Overview

URL liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
IP82.180.169.123
ASN
Location Germany
Report completed2022-09-16 14:06:32 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
mnemonic secure dns  No alerts detected
Quad9 DNS
Scan Date Severity Indicator Comment
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed
2022-09-16 2 liftedflow.com Sinkholed


Files

No files detected



Passive DNS (15)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-16 04:25:30 UTC 143.204.55.49
mnemonic passive DNS ocsp.pki.goog (8) 175 2017-06-14 07:23:31 UTC 2022-09-16 04:23:37 UTC 142.250.74.3
mnemonic passive DNS twemoji.maxcdn.com (1) 9109 2017-01-30 05:01:32 UTC 2022-09-16 05:52:42 UTC 23.111.9.57
mnemonic passive DNS code.tidio.co (1) 15677 2014-11-27 09:26:14 UTC 2022-09-16 06:36:35 UTC 104.26.9.183
mnemonic passive DNS fonts.googleapis.com (2) 8877 2014-07-21 13:19:55 UTC 2022-09-16 11:09:52 UTC 142.250.74.10
mnemonic passive DNS fonts.gstatic.com (6) 0 2014-08-29 13:43:22 UTC 2022-09-16 04:23:38 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS widget-v4.tidiochat.com (2) 17456 2018-06-14 06:38:01 UTC 2022-09-16 06:36:35 UTC 104.26.8.139
mnemonic passive DNS ocsp.sca1b.amazontrust.com (1) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 143.204.42.88
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-27 20:08:30 UTC 2022-09-16 09:00:17 UTC 143.204.55.35
mnemonic passive DNS r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-09-16 04:41:23 UTC 23.36.76.226
mnemonic passive DNS ocsp.digicert.com (2) 86 2012-05-21 07:02:23 UTC 2022-09-16 12:49:01 UTC 93.184.220.29
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-16 05:11:10 UTC 34.212.166.60
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-16 10:44:45 UTC 34.120.237.76
mnemonic passive DNS liftedflow.com (50) 0 2022-07-05 04:05:16 UTC 2022-09-15 12:04:09 UTC 82.180.169.123 Unknown ranking
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-16 04:23:36 UTC 34.117.237.239


Recent reports on same IP/ASN/Domain/Screenshot

Last 1 reports on IP: 82.180.169.123

Date UQ / IDS / BL URL IP
2022-09-16 14:06:32 +0000
0 - 0 - 50 liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rC (...) 82.180.169.123

Last 5 reports on ASN:

Date UQ / IDS / BL URL IP
2022-11-29 00:27:39 +0000
0 - 0 - 2 194.110.203.101/puta/softwinx86.exe 194.110.203.101
2022-11-29 00:24:13 +0000
0 - 0 - 3 steamcommnunlity.com/profiles/76598032317107182 185.149.120.71
2022-11-29 00:17:36 +0000
0 - 0 - 2 86f2e.diary.lojjh.com 82.180.154.113
2022-11-29 00:08:18 +0000
0 - 0 - 8 the-best-cams.life/?u=bt1k60t&o=xqt63qn&t=cid (...) 194.87.208.16
2022-11-29 00:07:56 +0000
0 - 0 - 2 176.65.137.5/zero.sh 176.65.137.5

Last 1 reports on domain: liftedflow.com

Date UQ / IDS / BL URL IP
2022-09-16 14:06:32 +0000
0 - 0 - 50 liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rC (...) 82.180.169.123

No other reports with similar screenshot



JavaScript

Executed Scripts (44)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (90)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 16 Sep 2022 13:10:49 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: DyrPTzKGhKEtRTMqDs2dfHYdFlfSsP7xBHEZQvUU-jxDoGRpLBTrQA==
Age: 3332


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    91dd975a7b17b2922dd23c0e49314e40
Sha1:   57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
Sha256: 09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "FEF9CE9F75EC19E7AE2CCBFFB6654DB2473A2B4ACC94C1B4303E5EC24149465F"
Last-Modified: Thu, 15 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4425
Expires: Fri, 16 Sep 2022 15:20:07 GMT
Date: Fri, 16 Sep 2022 14:06:22 GMT
Connection: keep-alive

                                        
                                            GET /o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         82.180.169.123
HTTP/1.1 301 Moved Permanently
content-type: text/html
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-length: 707
date: Fri, 16 Sep 2022 14:06:21 GMT
server: LiteSpeed
location: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
platform: hostinger
content-security-policy: upgrade-insecure-requests


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size:   707
Md5:    1304294c0823ca486542ba408ed761e3
Sha1:   b2a70fb2d810ca13985882e6981f33998823e83e
Sha256: 3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.49
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 16 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: KDQXWGQA0Y9j6OpIUaiE8Z4uZtmmeGoUHtGTNNc1qm3iZUU4DCeZFw==
age: 34267
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    742edb4038f38bc533514982f3d2e861
Sha1:   cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Fri, 16 Sep 2022 14:06:22 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Fri, 16 Sep 2022 14:03:22 GMT
Expires: Fri, 16 Sep 2022 14:50:50 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: BaD9ssy-1FVJ89Pqztl8q-AmIa_rHv8ALf3P5sLY2tSbQXdNS1x-pg==
Age: 180


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6563
Cache-Control: 'max-age=158059'
Date: Fri, 16 Sep 2022 14:06:22 GMT
Last-Modified: Fri, 16 Sep 2022 12:16:59 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: LY9bkP6eTruSKyEN/OxQpA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         34.212.166.60
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: qdBAnjGkAxtH3c02AVfEXscJpb0=

