.82302 Found 0 B URL HTTP/2 comerbia-immesses.com/3606ac93-9050-4b6b-9f04-1c63efbef772?zoneid=5337591&campaignid=6446448&ln={language}&cs=&visitor_id=629171971067752448
IP 18.193.146.82:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /3606ac93-9050-4b6b-9f04-1c63efbef772?zoneid=5337591&campaignid=6446448&ln={language}&cs=&visitor_id=629171971067752448 HTTP/1.1
Host: comerbia-immesses.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Tue, 20 Dec 2022 20:56:45 GMT
content-length: 0
cache-control: no-store, no-cache, pre-check=0, post-check=0
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://business.news-reports.net/no4198271919/?td=comerbia-immesses.com&cep=iafropLboiYS9PQFRSuMC684MuVgye5_loZTHeHx-jvXxg9XVh7XQgA3n8Q25HP8oYkk8zFNeP3iWBHMcser63JQNsqqxt3jn_cY-15HSb0zpsrvucFQHziiimu3fRU_PgbxeHPxdt-9COPDV0uM2XgBYySAUJ9EyFKqcvmXM1zTzTRlGwsGsBgXqgHjlbLhh7kloVmyvZ51iqNcwwZVJ73JdNwmZht0rRZEh0FG-4mAJRBaL6N4isAbw0RjT-exjo8puIe1vRIWxiv3Q8PTHT_z-p7pRi55RGgGKqCH7p5h339Gz7iH7YPFfSHYHgRo8a5nZDZbmX2mGPDUft9pM0RUeJ1wH0sDc-3q9d0uVBK_dFQOmhJ_P2y1daDGzpyh7rKI-jZKZsb2x3X-_XVB0X6R-MRgJm3pz6ax9ngYrphE8-Z_6oDkRwFMEQ_3oIwO4A-ANV9OP-vKYg_HhefGudyPdT1Zne3JrWWQeDId-8E&lptoken=168171895726161f05c0&zoneid=5337591&campaignid=6446448&ln=%7Blanguage%7D&cs=&visitor_id=629171971067752448
pragma: no-cache
set-cookie: 3606ac93-9050-4b6b-9f04-1c63efbef772-v4=uGE4IogGiP_JPq9l2odEsDcrAidp9GFK0CmdZNk2kko; Max-Age=86400; Expires=Wed, 21-Dec-2022 20:56:45 GMT; Domain=comerbia-immesses.com; Path=/; Secure; HttpOnly;SameSite=None
cep-v4=3vd2dDCEH5YuNW6eo96RSrW_ouzOdX3zoeQXCkGbHV-4T_b5q-BcVerEWe2F3THz2XUf1XUbTZEUD2OaIzbcCXMckhsN_lebJPbdYtZvGobv3CO4hTJKR5gCdtAyfXMLqGFFE7k_0Xy64fl1muC6D4RaA_rinXSW5OY76UEPmZEz5Iufh2BWMxvMurJMxcfVnGTr8eV96AXdtBSaFJLsvLZNLmNinNSkZ8zDTDW9skWSgKUeewPIJdSt4mzsQie0aMyVoVwbhtGzaZLQlyTN4CVaH8Zza8YTuxiELcGNGVQe2g2c8fGm3GuKgo-Qr82slIvI0MTHARljMO7rspfH2V4YYwsE4RrW5V_9LJfJChQwY-l9RfbjEv0aF1OxxVWF0DH6uHEc7OaFdi6LkkvoIc7OvioLeW1Kxt7O-eeFRn1flUj3pGdCnKIgFQQNOJA-uOHAcTQNkL6ZaIaCzifc8RbJa5ZDBChcvfrMUGXSaMk; Max-Age=86400; Expires=Wed, 21-Dec-2022 20:56:45 GMT; Domain=comerbia-immesses.com; Path=/; Secure; HttpOnly;SameSite=None
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bb120a816fcf4f6afe7a3aeab18e7bbd
1f15e81595a0b524a2401d5566beaa0b8d4f61e6
cca2f14595c5ba6446c4e522883036fa07e31599909870ad42bc678587b1a91d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5751
Cache-Control: max-age=145652
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 20:56:45 GMT
Etag: "63a1a10a-1d7"
Expires: Thu, 22 Dec 2022 13:24:17 GMT
Last-Modified: Tue, 20 Dec 2022 11:48:26 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0db78f2c1efa6cc900592d0f8912a55d
686b1ec4aafa7b78a6c7203695527adbec314611
940be1b544a531e6c0dc8900250c1b4be0becf471d9d3d8d1749bdb148cd08be
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 20:56:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0db78f2c1efa6cc900592d0f8912a55d
686b1ec4aafa7b78a6c7203695527adbec314611
940be1b544a531e6c0dc8900250c1b4be0becf471d9d3d8d1749bdb148cd08be
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 20:56:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a3f2bfb91d87077af1739a4e6743af16
2653762e39f4b63c21a2701526ee0ddf48d75687
f320fc73334a2740aff36d8145d4193488f02a452100981657b82753f6904de3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 20:56:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a3f2bfb91d87077af1739a4e6743af16
2653762e39f4b63c21a2701526ee0ddf48d75687
f320fc73334a2740aff36d8145d4193488f02a452100981657b82753f6904de3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 20:56:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 76ecd868be78500219d27d6783a0cb3d
c5905bc64c8640b6109c5eca88b4d3e61f51000c
7a7d1b1bcca5e80ef18c3068f34ce07406830b4b2223ab37a72ea29114d9fabf
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "7A7D1B1BCCA5E80EF18C3068F34CE07406830B4B2223AB37A72EA29114D9FABF"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3007
Expires: Tue, 20 Dec 2022 21:46:52 GMT
Date: Tue, 20 Dec 2022 20:56:45 GMT
Connection: keep-alive
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
142.250.74.109302 Found 394 B URL HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
IP 142.250.74.109:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (383)
Hash d73f7b42409fe1681a723f6dc48d5cd2
7d21f876c010e4ee1d25274ed3bae30cdbbcf171
bbe7001428834c08f501b2e58d876d766fb3cee12948377e060b8c2299c9ca4f
GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allenternews.link/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 20 Dec 2022 20:56:45 GMT
location: https://accounts.google.com/v3/signin/identifier?dsh=S403681071%3A1671569805716184&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=AeAAQh5aV0xjgKITK1RbaH-akyOIeOc0hsDqjTQVyqXsdTdNuxK1RbrZF7PDAuGuktfb9v9mcVPW7g
strict-transport-security: max-age=31536000; includeSubDomains
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-ekvi8LacX7uQzplmRP7sEw' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 394
server: GSE
set-cookie: __Host-GAPS=1:WLz5MIVIj-eMntcEaAHOL6n4l0fcpw:D1iTI7MH6IgeKmD1;Path=/;Expires=Thu, 19-Dec-2024 20:56:45 GMT;Secure;HttpOnly;Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4eecfb4f4e91f12768e7a6e9750132e2
1abb32edada6930109bde4298fe10dce5705a7b3
081686268fd2aec2a5b1cbfc1b007324d33132f1522ab04bc45314f34b52899b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "081686268FD2AEC2A5B1CBFC1B007324D33132F1522AB04BC45314F34B52899B"
Last-Modified: Tue, 20 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3512
Expires: Tue, 20 Dec 2022 21:55:17 GMT
Date: Tue, 20 Dec 2022 20:56:45 GMT
Connection: keep-alive
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
142.250.74.109302 Found 395 B URL HTTP/2 accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
IP 142.250.74.109:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (380)
Hash 3dbb47cb46939ea706edd74cd0ef4bb6
3066537c277ea87a46c4fa19cf40c40e9a8aefa4
e4f517c45dc1454883bb349c286a0a75810a90534cce2687f328f8b58c427a1d
GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allenternews.link/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 20 Dec 2022 20:56:45 GMT
location: https://accounts.google.com/v3/signin/identifier?dsh=S1258430922%3A1671569805762649&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=AeAAQh7bNekidCu-e1FsPxXUeNATZUhheyomkjRRgstSumq-ejORJKI5xwgKsARusaMrzsbKurgOWA
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-3OkGVAJj7Eto5ThyzO-jIg' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport, require-trusted-types-for 'script';report-uri /cspreport
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 395
server: GSE
set-cookie: __Host-GAPS=1:nhonj9leCCjiHe0lNeNMoSyAN58FfA:pz6np5sRb0xBUV4F;Path=/;Expires=Thu, 19-Dec-2024 20:56:45 GMT;Secure;HttpOnly;Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 97216d9347c0d3c1bab297df919688d5
61eca83749fd58d5ce753bf65419435d522c2ce5
7277b81f23f6516aa706c00202e0705421837431095d5b1f7fb0f283ab5736ff
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 20:56:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash bb120a816fcf4f6afe7a3aeab18e7bbd
1f15e81595a0b524a2401d5566beaa0b8d4f61e6
cca2f14595c5ba6446c4e522883036fa07e31599909870ad42bc678587b1a91d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5751
Cache-Control: max-age=145652
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 20:56:45 GMT
Etag: "63a1a10a-1d7"
Expires: Thu, 22 Dec 2022 13:24:17 GMT
Last-Modified: Tue, 20 Dec 2022 11:48:26 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
business.news-reports.net/no4198271919/?td=comerbia-immesses.com&cep=iafropLboiYS9PQFRSuMC684MuVgye5_loZTHeHx-jvXxg9XVh7XQgA3n8Q25HP8oYkk8zFNeP3iWBHMcser63JQNsqqxt3jn_cY-15HSb0zpsrvucFQHziiimu3fRU_PgbxeHPxdt-9COPDV0uM2XgBYySAUJ9EyFKqcvmXM1zTzTRlGwsGsBgXqgHjlbLhh7kloVmyvZ51iqNcwwZVJ73JdNwmZht0rRZEh0FG-4mAJRBaL6N4isAbw0RjT-exjo8puIe1vRIWxiv3Q8PTHT_z-p7pRi55RGgGKqCH7p5h339Gz7iH7YPFfSHYHgRo8a5nZDZbmX2mGPDUft9pM0RUeJ1wH0sDc-3q9d0uVBK_dFQOmhJ_P2y1daDGzpyh7rKI-jZKZsb2x3X-_XVB0X6R-MRgJm3pz6ax9ngYrphE8-Z_6oDkRwFMEQ_3oIwO4A-ANV9OP-vKYg_HhefGudyPdT1Zne3JrWWQeDId-8E&lptoken=168171895726161f05c0&zoneid=5337591&campaignid=6446448&ln=%7Blanguage%7D&cs=&visitor_id=629171971067752448
