r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a2104f935c638b4767ca5ae0d738ef23
85c6af15af749be0ceeae6de17c36925b750f166
5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5899
Expires: Sun, 29 Jan 2023 16:36:25 GMT
Date: Sun, 29 Jan 2023 14:58:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 81dd5c5cc5b3278876cb44dcb520a60f
c0511a59e9eccdcdda98717b87c89c5d59974808
41736c303afdb3d31e48724b107dcb22883cae02f3562308eb52d9164001a2de
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "41736C303AFDB3D31E48724B107DCB22883CAE02F3562308EB52D9164001A2DE"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3441
Expires: Sun, 29 Jan 2023 15:55:27 GMT
Date: Sun, 29 Jan 2023 14:58:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 03092d1a1bc7ac91ee342a1a7ab2a562
52db06ce1fd2c74ddd36b6a0a7aee1b5c891600a
03b8ff2629abac9fc30ebec059c2e2018fcbc41646ad5f71c965ff630fbf1ffd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "03B8FF2629ABAC9FC30EBEC059C2E2018FCBC41646AD5F71C965FF630FBF1FFD"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2288
Expires: Sun, 29 Jan 2023 15:36:14 GMT
Date: Sun, 29 Jan 2023 14:58:06 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 29 Jan 2023 14:43:08 GMT
content-type: application/json
age: 898
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: JbrREEAYBxMZu0zN0yApErkecdQt8jqBZcjFGPp4WH9X5LhC9DOxuKtA+cH1PaGucrXc8zY8ypk=
x-amz-request-id: 6DWCWYW0FBSCRH1T
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 29 Jan 2023 14:50:21 GMT
age: 465
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 14:58:06 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
traditionalmuzzleloader.com/index.php/muzzle-loading-pistols/22-hunting/43-javelina-hunt-in-the-gila-national-forest
173.254.29.38200 OK 6.3 kB URL HTTP/1.1 traditionalmuzzleloader.com/index.php/muzzle-loading-pistols/22-hunting/43-javelina-hunt-in-the-gila-national-forest
IP 173.254.29.38:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2538), with CRLF, CR, LF line terminators
Hash 6475b26a503a99af5bbad38c5027a5e3
9b9a87269d26553d88f54c77a54a7d79980a78f2
dd221344400a265f4aa92b3e78e0bb2add3232152f7f073d63f2486feb7bae49
Analyzer Verdict Alert fortinet Malware
GET /index.php/muzzle-loading-pistols/22-hunting/43-javelina-hunt-in-the-gila-national-forest HTTP/1.1
Host: traditionalmuzzleloader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 14:58:06 GMT
Server: Apache
X-Cache-Enabled: False
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Content-Encoding: gzip
Vary: Accept-Encoding
Expires: Wed, 17 Aug 2005 00:00:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: e5b11a5918d9cda5b8a6a00a1c2da9f7=fe355f12a096801b1f9dd4880f8920ee; path=/; HttpOnly
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sun, 29 Jan 2023 14:58:06 GMT
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8
fonts.googleapis.com/css?family=Open+Sans:400,400italic,600,600italic,700,700italic
142.250.74.106200 OK 881 B URL HTTP/1.1 fonts.googleapis.com/css?family=Open+Sans:400,400italic,600,600italic,700,700italic
IP 142.250.74.106:0
Hash 0baf00f83a90a68c201629480f861bbc
204f8831498fd96db335a4f5cc81ebb9664c675c
53a6d7a119ed8a5335c83a8a69bf21187c65af0f95b22708e7237bdd0272cef3
GET /css?family=Open+Sans:400,400italic,600,600italic,700,700italic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traditionalmuzzleloader.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sun, 29 Jan 2023 14:58:06 GMT
Date: Sun, 29 Jan 2023 14:58:06 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
traditionalmuzzleloader.com/plugins/system/jce/css/content.css?badb4208be409b1335b815dde676300e
173.254.29.38200 OK 1.4 kB URL HTTP/1.1 traditionalmuzzleloader.com/plugins/system/jce/css/content.css?badb4208be409b1335b815dde676300e
IP 173.254.29.38:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (8234), with no line terminators
Hash d32023b629d1406c005ce90df23d6bb3
5a15cfefaaf4b7fca1aa88be2776195191ee6adc
d055c045f0e9569a3e5aa746fbceaee53cfa4adf9130e54026449d63e159d00d
GET /plugins/system/jce/css/content.css?badb4208be409b1335b815dde676300e HTTP/1.1
Host: traditionalmuzzleloader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traditionalmuzzleloader.com/index.php/muzzle-loading-pistols/22-hunting/43-javelina-hunt-in-the-gila-national-forest
Cookie: e5b11a5918d9cda5b8a6a00a1c2da9f7=fe355f12a096801b1f9dd4880f8920ee
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 14:58:06 GMT
Server: Apache
Last-Modified: Wed, 27 Apr 2022 03:30:10 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1361
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
traditionalmuzzleloader.com/plugins/system/hotlogin/extra/hotlogin.css
173.254.29.38200 OK 498 B URL HTTP/1.1 traditionalmuzzleloader.com/plugins/system/hotlogin/extra/hotlogin.css
IP 173.254.29.38:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 085e6177884bba4d43296ac873e8cbc0
57b8d940f4c260f6a524a3d72de4cf9a908ddcf4
1b03d7080df9ba0e7ac9f3b5a265f939de070d81fef3eaa72c04dc1226250589
GET /plugins/system/hotlogin/extra/hotlogin.css HTTP/1.1
Host: traditionalmuzzleloader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traditionalmuzzleloader.com/index.php/muzzle-loading-pistols/22-hunting/43-javelina-hunt-in-the-gila-national-forest
Cookie: e5b11a5918d9cda5b8a6a00a1c2da9f7=fe355f12a096801b1f9dd4880f8920ee
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 14:58:06 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sun, 06 Dec 2015 23:06:09 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 498
Keep-Alive: timeout=5, max=75
Content-Type: text/css
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 29 Jan 2023 14:41:41 GMT
age: 985
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
traditionalmuzzleloader.com/templates/jf_taman/css/template.css
173.254.29.38200 OK 7.1 kB URL HTTP/1.1 traditionalmuzzleloader.com/templates/jf_taman/css/template.css
IP 173.254.29.38:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 8478db09834f1e9c665a68f8441be0f0
9d4f56148ef908c37d61d41a5e428503a8edb955
1ac4e8dda118b0952161832febd945c27d54317d59f2bcebc66ad92430f7801e
GET /templates/jf_taman/css/template.css HTTP/1.1
Host: traditionalmuzzleloader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traditionalmuzzleloader.com/index.php/muzzle-loading-pistols/22-hunting/43-javelina-hunt-in-the-gila-national-forest
Cookie: e5b11a5918d9cda5b8a6a00a1c2da9f7=fe355f12a096801b1f9dd4880f8920ee
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 14:58:06 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 28 Jan 2019 21:40:29 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7083
Keep-Alive: timeout=5, max=75
Content-Type: text/css
traditionalmuzzleloader.com/media/jui/js/jquery-migrate.min.js?142d13a45b5d2f7c3f21b57a88eed624