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 14:06:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/themes/astra/assets/css/minified/frontend.min.css?ver=3.9.1 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:22 GMT
last-modified: Sat, 06 Aug 2022 03:40:34 GMT
etag: "b4b0-62ede2b2-29a54b51b76348d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8242
date: Fri, 16 Sep 2022 14:06:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (44114)
Size:   8242
Md5:    088504be776ac0fcf467de48db0e97c4
Sha1:   23468bb5e707c7dba3bc1aea4cc1428f3a2e4bed
Sha256: 968dabe4bfcccb6dffb91f79837ad255b1025574dcd8718440c5e789f2309597

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 14:06:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Wed, 13 Jul 2022 02:16:32 GMT
etag: "15b64-62ce2b00-7ebd93b456042e3f;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10703
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (43771)
Size:   10703
Md5:    3314a848319230ac733421112382eec5
Sha1:   98a167f06a0aa192b28891f8abbb13045a59cb93
Sha256: 491c2c2340db0cace5815f2434013e7fecb5bd9b1d9a721811603d7aaa485fbd

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.3.2 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Fri, 16 Sep 2022 02:40:30 GMT
etag: "28c3-6323e21e-6251923a8ae9aacb;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1747
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (10435), with no line terminators
Size:   1747
Md5:    d47663f4504f15d5297c3a472733980d
Sha1:   86e7e9713f916c9f7ea38ae1430de40466182097
Sha256: c88277856c227711e4939024cd270c8d649c9fd2943bcd84f26aadbd8e94abcc

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.3.2 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Fri, 16 Sep 2022 02:40:30 GMT
etag: "33805-6323e21e-2cbceac647f4b77f;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 20255
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Size:   20255
Md5:    3bca57034d78f03f3def98231457ba27
Sha1:   782dc58c63ef2b357ad4e079b914d5d19bb58353
Sha256: cb2e9ea338f8d46f2295781bf0ec2ffec37245fe0fbf52a6d16075cefb62ca14

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Tue, 05 Jul 2022 03:23:33 GMT
etag: "48b9-62c3aeb5-73496059191c801f;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4572
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (15660)
Size:   4572
Md5:    4402e98c197d70e9bc78b1da062e658a
Sha1:   b1d2477c6b1dfa9283d79a0a3944098dde573f68
Sha256: 4e646c55a8c057d08458aed4f913f5ae713e1351aadc0bcdf947bc48fb6a73ed

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-layout.min.css?ver=3.9.1 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Sat, 06 Aug 2022 03:40:34 GMT
etag: "479d-62ede2b2-e42d34efc3ca2647;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1950
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (18333), with no line terminators
Size:   1950
Md5:    00d4faadeeebfe73baffe5f8abcf50a2
Sha1:   95a404fd22c4c2a17a6a3adcb68a2c8ddec3f32e
Sha256: 743f23615dcdcb0464893acefe82a37ba042c8205e665fad023ad2922a39041e

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce.min.css?ver=3.9.1 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Sat, 06 Aug 2022 03:40:34 GMT
etag: "1ca3b-62ede2b2-361e564074483aa4;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 14833
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (65526), with no line terminators
Size:   14833
Md5:    86445263750d0d4d2858c5374242d50d
Sha1:   ff07205b4b970f9a7721d171729bd912e24943bd
Sha256: 711a83b168e8cc2bfd88c3ba2db8c62fdea300ea1182802e85b417ea38e19f12

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Thu, 15 Sep 2022 14:08:04 GMT
etag: "4b4f-632331c4-4c66e0caff2ace92;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3614
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (19233)
Size:   3614
Md5:    cc9b299fde1a24b538ef2896d690ad9b
Sha1:   f65bd330e90e67b564c476dc1d06289907ecaacf
Sha256: 6ee17bca5920e69d635c7de13515d2c0bf16ac1b54e2f714ba0376f0394c29f0

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.7.6 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Thu, 15 Sep 2022 14:08:04 GMT
etag: "35ed-632331c4-adb6a2185341c334;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 699
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (13766)
Size:   699
Md5:    135ac74a3598a7d95db497dcf137bd4e
Sha1:   d87d6cedcb495c53402fdabf0475ba4f1b249c1c
Sha256: 71bd9ac188c232e666ef1e038ed24c5a164ae0fb3a1f07f3434bb9a4ffc0dfe8

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.7.6 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Thu, 15 Sep 2022 14:08:04 GMT
etag: "28722-632331c4-dad20059baf13624;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 18260
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65497)
Size:   18260
Md5:    6f0c57221aff2bbd66b4fc25e0910fa0
Sha1:   e7636cf65f0146850d891b99b0058970e8c8844b
Sha256: 26ab2633a8cc02c3f4a81df9fb8fa2cea6640e5cbe37efdf8eb950e60fe35e7d

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/elementor/css/post-1217.css?ver=1663259722 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Thu, 15 Sep 2022 16:35:22 GMT
etag: "1754-6323544a-1c82d9293bad6023;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 949
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5972), with no line terminators
Size:   949
Md5:    275bc08fd021fa7a10a09504885e6a5f
Sha1:   9b3672e0e0fc367275bcddde03e41737f19c27bb
Sha256: 613705d49fd9c64473bf2c4b8a3733f77101c9f922ecdd14d817984acdb8765c