103.155.93.220200 OK 11 kB URL HTTP/1.1 business.news-reports.net/no4198271919/?td=comerbia-immesses.com&cep=iafropLboiYS9PQFRSuMC684MuVgye5_loZTHeHx-jvXxg9XVh7XQgA3n8Q25HP8oYkk8zFNeP3iWBHMcser63JQNsqqxt3jn_cY-15HSb0zpsrvucFQHziiimu3fRU_PgbxeHPxdt-9COPDV0uM2XgBYySAUJ9EyFKqcvmXM1zTzTRlGwsGsBgXqgHjlbLhh7kloVmyvZ51iqNcwwZVJ73JdNwmZht0rRZEh0FG-4mAJRBaL6N4isAbw0RjT-exjo8puIe1vRIWxiv3Q8PTHT_z-p7pRi55RGgGKqCH7p5h339Gz7iH7YPFfSHYHgRo8a5nZDZbmX2mGPDUft9pM0RUeJ1wH0sDc-3q9d0uVBK_dFQOmhJ_P2y1daDGzpyh7rKI-jZKZsb2x3X-_XVB0X6R-MRgJm3pz6ax9ngYrphE8-Z_6oDkRwFMEQ_3oIwO4A-ANV9OP-vKYg_HhefGudyPdT1Zne3JrWWQeDId-8E&lptoken=168171895726161f05c0&zoneid=5337591&campaignid=6446448&ln=%7Blanguage%7D&cs=&visitor_id=629171971067752448
IP 103.155.93.220:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (944)
Hash 89b4972fc17894dcbbb17b67ebd97567
0eec8d89651b8f3b4157d3f90b154738de351a88
34e789a62c56828c9153dfa49a9e5a4f92bd1e313be54bd7fcd91eaf1e5e268f
GET /no4198271919/?td=comerbia-immesses.com&cep=iafropLboiYS9PQFRSuMC684MuVgye5_loZTHeHx-jvXxg9XVh7XQgA3n8Q25HP8oYkk8zFNeP3iWBHMcser63JQNsqqxt3jn_cY-15HSb0zpsrvucFQHziiimu3fRU_PgbxeHPxdt-9COPDV0uM2XgBYySAUJ9EyFKqcvmXM1zTzTRlGwsGsBgXqgHjlbLhh7kloVmyvZ51iqNcwwZVJ73JdNwmZht0rRZEh0FG-4mAJRBaL6N4isAbw0RjT-exjo8puIe1vRIWxiv3Q8PTHT_z-p7pRi55RGgGKqCH7p5h339Gz7iH7YPFfSHYHgRo8a5nZDZbmX2mGPDUft9pM0RUeJ1wH0sDc-3q9d0uVBK_dFQOmhJ_P2y1daDGzpyh7rKI-jZKZsb2x3X-_XVB0X6R-MRgJm3pz6ax9ngYrphE8-Z_6oDkRwFMEQ_3oIwO4A-ANV9OP-vKYg_HhefGudyPdT1Zne3JrWWQeDId-8E&lptoken=168171895726161f05c0&zoneid=5337591&campaignid=6446448&ln=%7Blanguage%7D&cs=&visitor_id=629171971067752448 HTTP/1.1
Host: business.news-reports.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 20 Dec 2022 20:56:45 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
X-Powered-By: PHP/7.4.5
Content-Encoding: gzip
ihavelearnat.xyz/utx?cb=fpJPydF0k1a2&top=www.allenternews.link&tid=972022
143.204.55.6204 No Content 0 B URL HTTP/2 ihavelearnat.xyz/utx?cb=fpJPydF0k1a2&top=www.allenternews.link&tid=972022
IP 143.204.55.6:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /utx?cb=fpJPydF0k1a2&top=www.allenternews.link&tid=972022 HTTP/1.1
Host: ihavelearnat.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.allenternews.link
Connection: keep-alive
Referer: https://www.allenternews.link/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Tue, 20 Dec 2022 20:56:45 GMT
server: openresty/1.17.8.2
access-control-allow-credentials: true
access-control-allow-origin: https://www.allenternews.link
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
set-cookie: ut=x; Expires=Tue, 20 Dec 2022 20:57:45 GMT; Max-Age=60
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
x-cache: Miss from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: jSiRVnT7aLViHo7i-SC2ybUH9nNI9YsUBfjgGW6MwW86Xi-rQxkPBA==
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.226200 OK 346 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 76ecd868be78500219d27d6783a0cb3d
c5905bc64c8640b6109c5eca88b4d3e61f51000c
7a7d1b1bcca5e80ef18c3068f34ce07406830b4b2223ab37a72ea29114d9fabf
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "7A7D1B1BCCA5E80EF18C3068F34CE07406830B4B2223AB37A72EA29114D9FABF"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3007
Expires: Tue, 20 Dec 2022 21:46:52 GMT
Date: Tue, 20 Dec 2022 20:56:45 GMT
Connection: keep-alive
ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js
172.217.21.170200 OK 30 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.2.1/jquery.min.js
IP 172.217.21.170:0
File type ASCII text, with very long lines (32058)
Hash fc3fc31e5e7c0933dc18e562c1c071bf
a44c31323f6bd29e583cc585036e6eb39f7014a6
ddad766fb94b23efeb5574cdedc5e8446d496fb91bd0b08cd80be212e001055d
GET /ajax/libs/jquery/3.2.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://business.news-reports.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30306
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Dec 2022 20:50:02 GMT
expires: Fri, 15 Dec 2023 20:50:02 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 432403
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
business.news-reports.net/no4198271919/index_failid/057dd4e.css
103.155.93.220200 OK 35 kB URL HTTP/1.1 business.news-reports.net/no4198271919/index_failid/057dd4e.css
IP 103.155.93.220:0
Hash cae2d6f123b7bdaf7dafae5b4135e8f5
4c9a8ec2174df5c05f8eb1b97b9bdc4d55d35409
5683c42a33318856f7f5925c8ee73700a9e67882b421b08d6ed166fe33762554
GET /no4198271919/index_failid/057dd4e.css HTTP/1.1
Host: business.news-reports.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://business.news-reports.net/no4198271919/?td=comerbia-immesses.com&cep=iafropLboiYS9PQFRSuMC684MuVgye5_loZTHeHx-jvXxg9XVh7XQgA3n8Q25HP8oYkk8zFNeP3iWBHMcser63JQNsqqxt3jn_cY-15HSb0zpsrvucFQHziiimu3fRU_PgbxeHPxdt-9COPDV0uM2XgBYySAUJ9EyFKqcvmXM1zTzTRlGwsGsBgXqgHjlbLhh7kloVmyvZ51iqNcwwZVJ73JdNwmZht0rRZEh0FG-4mAJRBaL6N4isAbw0RjT-exjo8puIe1vRIWxiv3Q8PTHT_z-p7pRi55RGgGKqCH7p5h339Gz7iH7YPFfSHYHgRo8a5nZDZbmX2mGPDUft9pM0RUeJ1wH0sDc-3q9d0uVBK_dFQOmhJ_P2y1daDGzpyh7rKI-jZKZsb2x3X-_XVB0X6R-MRgJm3pz6ax9ngYrphE8-Z_6oDkRwFMEQ_3oIwO4A-ANV9OP-vKYg_HhefGudyPdT1Zne3JrWWQeDId-8E&lptoken=168171895726161f05c0&zoneid=5337591&campaignid=6446448&ln=%7Blanguage%7D&cs=&visitor_id=629171971067752448
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 20 Dec 2022 20:56:45 GMT
Content-Type: text/css
Last-Modified: Mon, 19 Dec 2022 12:51:42 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"63a05e5e-2f889"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
business.news-reports.net/no4198271919/index_failid/new_style.css
103.155.93.220200 OK 4.3 kB URL HTTP/1.1 business.news-reports.net/no4198271919/index_failid/new_style.css
IP 103.155.93.220:0
Hash d52c8e111b480e9d2298618fb731c34b
7c088c6b2219628d11a476973ca4a1bdcd2b45ed
deae60543e85a5777ae4d767adb899feb66fba9f81f6205aa952006b8306874c
GET /no4198271919/index_failid/new_style.css HTTP/1.1
Host: business.news-reports.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://business.news-reports.net/no4198271919/?td=comerbia-immesses.com&cep=iafropLboiYS9PQFRSuMC684MuVgye5_loZTHeHx-jvXxg9XVh7XQgA3n8Q25HP8oYkk8zFNeP3iWBHMcser63JQNsqqxt3jn_cY-15HSb0zpsrvucFQHziiimu3fRU_PgbxeHPxdt-9COPDV0uM2XgBYySAUJ9EyFKqcvmXM1zTzTRlGwsGsBgXqgHjlbLhh7kloVmyvZ51iqNcwwZVJ73JdNwmZht0rRZEh0FG-4mAJRBaL6N4isAbw0RjT-exjo8puIe1vRIWxiv3Q8PTHT_z-p7pRi55RGgGKqCH7p5h339Gz7iH7YPFfSHYHgRo8a5nZDZbmX2mGPDUft9pM0RUeJ1wH0sDc-3q9d0uVBK_dFQOmhJ_P2y1daDGzpyh7rKI-jZKZsb2x3X-_XVB0X6R-MRgJm3pz6ax9ngYrphE8-Z_6oDkRwFMEQ_3oIwO4A-ANV9OP-vKYg_HhefGudyPdT1Zne3JrWWQeDId-8E&lptoken=168171895726161f05c0&zoneid=5337591&campaignid=6446448&ln=%7Blanguage%7D&cs=&visitor_id=629171971067752448
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 20 Dec 2022 20:56:45 GMT
Content-Type: text/css
Last-Modified: Mon, 19 Dec 2022 12:51:51 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"63a05e67-1e54"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 746409a88b1342fe7b570306c302c71e
e08a7bf55e08a498f2eed6a35b90107fc0bdb303
9352308fd047bafceddfaf2a9a6eab650593f16ff5632330a4bf745750704650
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9352308FD047BAFCEDDFAF2A9A6EAB650593F16FF5632330A4BF745750704650"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3473
Expires: Tue, 20 Dec 2022 21:54:39 GMT
Date: Tue, 20 Dec 2022 20:56:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 746409a88b1342fe7b570306c302c71e
e08a7bf55e08a498f2eed6a35b90107fc0bdb303
9352308fd047bafceddfaf2a9a6eab650593f16ff5632330a4bf745750704650
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9352308FD047BAFCEDDFAF2A9A6EAB650593F16FF5632330A4BF745750704650"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3473
Expires: Tue, 20 Dec 2022 21:54:39 GMT
Date: Tue, 20 Dec 2022 20:56:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 746409a88b1342fe7b570306c302c71e
e08a7bf55e08a498f2eed6a35b90107fc0bdb303
9352308fd047bafceddfaf2a9a6eab650593f16ff5632330a4bf745750704650
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9352308FD047BAFCEDDFAF2A9A6EAB650593F16FF5632330A4BF745750704650"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3473
Expires: Tue, 20 Dec 2022 21:54:39 GMT
Date: Tue, 20 Dec 2022 20:56:46 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe7b99ff1-3a90-4792-98d7-d8a29855c0b3.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe7b99ff1-3a90-4792-98d7-d8a29855c0b3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 49a98c00b1949e152b5f31c588a76a63
1315068dfd111f24e39d14434c719ef10328bfbf
6f67099495261e1114eeca46d2afd3c0bc6921fbc20a6e3e78c4af5d1c9edbc2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe7b99ff1-3a90-4792-98d7-d8a29855c0b3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9593