173.254.29.38200 OK 5.8 kB URL HTTP/1.1 traditionalmuzzleloader.com/media/jui/js/jquery-migrate.min.js?142d13a45b5d2f7c3f21b57a88eed624
IP 173.254.29.38:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (9981)
Hash bf137869176a35bc45b85fcfb1e7cb2d
3395bb4482bdba8a2dfa54d80a338c0047113de2
12c5be15587f83a8029a42b9b7f44c6a90e19b4f61aca200944e749ffc62a7f5
GET /media/jui/js/jquery-migrate.min.js?142d13a45b5d2f7c3f21b57a88eed624 HTTP/1.1
Host: traditionalmuzzleloader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traditionalmuzzleloader.com/index.php/muzzle-loading-pistols/22-hunting/43-javelina-hunt-in-the-gila-national-forest
Cookie: e5b11a5918d9cda5b8a6a00a1c2da9f7=fe355f12a096801b1f9dd4880f8920ee
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 14:58:06 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 20:32:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5845
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: application/javascript
traditionalmuzzleloader.com/media/jui/js/jquery-noconflict.js?142d13a45b5d2f7c3f21b57a88eed624
173.254.29.38200 OK 1.4 kB URL HTTP/1.1 traditionalmuzzleloader.com/media/jui/js/jquery-noconflict.js?142d13a45b5d2f7c3f21b57a88eed624
IP 173.254.29.38:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash bf0ed591de6c2c01d42eabab2d914709
167530b4d738397f88ea719ac39d9a02a588c04a
979285957bd6dd3d816a981f2ec4eab3dfb0af8767462b15f2ac8db98252a022
Analyzer Verdict Alert fortinet Malware
GET /media/jui/js/jquery-noconflict.js?142d13a45b5d2f7c3f21b57a88eed624 HTTP/1.1
Host: traditionalmuzzleloader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traditionalmuzzleloader.com/index.php/muzzle-loading-pistols/22-hunting/43-javelina-hunt-in-the-gila-national-forest
Cookie: e5b11a5918d9cda5b8a6a00a1c2da9f7=fe355f12a096801b1f9dd4880f8920ee
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 14:58:06 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 30 Mar 2022 20:32:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1438
Keep-Alive: timeout=5, max=75
Content-Type: application/javascript
traditionalmuzzleloader.com/media/system/js/caption.js?142d13a45b5d2f7c3f21b57a88eed624
173.254.29.38200 OK 1.7 kB URL HTTP/1.1 traditionalmuzzleloader.com/media/system/js/caption.js?142d13a45b5d2f7c3f21b57a88eed624
IP 173.254.29.38:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (413)
Hash 0e1285f881a0bfc13808b2e21c69d828
155a03008c8937809c38c893c91585838ff07689
0db62a954819c5fcf2ba4e5f4cc44a41e011b2af7cd0d4d61721241d0d62126d
Analyzer Verdict Alert fortinet Malware
GET /media/system/js/caption.js?142d13a45b5d2f7c3f21b57a88eed624 HTTP/1.1
Host: traditionalmuzzleloader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traditionalmuzzleloader.com/index.php/muzzle-loading-pistols/22-hunting/43-javelina-hunt-in-the-gila-national-forest
Cookie: e5b11a5918d9cda5b8a6a00a1c2da9f7=fe355f12a096801b1f9dd4880f8920ee
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 14:58:06 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 20:32:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1714
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: application/javascript
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18563
Expires: Sun, 29 Jan 2023 20:07:30 GMT
Date: Sun, 29 Jan 2023 14:58:07 GMT
Connection: keep-alive
traditionalmuzzleloader.com/templates/jf_taman/css/k2.css
173.254.29.38200 OK 14 kB URL HTTP/1.1 traditionalmuzzleloader.com/templates/jf_taman/css/k2.css
IP 173.254.29.38:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 4172694b1096685a3f4135cc86f6d586
4d572146a19b76ea9eb73282fcf04edcb5b19d1b
60ae5043f5767dc17677a671cfc7ea3ee98da4f09f406d101e29fe9e1bf2eef6
GET /templates/jf_taman/css/k2.css HTTP/1.1
Host: traditionalmuzzleloader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traditionalmuzzleloader.com/index.php/muzzle-loading-pistols/22-hunting/43-javelina-hunt-in-the-gila-national-forest
Cookie: e5b11a5918d9cda5b8a6a00a1c2da9f7=fe355f12a096801b1f9dd4880f8920ee
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 14:58:06 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sun, 13 Jan 2019 23:32:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 14169
Keep-Alive: timeout=5, max=75
Content-Type: text/css
traditionalmuzzleloader.com/media/system/js/core.js?142d13a45b5d2f7c3f21b57a88eed624
173.254.29.38200 OK 5.2 kB URL HTTP/1.1 traditionalmuzzleloader.com/media/system/js/core.js?142d13a45b5d2f7c3f21b57a88eed624
IP 173.254.29.38:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (8729)
Hash 16723d7b110a37a5835c265c73dd6df2
ea3b8ce4b6e761ad5d97522326ae6f05b4e77108
f7cfca95969a0508711ef24f832266f98084f67ff1fb2dbde5397b90537d71de
Analyzer Verdict Alert fortinet Malware
GET /media/system/js/core.js?142d13a45b5d2f7c3f21b57a88eed624 HTTP/1.1
Host: traditionalmuzzleloader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traditionalmuzzleloader.com/index.php/muzzle-loading-pistols/22-hunting/43-javelina-hunt-in-the-gila-national-forest
Cookie: e5b11a5918d9cda5b8a6a00a1c2da9f7=fe355f12a096801b1f9dd4880f8920ee
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 14:58:07 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 20:32:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5158
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: application/javascript
traditionalmuzzleloader.com/plugins/system/hotlogin/extra/hotlogin.js
173.254.29.38200 OK 1.9 kB URL HTTP/1.1 traditionalmuzzleloader.com/plugins/system/hotlogin/extra/hotlogin.js
IP 173.254.29.38:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 9e67dea1d06fbb95772f6ad58afef787
7e62a408056bafef834f7bdf3fd799c2d129382f
36e027bf077732c8352c514cd690d784126ca3c89d8b5d8a33f487d15fef79c6
Analyzer Verdict Alert fortinet Malware
GET /plugins/system/hotlogin/extra/hotlogin.js HTTP/1.1
Host: traditionalmuzzleloader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traditionalmuzzleloader.com/index.php/muzzle-loading-pistols/22-hunting/43-javelina-hunt-in-the-gila-national-forest
Cookie: e5b11a5918d9cda5b8a6a00a1c2da9f7=fe355f12a096801b1f9dd4880f8920ee
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 14:58:07 GMT
Server: Apache
Last-Modified: Sun, 06 Dec 2015 23:06:09 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1946
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: application/javascript
traditionalmuzzleloader.com/media/system/js/keepalive.js?142d13a45b5d2f7c3f21b57a88eed624
173.254.29.38200 OK 1.7 kB URL HTTP/1.1 traditionalmuzzleloader.com/media/system/js/keepalive.js?142d13a45b5d2f7c3f21b57a88eed624
IP 173.254.29.38:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (461)
Hash 4eab004519c61e3126d80f785491cbef
6fcd959d2e83886951799893e63ae9f16cba03d1