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/elementor/css/post-3104.css?ver=1663259722 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Thu, 15 Sep 2022 16:35:22 GMT
etag: "26f6-6323544a-6026c7f3ff2424c3;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1141
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5837)
Size:   1141
Md5:    164e0096b46f26bc5684ea142051de5a
Sha1:   005f415a8fe2eff6f7c0f2647f6bf3b2661adca7
Sha256: b59ea2bc444313b854cdf3827390953981014c0058505a48f941be06d86056ad

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/elementor/css/post-2083.css?ver=1663259722 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Thu, 15 Sep 2022 16:35:22 GMT
etag: "7258-6323544a-1fdcd7de039f8039;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1960
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (29272), with no line terminators
Size:   1960
Md5:    e92a36987cf3fa09409109a45190596e
Sha1:   6b66aa12a9062e124dfa541c8df77f603365d75c
Sha256: 34e416978786c3076841589ebe20faa33f710962e5b1fee14b790ee253f826d5

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/elementor/css/post-2017.css?ver=1663264979 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Thu, 15 Sep 2022 18:02:59 GMT
etag: "f81-632368d3-2a97a7772607465a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 639
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3969), with no line terminators
Size:   639
Md5:    7f9b910215e5eea7d7bea9ed3275f863
Sha1:   838604dd2b3da006e94055d2381978ff82adf454
Sha256: 489454699141db0e50391f8a506febd7a217c175e353c76adccb308dc00ea91c

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/ele-custom-skin/assets/css/ecs-style.css?ver=3.1.6 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Wed, 20 Jul 2022 13:37:55 GMT
etag: "235c-62d80533-9ca3bf0fdd39d951;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1659
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   1659
Md5:    3b5c49b96b43cdf2d060d51d08b571a7
Sha1:   ecd20c53273934639fce969f419496f71b16c31a
Sha256: c3e7c12da28d24821c790f4e7bcec94e2b000ba420abbc658a0737c191174e3e

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/uploads/elementor/css/post-2148.css?ver=1660950933 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Thu, 15 Sep 2022 19:29:00 GMT
etag: "d0e-63237cfc-88e15f3a299bbfb2;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 634
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3342), with no line terminators
Size:   634
Md5:    86006051b08e16e1836dd152a2977afa
Sha1:   1b016795ad4e7dea65e209ceb048dab7d6dac915
Sha256: 405880a4fc610f2bd208db2f000f9b89627b264b19427919cce31cdbef59d16a

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Thu, 15 Sep 2022 14:08:04 GMT
etag: "e238-632331c4-8ce1659b7bbc4b2c;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12071
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (57726)
Size:   12071
Md5:    91b010ccff2c2eae59d1794f2b893ca3
Sha1:   2263e1a89bc96c5720c681354d1b60512080906d
Sha256: 370789e5320420899b6a44e4cd3d9bc145cacb81ac35fb60dc79f39e3b75749d

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Thu, 15 Sep 2022 14:08:04 GMT
etag: "29d-632331c4-27509790475fef01;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 286
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (483)
Size:   286
Md5:    8828fa3c5bdcfa66615714a2b8c9d807
Sha1:   4f556d0b005ac7754af607418df445f8cf98e8b1
Sha256: 16950dcce60bc3ee2613b60439c99e7ed74d10245f59fe6f68346b7e72dd95e7

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Tue, 05 Jul 2022 03:23:33 GMT
etag: "2bd8-62c3aeb5-c0a428214c286c77;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3984
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (11126)
Size:   3984
Md5:    4116c2be947ecf205a0c7fc117ca55f0
Sha1:   0cd8efc9fe349d67a86b49d1e5582a9b21d05add
Sha256: 6b1970b536b88a18b0eb4fe138e677b9736294057660676507fabee57cb0462c

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/ele-custom-skin/assets/js/ecs_ajax_pagination.js?ver=3.1.6 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Wed, 20 Jul 2022 13:37:55 GMT
etag: "ecb-62d80533-fbdec490d50b9675;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1183
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   1183
Md5:    8b80872881f454b103e2c10837def967
Sha1:   986822c8e05c59c2b320a3d18647352f64e19a11
Sha256: 7c1ba638dbf7104fda1aa6f948a52b8a74f591acaa518014e30fa2586acf7353

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/ele-custom-skin/assets/js/ecs.js?ver=3.1.6 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Wed, 20 Jul 2022 13:37:55 GMT
etag: "11c-62d80533-4566c1156227e94c;;;"
accept-ranges: bytes
content-length: 284
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   284
Md5:    447712f49ef92d24eda0381882e5f00b
Sha1:   b041299af91182f0d7a997769cd20e3a2f7ebef4
Sha256: 566d4c5dfefc9c4d867e6bef080917a4273b4228731a8700e81f1763eae3d861

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.7.6 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Thu, 15 Sep 2022 14:08:04 GMT
etag: "4824-632331c4-47875545e258d020;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2422
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (10019)
Size:   2422
Md5:    f480cd12f3c18225e406e533ceca2b75
Sha1:   75c4f87e98bc72e80707efdb358829410683e87c
Sha256: 2969122f862447894932756ab6cf065793ad7a1fa7447b208160bf885e5706e4

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=3.9.1 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Sat, 06 Aug 2022 03:40:34 GMT
etag: "4184-62ede2b2-eeeedc1f0bfe861f;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3770
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (16772), with no line terminators
Size:   3770
Md5:    117b5abce7b9a697cae5faa21803cb7e
Sha1:   cdabbeda14871524c0804f2f4735ee30e5b396d2
Sha256: 90388b8b3c8118993de6a3870e9042038366bf4b1cd51d7b4078e848f71834c7