x-amzn-requestid: 3a50abdf-4974-4f53-bdc6-5c15a84fea65
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: da6rNHYQoAMFdzg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a10b14-40a012f068ef226f07b54875;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 01:08:36 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: _0MpwiIILMLLAXutPvNrycEQypsLabZiiSEUKOWJnGWz5Q4gYsxcow==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 446e26a256db1310ae719d818e420898.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 01:33:12 GMT
age: 69814
etag: "1315068dfd111f24e39d14434c719ef10328bfbf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 746409a88b1342fe7b570306c302c71e
e08a7bf55e08a498f2eed6a35b90107fc0bdb303
9352308fd047bafceddfaf2a9a6eab650593f16ff5632330a4bf745750704650
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9352308FD047BAFCEDDFAF2A9A6EAB650593F16FF5632330A4BF745750704650"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3473
Expires: Tue, 20 Dec 2022 21:54:39 GMT
Date: Tue, 20 Dec 2022 20:56:46 GMT
Connection: keep-alive
business.news-reports.net/no4198271919/index_failid/image-footer-HEBDO.jpg
103.155.93.220200 OK 20 kB URL HTTP/1.1 business.news-reports.net/no4198271919/index_failid/image-footer-HEBDO.jpg
IP 103.155.93.220:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x120, components 3\012- data
Hash 2880417e72c51fb0d7a14856f250720a
f3597193d279b052268d741134d5213816003598
111a5434d0d48559cfb52b25e2a0f80ebd51591b8f8db6822205ef082599c1e8
GET /no4198271919/index_failid/image-footer-HEBDO.jpg HTTP/1.1
Host: business.news-reports.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://business.news-reports.net/no4198271919/?td=comerbia-immesses.com&cep=iafropLboiYS9PQFRSuMC684MuVgye5_loZTHeHx-jvXxg9XVh7XQgA3n8Q25HP8oYkk8zFNeP3iWBHMcser63JQNsqqxt3jn_cY-15HSb0zpsrvucFQHziiimu3fRU_PgbxeHPxdt-9COPDV0uM2XgBYySAUJ9EyFKqcvmXM1zTzTRlGwsGsBgXqgHjlbLhh7kloVmyvZ51iqNcwwZVJ73JdNwmZht0rRZEh0FG-4mAJRBaL6N4isAbw0RjT-exjo8puIe1vRIWxiv3Q8PTHT_z-p7pRi55RGgGKqCH7p5h339Gz7iH7YPFfSHYHgRo8a5nZDZbmX2mGPDUft9pM0RUeJ1wH0sDc-3q9d0uVBK_dFQOmhJ_P2y1daDGzpyh7rKI-jZKZsb2x3X-_XVB0X6R-MRgJm3pz6ax9ngYrphE8-Z_6oDkRwFMEQ_3oIwO4A-ANV9OP-vKYg_HhefGudyPdT1Zne3JrWWQeDId-8E&lptoken=168171895726161f05c0&zoneid=5337591&campaignid=6446448&ln=%7Blanguage%7D&cs=&visitor_id=629171971067752448
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 20 Dec 2022 20:56:46 GMT
Content-Type: image/jpeg
Content-Length: 20390
Last-Modified: Mon, 19 Dec 2022 12:51:46 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "63a05e62-4fa6"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
business.news-reports.net/no4198271919/index_failid/social_icon.png
103.155.93.220200 OK 866 B URL HTTP/1.1 business.news-reports.net/no4198271919/index_failid/social_icon.png
IP 103.155.93.220:0
Hash bafbe29608cdad793ea631f818c82f12
924625822252d5fa6c6a1e12c1737a552d017648
d7464e9d18aa6b14170c2400b63290daa40e9ea3054154638755da4e67f38dd9
GET /no4198271919/index_failid/social_icon.png HTTP/1.1
Host: business.news-reports.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://business.news-reports.net/no4198271919/?td=comerbia-immesses.com&cep=iafropLboiYS9PQFRSuMC684MuVgye5_loZTHeHx-jvXxg9XVh7XQgA3n8Q25HP8oYkk8zFNeP3iWBHMcser63JQNsqqxt3jn_cY-15HSb0zpsrvucFQHziiimu3fRU_PgbxeHPxdt-9COPDV0uM2XgBYySAUJ9EyFKqcvmXM1zTzTRlGwsGsBgXqgHjlbLhh7kloVmyvZ51iqNcwwZVJ73JdNwmZht0rRZEh0FG-4mAJRBaL6N4isAbw0RjT-exjo8puIe1vRIWxiv3Q8PTHT_z-p7pRi55RGgGKqCH7p5h339Gz7iH7YPFfSHYHgRo8a5nZDZbmX2mGPDUft9pM0RUeJ1wH0sDc-3q9d0uVBK_dFQOmhJ_P2y1daDGzpyh7rKI-jZKZsb2x3X-_XVB0X6R-MRgJm3pz6ax9ngYrphE8-Z_6oDkRwFMEQ_3oIwO4A-ANV9OP-vKYg_HhefGudyPdT1Zne3JrWWQeDId-8E&lptoken=168171895726161f05c0&zoneid=5337591&campaignid=6446448&ln=%7Blanguage%7D&cs=&visitor_id=629171971067752448
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 20 Dec 2022 20:56:46 GMT
Content-Type: image/png
Content-Length: 452
Last-Modified: Mon, 19 Dec 2022 12:51:51 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "63a05e67-1c4"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2ded193-0301-4ad3-a888-72c52212ad95.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2ded193-0301-4ad3-a888-72c52212ad95.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bfd0e913579b4ff2f511223d70cb01fb
497e0ffef816e100e6ddc221ec17d5f389c1142a
bee68ae1a938a5111a32dab4ec4f6964994e6c39143eac9ab94d6c5e29999372
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2ded193-0301-4ad3-a888-72c52212ad95.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5185
x-amzn-requestid: 3087af97-3f2d-4848-b297-eba8d84f10c5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dT10YHv8oAMF2sg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e3682-7527022d4bd9c15518fe75cc;Sampled=0
x-amzn-remapped-date: Sat, 17 Dec 2022 21:37:06 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: KyEMrUTeuVTPJ3EIkrH1DLYqa4bHK7fe6dApTAFP4XY0G4airnflGA==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Dec 2022 21:37:07 GMT
age: 83979
etag: "497e0ffef816e100e6ddc221ec17d5f389c1142a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e977b0b-6e7d-42dd-9743-5064708ab1e0.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e977b0b-6e7d-42dd-9743-5064708ab1e0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b5da803c751be159f0f5b3c2f65bd2b6
39139480cfc2ed0781b51745bfaabed4490aa0db
920ee464843101c638327866fbfcc9c7f00fc19b7cdbc8948fbe53d2b6fb4ed3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e977b0b-6e7d-42dd-9743-5064708ab1e0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7876
x-amzn-requestid: 668c95f2-a1b1-4abd-9f4e-23d05c4998a5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: da270EFlIAMFR5A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a10518-56d6db4f4cff1b4e08b87046;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 00:43:04 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: Hy6G0TSJc89Fyo8X3mLQ4nY4Y-2Xva9gqcLLAZH_T61Kk-6cMmhqQQ==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 cca7d60248a961ff8fc8c5640024b652.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 01:08:39 GMT
age: 71287
etag: "39139480cfc2ed0781b51745bfaabed4490aa0db"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb2f35059-99cc-477d-9e68-c3a035d125df.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb2f35059-99cc-477d-9e68-c3a035d125df.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bba7c67bdc57d1fe2870ebd4ee9fd5c9
127850560e258665ca8074757c1b66f680d2bd78
9edd765e65644edfe4221352225cb89ebe98fa451d9528b8b614d594a20e100d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb2f35059-99cc-477d-9e68-c3a035d125df.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9265
x-amzn-requestid: d84f905b-7faf-409a-b188-4b8cf06b9e4f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: da4KJGx9oAMFrQg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a1070d-43152d9651bcb4a15ffe1cfa;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 00:51:25 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: uGYoskcC2ev3JFxsBZGglmBiCCWmjo5Xg2zqe5925zArdzRk5QtuTQ==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 c5c7edc18be1805f007e0576da02e554.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 01:24:18 GMT
age: 70348
etag: "127850560e258665ca8074757c1b66f680d2bd78"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
business.news-reports.net/no4198271919/index_failid/logo.png
103.155.93.220200 OK 2.2 kB URL HTTP/1.1 business.news-reports.net/no4198271919/index_failid/logo.png
IP 103.155.93.220:0
File type PNG image data, 210 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash 2a666fec47c6ddd2e1fcb4521d05ea7d
433035a8154651301903cc91444b0f8655f1b137
c8763cd9b8f79665004c9a425826394c1c52f13795031ed9841f5f681aa0510f
GET /no4198271919/index_failid/logo.png HTTP/1.1
Host: business.news-reports.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://business.news-reports.net/no4198271919/?td=comerbia-immesses.com&cep=iafropLboiYS9PQFRSuMC684MuVgye5_loZTHeHx-jvXxg9XVh7XQgA3n8Q25HP8oYkk8zFNeP3iWBHMcser63JQNsqqxt3jn_cY-15HSb0zpsrvucFQHziiimu3fRU_PgbxeHPxdt-9COPDV0uM2XgBYySAUJ9EyFKqcvmXM1zTzTRlGwsGsBgXqgHjlbLhh7kloVmyvZ51iqNcwwZVJ73JdNwmZht0rRZEh0FG-4mAJRBaL6N4isAbw0RjT-exjo8puIe1vRIWxiv3Q8PTHT_z-p7pRi55RGgGKqCH7p5h339Gz7iH7YPFfSHYHgRo8a5nZDZbmX2mGPDUft9pM0RUeJ1wH0sDc-3q9d0uVBK_dFQOmhJ_P2y1daDGzpyh7rKI-jZKZsb2x3X-_XVB0X6R-MRgJm3pz6ax9ngYrphE8-Z_6oDkRwFMEQ_3oIwO4A-ANV9OP-vKYg_HhefGudyPdT1Zne3JrWWQeDId-8E&lptoken=168171895726161f05c0&zoneid=5337591&campaignid=6446448&ln=%7Blanguage%7D&cs=&visitor_id=629171971067752448