c3226b6c6546bf902c60dc79d5006be19cb93aecf9e6f6039aa29a6e40fa000a
GET /media/system/js/keepalive.js?142d13a45b5d2f7c3f21b57a88eed624 HTTP/1.1
Host: traditionalmuzzleloader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traditionalmuzzleloader.com/index.php/muzzle-loading-pistols/22-hunting/43-javelina-hunt-in-the-gila-national-forest
Cookie: e5b11a5918d9cda5b8a6a00a1c2da9f7=fe355f12a096801b1f9dd4880f8920ee
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 14:58:07 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 20:32:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1682
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: application/javascript
traditionalmuzzleloader.com/media/system/js/mootools-core.js?142d13a45b5d2f7c3f21b57a88eed624
173.254.29.38200 OK 35 kB URL HTTP/1.1 traditionalmuzzleloader.com/media/system/js/mootools-core.js?142d13a45b5d2f7c3f21b57a88eed624
IP 173.254.29.38:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (785)
Hash fe85879a1e1f6bd99374851b9c53f1ac
7731d078607434ce24d0e936f4d0a82c2667297b
b9f8244cb2cb47f3435cc5cfc47f259b26319da241476f14b14c405b7acb7d9a
Analyzer Verdict Alert fortinet Malware
GET /media/system/js/mootools-core.js?142d13a45b5d2f7c3f21b57a88eed624 HTTP/1.1
Host: traditionalmuzzleloader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traditionalmuzzleloader.com/index.php/muzzle-loading-pistols/22-hunting/43-javelina-hunt-in-the-gila-national-forest
Cookie: e5b11a5918d9cda5b8a6a00a1c2da9f7=fe355f12a096801b1f9dd4880f8920ee
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 14:58:07 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 20:32:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
traditionalmuzzleloader.com/media/jui/js/jquery.min.js?142d13a45b5d2f7c3f21b57a88eed624
173.254.29.38200 OK 44 kB URL HTTP/1.1 traditionalmuzzleloader.com/media/jui/js/jquery.min.js?142d13a45b5d2f7c3f21b57a88eed624
IP 173.254.29.38:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65462)
Hash f4dab0087c2becd4248329aef9cac6d1
fe9d156ef715ea7b1532dc7500b033d5f2a8cac5
277e2da51efab6657badecd93307647097b4fc35288362a2a96c49b96f75800d
Analyzer Verdict Alert fortinet Malware
GET /media/jui/js/jquery.min.js?142d13a45b5d2f7c3f21b57a88eed624 HTTP/1.1
Host: traditionalmuzzleloader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traditionalmuzzleloader.com/index.php/muzzle-loading-pistols/22-hunting/43-javelina-hunt-in-the-gila-national-forest
Cookie: e5b11a5918d9cda5b8a6a00a1c2da9f7=fe355f12a096801b1f9dd4880f8920ee
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 14:58:06 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 30 Mar 2022 20:32:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: application/javascript
traditionalmuzzleloader.com/media/jui/js/bootstrap.min.js?142d13a45b5d2f7c3f21b57a88eed624
173.254.29.38200 OK 12 kB URL HTTP/1.1 traditionalmuzzleloader.com/media/jui/js/bootstrap.min.js?142d13a45b5d2f7c3f21b57a88eed624
IP 173.254.29.38:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (28994)
Hash 6eaf57464d2e2a4727a5c295afebf096
f41dab2f8384fd4d8c5eb03f9f6fe6cdf503c230
95f315aafec3e793e9bae41ee71afa4be28a01684d8055875ec6b4b0d4fbf5da
Analyzer Verdict Alert fortinet Malware
GET /media/jui/js/bootstrap.min.js?142d13a45b5d2f7c3f21b57a88eed624 HTTP/1.1
Host: traditionalmuzzleloader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traditionalmuzzleloader.com/index.php/muzzle-loading-pistols/22-hunting/43-javelina-hunt-in-the-gila-national-forest
Cookie: e5b11a5918d9cda5b8a6a00a1c2da9f7=fe355f12a096801b1f9dd4880f8920ee
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 14:58:07 GMT
Server: Apache
Last-Modified: Wed, 30 Mar 2022 20:32:00 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 12475
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: application/javascript
traditionalmuzzleloader.com/templates/jf_taman/scripts/js/template.js
173.254.29.38200 OK 1.7 kB URL HTTP/1.1 traditionalmuzzleloader.com/templates/jf_taman/scripts/js/template.js
IP 173.254.29.38:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF, LF line terminators
Hash 2ef6910a317f7efa721a5b3df6fcff06
05ddde01e4191c0d537f4116d2ea39ad23b9cada
fbeb49d6b14128aa1eb999d1610794cc17b15a50730573d53d2828855b634c08
Analyzer Verdict Alert fortinet Malware
GET /templates/jf_taman/scripts/js/template.js HTTP/1.1
Host: traditionalmuzzleloader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traditionalmuzzleloader.com/index.php/muzzle-loading-pistols/22-hunting/43-javelina-hunt-in-the-gila-national-forest
Cookie: e5b11a5918d9cda5b8a6a00a1c2da9f7=fe355f12a096801b1f9dd4880f8920ee
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 14:58:07 GMT
Server: Apache
Last-Modified: Sun, 13 Jan 2019 23:32:32 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1676
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: application/javascript
push.services.mozilla.com/
54.187.102.159101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.187.102.159:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: BPp7SopT2OFgnGzLjm6dXQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: fV5hnOx6a88hxut4Yz7Bzl0JqUA=
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.67200 OK 45 kB URL HTTP/1.1 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.67:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://traditionalmuzzleloader.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 44856
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sun, 29 Jan 2023 10:00:31 GMT
Expires: Mon, 29 Jan 2024 10:00:31 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Mon, 15 Aug 2022 18:20:18 GMT
Content-Type: font/woff2
Age: 17856
fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
142.250.74.67200 OK 48 kB URL HTTP/1.1 fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP 142.250.74.67:0
File type Web Open Font Format (Version 2), TrueType, length 47952, version 1.0\012- data
Hash 17b406b7b8caa297435fa358e194f5a1
e2132f0e97781af56fa966c0fabb49132f2af203
84161c46238fff2c6920ebc28f02cddd7b710cf3d1107853f540b084320f6afd
GET /s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://traditionalmuzzleloader.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 47952
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 24 Jan 2023 21:10:11 GMT
Expires: Wed, 24 Jan 2024 21:10:11 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Mon, 15 Aug 2022 18:22:41 GMT
Content-Type: font/woff2
Age: 409676
traditionalmuzzleloader.com/images/pic7.jpg
173.254.29.38200 OK 146 kB URL HTTP/1.1 traditionalmuzzleloader.com/images/pic7.jpg
IP 173.254.29.38:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, progressive, precision 8, 640x480, components 3\012- data
Size 146 kB (145641 bytes)
Hash ee5649060a8a049069d5c1451931e565