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.9.2 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Fri, 16 Sep 2022 02:40:29 GMT
etag: "2525-6323e21d-251c5839ee62b96b;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3249
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (9115)
Size:   3249
Md5:    2c8c3a9363ccebf88479409f715f9ff0
Sha1:   9fbbad02215fe386dfc1eb01ed800db80cc4c264
Sha256: 1506bc7b184adbc6a69534fc426c89a5423b665344de842cfc737791a5d34b33

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.9.2 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Fri, 16 Sep 2022 02:40:29 GMT
etag: "bdd-6323e21d-b0a675d92203876d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 972
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (3037), with no line terminators
Size:   972
Md5:    36175b69937122b7d7e11fa26ccf13c7
Sha1:   dffd40b3ad53654052cf4d845050f6dbc8f0e6f4
Sha256: 25ebb0970f772f35846592a6d057705e2b5c9a92bb01c4ba69cbf6a0c069d5fc

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.9.2 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Fri, 16 Sep 2022 02:40:29 GMT
etag: "72a-6323e21d-990dc228bede7368;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 899
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1668)
Size:   899
Md5:    22d65ba38528349e705d912ce26bf8ac
Sha1:   c89ba006009043d93b88ff155b4fec8797330550
Sha256: 6253bcb85e4267ad3ba843145534e729ee2c1d7e85e5b4ab5b2e074ae636bca3

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.9.2 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Fri, 16 Sep 2022 02:40:29 GMT
etag: "85b-6323e21d-4ecc068cac933142;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 677
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2139), with no line terminators
Size:   677
Md5:    a43fc0dde8fdd69656ad0957e62849c7
Sha1:   4b07cf702ac8a770c8cbffc22b9a788b6e5389ba
Sha256: 1ce3d0493424870c81deec0ec41de0592d2af9f91cd8081cd40a1d7ea89b614f

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.9.2 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Fri, 16 Sep 2022 02:40:29 GMT
etag: "b7a-6323e21d-634bc133ccb0f9ab;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 935
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2938), with no line terminators
Size:   935
Md5:    ff0db23445ccd7328c7f10de152fb16b
Sha1:   ff94beb84c601febafb3b51e4f054f920ffb75fc
Sha256: 91034f25ae6d0e9f62eb1407e288f5b37140ad5ce9cd0d1d77d79e63d45882e3

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Sun, 03 Jul 2022 09:11:00 GMT
etag: "6272-62c15d24-321c377174c19c35;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6857
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (25115)
Size:   6857
Md5:    63cf475ef580584e7d0b6750fbffcaec
Sha1:   28062b61594c4e8ac80e999d1c748d9dde2fa7db
Sha256: 50e7a8cb88901c971e315123a785cc8e6b3eeb26456f0bd898dcb2627d1317b4

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.6 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Thu, 15 Sep 2022 14:08:04 GMT
etag: "135d-632331c4-d8b72feac56cb1b7;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2039
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4918)
Size:   2039
Md5:    1d39761e447a2e54792c1495feae008a
Sha1:   1e052abe773d17be22c1c5d353ca341172fe2a3a
Sha256: 3ab3488afd17152f7f92ab44f7d607be21b584e3eac8d199760201ce0ae792b6

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.6 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Thu, 15 Sep 2022 14:08:04 GMT
etag: "80a1-632331c4-4cbaa16418559d41;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10379
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (32889)
Size:   10379
Md5:    e924ba16545a494d4997a30a812ad123
Sha1:   28558389544b8333850dc181413f90077419fd00
Sha256: a03391a552e010093efd23946aca7ed00ba0da55c81dfb095c44ab0276624f1b

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Thu, 15 Sep 2022 14:08:04 GMT
etag: "2fa6-632331c4-fb7453cb0d590ab5;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2838
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (12198), with no line terminators
Size:   2838
Md5:    1393d0dbec2f83777455cdd096954f70
Sha1:   f9c4b9daea64fb4f7ffe076cf8e8e94600babd45
Sha256: 37c699d5ada4e2710a93784052ed68aa9b73e263ebb4a7a216c5a40e2c6bea7b

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Tue, 05 Jul 2022 03:23:33 GMT
etag: "50eb-62c3aeb5-2e3dc7b44c1d0140;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6605
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (8189)
Size:   6605
Md5:    f575ab312b49bdebc33b7b28ee29b16d
Sha1:   0b16dca38ff6612ed8aca1e1e5646470406303bd
Sha256: 64861ab14e4f836d5d660c403987335e807409f5677b5fa83945e888a0a6442d

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         82.180.169.123
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
                                        
x-powered-by: PHP/7.4.30
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://liftedflow.com/wp-json/>; rel="https://api.w.org/"
content-encoding: br
vary: Accept-Encoding
date: Fri, 16 Sep 2022 14:06:22 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (62104), with CRLF, LF line terminators
Size:   64194
Md5:    5aecb3a5c950e31b64988329003a03f1
Sha1:   0531b09f60860d606240fb6e6c8c95022f72febf
Sha256: b737ac78d2188b8c89c986f57fec2b78f3b322a2be4446966a9c918a6dd2fa81

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.7.6 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Thu, 15 Sep 2022 14:08:04 GMT
etag: "a3c-632331c4-9ed3efb2edecf91b;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1048
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2620), with no line terminators
Size:   1048
Md5:    88d137f11570f75d3a58f576627d3e09
Sha1:   f5ea9f6b238844e7078fe9008828b4a7623a9353
Sha256: 70f708b38b4c06004fb84064a825c4c4d6723164c517c3cae99335a756c89cac