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 20 Dec 2022 20:56:46 GMT
Content-Type: image/png
Content-Length: 2190
Last-Modified: Mon, 19 Dec 2022 12:51:48 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "63a05e64-88e"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 746409a88b1342fe7b570306c302c71e
e08a7bf55e08a498f2eed6a35b90107fc0bdb303
9352308fd047bafceddfaf2a9a6eab650593f16ff5632330a4bf745750704650
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9352308FD047BAFCEDDFAF2A9A6EAB650593F16FF5632330A4BF745750704650"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3473
Expires: Tue, 20 Dec 2022 21:54:39 GMT
Date: Tue, 20 Dec 2022 20:56:46 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d762722-a130-4c65-99b1-2f6fb91155e5.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d762722-a130-4c65-99b1-2f6fb91155e5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c7ac0b5738bab6b4ed770c26ca922250
e56fd4ee2f5354a54a6271db2be528f98eecd3d7
5997d5be6bbeb189ef08af2f6c6dd5bb0cfa70ad7b40daab8712efe5adc2c6e1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d762722-a130-4c65-99b1-2f6fb91155e5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8450
x-amzn-requestid: a9f11c68-8327-46ba-9075-e316a2f9fdbb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dabr3FoSIAMFdtQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a0d97e-61b788f5675fe0e815e1e967;Sampled=0
x-amzn-remapped-date: Mon, 19 Dec 2022 21:37:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: EFtrPmVeBdwlINxF0wQq0671EksYsi6nsyFd5E4SCSH4_bQyGaNQHQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 a06140ffee86972bad90c57fc682df36.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Dec 2022 21:48:36 GMT
age: 83290
etag: "e56fd4ee2f5354a54a6271db2be528f98eecd3d7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
business.news-reports.net/no4198271919/index_failid/footer-mobile.png
103.155.93.220200 OK 17 kB URL HTTP/1.1 business.news-reports.net/no4198271919/index_failid/footer-mobile.png
IP 103.155.93.220:0
File type PNG image data, 110 x 120, 8-bit/color RGBA, non-interlaced\012- data
Hash 0119c8b29c3c1171f36f5d9986ff6d42
0e5222566c0911d88c8c94c95d8d34d7147585e8
c53075a7d7aac30d0d0b58ec4bc505e8b25807ba5a43ed9eaa0473649f190d5e
GET /no4198271919/index_failid/footer-mobile.png HTTP/1.1
Host: business.news-reports.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://business.news-reports.net/no4198271919/?td=comerbia-immesses.com&cep=iafropLboiYS9PQFRSuMC684MuVgye5_loZTHeHx-jvXxg9XVh7XQgA3n8Q25HP8oYkk8zFNeP3iWBHMcser63JQNsqqxt3jn_cY-15HSb0zpsrvucFQHziiimu3fRU_PgbxeHPxdt-9COPDV0uM2XgBYySAUJ9EyFKqcvmXM1zTzTRlGwsGsBgXqgHjlbLhh7kloVmyvZ51iqNcwwZVJ73JdNwmZht0rRZEh0FG-4mAJRBaL6N4isAbw0RjT-exjo8puIe1vRIWxiv3Q8PTHT_z-p7pRi55RGgGKqCH7p5h339Gz7iH7YPFfSHYHgRo8a5nZDZbmX2mGPDUft9pM0RUeJ1wH0sDc-3q9d0uVBK_dFQOmhJ_P2y1daDGzpyh7rKI-jZKZsb2x3X-_XVB0X6R-MRgJm3pz6ax9ngYrphE8-Z_6oDkRwFMEQ_3oIwO4A-ANV9OP-vKYg_HhefGudyPdT1Zne3JrWWQeDId-8E&lptoken=168171895726161f05c0&zoneid=5337591&campaignid=6446448&ln=%7Blanguage%7D&cs=&visitor_id=629171971067752448
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 20 Dec 2022 20:56:46 GMT
Content-Type: image/png
Content-Length: 17352
Last-Modified: Mon, 19 Dec 2022 12:51:46 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "63a05e62-43c8"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
business.news-reports.net/no4198271919/index_failid/abonnement.png
103.155.93.220200 OK 28 kB URL HTTP/1.1 business.news-reports.net/no4198271919/index_failid/abonnement.png
IP 103.155.93.220:0
File type PNG image data, 240 x 104, 8-bit/color RGB, non-interlaced\012- data
Hash 530f35b32926dee2dae506ab46d6126a
ac0cc16832f03442f9b1d7902910ae262ce31dde
a42020105cd36593758ce11cb57b94251efb0c6388b31254a954161f6a13f660
GET /no4198271919/index_failid/abonnement.png HTTP/1.1
Host: business.news-reports.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://business.news-reports.net/no4198271919/?td=comerbia-immesses.com&cep=iafropLboiYS9PQFRSuMC684MuVgye5_loZTHeHx-jvXxg9XVh7XQgA3n8Q25HP8oYkk8zFNeP3iWBHMcser63JQNsqqxt3jn_cY-15HSb0zpsrvucFQHziiimu3fRU_PgbxeHPxdt-9COPDV0uM2XgBYySAUJ9EyFKqcvmXM1zTzTRlGwsGsBgXqgHjlbLhh7kloVmyvZ51iqNcwwZVJ73JdNwmZht0rRZEh0FG-4mAJRBaL6N4isAbw0RjT-exjo8puIe1vRIWxiv3Q8PTHT_z-p7pRi55RGgGKqCH7p5h339Gz7iH7YPFfSHYHgRo8a5nZDZbmX2mGPDUft9pM0RUeJ1wH0sDc-3q9d0uVBK_dFQOmhJ_P2y1daDGzpyh7rKI-jZKZsb2x3X-_XVB0X6R-MRgJm3pz6ax9ngYrphE8-Z_6oDkRwFMEQ_3oIwO4A-ANV9OP-vKYg_HhefGudyPdT1Zne3JrWWQeDId-8E&lptoken=168171895726161f05c0&zoneid=5337591&campaignid=6446448&ln=%7Blanguage%7D&cs=&visitor_id=629171971067752448
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 20 Dec 2022 20:56:46 GMT
Content-Type: image/png
Content-Length: 28302
Last-Modified: Mon, 19 Dec 2022 12:51:44 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "63a05e60-6e8e"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82b028aa-d0e3-4082-a385-1385bc5c6e06.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82b028aa-d0e3-4082-a385-1385bc5c6e06.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 045f016fb66e6e0d1da1fb742d9b19a7
8f98bf2cedfccfce71464a733e2fd37482fd71c2
593cf38d1c2c315ff23fcda60e41141caa0266874f36a0c517554ca01ea51f12
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82b028aa-d0e3-4082-a385-1385bc5c6e06.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9216
x-amzn-requestid: 460a95bf-5724-4bea-b6c1-f6ce263da5e7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dabq8FXboAMFwCQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a0d979-70340469247cdcf952a98c3e;Sampled=0
x-amzn-remapped-date: Mon, 19 Dec 2022 21:36:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: 7yYJKslDn22-iL_OH_VIiZdrTMJ-9c-DyORpGZ4d2MZLDoX5PpekRw==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 446e26a256db1310ae719d818e420898.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Dec 2022 21:48:32 GMT
age: 83294
etag: "8f98bf2cedfccfce71464a733e2fd37482fd71c2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
business.news-reports.net/no4198271919/index_failid/app-apple.png
103.155.93.220200 OK 7.8 kB URL HTTP/1.1 business.news-reports.net/no4198271919/index_failid/app-apple.png
IP 103.155.93.220:0
File type PNG image data, 110 x 132, 8-bit/color RGBA, non-interlaced\012- data
Hash 1bea173075bd04035411c27ca4d15a6f
8ad039c46dbdf35cc045129492b17d5527df2296
97184a66205479b831071f32dda3931c0771ba9edcbed0fe647005f0b479122a
GET /no4198271919/index_failid/app-apple.png HTTP/1.1
Host: business.news-reports.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://business.news-reports.net/no4198271919/?td=comerbia-immesses.com&cep=iafropLboiYS9PQFRSuMC684MuVgye5_loZTHeHx-jvXxg9XVh7XQgA3n8Q25HP8oYkk8zFNeP3iWBHMcser63JQNsqqxt3jn_cY-15HSb0zpsrvucFQHziiimu3fRU_PgbxeHPxdt-9COPDV0uM2XgBYySAUJ9EyFKqcvmXM1zTzTRlGwsGsBgXqgHjlbLhh7kloVmyvZ51iqNcwwZVJ73JdNwmZht0rRZEh0FG-4mAJRBaL6N4isAbw0RjT-exjo8puIe1vRIWxiv3Q8PTHT_z-p7pRi55RGgGKqCH7p5h339Gz7iH7YPFfSHYHgRo8a5nZDZbmX2mGPDUft9pM0RUeJ1wH0sDc-3q9d0uVBK_dFQOmhJ_P2y1daDGzpyh7rKI-jZKZsb2x3X-_XVB0X6R-MRgJm3pz6ax9ngYrphE8-Z_6oDkRwFMEQ_3oIwO4A-ANV9OP-vKYg_HhefGudyPdT1Zne3JrWWQeDId-8E&lptoken=168171895726161f05c0&zoneid=5337591&campaignid=6446448&ln=%7Blanguage%7D&cs=&visitor_id=629171971067752448
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 20 Dec 2022 20:56:46 GMT
Content-Type: image/png
Content-Length: 7814
Last-Modified: Mon, 19 Dec 2022 12:51:44 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "63a05e60-1e86"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
business.news-reports.net/no4198271919/index_failid/monster_logo.png
103.155.93.220200 OK 2.8 kB URL HTTP/1.1 business.news-reports.net/no4198271919/index_failid/monster_logo.png
IP 103.155.93.220:0
File type PNG image data, 112 x 19, 8-bit/color RGB, non-interlaced\012- data
Hash 1d9bc64f16f7c33a68cba7acd54eddb4
2699a2a73b3b768f12d5e014b0707d962336191a
7d1c874361557c08ee52702b5123e649594d289bd69cf45c3efc8fb5177acf9d
GET /no4198271919/index_failid/monster_logo.png HTTP/1.1
Host: business.news-reports.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://business.news-reports.net/no4198271919/?td=comerbia-immesses.com&cep=iafropLboiYS9PQFRSuMC684MuVgye5_loZTHeHx-jvXxg9XVh7XQgA3n8Q25HP8oYkk8zFNeP3iWBHMcser63JQNsqqxt3jn_cY-15HSb0zpsrvucFQHziiimu3fRU_PgbxeHPxdt-9COPDV0uM2XgBYySAUJ9EyFKqcvmXM1zTzTRlGwsGsBgXqgHjlbLhh7kloVmyvZ51iqNcwwZVJ73JdNwmZht0rRZEh0FG-4mAJRBaL6N4isAbw0RjT-exjo8puIe1vRIWxiv3Q8PTHT_z-p7pRi55RGgGKqCH7p5h339Gz7iH7YPFfSHYHgRo8a5nZDZbmX2mGPDUft9pM0RUeJ1wH0sDc-3q9d0uVBK_dFQOmhJ_P2y1daDGzpyh7rKI-jZKZsb2x3X-_XVB0X6R-MRgJm3pz6ax9ngYrphE8-Z_6oDkRwFMEQ_3oIwO4A-ANV9OP-vKYg_HhefGudyPdT1Zne3JrWWQeDId-8E&lptoken=168171895726161f05c0&zoneid=5337591&campaignid=6446448&ln=%7Blanguage%7D&cs=&visitor_id=629171971067752448