815d4fdd5f0f87c5bdc8ab5cad7ed88c2cbe961f
d0e1841e6ca27110599d2b37428b8977efad4665e8363973ea016c636e32060e
GET /images/pic7.jpg HTTP/1.1
Host: traditionalmuzzleloader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traditionalmuzzleloader.com/index.php/muzzle-loading-pistols/22-hunting/43-javelina-hunt-in-the-gila-national-forest
Cookie: e5b11a5918d9cda5b8a6a00a1c2da9f7=fe355f12a096801b1f9dd4880f8920ee
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 14:58:07 GMT
Server: Apache
Last-Modified: Thu, 22 Apr 2021 00:57:36 GMT
Accept-Ranges: bytes
Content-Length: 145641
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: image/jpeg
traditionalmuzzleloader.com/images/damaged_rifle.JPG
173.254.29.38200 OK 50 kB URL HTTP/1.1 traditionalmuzzleloader.com/images/damaged_rifle.JPG
IP 173.254.29.38:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=6, xresolution=86, yresolution=94, resolutionunit=2, software=paint.net 4.0.19], baseline, precision 8, 500x279, components 3\012- data
Hash a8c18cef7934e53798347c96bfe95bd3
6a31738e4576ed375ad6b018fce09cda70050096
239833b0039dd81eaceff2a963e697cf5842a10b7a322b09dce3913629cbacd9
Analyzer Verdict Alert fortinet Malware
GET /images/damaged_rifle.JPG HTTP/1.1
Host: traditionalmuzzleloader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traditionalmuzzleloader.com/index.php/muzzle-loading-pistols/22-hunting/43-javelina-hunt-in-the-gila-national-forest
Cookie: e5b11a5918d9cda5b8a6a00a1c2da9f7=fe355f12a096801b1f9dd4880f8920ee
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 14:58:07 GMT
Server: Apache
Last-Modified: Fri, 20 Apr 2018 15:11:03 GMT
Accept-Ranges: bytes
Content-Length: 50108
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: image/jpeg
traditionalmuzzleloader.com/images/pic13.jpg
173.254.29.38200 OK 307 kB URL HTTP/1.1 traditionalmuzzleloader.com/images/pic13.jpg
IP 173.254.29.38:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, progressive, precision 8, 640x853, components 3\012- data
Size 307 kB (306920 bytes)
Hash fd5e9eac0e703aa5d17df5fad01a4f0d
d5e7ea3e27f77054dd1764f32fb34b00f1adedc9
c41279369daf55372f93bd0b9e5380d498d3137c0f413e477c53f85bf7547003
GET /images/pic13.jpg HTTP/1.1
Host: traditionalmuzzleloader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traditionalmuzzleloader.com/index.php/muzzle-loading-pistols/22-hunting/43-javelina-hunt-in-the-gila-national-forest
Cookie: e5b11a5918d9cda5b8a6a00a1c2da9f7=fe355f12a096801b1f9dd4880f8920ee
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 14:58:07 GMT
Server: Apache
Last-Modified: Thu, 22 Apr 2021 01:02:52 GMT
Accept-Ranges: bytes
Content-Length: 306920
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: image/jpeg
traditionalmuzzleloader.com/images/pic3.jpg
173.254.29.38200 OK 308 kB URL HTTP/1.1 traditionalmuzzleloader.com/images/pic3.jpg
IP 173.254.29.38:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, progressive, precision 8, 640x853, components 3\012- data
Size 308 kB (308064 bytes)
Hash d47df6bd923fc218023ebbd61e355492
245bf377477d97bc52e5deb2920e04afbaee13ee
3a99bf6b3932f6854b9ba1c40be053b220aa422658a1c49d1ca0c5ec88135e0f
GET /images/pic3.jpg HTTP/1.1
Host: traditionalmuzzleloader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traditionalmuzzleloader.com/index.php/muzzle-loading-pistols/22-hunting/43-javelina-hunt-in-the-gila-national-forest
Cookie: e5b11a5918d9cda5b8a6a00a1c2da9f7=fe355f12a096801b1f9dd4880f8920ee
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 14:58:07 GMT
Server: Apache
Last-Modified: Thu, 22 Apr 2021 00:52:39 GMT
Accept-Ranges: bytes
Content-Length: 308064
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: image/jpeg
traditionalmuzzleloader.com/templates/jf_taman/images/facebook.png
173.254.29.38200 OK 1.1 kB URL HTTP/1.1 traditionalmuzzleloader.com/templates/jf_taman/images/facebook.png
IP 173.254.29.38:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 8 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 4fa9145bcdc792bedfb4bddfc5391678
8b7fa2521058cfc8dbbae7812a9cdd1f33736551
f2a6edb69cfa14ed82a6001a30a9fef15edf9f7eb8561ea67e573fd89a5137ab
GET /templates/jf_taman/images/facebook.png HTTP/1.1
Host: traditionalmuzzleloader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traditionalmuzzleloader.com/templates/jf_taman/css/template.css
Cookie: e5b11a5918d9cda5b8a6a00a1c2da9f7=fe355f12a096801b1f9dd4880f8920ee
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 14:58:07 GMT
Server: Apache
Last-Modified: Sun, 13 Jan 2019 23:32:32 GMT
Accept-Ranges: bytes
Content-Length: 1088
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: image/png
traditionalmuzzleloader.com/images/pic4.jpg
173.254.29.38200 OK 137 kB URL HTTP/1.1 traditionalmuzzleloader.com/images/pic4.jpg
IP 173.254.29.38:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, progressive, precision 8, 640x480, components 3\012- data
Size 137 kB (136747 bytes)
Hash b047a701cd100604ff16f92f226d42fa
3d0ff98e1859ca6485d2c7d0c8818a1401984cb8
73dc1ae8aa46b2f28c6c6defbf8668dd9144a876d7793e03c91de416a684bff0
GET /images/pic4.jpg HTTP/1.1
Host: traditionalmuzzleloader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traditionalmuzzleloader.com/index.php/muzzle-loading-pistols/22-hunting/43-javelina-hunt-in-the-gila-national-forest
Cookie: e5b11a5918d9cda5b8a6a00a1c2da9f7=fe355f12a096801b1f9dd4880f8920ee
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 14:58:07 GMT
Server: Apache
Last-Modified: Thu, 22 Apr 2021 00:56:25 GMT
Accept-Ranges: bytes
Content-Length: 136747
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: image/jpeg
traditionalmuzzleloader.com/templates/jf_taman/images/search.png
173.254.29.38200 OK 1.4 kB URL HTTP/1.1 traditionalmuzzleloader.com/templates/jf_taman/images/search.png
IP 173.254.29.38:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 15 x 14, 8-bit/color RGBA, non-interlaced\012- data
Hash 5f1eb04b3c2f1491581b21c06600d5b9
9665c8bb6577a8e916dff982a2e080c15863bbbc
26138e60ef77b45e311b5f8c646422017a963eba7e926b3ba1c1840b03012575
GET /templates/jf_taman/images/search.png HTTP/1.1
Host: traditionalmuzzleloader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traditionalmuzzleloader.com/templates/jf_taman/css/template.css
Cookie: e5b11a5918d9cda5b8a6a00a1c2da9f7=fe355f12a096801b1f9dd4880f8920ee
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 14:58:08 GMT
Server: Apache
Last-Modified: Sun, 13 Jan 2019 23:32:32 GMT
Accept-Ranges: bytes
Content-Length: 1406
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: image/png
traditionalmuzzleloader.com/templates/jf_taman/images/menu.png
173.254.29.38200 OK 9.0 kB URL HTTP/1.1 traditionalmuzzleloader.com/templates/jf_taman/images/menu.png