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Thu, 15 Sep 2022 14:08:04 GMT
etag: "29ba-632331c4-15436f630f3c9f79;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3258
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (10544)
Size:   3258
Md5:    fc574c9f131ab17624df8685b6913604
Sha1:   c0fc4cb9ca0e86676c275bc47f01cf644887529a
Sha256: 020e9834367e92b7b48bf5a67a0a52d32ff569e77377af59f1bf1b1f151efa28

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.6 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Thu, 15 Sep 2022 14:08:04 GMT
etag: "9e41-632331c4-df27b512c8ba01fa;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11634
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (40474)
Size:   11634
Md5:    ddb9504fc862aa65530c44c2eb922922
Sha1:   7ad42e99af8a4b962c79683d05256ef351db6623
Sha256: 47645ea97d64f57ca31da6c6ab98d463e3c830e31963099a7a73d04bb5da8e77

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/ele-custom-skin-pro/assets/js/ecspro.js?ver=3.2.4 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Sat, 30 Jul 2022 10:26:22 GMT
etag: "497c-62e5074e-25795ff5092d4ae;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3884
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   3884
Md5:    fe0795acdd5cef478988aca5ef7f86e0
Sha1:   25335813169f55920ce3198e30d828cfb7e79ebc
Sha256: 6cffc2c286b659b844091ab166a0bbf0603ca84895ef463b01b2ef5d1c55274a

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Tue, 05 Jul 2022 03:23:33 GMT
etag: "194b-62c3aeb5-da95984574648184;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2349
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (6475), with no line terminators
Size:   2349
Md5:    80abfa68756de384aa21eb4bfa1abe6a
Sha1:   02c7125e1cce1a8bdb729e99bf2c19d74b65efea
Sha256: e012a513b2e1c1ba041be3618086803d20629c5fd54a6fd1f13e8268cd326e17

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Tue, 05 Jul 2022 03:23:33 GMT
etag: "4ac6-62c3aeb5-e3aaa990129619d3;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6828
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Size:   6828
Md5:    ffb3c14bf1326bb8cd02da142982e2f5
Sha1:   bb3e99fef9fc1dcd1f55bc5f593584ab9daac3cd
Sha256: cd07aa98d73c3294cbf3de7a6538a31051e6702d28942cca0eecbc63ae1a1e21

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/dist/hooks.min.js?ver=c6d64f2cb8f5c6bb49caca37f8828ce3 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Tue, 05 Jul 2022 03:23:33 GMT
etag: "132e-62c3aeb5-185a5c234cc5f506;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1574
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4875)
Size:   1574
Md5:    84bc607a21ceabf4db8b46cc9f562d66
Sha1:   5fb6ce023605123eeadbe96f30b8f6c91f595a9a
Sha256: 059f799c65f8a54f48e3f6686ea45679729310b389321f7c5a05d6aa923b4831

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-includes/js/dist/i18n.min.js?ver=ebee46757c6a411e38fd079a7ac71d94 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Tue, 05 Jul 2022 03:23:33 GMT
etag: "27ee-62c3aeb5-50d901e0df4c1662;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3711
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   3711
Md5:    d93a6dc481aac1ab883c0992fc3fee7a
Sha1:   af4ed44d7b4aaae7c93b9ceb18d559a2abedf3c0
Sha256: 64304ab965f8ae09b0645cae655181d627abe56fd1caa56f5f28ab3d4b47920f

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.2 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Sun, 03 Jul 2022 09:11:00 GMT
etag: "52d7-62c15d24-ae672e16f1e43896;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5414
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (21164)
Size:   5414
Md5:    59610f71526e5252a69c907e13e41518
Sha1:   29c9c49f30bad9a12cd8b198799f260d17e53b60
Sha256: eb719ef7ab42753ff8d3b1dfb0e14af97c4a7a575673fc28c5a4bb3c5030db9d

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.7.6 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Thu, 15 Sep 2022 14:08:04 GMT
etag: "a884-632331c4-791ad5aea6b86015;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12463
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (43101)
Size:   12463
Md5:    7d087168dec1678a9ee944b0f2891d52
Sha1:   145f82859905b4729f179b46ed5b53f4cd95263d
Sha256: 4f995821036699cd517be5cc8314487282fd33d62a20a4af1b2474bee1437eb0

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.7.2 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Sun, 03 Jul 2022 09:11:00 GMT
etag: "ca4-62c15d24-c10cf211810b5e47;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1254
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3235)
Size:   1254
Md5:    91194abbabb66c22700e71f20e1e6044
Sha1:   38c55fe048913b6bb019340944be577d045c42cc
Sha256: cd144b8d1080b1c8e61c85a9357fea64c7b5be3ccbcef5c8f5301fab8eab999a

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.7.2 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: text/css
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Sun, 03 Jul 2022 09:11:00 GMT
etag: "7536e-62c15d24-9ac179283c7656ab;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 38106
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65493)
Size:   38106
Md5:    c7e896e065539c3e4feabc2948c698f9
Sha1:   c8a63065af01932c27babb658ce742040c08928e
Sha256: 85a85ce242437a1d25708df53f2a79eb60a3bf275acde6c206ed42991682f397

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Thu, 15 Sep 2022 14:08:04 GMT
etag: "21f91-632331c4-9bdee7da1513f439;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 33467
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65280)
Size:   33467
Md5:    a6556c9a6ab814e62002207275233d46
Sha1:   01d7567e70bafde5489526b045aa1e10cf9d6d9c
Sha256: b95a15c97a5c5a4cd00d63e8d106ec394535764611b95078b66b92dca29242a5