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 20 Dec 2022 20:56:46 GMT
Content-Type: image/png
Content-Length: 2801
Last-Modified: Mon, 19 Dec 2022 12:51:50 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "63a05e66-af1"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
business.news-reports.net/no4198271919/index_failid/menu-grey.png
103.155.93.220200 OK 146 B URL HTTP/1.1 business.news-reports.net/no4198271919/index_failid/menu-grey.png
IP 103.155.93.220:0
File type PNG image data, 32 x 32, 4-bit colormap, non-interlaced\012- data
Hash ca538cdb819a00adad8cd66a24a71165
794279e984b30a4f4d0314ffc1d15d21c3f244d3
7424ba28237f2ec5c99b92c319303f8ab1efaeaf85c2e33764c0d7dadbb97321
GET /no4198271919/index_failid/menu-grey.png HTTP/1.1
Host: business.news-reports.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://business.news-reports.net/no4198271919/?td=comerbia-immesses.com&cep=iafropLboiYS9PQFRSuMC684MuVgye5_loZTHeHx-jvXxg9XVh7XQgA3n8Q25HP8oYkk8zFNeP3iWBHMcser63JQNsqqxt3jn_cY-15HSb0zpsrvucFQHziiimu3fRU_PgbxeHPxdt-9COPDV0uM2XgBYySAUJ9EyFKqcvmXM1zTzTRlGwsGsBgXqgHjlbLhh7kloVmyvZ51iqNcwwZVJ73JdNwmZht0rRZEh0FG-4mAJRBaL6N4isAbw0RjT-exjo8puIe1vRIWxiv3Q8PTHT_z-p7pRi55RGgGKqCH7p5h339Gz7iH7YPFfSHYHgRo8a5nZDZbmX2mGPDUft9pM0RUeJ1wH0sDc-3q9d0uVBK_dFQOmhJ_P2y1daDGzpyh7rKI-jZKZsb2x3X-_XVB0X6R-MRgJm3pz6ax9ngYrphE8-Z_6oDkRwFMEQ_3oIwO4A-ANV9OP-vKYg_HhefGudyPdT1Zne3JrWWQeDId-8E&lptoken=168171895726161f05c0&zoneid=5337591&campaignid=6446448&ln=%7Blanguage%7D&cs=&visitor_id=629171971067752448
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 20 Dec 2022 20:56:46 GMT
Content-Type: image/png
Content-Length: 146
Last-Modified: Mon, 19 Dec 2022 12:51:50 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "63a05e66-92"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
business.news-reports.net/no4198271919/index_failid/scandal.jpg
103.155.93.220200 OK 46 kB URL HTTP/1.1 business.news-reports.net/no4198271919/index_failid/scandal.jpg
IP 103.155.93.220:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 600x384, components 3\012- data
Hash 7a0ceaa25393b8aa4d7dcea7fa5b0d54
26c8ae2c71f7a8548adf614b5f41730eb8bacedd
87a15a19f98f27a612d4be66d34b9e7f350016fc3661fa07c29dc9a579d50439
GET /no4198271919/index_failid/scandal.jpg HTTP/1.1
Host: business.news-reports.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://business.news-reports.net/no4198271919/?td=comerbia-immesses.com&cep=iafropLboiYS9PQFRSuMC684MuVgye5_loZTHeHx-jvXxg9XVh7XQgA3n8Q25HP8oYkk8zFNeP3iWBHMcser63JQNsqqxt3jn_cY-15HSb0zpsrvucFQHziiimu3fRU_PgbxeHPxdt-9COPDV0uM2XgBYySAUJ9EyFKqcvmXM1zTzTRlGwsGsBgXqgHjlbLhh7kloVmyvZ51iqNcwwZVJ73JdNwmZht0rRZEh0FG-4mAJRBaL6N4isAbw0RjT-exjo8puIe1vRIWxiv3Q8PTHT_z-p7pRi55RGgGKqCH7p5h339Gz7iH7YPFfSHYHgRo8a5nZDZbmX2mGPDUft9pM0RUeJ1wH0sDc-3q9d0uVBK_dFQOmhJ_P2y1daDGzpyh7rKI-jZKZsb2x3X-_XVB0X6R-MRgJm3pz6ax9ngYrphE8-Z_6oDkRwFMEQ_3oIwO4A-ANV9OP-vKYg_HhefGudyPdT1Zne3JrWWQeDId-8E&lptoken=168171895726161f05c0&zoneid=5337591&campaignid=6446448&ln=%7Blanguage%7D&cs=&visitor_id=629171971067752448
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 20 Dec 2022 20:56:46 GMT
Content-Type: image/jpeg
Content-Length: 46500
Last-Modified: Mon, 19 Dec 2022 12:51:51 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "63a05e67-b5a4"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
business.news-reports.net/no4198271919/index_failid/comment.jpg
103.155.93.220200 OK 4.4 kB URL HTTP/1.1 business.news-reports.net/no4198271919/index_failid/comment.jpg
IP 103.155.93.220:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 68x22, components 3\012- data
Hash 10738ce84ddd05eeb9216ed8324225b3
75fe44380c32ec845694ae88d1eff99859898216
d7c2ca7c311f9e7023065ede7eece8325b2f9038ab10d1974b7684f9e410d63a
GET /no4198271919/index_failid/comment.jpg HTTP/1.1
Host: business.news-reports.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://business.news-reports.net/no4198271919/?td=comerbia-immesses.com&cep=iafropLboiYS9PQFRSuMC684MuVgye5_loZTHeHx-jvXxg9XVh7XQgA3n8Q25HP8oYkk8zFNeP3iWBHMcser63JQNsqqxt3jn_cY-15HSb0zpsrvucFQHziiimu3fRU_PgbxeHPxdt-9COPDV0uM2XgBYySAUJ9EyFKqcvmXM1zTzTRlGwsGsBgXqgHjlbLhh7kloVmyvZ51iqNcwwZVJ73JdNwmZht0rRZEh0FG-4mAJRBaL6N4isAbw0RjT-exjo8puIe1vRIWxiv3Q8PTHT_z-p7pRi55RGgGKqCH7p5h339Gz7iH7YPFfSHYHgRo8a5nZDZbmX2mGPDUft9pM0RUeJ1wH0sDc-3q9d0uVBK_dFQOmhJ_P2y1daDGzpyh7rKI-jZKZsb2x3X-_XVB0X6R-MRgJm3pz6ax9ngYrphE8-Z_6oDkRwFMEQ_3oIwO4A-ANV9OP-vKYg_HhefGudyPdT1Zne3JrWWQeDId-8E&lptoken=168171895726161f05c0&zoneid=5337591&campaignid=6446448&ln=%7Blanguage%7D&cs=&visitor_id=629171971067752448
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 20 Dec 2022 20:56:46 GMT
Content-Type: image/jpeg
Content-Length: 4418
Last-Modified: Mon, 19 Dec 2022 12:51:46 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "63a05e62-1142"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
business.news-reports.net/no4198271919/index_failid/img-user-asian-new-female02.jpg
103.155.93.220200 OK 6.1 kB URL HTTP/1.1 business.news-reports.net/no4198271919/index_failid/img-user-asian-new-female02.jpg
IP 103.155.93.220:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "*", progressive, precision 8, 160x160, components 3\012- data
Hash 719c565612286b72ae91f7fea52c2b63
811f11534dc02dd6c9fb83b728504f880530324d
62bc2909af582a0af35b396be0d6734eba42544ebbdba17dce9b9cd3a1154afb
GET /no4198271919/index_failid/img-user-asian-new-female02.jpg HTTP/1.1
Host: business.news-reports.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://business.news-reports.net/no4198271919/?td=comerbia-immesses.com&cep=iafropLboiYS9PQFRSuMC684MuVgye5_loZTHeHx-jvXxg9XVh7XQgA3n8Q25HP8oYkk8zFNeP3iWBHMcser63JQNsqqxt3jn_cY-15HSb0zpsrvucFQHziiimu3fRU_PgbxeHPxdt-9COPDV0uM2XgBYySAUJ9EyFKqcvmXM1zTzTRlGwsGsBgXqgHjlbLhh7kloVmyvZ51iqNcwwZVJ73JdNwmZht0rRZEh0FG-4mAJRBaL6N4isAbw0RjT-exjo8puIe1vRIWxiv3Q8PTHT_z-p7pRi55RGgGKqCH7p5h339Gz7iH7YPFfSHYHgRo8a5nZDZbmX2mGPDUft9pM0RUeJ1wH0sDc-3q9d0uVBK_dFQOmhJ_P2y1daDGzpyh7rKI-jZKZsb2x3X-_XVB0X6R-MRgJm3pz6ax9ngYrphE8-Z_6oDkRwFMEQ_3oIwO4A-ANV9OP-vKYg_HhefGudyPdT1Zne3JrWWQeDId-8E&lptoken=168171895726161f05c0&zoneid=5337591&campaignid=6446448&ln=%7Blanguage%7D&cs=&visitor_id=629171971067752448
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 20 Dec 2022 20:56:46 GMT
Content-Type: image/jpeg
Content-Length: 6143
Last-Modified: Mon, 19 Dec 2022 12:51:47 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "63a05e63-17ff"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
business.news-reports.net/no4198271919/index_failid/188.css
103.155.93.220200 OK 222 B URL HTTP/1.1 business.news-reports.net/no4198271919/index_failid/188.css
IP 103.155.93.220:0
Hash 998f729afd0cdccdaf1ccd12554fecea
f4cf370e3677272212218de0b65180b44c68f78e
a76670cf1203d5bec66d42d3947653133bb097dfd8e94e23035bc459ab4fec06
GET /no4198271919/index_failid/188.css HTTP/1.1
Host: business.news-reports.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://business.news-reports.net/no4198271919/?td=comerbia-immesses.com&cep=iafropLboiYS9PQFRSuMC684MuVgye5_loZTHeHx-jvXxg9XVh7XQgA3n8Q25HP8oYkk8zFNeP3iWBHMcser63JQNsqqxt3jn_cY-15HSb0zpsrvucFQHziiimu3fRU_PgbxeHPxdt-9COPDV0uM2XgBYySAUJ9EyFKqcvmXM1zTzTRlGwsGsBgXqgHjlbLhh7kloVmyvZ51iqNcwwZVJ73JdNwmZht0rRZEh0FG-4mAJRBaL6N4isAbw0RjT-exjo8puIe1vRIWxiv3Q8PTHT_z-p7pRi55RGgGKqCH7p5h339Gz7iH7YPFfSHYHgRo8a5nZDZbmX2mGPDUft9pM0RUeJ1wH0sDc-3q9d0uVBK_dFQOmhJ_P2y1daDGzpyh7rKI-jZKZsb2x3X-_XVB0X6R-MRgJm3pz6ax9ngYrphE8-Z_6oDkRwFMEQ_3oIwO4A-ANV9OP-vKYg_HhefGudyPdT1Zne3JrWWQeDId-8E&lptoken=168171895726161f05c0&zoneid=5337591&campaignid=6446448&ln=%7Blanguage%7D&cs=&visitor_id=629171971067752448
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 20 Dec 2022 20:56:46 GMT
Content-Type: text/css
Last-Modified: Mon, 19 Dec 2022 12:51:43 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
ETag: W/"63a05e5f-39d"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Content-Encoding: gzip
business.news-reports.net/no4198271919/index_failid/img-user-white-female07.jpg
103.155.93.220200 OK 7.9 kB URL HTTP/1.1 business.news-reports.net/no4198271919/index_failid/img-user-white-female07.jpg
IP 103.155.93.220:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "*", progressive, precision 8, 160x160, components 3\012- data