IP 173.254.29.38:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 87 x 62, 8-bit/color RGB, non-interlaced\012- data
Hash fe3771d8395642d875a5bb7f329f4869
9d2c921e6fe06abdcfb17736733642a6f8d9dc4f
c5a46131febbed687fd92fb128189a01bb1efec9813e9c3c2e00c9d9eaab5cbe
GET /templates/jf_taman/images/menu.png HTTP/1.1
Host: traditionalmuzzleloader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traditionalmuzzleloader.com/templates/jf_taman/css/template.css
Cookie: e5b11a5918d9cda5b8a6a00a1c2da9f7=fe355f12a096801b1f9dd4880f8920ee
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 14:58:08 GMT
Server: Apache
Last-Modified: Sun, 13 Jan 2019 23:32:32 GMT
Accept-Ranges: bytes
Content-Length: 8980
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: image/png
traditionalmuzzleloader.com/templates/jf_taman/images/separator.png
173.254.29.38200 OK 1.1 kB URL HTTP/1.1 traditionalmuzzleloader.com/templates/jf_taman/images/separator.png
IP 173.254.29.38:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 2 x 50, 8-bit/color RGB, non-interlaced\012- data
Hash b9fc44b996054b8c3a665c71fee5a478
3d93c190ec2e1aed27885aa1858349a97cc47450
97af6101a5c752efbb39df3883737064b8624ef3380e5b32fcde7dd583d7ffe5
GET /templates/jf_taman/images/separator.png HTTP/1.1
Host: traditionalmuzzleloader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traditionalmuzzleloader.com/templates/jf_taman/css/template.css
Cookie: e5b11a5918d9cda5b8a6a00a1c2da9f7=fe355f12a096801b1f9dd4880f8920ee
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 14:58:08 GMT
Server: Apache
Last-Modified: Sun, 13 Jan 2019 23:32:32 GMT
Accept-Ranges: bytes
Content-Length: 1107
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: image/png
traditionalmuzzleloader.com/images/TM_logo.png
173.254.29.38200 OK 4.8 kB URL HTTP/1.1 traditionalmuzzleloader.com/images/TM_logo.png
IP 173.254.29.38:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 242 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash 27e8ec7849d1c0281b1e29cbabc8b6fe
d7034c60add7cd117801a6b85c058dee9c0995f3
9dab3e9a2ef698ba5777f21e082ba3620e6e7ba488660289efd6f519a75a5541
GET /images/TM_logo.png HTTP/1.1
Host: traditionalmuzzleloader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traditionalmuzzleloader.com/index.php/muzzle-loading-pistols/22-hunting/43-javelina-hunt-in-the-gila-national-forest
Cookie: e5b11a5918d9cda5b8a6a00a1c2da9f7=fe355f12a096801b1f9dd4880f8920ee
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 14:58:08 GMT
Server: Apache
Last-Modified: Sun, 13 Jan 2019 23:46:14 GMT
Accept-Ranges: bytes
Content-Length: 4828
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: image/png
traditionalmuzzleloader.com/plugins/system/hotlogin/extra/bg_01.png
173.254.29.38200 OK 198 B URL HTTP/1.1 traditionalmuzzleloader.com/plugins/system/hotlogin/extra/bg_01.png
IP 173.254.29.38:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 200 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash cb7b79a85bfadecceb3091466b0a93f7
c04c2c06517bd9e981cf54da79b94df10d8d411c
019cfb4652025f9fe770a23e2283c66076f4716a634f47d82b34ada65729454a
GET /plugins/system/hotlogin/extra/bg_01.png HTTP/1.1
Host: traditionalmuzzleloader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traditionalmuzzleloader.com/plugins/system/hotlogin/extra/hotlogin.css
Cookie: e5b11a5918d9cda5b8a6a00a1c2da9f7=fe355f12a096801b1f9dd4880f8920ee
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 14:58:08 GMT
Server: Apache
Last-Modified: Sun, 06 Dec 2015 23:06:09 GMT
Accept-Ranges: bytes
Content-Length: 198
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: image/png
traditionalmuzzleloader.com/plugins/system/hotlogin/extra/bg_02.png
173.254.29.38200 OK 509 B URL HTTP/1.1 traditionalmuzzleloader.com/plugins/system/hotlogin/extra/bg_02.png
IP 173.254.29.38:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 200 x 21, 8-bit/color RGBA, non-interlaced\012- data
Hash a34780a4a958270aed8088d3420b9211
e6ae59572594b98a4c487084890cb65e97bfbc10
16d0efaf4944bc550351881ca1062e2c0a48895f9c5333262a48af6855e2418c
GET /plugins/system/hotlogin/extra/bg_02.png HTTP/1.1
Host: traditionalmuzzleloader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traditionalmuzzleloader.com/plugins/system/hotlogin/extra/hotlogin.css
Cookie: e5b11a5918d9cda5b8a6a00a1c2da9f7=fe355f12a096801b1f9dd4880f8920ee
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 14:58:08 GMT
Server: Apache
Last-Modified: Sun, 06 Dec 2015 23:06:09 GMT
Accept-Ranges: bytes
Content-Length: 509
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: image/png
traditionalmuzzleloader.com/images/pic14.jpg
173.254.29.38200 OK 297 kB URL HTTP/1.1 traditionalmuzzleloader.com/images/pic14.jpg
IP 173.254.29.38:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, progressive, precision 8, 640x853, components 3\012- data
Size 297 kB (297022 bytes)
Hash 172e9a57ae060fce266acee60e2f0412
d8056c25eb60b2ed7fdc2dcc982fd9015c6ee0bc
bc69254871bf357f2ffd7506dd204deef04e4cb674595b35d304df91077e6608
GET /images/pic14.jpg HTTP/1.1
Host: traditionalmuzzleloader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traditionalmuzzleloader.com/index.php/muzzle-loading-pistols/22-hunting/43-javelina-hunt-in-the-gila-national-forest
Cookie: e5b11a5918d9cda5b8a6a00a1c2da9f7=fe355f12a096801b1f9dd4880f8920ee
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 14:58:07 GMT
Server: Apache
Last-Modified: Thu, 22 Apr 2021 00:55:29 GMT
Accept-Ranges: bytes
Content-Length: 297022
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: image/jpeg
traditionalmuzzleloader.com/plugins/system/hotlogin/extra/bg_03.png
173.254.29.38200 OK 579 B URL HTTP/1.1 traditionalmuzzleloader.com/plugins/system/hotlogin/extra/bg_03.png
IP 173.254.29.38:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 200 x 29, 8-bit/color RGBA, non-interlaced\012- data
Hash 4cbc36a0958c22eff4adbd4ecc8328cf
6f83ffd9114fc6fbebe002b628fd180ff1039526
bf1ea1e1e1f4cd0610dfe4746649c4003afbf87d8583605228ccd796dfea35c2
GET /plugins/system/hotlogin/extra/bg_03.png HTTP/1.1
Host: traditionalmuzzleloader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traditionalmuzzleloader.com/plugins/system/hotlogin/extra/hotlogin.css
Cookie: e5b11a5918d9cda5b8a6a00a1c2da9f7=fe355f12a096801b1f9dd4880f8920ee
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 14:58:08 GMT
Server: Apache
Last-Modified: Sun, 06 Dec 2015 23:06:09 GMT
Accept-Ranges: bytes
Content-Length: 579
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: image/png
traditionalmuzzleloader.com/templates/jf_taman/images/back-to-top.png
173.254.29.38200 OK 1.9 kB URL HTTP/1.1 traditionalmuzzleloader.com/templates/jf_taman/images/back-to-top.png
IP 173.254.29.38:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 36 x 36, 8-bit/color RGBA, non-interlaced\012- data