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /wp-content/plugins/elementor-pro/assets/js/preloaded-elements-handlers.min.js?ver=3.7.2 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Sun, 03 Jul 2022 09:11:00 GMT
etag: "20de6-62c15d24-4ececc81d29564a1;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 29788
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65493)
Size:   29788
Md5:    77490cade4a1bfab11e1036633d47828
Sha1:   4d1066da1c4b1a70e05b51179776138c3e578abc
Sha256: 9e45e1a0cd90d80fe7a93f84a8c5079aebd239c373399e8efccea758c2165ff7

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 14:06:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://liftedflow.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:30:59 GMT
expires: Thu, 14 Sep 2023 19:30:59 GMT
cache-control: public, max-age=31536000
age: 153324
last-modified: Wed, 27 Apr 2022 16:21:30 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 7748, version 1.0\012- data
Size:   7748
Md5:    a09f2fccfee35b7247b08a1a266f0328
Sha1:   0da2d17e738f46d2a09e6fb7969da451719a9820
Sha256: cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 14:06:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 14:06:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 14:06:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 14:06:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://liftedflow.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Sep 2022 16:40:18 GMT
expires: Fri, 15 Sep 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 77165
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size:   30928
Md5:    ac0d2859ea5f8fd6bcb3c305c08ec184
Sha1:   7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
Sha256: ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
                                        
                                            GET /s/inter/v12/UcCO3FwrK3iLTeHuS_fvQtMwCp50KnMw2boKoduKmMEVuGKYAZ9hiA.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://liftedflow.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17660
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Sep 2022 15:46:57 GMT
expires: Sat, 09 Sep 2023 15:46:57 GMT
cache-control: public, max-age=31536000
age: 598766
last-modified: Mon, 11 Jul 2022 21:02:39 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 17660, version 1.0\012- data
Size:   17660
Md5:    cfdce67a2e07ba6cf05e0292d7f3f9b7
Sha1:   dcad1b9e50f8ef49ec4600fe88c68c165d9b7e61
Sha256: 048d136d592e66896cccc1fe4fada4feb16b7f6af671cd49a2fe6ed6b2276c6c
                                        
                                            GET /s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://liftedflow.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 19:30:59 GMT
expires: Thu, 14 Sep 2023 19:30:59 GMT
cache-control: public, max-age=31536000
age: 153324
last-modified: Wed, 27 Apr 2022 16:59:07 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 8000, version 1.0\012- data
Size:   8000
Md5:    72993dddf88a63e8f226656f7de88e57
Sha1:   179f97ec0275f09603a8db94d4380eb584d81cd5
Sha256: f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149
                                        