Hash f175da426ec493d77e4ac202ba84da3e
e57d147d1d86f121c7a11732cc996cefbde00548
8c83b55ddddaad89655437dadba76599ade8230a75408ca1c3b51d6b760f4cf3
GET /no4198271919/index_failid/img-user-white-female07.jpg HTTP/1.1
Host: business.news-reports.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://business.news-reports.net/no4198271919/?td=comerbia-immesses.com&cep=iafropLboiYS9PQFRSuMC684MuVgye5_loZTHeHx-jvXxg9XVh7XQgA3n8Q25HP8oYkk8zFNeP3iWBHMcser63JQNsqqxt3jn_cY-15HSb0zpsrvucFQHziiimu3fRU_PgbxeHPxdt-9COPDV0uM2XgBYySAUJ9EyFKqcvmXM1zTzTRlGwsGsBgXqgHjlbLhh7kloVmyvZ51iqNcwwZVJ73JdNwmZht0rRZEh0FG-4mAJRBaL6N4isAbw0RjT-exjo8puIe1vRIWxiv3Q8PTHT_z-p7pRi55RGgGKqCH7p5h339Gz7iH7YPFfSHYHgRo8a5nZDZbmX2mGPDUft9pM0RUeJ1wH0sDc-3q9d0uVBK_dFQOmhJ_P2y1daDGzpyh7rKI-jZKZsb2x3X-_XVB0X6R-MRgJm3pz6ax9ngYrphE8-Z_6oDkRwFMEQ_3oIwO4A-ANV9OP-vKYg_HhefGudyPdT1Zne3JrWWQeDId-8E&lptoken=168171895726161f05c0&zoneid=5337591&campaignid=6446448&ln=%7Blanguage%7D&cs=&visitor_id=629171971067752448
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 20 Dec 2022 20:56:46 GMT
Content-Type: image/jpeg
Content-Length: 7886
Last-Modified: Mon, 19 Dec 2022 12:51:47 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "63a05e63-1ece"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
business.news-reports.net/no4198271919/index_failid/blank-picture.jpg
103.155.93.220200 OK 987 B URL HTTP/1.1 business.news-reports.net/no4198271919/index_failid/blank-picture.jpg
IP 103.155.93.220:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 267a4ef3568a448572645b0f5d97c36f
c2cddc4dfea572fdaf18b0e8cce77cc73c10bab2
267ded37bff34b6c9c17a119f515d124afd19640a98f0700721a299d3e76584f
GET /no4198271919/index_failid/blank-picture.jpg HTTP/1.1
Host: business.news-reports.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://business.news-reports.net/no4198271919/?td=comerbia-immesses.com&cep=iafropLboiYS9PQFRSuMC684MuVgye5_loZTHeHx-jvXxg9XVh7XQgA3n8Q25HP8oYkk8zFNeP3iWBHMcser63JQNsqqxt3jn_cY-15HSb0zpsrvucFQHziiimu3fRU_PgbxeHPxdt-9COPDV0uM2XgBYySAUJ9EyFKqcvmXM1zTzTRlGwsGsBgXqgHjlbLhh7kloVmyvZ51iqNcwwZVJ73JdNwmZht0rRZEh0FG-4mAJRBaL6N4isAbw0RjT-exjo8puIe1vRIWxiv3Q8PTHT_z-p7pRi55RGgGKqCH7p5h339Gz7iH7YPFfSHYHgRo8a5nZDZbmX2mGPDUft9pM0RUeJ1wH0sDc-3q9d0uVBK_dFQOmhJ_P2y1daDGzpyh7rKI-jZKZsb2x3X-_XVB0X6R-MRgJm3pz6ax9ngYrphE8-Z_6oDkRwFMEQ_3oIwO4A-ANV9OP-vKYg_HhefGudyPdT1Zne3JrWWQeDId-8E&lptoken=168171895726161f05c0&zoneid=5337591&campaignid=6446448&ln=%7Blanguage%7D&cs=&visitor_id=629171971067752448
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 20 Dec 2022 20:56:46 GMT
Content-Type: image/jpeg
Content-Length: 987
Last-Modified: Mon, 19 Dec 2022 12:51:45 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "63a05e61-3db"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
business.news-reports.net/no4198271919/index_failid/n4.jpg
103.155.93.220200 OK 2.7 kB URL HTTP/1.1 business.news-reports.net/no4198271919/index_failid/n4.jpg
IP 103.155.93.220:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "*", progressive, precision 8, 92x92, components 3\012- data
Hash 8b7e173699a0f46ec497a89c8f0a4d2a
7bef92942e405ba1b2334f0dfa393a94d48916ab
d8b5b036e05cd94256f60eda67c97667cc1d19e6b86fdab14246f8e12abb64eb
GET /no4198271919/index_failid/n4.jpg HTTP/1.1
Host: business.news-reports.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://business.news-reports.net/no4198271919/?td=comerbia-immesses.com&cep=iafropLboiYS9PQFRSuMC684MuVgye5_loZTHeHx-jvXxg9XVh7XQgA3n8Q25HP8oYkk8zFNeP3iWBHMcser63JQNsqqxt3jn_cY-15HSb0zpsrvucFQHziiimu3fRU_PgbxeHPxdt-9COPDV0uM2XgBYySAUJ9EyFKqcvmXM1zTzTRlGwsGsBgXqgHjlbLhh7kloVmyvZ51iqNcwwZVJ73JdNwmZht0rRZEh0FG-4mAJRBaL6N4isAbw0RjT-exjo8puIe1vRIWxiv3Q8PTHT_z-p7pRi55RGgGKqCH7p5h339Gz7iH7YPFfSHYHgRo8a5nZDZbmX2mGPDUft9pM0RUeJ1wH0sDc-3q9d0uVBK_dFQOmhJ_P2y1daDGzpyh7rKI-jZKZsb2x3X-_XVB0X6R-MRgJm3pz6ax9ngYrphE8-Z_6oDkRwFMEQ_3oIwO4A-ANV9OP-vKYg_HhefGudyPdT1Zne3JrWWQeDId-8E&lptoken=168171895726161f05c0&zoneid=5337591&campaignid=6446448&ln=%7Blanguage%7D&cs=&visitor_id=629171971067752448
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 20 Dec 2022 20:56:46 GMT
Content-Type: image/jpeg
Content-Length: 2653
Last-Modified: Mon, 19 Dec 2022 12:51:50 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "63a05e66-a5d"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
business.news-reports.net/no4198271919/index_failid/img-user-white-male12.jpg
103.155.93.220200 OK 4.0 kB URL HTTP/1.1 business.news-reports.net/no4198271919/index_failid/img-user-white-male12.jpg
IP 103.155.93.220:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, comment: "*", progressive, precision 8, 160x160, components 3\012- data
Hash 79a142a80f11ed3402e459417bdb6726
db12b4c96baf8f73696ce30358a01b0d4f31ceb1
3b5cd95d9b6bf7559ded1b0634ea7ca3766bfaef7786b97b301881d8e53947f6
GET /no4198271919/index_failid/img-user-white-male12.jpg HTTP/1.1
Host: business.news-reports.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://business.news-reports.net/no4198271919/?td=comerbia-immesses.com&cep=iafropLboiYS9PQFRSuMC684MuVgye5_loZTHeHx-jvXxg9XVh7XQgA3n8Q25HP8oYkk8zFNeP3iWBHMcser63JQNsqqxt3jn_cY-15HSb0zpsrvucFQHziiimu3fRU_PgbxeHPxdt-9COPDV0uM2XgBYySAUJ9EyFKqcvmXM1zTzTRlGwsGsBgXqgHjlbLhh7kloVmyvZ51iqNcwwZVJ73JdNwmZht0rRZEh0FG-4mAJRBaL6N4isAbw0RjT-exjo8puIe1vRIWxiv3Q8PTHT_z-p7pRi55RGgGKqCH7p5h339Gz7iH7YPFfSHYHgRo8a5nZDZbmX2mGPDUft9pM0RUeJ1wH0sDc-3q9d0uVBK_dFQOmhJ_P2y1daDGzpyh7rKI-jZKZsb2x3X-_XVB0X6R-MRgJm3pz6ax9ngYrphE8-Z_6oDkRwFMEQ_3oIwO4A-ANV9OP-vKYg_HhefGudyPdT1Zne3JrWWQeDId-8E&lptoken=168171895726161f05c0&zoneid=5337591&campaignid=6446448&ln=%7Blanguage%7D&cs=&visitor_id=629171971067752448
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 20 Dec 2022 20:56:46 GMT
Content-Type: image/jpeg
Content-Length: 3993
Last-Modified: Mon, 19 Dec 2022 12:51:47 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "63a05e63-f99"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
business.news-reports.net/no4198271919/index_failid/img-user-white-female11.jpg
103.155.93.220200 OK 4.7 kB URL HTTP/1.1 business.news-reports.net/no4198271919/index_failid/img-user-white-female11.jpg
IP 103.155.93.220:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 160x160, components 3\012- data
Hash e20a9fae61afcc755a1d55861b033379
23ec24b5cca839af1b91c3a9fe7a69bfd9b52518
9e6752a96225587259c4ecd16fdba9b9732da1b8619b6f1805146ef8292ce852
GET /no4198271919/index_failid/img-user-white-female11.jpg HTTP/1.1
Host: business.news-reports.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://business.news-reports.net/no4198271919/?td=comerbia-immesses.com&cep=iafropLboiYS9PQFRSuMC684MuVgye5_loZTHeHx-jvXxg9XVh7XQgA3n8Q25HP8oYkk8zFNeP3iWBHMcser63JQNsqqxt3jn_cY-15HSb0zpsrvucFQHziiimu3fRU_PgbxeHPxdt-9COPDV0uM2XgBYySAUJ9EyFKqcvmXM1zTzTRlGwsGsBgXqgHjlbLhh7kloVmyvZ51iqNcwwZVJ73JdNwmZht0rRZEh0FG-4mAJRBaL6N4isAbw0RjT-exjo8puIe1vRIWxiv3Q8PTHT_z-p7pRi55RGgGKqCH7p5h339Gz7iH7YPFfSHYHgRo8a5nZDZbmX2mGPDUft9pM0RUeJ1wH0sDc-3q9d0uVBK_dFQOmhJ_P2y1daDGzpyh7rKI-jZKZsb2x3X-_XVB0X6R-MRgJm3pz6ax9ngYrphE8-Z_6oDkRwFMEQ_3oIwO4A-ANV9OP-vKYg_HhefGudyPdT1Zne3JrWWQeDId-8E&lptoken=168171895726161f05c0&zoneid=5337591&campaignid=6446448&ln=%7Blanguage%7D&cs=&visitor_id=629171971067752448
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 20 Dec 2022 20:56:46 GMT
Content-Type: image/jpeg
Content-Length: 4713
Last-Modified: Mon, 19 Dec 2022 12:51:47 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "63a05e63-1269"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
business.news-reports.net/no4198271919/index_failid/mr-no-1.jpg
103.155.93.220200 OK 27 kB URL HTTP/1.1 business.news-reports.net/no4198271919/index_failid/mr-no-1.jpg
IP 103.155.93.220:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 550x161, components 3\012- data
Hash 24ee5899a438ecbef9ded4c3af61d376
6972979cab392f4817b80e257c81d9b8ee2ce817
ade414be30a18c022f0bf58293916c77993580bc7987d84cede4ff8fbb4645eb
GET /no4198271919/index_failid/mr-no-1.jpg HTTP/1.1
Host: business.news-reports.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://business.news-reports.net/no4198271919/?td=comerbia-immesses.com&cep=iafropLboiYS9PQFRSuMC684MuVgye5_loZTHeHx-jvXxg9XVh7XQgA3n8Q25HP8oYkk8zFNeP3iWBHMcser63JQNsqqxt3jn_cY-15HSb0zpsrvucFQHziiimu3fRU_PgbxeHPxdt-9COPDV0uM2XgBYySAUJ9EyFKqcvmXM1zTzTRlGwsGsBgXqgHjlbLhh7kloVmyvZ51iqNcwwZVJ73JdNwmZht0rRZEh0FG-4mAJRBaL6N4isAbw0RjT-exjo8puIe1vRIWxiv3Q8PTHT_z-p7pRi55RGgGKqCH7p5h339Gz7iH7YPFfSHYHgRo8a5nZDZbmX2mGPDUft9pM0RUeJ1wH0sDc-3q9d0uVBK_dFQOmhJ_P2y1daDGzpyh7rKI-jZKZsb2x3X-_XVB0X6R-MRgJm3pz6ax9ngYrphE8-Z_6oDkRwFMEQ_3oIwO4A-ANV9OP-vKYg_HhefGudyPdT1Zne3JrWWQeDId-8E&lptoken=168171895726161f05c0&zoneid=5337591&campaignid=6446448&ln=%7Blanguage%7D&cs=&visitor_id=629171971067752448