Hash 24083bf679589336f9e1b59ea37e5196
63f2b7d51f7f736abc44469fa80be8d08b7360ae
533b944ad3bc019941f84e030fbe18c799d69159a8ae0b6da374da7911b45534
GET /templates/jf_taman/images/back-to-top.png HTTP/1.1
Host: traditionalmuzzleloader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traditionalmuzzleloader.com/templates/jf_taman/css/template.css
Cookie: e5b11a5918d9cda5b8a6a00a1c2da9f7=fe355f12a096801b1f9dd4880f8920ee
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 14:58:08 GMT
Server: Apache
Last-Modified: Sun, 13 Jan 2019 23:32:32 GMT
Accept-Ranges: bytes
Content-Length: 1881
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: image/png
traditionalmuzzleloader.com/images/pic8.jpg
173.254.29.38200 OK 154 kB URL HTTP/1.1 traditionalmuzzleloader.com/images/pic8.jpg
IP 173.254.29.38:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, progressive, precision 8, 640x480, components 3\012- data
Size 154 kB (153658 bytes)
Hash 555e9877a173dd968c1f0c5ca6f69520
0114410790915e9f09cec234efa7bb319ad70e3c
d53ef7c5c6597e06dc68190f156b70d017f875556d878aeb497019d05d8ed9d6
GET /images/pic8.jpg HTTP/1.1
Host: traditionalmuzzleloader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traditionalmuzzleloader.com/index.php/muzzle-loading-pistols/22-hunting/43-javelina-hunt-in-the-gila-national-forest
Cookie: e5b11a5918d9cda5b8a6a00a1c2da9f7=fe355f12a096801b1f9dd4880f8920ee
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 14:58:08 GMT
Server: Apache
Last-Modified: Thu, 22 Apr 2021 00:59:58 GMT
Accept-Ranges: bytes
Content-Length: 153658
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: image/jpeg
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8499
Expires: Sun, 29 Jan 2023 17:19:47 GMT
Date: Sun, 29 Jan 2023 14:58:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8499
Expires: Sun, 29 Jan 2023 17:19:47 GMT
Date: Sun, 29 Jan 2023 14:58:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8499
Expires: Sun, 29 Jan 2023 17:19:47 GMT
Date: Sun, 29 Jan 2023 14:58:08 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b70d7a9-8bf2-490f-9646-c64694e42e42.jpeg
34.120.237.76200 OK 3.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b70d7a9-8bf2-490f-9646-c64694e42e42.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 97118e74a8f60620950e42a11c11d71b
d144bbb82392a6103810ac9baa5346ddbefb5c16
2ce0c9696cf9842243186e86bae28c22896a9f51837f4961b6c7e3cfdfb24bd0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b70d7a9-8bf2-490f-9646-c64694e42e42.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3774
x-amzn-requestid: deae2f1e-baec-408c-92a7-4859d4afed47
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-EgFAgoAMFXRQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443b6-32a2ff1a369e7b5f41ecbabd;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:50 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8p5qCwCbamsgIuEvlRNhIiB-19GNiLuHqDeGIaHhWFo1Wiex8W02JQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 21:56:10 GMT
age: 61318
etag: "d144bbb82392a6103810ac9baa5346ddbefb5c16"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4205d8106659e00fff1cbe9262918b8c
ab4f6528594a1725934727dc7d834c028a79c609
31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hAzO-IMqc1CFpiBAlRl8seIYL9UonyrBMATibovyFq5kEuaweY_VyA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 21:56:46 GMT
age: 61282
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4c77437e3a7361861aed8bfecbfe6bd6
fefd238c13c0fdfb7d964c90fcc8a8cbbf953034
282d15c443cb6232ae0a30046a0dc24360617355a4651cdba59b11e6f7313d8a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5594
x-amzn-requestid: a13a8181-5783-42c1-9fda-1fcf8db4f0f9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVpetFv-oAMF_Kg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d222c4-68165b34525ca2a054f0b505;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 06:50:44 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: rJbdYq3bZDatEVvC83VR5WiWOFwNwVZEB16ez21KdnQJJrgJ-yKPCg==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 14:55:48 GMT
age: 140
etag: "fefd238c13c0fdfb7d964c90fcc8a8cbbf953034"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 10a6491e2c1dfde68c7cd7297e70700f
d0f195319825a6d3e5e50ad15b2fcab27cb65896
4d9353d5874e5ea03c25e1562db5f479c222a48db526fdd10ede7c2e6a4dd874
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11470
x-amzn-requestid: 62d61967-9380-4ca9-b11a-531425dbd2ae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fIf6WFgAIAMF6gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cce042-6d9fe51029094b7f37c0a648;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 07:05:38 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rUIvvkZQ028ey3klplI-x9oZFugon5HsAWT-SN2GQo5hBeBJWqoMAg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 04:01:15 GMT
age: 39413
etag: "d0f195319825a6d3e5e50ad15b2fcab27cb65896"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3be81f83687ddb6c93d3ff3c09a9dba2
50a48e737310d3f31840db4301b25927fbcc12c5
e78c909e2381898e7f546183784a05dff47c31734c95358aaada8c2777ad47be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9167
x-amzn-requestid: f644ca78-a07a-43d1-96e4-95bcdecff7fb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPGLfFtOIAMFp7w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf83e2-202ca7160544acd24259bd5d;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:08:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xRwqrWS66l4qJfg2HnGphN1dbrIUod9XKW3zTk_-Km9AQRPyV2UqWg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 20:46:16 GMT
age: 65512
etag: "50a48e737310d3f31840db4301b25927fbcc12c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 43c4a8e963936a8064dbd2bd3c67b905
8508727c97127c98b886833af28b3470306216c2
070c29fe7c0a227029483d675eac863904ab6b291467acdf62167f4845699c21
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8652
x-amzn-requestid: 21c734f0-cd73-4691-812e-7cd3908f8f89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fRbH4HtPIAMFUGA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d07232-291e20fb41c53db7664d04b2;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 00:05:06 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: j2zDtHz3pZLHJKG3-PaITyUzHOQBEELzuDIt7sbB8X_B10OxG394tg==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 06:49:29 GMT
age: 29319
etag: "8508727c97127c98b886833af28b3470306216c2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e9eba61fbe87bc53d60d0fdd1ba6adb4
8dbb3dfacfaad4ce0fd3a355790cb9b245e01e07
9c0233792f873315e75ce5396d1a210f2df665db23ab858a0724f66bbb4528e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 14:58:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-7566113762487798