                                            GET /s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://liftedflow.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 12 Sep 2022 21:08:19 GMT
expires: Tue, 12 Sep 2023 21:08:19 GMT
cache-control: public, max-age=31536000
age: 320284
last-modified: Mon, 18 Jul 2022 19:32:55 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 33580, version 1.0\012- data
Size:   33580
Md5:    848cd2ecd011428969dc6b90431bc482
Sha1:   6b1a7b562a56bd54510e0f6f95e26babca331a1b
Sha256: 981307dcbbd348f6fb4e3eab184077392f9ee15097ea868f630debefad9044e9
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Fri, 16 Sep 2022 14:06:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "63C277B85854C244E38F5B3E60A073EB15962A0784BA1B726353E3EC0C3E9E02"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3094
Expires: Fri, 16 Sep 2022 14:57:58 GMT
Date: Fri, 16 Sep 2022 14:06:24 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "63C277B85854C244E38F5B3E60A073EB15962A0784BA1B726353E3EC0C3E9E02"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3094
Expires: Fri, 16 Sep 2022 14:57:58 GMT
Date: Fri, 16 Sep 2022 14:06:24 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "63C277B85854C244E38F5B3E60A073EB15962A0784BA1B726353E3EC0C3E9E02"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3094
Expires: Fri, 16 Sep 2022 14:57:58 GMT
Date: Fri, 16 Sep 2022 14:06:24 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "63C277B85854C244E38F5B3E60A073EB15962A0784BA1B726353E3EC0C3E9E02"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3094
Expires: Fri, 16 Sep 2022 14:57:58 GMT
Date: Fri, 16 Sep 2022 14:06:24 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "63C277B85854C244E38F5B3E60A073EB15962A0784BA1B726353E3EC0C3E9E02"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3094
Expires: Fri, 16 Sep 2022 14:57:58 GMT
Date: Fri, 16 Sep 2022 14:06:24 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F032fbd06-806d-41e6-9160-3fdf480555ac.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9256
x-amzn-requestid: 19e81e48-6501-4938-906c-60aa7acdb33a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhUj5EE5oAMFvwA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239ae5-3031e84f158e1ad94da4875b;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:36:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: MgjhIwjrfVL6-SF04ZPyZVUIOlXUTJu8E8r6KtOZ_QH0OEZC4uG4yQ==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:45:09 GMT
age: 58875
etag: "afbe7dae2d65763a004b5bddc697131762da7bf2"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9256
Md5:    d242ded8ac40a1eb617303256d5f34eb
Sha1:   afbe7dae2d65763a004b5bddc697131762da7bf2
Sha256: b4b08292f36acfca7df3710c29c184c5ff18592e6383eddc5582d302184fce59
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a73e855-9877-4793-b59a-30b8e5a96117.png HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8435
x-amzn-requestid: f6efd924-4f54-41a6-8771-087803b5b8ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhU0-EJaoAMFvtQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239b52-37c21ee857fe27d104b70337;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:38:26 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: hhh1q_MrZVAaRWwmc1IuJbL3KhhwwHQgceaL15okbg4NvKJlWfUjyA==
via: 1.1 773ca14e6bd4bf9244988cb69fc9dca8.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 22:02:34 GMT
age: 57830
etag: "b6e634ef27eba9da38c6472565e0fdca6898e4f0"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8435
Md5:    b7d4ee58e0f26ec6817dbab72aa7db6d
Sha1:   b6e634ef27eba9da38c6472565e0fdca6898e4f0
Sha256: 07db05a6ee70a699164ad55da47bfca58e6639956e256d902cbe0388cd7995c6
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed934f67-48ba-4d22-a8f8-4f5f7a10a9f9.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12425
x-amzn-requestid: 96b5f0d2-1327-4180-9d48-f915630c3de2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhVDqHyooAMFqyg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239bb0-7d89d2d7024f6a821a62c948;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:40:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: dxJEH4Jh8lAZ0T28BZnFLhWczwZ7oOaspCmR-SWudP32cF3BQc6wmw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:56:40 GMT
age: 58184
etag: "abb5c719ec9341c6d4146297a2a1eca171df9c81"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12425
Md5:    da1bd18c37b83b0ef4641036dc208eec
Sha1:   abb5c719ec9341c6d4146297a2a1eca171df9c81
Sha256: 0085a66912a814c619a1257545d36610c7109ba32f1b097176102d3d3db2c8d0
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F45619ede-b86e-4373-9398-fec60bb9e862.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12123
x-amzn-requestid: b04ac3c4-b4d8-4094-8b7d-bd229bb7d577
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yb2GvFnEoAMF-Gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63216a2a-4e5927ac3f1d0b215ce5a8dc;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 05:44:10 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 1W0Ito5yNmHNxtYBj5jOJQ3Z2OP_Shvhpj94YUDwLHQKzt-zgqjI8A==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 16 Sep 2022 03:12:38 GMT
age: 39226
etag: "9f812c7bc1b42b0cea3e42694e7d1f6738789770"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12123
Md5:    f876cdc19dca10c62d83d19303512c7f
Sha1:   9f812c7bc1b42b0cea3e42694e7d1f6738789770
Sha256: c647aac44ba9eb501eb7def781ca0168b4eb71a716283cc6f4e6782939a396cc
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fee084149-a07d-4141-a484-d9f352209914.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9904
x-amzn-requestid: a23cb4b3-db6e-48ae-90b1-3ecf6478bf52
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhVDpH_CIAMFl4w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239bb0-15869210609a18587467d1e2;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:40:00 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: JyXQcHKFIksMgLMROqOfV1ZqdFKSp3QSIlGmXuDR6h88o9J6s-mgkw==
via: 1.1 1002c05e647d0804e83147cdd205d14a.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 22:14:32 GMT
age: 57112
etag: "8e1090346d90bc69e7a95384e6a7a01154e31567"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9904
Md5:    e6d17788c7d2a1a91e68eff48df14bd1
Sha1:   8e1090346d90bc69e7a95384e6a7a01154e31567
Sha256: 1e1eefa02e4c55e73be87a309ad5c2335856125cb678cff6ebc42c5ff73a0e2b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F855bc857-3105-4de6-b3a8-0eb895422ea5.png HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 13536
x-amzn-requestid: 5533b257-1558-472b-aeb9-8207a78e1110
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhVDzFa4IAMF9Rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239bb1-05d0dfde7a488ed97d2a40d5;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:40:01 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: aCCBUNe1NErAN4RiVGCdh-sBxSnMm-XfcFzE-h8IcCq6W1Om-UX45g==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:45:46 GMT
age: 58838
etag: "de5c3e010fca76659455a144875a52c25fa72bdd"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13536
Md5:    512280055633fcce9abc7d11a9816a24
Sha1:   de5c3e010fca76659455a144875a52c25fa72bdd
Sha256: 435eadb36830928b20d4cf8ead62134b75bd0ed3228489d9fdee66450bcbeaed
                                        
                                            GET //tururu.mp3 HTTP/1.1 
Host: widget-v4.tidiochat.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.26.8.139
HTTP/2 206 Partial Content
content-type: audio/mpeg
                                        
date: Fri, 16 Sep 2022 14:06:25 GMT
content-length: 7224
last-modified: Tue, 13 Sep 2022 07:44:17 GMT
etag: "632034d1-1c38"
expires: Thu, 29 Sep 2022 02:08:19 GMT
cache-control: public, max-age=31536000
pragma: public
cf-cache-status: HIT
age: 129486
content-range: bytes 0-7223/7224
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gl7KgZZ3Ozk%2BGAR%2B3RN7oTQiaE%2F1psa6rEEmYNlu8XtksUuEeGcE26LLQ0FSO8Y8G6TWKpjkJWmK%2Fhgwnc%2Byz84p%2FpoCOHF72Id5soxi0Rc0oU3yXOzHsDm2%2B23hLf4boe%2Fwsv89sxCL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74ba299e3d551c12-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  MPEG ADTS, layer III, v1, 64 kbps, 44.1 kHz, Monaural\012- data
Size:   7224
Md5:    5061b4d134a7b4d5d744f9a127b757a8
Sha1:   c5e240ac60d3914cb3836ba6652105c67720b845
Sha256: 12c7687514ca85ba2157ed61914ac526bb9dd15cb5a2a2d9e4d88f919349284f
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         143.204.42.88
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 16 Sep 2022 14:06:25 GMT
Last-Modified: Fri, 16 Sep 2022 13:18:00 GMT
Server: ECS (nyb/1D07)
X-Cache: Miss from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: PODxjXolBYDecR3YmZmh1mH3wiRVdMUVTek1aiiaWOjzqMsKQBviJA==
Age: 2905