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 20 Dec 2022 20:56:46 GMT
Content-Type: image/jpeg
Content-Length: 26613
Last-Modified: Mon, 19 Dec 2022 12:51:50 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "63a05e66-67f5"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
business.news-reports.net/no4198271919/index_failid/app-android.png
103.155.93.220200 OK 7.3 kB URL HTTP/1.1 business.news-reports.net/no4198271919/index_failid/app-android.png
IP 103.155.93.220:0
File type PNG image data, 111 x 123, 8-bit/color RGBA, non-interlaced\012- data
Hash 913bb57bf4fc8768c0f6130fb80e23bb
dea92cf36b3bbea6e3b2f41bdae62ec6a912b135
7a3ab9abfe1a84403ef86c5fde64d8011b26377538694639bb694b74e45b127c
GET /no4198271919/index_failid/app-android.png HTTP/1.1
Host: business.news-reports.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://business.news-reports.net/no4198271919/?td=comerbia-immesses.com&cep=iafropLboiYS9PQFRSuMC684MuVgye5_loZTHeHx-jvXxg9XVh7XQgA3n8Q25HP8oYkk8zFNeP3iWBHMcser63JQNsqqxt3jn_cY-15HSb0zpsrvucFQHziiimu3fRU_PgbxeHPxdt-9COPDV0uM2XgBYySAUJ9EyFKqcvmXM1zTzTRlGwsGsBgXqgHjlbLhh7kloVmyvZ51iqNcwwZVJ73JdNwmZht0rRZEh0FG-4mAJRBaL6N4isAbw0RjT-exjo8puIe1vRIWxiv3Q8PTHT_z-p7pRi55RGgGKqCH7p5h339Gz7iH7YPFfSHYHgRo8a5nZDZbmX2mGPDUft9pM0RUeJ1wH0sDc-3q9d0uVBK_dFQOmhJ_P2y1daDGzpyh7rKI-jZKZsb2x3X-_XVB0X6R-MRgJm3pz6ax9ngYrphE8-Z_6oDkRwFMEQ_3oIwO4A-ANV9OP-vKYg_HhefGudyPdT1Zne3JrWWQeDId-8E&lptoken=168171895726161f05c0&zoneid=5337591&campaignid=6446448&ln=%7Blanguage%7D&cs=&visitor_id=629171971067752448
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 20 Dec 2022 20:56:46 GMT
Content-Type: image/png
Content-Length: 7299
Last-Modified: Mon, 19 Dec 2022 12:51:44 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "63a05e60-1c83"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
business.news-reports.net/no4198271919/index_failid/sprite-icons.png
103.155.93.220200 OK 11 kB URL HTTP/1.1 business.news-reports.net/no4198271919/index_failid/sprite-icons.png
IP 103.155.93.220:0
File type PNG image data, 47 x 1100, 8-bit/color RGBA, non-interlaced\012- data
Hash cd40fb94654aa69bf30f199858b7ccba
80f380deb70a2dd5b4a597b2186f2d3e46aa8e46
44f93e315cbb77ab08ab3f8b31961c1d4cf0371c6328f229ab8f1617ae325def
GET /no4198271919/index_failid/sprite-icons.png HTTP/1.1
Host: business.news-reports.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://business.news-reports.net/no4198271919/index_failid/057dd4e.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 20 Dec 2022 20:56:46 GMT
Content-Type: image/png
Content-Length: 10778
Last-Modified: Mon, 19 Dec 2022 12:51:51 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "63a05e67-2a1a"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
business.news-reports.net/no4198271919/index_failid/bundles/download-app.png
103.155.93.220404 Not Found 248 B URL HTTP/1.1 business.news-reports.net/no4198271919/index_failid/bundles/download-app.png
IP 103.155.93.220:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8412f8abdc0a4c03fbec4e81d9ef5668
e737394f1b1a7ca5d1b16fece7c9f13c02797f83
4e48ef74e51f51c0a0dd31ebc51a0c9473e4f29391c1891db90326022b1abab5
GET /no4198271919/index_failid/bundles/download-app.png HTTP/1.1
Host: business.news-reports.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://business.news-reports.net/no4198271919/index_failid/057dd4e.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 20 Dec 2022 20:56:46 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 248
Connection: keep-alive
Keep-Alive: timeout=60
business.news-reports.net/no4198271919/index_failid/sprite-article.png
103.155.93.220200 OK 3.6 kB URL HTTP/1.1 business.news-reports.net/no4198271919/index_failid/sprite-article.png
IP 103.155.93.220:0
File type PNG image data, 20 x 440, 8-bit/color RGBA, non-interlaced\012- data
Hash a738e5857d2be22bb0a8dea6a08d9785
0110d46be76cd8ade8de072068f7182b8c5112f5
4a0ed9a107ad5654e45c05379d0c99944f06940b85e0448e0292d48cc60b54fd
GET /no4198271919/index_failid/sprite-article.png HTTP/1.1
Host: business.news-reports.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://business.news-reports.net/no4198271919/index_failid/057dd4e.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 20 Dec 2022 20:56:46 GMT
Content-Type: image/png
Content-Length: 3636
Last-Modified: Mon, 19 Dec 2022 12:51:51 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "63a05e67-e34"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
business.news-reports.net/no4198271919/index_failid/sprite-icons.gif
103.155.93.220404 Not Found 240 B URL HTTP/1.1 business.news-reports.net/no4198271919/index_failid/sprite-icons.gif
IP 103.155.93.220:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 867b2c5f305b5b93d47b9e314086fee4
6d2dfb7132ebbf445e605532c1fcfbe90a785029
c2627bac6f2dbae5d117c25634da53d147a4d5a2fdfe70e62e1ae7442081a054
GET /no4198271919/index_failid/sprite-icons.gif HTTP/1.1
Host: business.news-reports.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://business.news-reports.net/no4198271919/index_failid/057dd4e.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 20 Dec 2022 20:56:46 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 240
Connection: keep-alive
Keep-Alive: timeout=60
business.news-reports.net/no4198271919/index_failid/like.png
103.155.93.220404 Not Found 232 B URL HTTP/1.1 business.news-reports.net/no4198271919/index_failid/like.png
IP 103.155.93.220:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 240b9541f6d851774cf9198671cc4541
2a6e9ebd1580f0258036d8833a5fe7fa43e2fe62
b76d2ff8a1d663f560fe26cf62a4f2c05eb311e96ea0aa1dbecdd230937652c3
GET /no4198271919/index_failid/like.png HTTP/1.1
Host: business.news-reports.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://business.news-reports.net/no4198271919/index_failid/new_style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 20 Dec 2022 20:56:46 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 232
Connection: keep-alive
Keep-Alive: timeout=60
business.news-reports.net/no4198271919/index_failid/footer-quotidien.jpg
103.155.93.220200 OK 16 kB URL HTTP/1.1 business.news-reports.net/no4198271919/index_failid/footer-quotidien.jpg
IP 103.155.93.220:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 100x120, components 3\012- data
Hash 267738ca3f457b8342791965937d4b58
f3a5d7aa7e34c320516c0eb2d63193f58a20881c
862944516cacb5caf3000f2ea4235f7fdcf8c8d33edcc509bde032a96284bef6
GET /no4198271919/index_failid/footer-quotidien.jpg HTTP/1.1
Host: business.news-reports.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://business.news-reports.net/no4198271919/?td=comerbia-immesses.com&cep=iafropLboiYS9PQFRSuMC684MuVgye5_loZTHeHx-jvXxg9XVh7XQgA3n8Q25HP8oYkk8zFNeP3iWBHMcser63JQNsqqxt3jn_cY-15HSb0zpsrvucFQHziiimu3fRU_PgbxeHPxdt-9COPDV0uM2XgBYySAUJ9EyFKqcvmXM1zTzTRlGwsGsBgXqgHjlbLhh7kloVmyvZ51iqNcwwZVJ73JdNwmZht0rRZEh0FG-4mAJRBaL6N4isAbw0RjT-exjo8puIe1vRIWxiv3Q8PTHT_z-p7pRi55RGgGKqCH7p5h339Gz7iH7YPFfSHYHgRo8a5nZDZbmX2mGPDUft9pM0RUeJ1wH0sDc-3q9d0uVBK_dFQOmhJ_P2y1daDGzpyh7rKI-jZKZsb2x3X-_XVB0X6R-MRgJm3pz6ax9ngYrphE8-Z_6oDkRwFMEQ_3oIwO4A-ANV9OP-vKYg_HhefGudyPdT1Zne3JrWWQeDId-8E&lptoken=168171895726161f05c0&zoneid=5337591&campaignid=6446448&ln=%7Blanguage%7D&cs=&visitor_id=629171971067752448
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 20 Dec 2022 20:56:46 GMT
Content-Type: image/jpeg
Content-Length: 15643
Last-Modified: Mon, 19 Dec 2022 12:51:46 GMT
Connection: keep-alive
Keep-Alive: timeout=60
ETag: "63a05e62-3d1b"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
blogger.googleusercontent.com/img/a/AVvXsEiDlo8gLozYRozGu-lh8FxtysSvV4ufIwccmZskeL78LsWaFZeAQdvzYee6IAM_2zwtSOqBGehVYKTk53wYUoVxdcsXQ5jnRifN5Dm4a0DJiPqsdML2G8UT1wuEvCdKyC2CUUPWASu9LTCCNwk_zbk_QujNn8Nlt49jEf3B1xcTcfH_XN1weN1yrGO0=s500
142.250.74.97200 OK 37 kB URL HTTP/2 blogger.googleusercontent.com/img/a/AVvXsEiDlo8gLozYRozGu-lh8FxtysSvV4ufIwccmZskeL78LsWaFZeAQdvzYee6IAM_2zwtSOqBGehVYKTk53wYUoVxdcsXQ5jnRifN5Dm4a0DJiPqsdML2G8UT1wuEvCdKyC2CUUPWASu9LTCCNwk_zbk_QujNn8Nlt49jEf3B1xcTcfH_XN1weN1yrGO0=s500
IP 142.250.74.97:0
File type PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced\012- data
Hash 5d2d0d1793e52cc18c9b2bade5350ab2
49554ec7db502c67daba6af663599148cb569335