142.250.74.162200 OK 50 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-7566113762487798
IP 142.250.74.162:0
File type ASCII text, with very long lines (3649)
Hash c83c22b3c23a41f4f778760e60a3de2a
c3429b04e6cd5fb2f93d7e54fe67003b7e95bad6
25f4c71ee3ffce457994b10e0c5466e0491afa8bfeef43c99e36d743ca691600
GET /pagead/js/adsbygoogle.js?client=ca-pub-7566113762487798 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://traditionalmuzzleloader.com
Connection: keep-alive
Referer: http://traditionalmuzzleloader.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sun, 29 Jan 2023 14:58:08 GMT
expires: Sun, 29 Jan 2023 14:58:08 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 2861724200719055995
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 50213
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ed8a8c45dceab588456b222e04775919
0242859712655caa3c3e9b936878c7c7874b7b5a
669f0691b8bf32a10fb219ce47ad69495e5cd2a11317b672aecca53f50b51de3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 14:58:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
traditionalmuzzleloader.com/templates/jf_taman/favicon.ico
173.254.29.38200 OK 1.2 kB URL HTTP/1.1 traditionalmuzzleloader.com/templates/jf_taman/favicon.ico
IP 173.254.29.38:0
ASN #46606 UNIFIEDLAYER-AS-1
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 8894791e84f5cafebd47311d14a3703c
a62b63f076c81788c95a06d586135e6a36bfd217
24168e09893e89aee7daa843fad42b5719bee447b3a2c588b933397822c9637b
GET /templates/jf_taman/favicon.ico HTTP/1.1
Host: traditionalmuzzleloader.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://traditionalmuzzleloader.com/index.php/muzzle-loading-pistols/22-hunting/43-javelina-hunt-in-the-gila-national-forest
Cookie: e5b11a5918d9cda5b8a6a00a1c2da9f7=fe355f12a096801b1f9dd4880f8920ee
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 14:58:08 GMT
Server: Apache
Last-Modified: Sun, 13 Jan 2019 23:32:32 GMT
Accept-Ranges: bytes
Content-Length: 1150
Cache-Control: max-age=604800
Expires: Sun, 05 Feb 2023 14:58:08 GMT
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: image/x-icon
googleads.g.doubleclick.net/pagead/html/r20230124/r20190131/zrt_lookup.html
142.250.74.130200 OK 4.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20230124/r20190131/zrt_lookup.html
IP 142.250.74.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2579)
Hash 2fb3574102373e2e076cfa2ff90cdf25
d06c985183def975546d6e47ab6369c11dcf7195
e61cbc207f7fc2f429deceff11e7a339a3d9a9574da6d035054eba02ee381345
GET /pagead/html/r20230124/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://traditionalmuzzleloader.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 4242
x-xss-protection: 0
date: Sun, 29 Jan 2023 12:06:26 GMT
expires: Sun, 12 Feb 2023 12:06:26 GMT
cache-control: public, max-age=1209600
age: 10302
etag: 10353107486223812946
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ae45eeb8e62398ce3fc49c0234699163
f5506898f66248b331e84b573a010c5c1a8ad0d2
3d298a54e6d0f6e8f6a48a398e372720fb871623080b7408d66f296068ec6ddc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 14:58:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=traditionalmuzzleloader.com&callback=_gfp_s_&client=ca-pub-7566113762487798
216.58.207.226200 OK 260 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=traditionalmuzzleloader.com&callback=_gfp_s_&client=ca-pub-7566113762487798
IP 216.58.207.226:0
File type ASCII text, with very long lines (421), with no line terminators
Hash 4fee024ff0bd35ed5dcda883c454ebc9
50f4cc874163ae3e77a2d6296b8497af74874122
1cc2ad27a5eb9509fb82242ab1942613d8218612758bae8f832ed0ccb0a3ee33
GET /gampad/cookie.js?domain=traditionalmuzzleloader.com&callback=_gfp_s_&client=ca-pub-7566113762487798 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://traditionalmuzzleloader.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 29 Jan 2023 14:58:08 GMT
server: cafe
cache-control: private
content-length: 260
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ef589be52a3e55b643978f17949a73da
74545de6f144282252ff92c751f97cc835c80341
7bfa68c43e60a2627770163b5c1b96fbd7e4843984ad5ff6225c5490b8073b26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 14:58:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ae45eeb8e62398ce3fc49c0234699163
f5506898f66248b331e84b573a010c5c1a8ad0d2
3d298a54e6d0f6e8f6a48a398e372720fb871623080b7408d66f296068ec6ddc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 14:58:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b7da7d1d3e5880d5d4e313ac7fcf2a83
60a1e887ccb7c7cdae0035c65ef7df9908547fef
af17efcd17df50324c29cff05cea79f18cba79f6b1134ec0e6d1637759b5e895
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 14:58:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/adsid/integrator.js?domain=traditionalmuzzleloader.com
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=traditionalmuzzleloader.com
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=traditionalmuzzleloader.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://traditionalmuzzleloader.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 29 Jan 2023 14:58:08 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=traditionalmuzzleloader.com
142.250.74.66200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=traditionalmuzzleloader.com
IP 142.250.74.66:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=traditionalmuzzleloader.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://traditionalmuzzleloader.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Sun, 29 Jan 2023 14:58:08 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1141ae65ad448fb3438690d5042af728
aa8b236bb1099c9440bfe3e98530939623250c03
e55eeaf5cd454042706c3e2d7d2b0211e91087b430cb5bae6b9e030392f57b4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 14:58:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a369a4445d1fccf2ce045c3c4c3f3d67
d6f618e6150a4f9ac6eb5df4a503141a635605a2
d62c7913686c10d4c4b8d691d533256534da77cecc9fcf3f8aa885380dcc148b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 14:58:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20230124&st=env
142.250.74.162200 OK 11 kB URL HTTP/2 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20230124&st=env
IP 142.250.74.162:0
File type JSON data\012- , ASCII text, with very long lines (14859), with no line terminators
Hash 446d14ebaebe8e39826971e5847db6d2
aba1e8a76eb630350a8eefbad24dc96c8cdf7a5b
6517091e1a6099f968b3b9c63eca46e0b449d2dc07cd696d4a5d4e5cb17c5a1d
GET /getconfig/sodar?sv=200&tid=gda&tv=r20230124&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://traditionalmuzzleloader.com
Connection: keep-alive
Referer: http://traditionalmuzzleloader.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
date: Sun, 29 Jan 2023 14:58:09 GMT