                                        
                                            GET /zvxqz3wdekoe7oqe6ymx7rlw0tuxmxjv.js HTTP/1.1 
Host: widget-v4.tidiochat.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://liftedflow.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.26.8.139
HTTP/2 302 Found
content-type: text/html
                                        
date: Fri, 16 Sep 2022 14:06:24 GMT
location: https://widget-v4.tidiochat.com/1_114_0/static/js/render.64874ea49214d2736b46.js
cache-control: private, no-cache, no-store, must-revalidate
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=n2FRMimY9FMT%2FHJHR2JZ595Z9m445K%2Foq94XZJOd7s%2FPu2TiabBWWCcGjOWvhJ4%2FFvH2Cv15lQ1ciz678GnHskpuoxr5v8760cHlq5sHSW%2F%2FtncqhxlpI2GHjeO505Cz5UzkFGivfZkz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ba299ccc001c12-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   95370
Md5:    d418d5392cf710a1d43d6c29bb480ef3
Sha1:   584e17333ae5609b197671b8287d4280725401de
Sha256: e37e23fb4e6773e8e5b3205e79f1ba922263f39e739cac9bf24dacd421356e76
                                        
                                            GET /s/mulish/v12/1Ptvg83HX_SGhgqk3wot.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://liftedflow.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27428
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 10 Sep 2022 04:28:32 GMT
expires: Sun, 10 Sep 2023 04:28:32 GMT
cache-control: public, max-age=31536000
age: 553073
last-modified: Mon, 11 Jul 2022 18:57:51 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 27428, version 1.0\012- data
Size:   27428
Md5:    e6d08c334958c128b793b570a7dce066
Sha1:   081111500e97a7663ff936f847e050fee6b8be2b
Sha256: 8da72dacca3725d500bc789e5f506c76367804eecc46c4249ce0ff822d7a147e
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5045
Cache-Control: 'max-age=158059'
Date: Fri, 16 Sep 2022 14:06:26 GMT
Last-Modified: Fri, 16 Sep 2022 12:42:21 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /v/13.0.1/72x72/1f44b.png HTTP/1.1 
Host: twemoji.maxcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.111.9.57
HTTP/2 200 OK
content-type: image/png
                                        
date: Fri, 16 Sep 2022 14:06:26 GMT
content-length: 1285
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Thu, 31 Mar 2022 03:24:17 GMT
access-control-allow-origin: *
etag: "62451ee1-505"
expires: Sun, 16 Oct 2022 14:06:26 GMT
cache-control: max-age=2592000
x-proxy-cache: MISS
x-github-request-id: 3B66:6CC0:5C9BBC:6016D7:63245B40
vary: Accept-Encoding
x-fastly-request-id: afaeab388db1de45aba366d7d4008041a11e371d
server: NetDNA-cache/2.2
powered-by: MaxCDN
x-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 72 x 72, 8-bit colormap, non-interlaced\012- data
Size:   1285
Md5:    8c685a701d36f492ecc566a4c879fbfd
Sha1:   bbfb15f5fdfd47a20122556975dba73b9d035d95
Sha256: dfee1561c6e59c90f7a292f90157bae85f75ccb3ae27b655898a51429e3a8910
                                        
                                            GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.7.2 HTTP/1.1 
Host: liftedflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/o4eh/?cd=ezjvTmd89G1GUuJ6nK+rCUiNZb8GhIA3lw33sIri9F2CLJWyCgFIgCIB7IO23BBHWjDa2z+3JpW0pKMpyGGDwQ/ZQOsbVPjOoQ==&bB=oHC0rZ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         82.180.169.123
HTTP/2 200 OK
content-type: application/x-javascript
                                        
cache-control: public, max-age=604800
expires: Fri, 23 Sep 2022 14:06:23 GMT
last-modified: Sun, 03 Jul 2022 09:11:00 GMT
etag: "1440-62c15d24-578c2181b2094ce4;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2193
date: Fri, 16 Sep 2022 14:06:23 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2


--- Additional Info ---

Alerts:
  Blocklists:
    - quad9: Sinkholed
                                        
                                            GET /zvxqz3wdekoe7oqe6ymx7rlw0tuxmxjv.js HTTP/1.1 
Host: code.tidio.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.26.9.183
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
                                        
date: Fri, 16 Sep 2022 14:06:24 GMT
location: https://widget-v4.tidiochat.com/zvxqz3wdekoe7oqe6ymx7rlw0tuxmxjv.js
cache-control: private, no-cache, no-store, must-revalidate
widget-cache-status: MISS
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NyUYyv4Zo789QbSdahzFVyoiKsUYVjSX139uSuKkoOk3MAuQn9NjGR2BZA6hKuzwa2jjXyEJkmE0cq%2B0zq1nUNp1VWvP9uwnWmrKTq%2BmxNc%2BnUX9ZBwv6Gzu394r3uI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74ba299b7c6db518-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /css?family=Montserrat%3A400%2C600%7CInter%3A600&display=fallback&ver=3.9.1 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 16 Sep 2022 14:06:23 GMT
date: Fri, 16 Sep 2022 14:06:23 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /css?family=Poppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CMontserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRubik%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.2 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://liftedflow.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 16 Sep 2022 14:06:23 GMT
date: Fri, 16 Sep 2022 14:06:23 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---