48755e923c8a5b31cc578a386d159543b2be54f23b5ea330a895df264cd3e517
GET /img/a/AVvXsEiDlo8gLozYRozGu-lh8FxtysSvV4ufIwccmZskeL78LsWaFZeAQdvzYee6IAM_2zwtSOqBGehVYKTk53wYUoVxdcsXQ5jnRifN5Dm4a0DJiPqsdML2G8UT1wuEvCdKyC2CUUPWASu9LTCCNwk_zbk_QujNn8Nlt49jEf3B1xcTcfH_XN1weN1yrGO0=s500 HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allenternews.link/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "ved"
expires: Wed, 21 Dec 2022 20:56:46 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="1-removebg-preview.png"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Tue, 20 Dec 2022 20:56:46 GMT
server: fife
content-length: 37052
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 0db78f2c1efa6cc900592d0f8912a55d
686b1ec4aafa7b78a6c7203695527adbec314611
940be1b544a531e6c0dc8900250c1b4be0becf471d9d3d8d1749bdb148cd08be
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 20 Dec 2022 20:56:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
blogger.googleusercontent.com/img/a/AVvXsEhVBkVDUmidmsfSP_2qXMeWCqCYT3HnOASI69s3E5mpm7Lpsh7YHAwONgCA1qOjenpXaFu58HgolnyaeoDJHXP2ypqeWAutnXxudyLkuXv0ongFTFvgeVlDlGozmC9FVCY1yKB6Z8hi9Tp3yhdRX9a-TtHyFZSqBQugMRrXxB2mD6ELoFcbR5LIZe4g=s500
142.250.74.97200 OK 37 kB URL HTTP/2 blogger.googleusercontent.com/img/a/AVvXsEhVBkVDUmidmsfSP_2qXMeWCqCYT3HnOASI69s3E5mpm7Lpsh7YHAwONgCA1qOjenpXaFu58HgolnyaeoDJHXP2ypqeWAutnXxudyLkuXv0ongFTFvgeVlDlGozmC9FVCY1yKB6Z8hi9Tp3yhdRX9a-TtHyFZSqBQugMRrXxB2mD6ELoFcbR5LIZe4g=s500
IP 142.250.74.97:0
File type PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced\012- data
Hash 5d2d0d1793e52cc18c9b2bade5350ab2
49554ec7db502c67daba6af663599148cb569335
48755e923c8a5b31cc578a386d159543b2be54f23b5ea330a895df264cd3e517
GET /img/a/AVvXsEhVBkVDUmidmsfSP_2qXMeWCqCYT3HnOASI69s3E5mpm7Lpsh7YHAwONgCA1qOjenpXaFu58HgolnyaeoDJHXP2ypqeWAutnXxudyLkuXv0ongFTFvgeVlDlGozmC9FVCY1yKB6Z8hi9Tp3yhdRX9a-TtHyFZSqBQugMRrXxB2mD6ELoFcbR5LIZe4g=s500 HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allenternews.link/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "vef"
expires: Wed, 21 Dec 2022 20:56:46 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="1-removebg-preview.png"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Tue, 20 Dec 2022 20:56:46 GMT
server: fife
content-length: 37052
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
business.news-reports.net/no4198271919/index_failid/bundles/footer-cta-bg.jpg
103.155.93.220404 Not Found 249 B URL HTTP/1.1 business.news-reports.net/no4198271919/index_failid/bundles/footer-cta-bg.jpg
IP 103.155.93.220:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a1233933901462cfe06ca35923f18b97
f6f20a3013ff5922cda8d9ec5cc3917c5054f019
96c6d67df6c39f37b696533d3d0d8d76e80463a873466b374e01ac56e454655a
GET /no4198271919/index_failid/bundles/footer-cta-bg.jpg HTTP/1.1
Host: business.news-reports.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://business.news-reports.net/no4198271919/index_failid/057dd4e.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Server: nginx
Date: Tue, 20 Dec 2022 20:56:46 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 249
Connection: keep-alive
Keep-Alive: timeout=60
www.allenternews.link/
188.114.96.1200 OK 0 B IP 188.114.96.1:0
GET / HTTP/1.1
Host: www.allenternews.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Tue, 20 Dec 2022 20:56:44 GMT
content-type: text/html; charset=UTF-8
expires: Tue, 20 Dec 2022 20:56:44 GMT
cache-control: private, max-age=0
last-modified: Tue, 20 Dec 2022 20:53:04 GMT
x-robots-tag: all,noodp
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9Lox%2B4RPD%2BOPO46RqdGfC86ed%2BhnlbbnUTsSA2tU9YqJuoIwJE6jwIomXSPoVIqkah7YccA8luvky6Dk3npUeRVJcDTUEflXuyQvzEepnkwikbbBFPhs2nJ77lQfXEbNo3MOYX7s9iU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77cb49498e86b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
upgulpinon.com/27/7139b89a5308ddcbfca638375286652a
139.45.197.242200 OK 0 B URL HTTP/2 upgulpinon.com/27/7139b89a5308ddcbfca638375286652a
IP 139.45.197.242:0
GET /27/7139b89a5308ddcbfca638375286652a HTTP/1.1
Host: upgulpinon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allenternews.link/
Cookie: scm=1; OAID=3d982b6441504ad09fbedba1ef1f949d; oaidts=1671569804
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 20 Dec 2022 20:56:44 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION
cache-control: max-age:290304000, public
last-modified: Fri, 16 Dec 2022 08:15:42 GMT
expires: Fri, 15 Jan 2083 08:15:42 GMT
strict-transport-security: max-age=1
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
accounts.google.com/v3/signin/identifier?dsh=S403681071%3A1671569805716184&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=AeAAQh5aV0xjgKITK1RbaH-akyOIeOc0hsDqjTQVyqXsdTdNuxK1RbrZF7PDAuGuktfb9v9mcVPW7g
142.250.74.109403 Forbidden 0 B URL HTTP/2 accounts.google.com/v3/signin/identifier?dsh=S403681071%3A1671569805716184&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=AeAAQh5aV0xjgKITK1RbaH-akyOIeOc0hsDqjTQVyqXsdTdNuxK1RbrZF7PDAuGuktfb9v9mcVPW7g
IP 142.250.74.109:0
GET /v3/signin/identifier?dsh=S403681071%3A1671569805716184&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=AeAAQh5aV0xjgKITK1RbaH-akyOIeOc0hsDqjTQVyqXsdTdNuxK1RbrZF7PDAuGuktfb9v9mcVPW7g HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.allenternews.link/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 20 Dec 2022 20:56:45 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-opener-policy-report-only: same-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
content-security-policy: script-src 'nonce-itCKchr56PhGJRRJLzKn0A' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.facebook.com/login.php?next=https%3A%2F%2Fwww.facebook.com%2Ffavicon.ico%3F_rdr%3Dp
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/login.php?next=https%3A%2F%2Fwww.facebook.com%2Ffavicon.ico%3F_rdr%3Dp
IP 31.13.72.36:0
GET /login.php?next=https%3A%2F%2Fwww.facebook.com%2Ffavicon.ico%3F_rdr%3Dp HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.allenternews.link/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: br
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 0
cross-origin-opener-policy: same-origin-allow-popups
vary: Sec-Fetch-Site, Sec-Fetch-Mode, Accept-Encoding
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: OpXs9exWQeIyinki9WZ5RVCKCFFN/8NswJRUOWGUiYsMw/b+wwG/K1WrVwzOUkfqkIPOXoxaAQATvKaqTcIpNQ==
date: Tue, 20 Dec 2022 20:56:45 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
accounts.google.com/v3/signin/identifier?dsh=S1258430922%3A1671569805762649&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=AeAAQh7bNekidCu-e1FsPxXUeNATZUhheyomkjRRgstSumq-ejORJKI5xwgKsARusaMrzsbKurgOWA
142.250.74.109403 Forbidden 0 B URL HTTP/2 accounts.google.com/v3/signin/identifier?dsh=S1258430922%3A1671569805762649&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=AeAAQh7bNekidCu-e1FsPxXUeNATZUhheyomkjRRgstSumq-ejORJKI5xwgKsARusaMrzsbKurgOWA
IP 142.250.74.109:0
GET /v3/signin/identifier?dsh=S1258430922%3A1671569805762649&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=AeAAQh7bNekidCu-e1FsPxXUeNATZUhheyomkjRRgstSumq-ejORJKI5xwgKsARusaMrzsbKurgOWA HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.allenternews.link/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 20 Dec 2022 20:56:45 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-KKKZpD21LTN_3KeA7X8FNA' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport
cross-origin-opener-policy-report-only: same-origin; report-to="AccountsSignInUi"
report-to: {"group":"AccountsSignInUi","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/AccountsSignInUi/external"}]}
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pogothere.xyz/asd100.bin
172.64.172.27200 OK 0 B IP 172.64.172.27:0
GET /asd100.bin HTTP/1.1
Host: pogothere.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.allenternews.link/
Origin: https://www.allenternews.link
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 20 Dec 2022 20:56:45 GMT
content-type: binary/octet-stream
access-control-allow-origin: https://www.allenternews.link
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Tue, 20 Dec 2022 20:56:45 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ydu2q%2FAFqUZy3GWLvuuh8ysH6ntnEAvO3dCV8Ke8IxOBN4IxXX2R2ArHBcysI7Dqr%2BE6Xosx9ukr5yPs4r8iFU074vBdA8%2FNAyuD5FdS6RA0TcoRx6971ODfn%2BNcx0i2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 77cb4955ca2c7192-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2