server: cafe
content-length: 11213
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 622fef0135648b055d1691ae97508eff
535c21115ccc50934d06c70e153df6ae542f1b5c
a66508fe21cab04638a3988ee90babe52167f0399a5440e329cf397182c813b4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 14:58:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
216.58.207.193200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 216.58.207.193:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://traditionalmuzzleloader.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Sun, 29 Jan 2023 14:58:09 GMT
expires: Sun, 29 Jan 2023 14:58:09 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
216.58.207.193200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP 216.58.207.193:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://traditionalmuzzleloader.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 20:43:30 GMT
expires: Fri, 26 Jan 2024 20:43:30 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
age: 238479
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/bg/o7PJ4mencrJpfBYBJyNLdqHy4_8T8e3TraCPfA4Fn-I.js
142.250.74.162200 OK 14 kB URL HTTP/2 pagead2.googlesyndication.com/bg/o7PJ4mencrJpfBYBJyNLdqHy4_8T8e3TraCPfA4Fn-I.js
IP 142.250.74.162:0
File type ASCII text, with very long lines (35756)
Hash 35140d94f445a831d30781b8adcf5d51
6c87c844332042a520158f20791a2a450e411439
2cd84ad1068050b649d6f5c6600cf0e79fd1983ff5979b695f987337ac4edfd5
GET /bg/o7PJ4mencrJpfBYBJyNLdqHy4_8T8e3TraCPfA4Fn-I.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tpc.googlesyndication.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14089
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 23 Jan 2023 20:30:33 GMT
expires: Tue, 23 Jan 2024 20:30:33 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 19 Jan 2023 11:48:00 GMT
content-type: text/javascript
age: 498456
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 86352d15c37831cf9bf1e41325029224
ac8b28bcc1e6dd026e1f62d1ef8b9f80a42eee21
154f5f5e116df41f5d3bd414c671138b2afc198071529a0f3573109277566cd8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 14:58:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/aframe
142.250.74.132200 OK 515 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 142.250.74.132:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash 4e8078c093430f3ffedafb24048fa485
3e5e772af735af91bcd331ba31adee42821ba98c
0b849b74985aced6e4d133e3028bf22983e1591c7c200a2a85b1dfff7f94ab66
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://traditionalmuzzleloader.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Sun, 29 Jan 2023 14:58:09 GMT
date: Sun, 29 Jan 2023 14:58:09 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-PvL_qO_wG6QCwjz6Qo4jKw' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 515
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&li=gda_r20230124&jk=2153032704734343&rc=
142.250.74.162204 No Content 0 B URL HTTP/2 pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&li=gda_r20230124&jk=2153032704734343&rc=
IP 142.250.74.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/sodar?id=sodar2&v=225&li=gda_r20230124&jk=2153032704734343&rc= HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Sun, 29 Jan 2023 14:58:09 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&t=2&li=gda_r20230124&jk=2153032704734343&bg=!3d6l3prNAAZSrDxfcqw7ACkAdvg8WjB1v7A2yFATp5jXNQt_7zPyWbJ94X5MVINZ3dm_STyfURPjbAIAAACOUgAAAARoAQeZAomvqbbbntx-Jw09pvyS3o6dHLQFa-K-eIOUM3CYLC9u9JcgZRMBxlA1ywlgVG7KmjKsdEJFWI0Sk7OmJxqpVS7e81ttBfW5nvUBuX2KsxfaYe3JlNAKKo8v9_Sf8SZuBDjfElPV_3d9H1JDI2KPzl2eYit_WCBQBWy7L-P8jIFEFRbpMtTNdgujC6lc2HNzd0JyG-Tm7QJouxm3eezU81SOXMFJOt_q01penoO87hiBp4nJU7Y-bCX_ty0uUCs7P3tFIBd5lbbJIsv6kL1RZ4vYGzifKqxEVGMCo9kppztOjLT1YFsrOef0gV_uwgI_mjADwBVzNKRD1VxVUGNnmXjre-nzsdihdKRdwi9H9gVHM33-OTqArBZvM3jb5f2-I-045OjM08ZKCli4mBoM2Fsb69fO7GlnkUI-DwtwZ3i8NrPeSOuNrf4hrzU-zCjt-VBOAJBU-jqI-46Ok3WETxhxOyTnKsXuQcW9wYkUlNdkmwBT6VuaW6V5MLV3q5bsmq7iIlYiDrBaBFyf0dyOsRACNcRMGi9LHJ3G39e2jT6DsMblfCNtSCyaCJHsXEjUxJkcu9_avR9-4MA-FIPUqJNuJTZFg1F1bWsOtRkhFjxZaXg1B8ZhNawGs8N18Ehzbzi4mOap2TQ0Bfwa-Vi9KUQ0DWpeaAdwSW4WUeKKFgDpJINbcxV0Q8ou_4VVeEdPVOVG16GeSf3UZ51_ACzLxxEdfoHG-uDtBAJ5VBjAWKKLLyXpZ7crVxOGe7rDkq52WaP2TyqtueyiQPrvnUeVQ9dsFfw9WawSuEVBn-Sg68gw8R5SYm408Ciy_52Mqq-l_VjutTDpxx2H5_TFEIqpCv8t85WgnFnSAnkI
142.250.74.162204 No Content 0 B URL HTTP/2 pagead2.googlesyndication.com/pagead/sodar?id=sodar2&v=225&t=2&li=gda_r20230124&jk=2153032704734343&bg=!3d6l3prNAAZSrDxfcqw7ACkAdvg8WjB1v7A2yFATp5jXNQt_7zPyWbJ94X5MVINZ3dm_STyfURPjbAIAAACOUgAAAARoAQeZAomvqbbbntx-Jw09pvyS3o6dHLQFa-K-eIOUM3CYLC9u9JcgZRMBxlA1ywlgVG7KmjKsdEJFWI0Sk7OmJxqpVS7e81ttBfW5nvUBuX2KsxfaYe3JlNAKKo8v9_Sf8SZuBDjfElPV_3d9H1JDI2KPzl2eYit_WCBQBWy7L-P8jIFEFRbpMtTNdgujC6lc2HNzd0JyG-Tm7QJouxm3eezU81SOXMFJOt_q01penoO87hiBp4nJU7Y-bCX_ty0uUCs7P3tFIBd5lbbJIsv6kL1RZ4vYGzifKqxEVGMCo9kppztOjLT1YFsrOef0gV_uwgI_mjADwBVzNKRD1VxVUGNnmXjre-nzsdihdKRdwi9H9gVHM33-OTqArBZvM3jb5f2-I-045OjM08ZKCli4mBoM2Fsb69fO7GlnkUI-DwtwZ3i8NrPeSOuNrf4hrzU-zCjt-VBOAJBU-jqI-46Ok3WETxhxOyTnKsXuQcW9wYkUlNdkmwBT6VuaW6V5MLV3q5bsmq7iIlYiDrBaBFyf0dyOsRACNcRMGi9LHJ3G39e2jT6DsMblfCNtSCyaCJHsXEjUxJkcu9_avR9-4MA-FIPUqJNuJTZFg1F1bWsOtRkhFjxZaXg1B8ZhNawGs8N18Ehzbzi4mOap2TQ0Bfwa-Vi9KUQ0DWpeaAdwSW4WUeKKFgDpJINbcxV0Q8ou_4VVeEdPVOVG16GeSf3UZ51_ACzLxxEdfoHG-uDtBAJ5VBjAWKKLLyXpZ7crVxOGe7rDkq52WaP2TyqtueyiQPrvnUeVQ9dsFfw9WawSuEVBn-Sg68gw8R5SYm408Ciy_52Mqq-l_VjutTDpxx2H5_TFEIqpCv8t85WgnFnSAnkI
IP 142.250.74.162:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/sodar?id=sodar2&v=225&t=2&li=gda_r20230124&jk=2153032704734343&bg=!3d6l3prNAAZSrDxfcqw7ACkAdvg8WjB1v7A2yFATp5jXNQt_7zPyWbJ94X5MVINZ3dm_STyfURPjbAIAAACOUgAAAARoAQeZAomvqbbbntx-Jw09pvyS3o6dHLQFa-K-eIOUM3CYLC9u9JcgZRMBxlA1ywlgVG7KmjKsdEJFWI0Sk7OmJxqpVS7e81ttBfW5nvUBuX2KsxfaYe3JlNAKKo8v9_Sf8SZuBDjfElPV_3d9H1JDI2KPzl2eYit_WCBQBWy7L-P8jIFEFRbpMtTNdgujC6lc2HNzd0JyG-Tm7QJouxm3eezU81SOXMFJOt_q01penoO87hiBp4nJU7Y-bCX_ty0uUCs7P3tFIBd5lbbJIsv6kL1RZ4vYGzifKqxEVGMCo9kppztOjLT1YFsrOef0gV_uwgI_mjADwBVzNKRD1VxVUGNnmXjre-nzsdihdKRdwi9H9gVHM33-OTqArBZvM3jb5f2-I-045OjM08ZKCli4mBoM2Fsb69fO7GlnkUI-DwtwZ3i8NrPeSOuNrf4hrzU-zCjt-VBOAJBU-jqI-46Ok3WETxhxOyTnKsXuQcW9wYkUlNdkmwBT6VuaW6V5MLV3q5bsmq7iIlYiDrBaBFyf0dyOsRACNcRMGi9LHJ3G39e2jT6DsMblfCNtSCyaCJHsXEjUxJkcu9_avR9-4MA-FIPUqJNuJTZFg1F1bWsOtRkhFjxZaXg1B8ZhNawGs8N18Ehzbzi4mOap2TQ0Bfwa-Vi9KUQ0DWpeaAdwSW4WUeKKFgDpJINbcxV0Q8ou_4VVeEdPVOVG16GeSf3UZ51_ACzLxxEdfoHG-uDtBAJ5VBjAWKKLLyXpZ7crVxOGe7rDkq52WaP2TyqtueyiQPrvnUeVQ9dsFfw9WawSuEVBn-Sg68gw8R5SYm408Ciy_52Mqq-l_VjutTDpxx2H5_TFEIqpCv8t85WgnFnSAnkI HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://traditionalmuzzleloader.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Sun, 29 Jan 2023 14:58:10 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2